ua152.ffzw.link/rp/fHZP5vAMq4BYyuujjrdIIIijePQ.png
200 OK 22 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/fHZP5vAMq4BYyuujjrdIIIijePQ.png
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type PNG image data, 926 x 92, 8-bit/color RGBA, non-interlaced\012- data
Hash f0d11cde238eb54a334858a3b0432a3f
7c764fe6f00cab8058caeba38eb7482088a378f4
579adf148a5905868140df9075b90a2ff33c9070dfd35b3ab869a2d9aacd9a96
GET /rp/fHZP5vAMq4BYyuujjrdIIIijePQ.png HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:27 GMT
Content-Type: image/png
Content-Length: 22297
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: 8NEc3iOOtUozSFijsEMqPw==
Last-Modified: Tue, 20 Jun 2023 15:17:06 GMT
ETag: 0x8DB71A168FECCE6
X-Cache: TCP_HIT
x-ms-request-id: 189636fd-a01e-002c-0845-1c2a8a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: BDA3145DACDF4F439C34421134F70751 Ref B: SEL20EDGE0409 Ref C: 2023-11-23T21:57:15Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: A39C8426767744AEBBC04DEB5CA28222 Ref B: SLAEDGE1521 Ref C: 2023-11-26T15:56:27Z
ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
200 OK 806 kB URL User Request GET HTTP/1.1 ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (62839), with CRLF, LF line terminators
Size 806 kB (805852 bytes)
Hash f64300c10f444454ae7097e3d1a3a1bf
c4b81f742b19db1c52930874345eff86f1bf7bb7
b304fc5f468e4e072370cdb9147d2d1cf785d2c8ce620951247cc9acce8209a3
GET /search?q=Bing+AI&showconv=1&FORM=hpcodx HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:26 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: private, max-age=0
Expires: Sun, 26 Nov 2023 15:55:26 GMT
P3P: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
Set-Cookie: MUID=0E02A7C1FED666F8226FB414FFF667B5; domain=.bing.com; expires=Fri, 20-Dec-2024 15:56:26 GMT; path=/; secure; SameSite=None
MUIDB=0E02A7C1FED666F8226FB414FFF667B5; expires=Fri, 20-Dec-2024 15:56:26 GMT; path=/; HttpOnly
_EDGE_S=F=1&SID=161A13C8F3B161752720001DF291608F; domain=.bing.com; path=/; HttpOnly
_EDGE_V=1; domain=.bing.com; expires=Fri, 20-Dec-2024 15:56:26 GMT; path=/; HttpOnly
SRCHD=AF=hpcodx; domain=.bing.com; expires=Fri, 20-Dec-2024 15:56:26 GMT; path=/; secure; SameSite=None
SRCHUID=V=2&GUID=A5C2817690E14C6585E9CE3076A87598&dmnchg=1; domain=.bing.com; expires=Fri, 20-Dec-2024 15:56:26 GMT; path=/; secure; SameSite=None
SRCHUSR=DOB=20231126; domain=.bing.com; expires=Fri, 20-Dec-2024 15:56:26 GMT; path=/; secure; SameSite=None
SRCHHPGUSR=SRCHLANG=zh-Hans; domain=.bing.com; expires=Fri, 20-Dec-2024 15:56:26 GMT; path=/; secure; SameSite=None
_SS=SID=161A13C8F3B161752720001DF291608F; domain=.bing.com; path=/; secure; SameSite=None
X-EventID: 65636aaabb8b4c8898f3cf758b1b9e22
UserAgentReductionOptOut: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Cache: CONFIG_NOCACHE
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-MSEdge-Ref: Ref A: D2960679BA184EDC925A852454FA64F3 Ref B: SLAEDGE1614 Ref C: 2023-11-26T15:56:26Z
r.bing.com/rb/H/cir3,as,cc,nc/ERBV2D_88FLlm3tJfOqYug7pIrw.css?bu=IoMGqgOMBZwEqgOqA6oDqgOqA6oD2wbdBrwGqgOqA6oDqgO3Bu8ElwaqA6oD0gaqA4cFqgPfBu0GqgOqA8EEqgPVBKoD&or=w
9.1 kB URL r.bing.com/rb/H/cir3,as,cc,nc/ERBV2D_88FLlm3tJfOqYug7pIrw.css?bu=IoMGqgOMBZwEqgOqA6oDqgOqA6oD2wbdBrwGqgOqA6oDqgO3Bu8ElwaqA6oD0gaqA4cFqgPfBu0GqgOqA8EEqgPVBKoD&or=w
IP
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (40731), with no line terminators
Hash f6569483e9a9dce91e8e2f3b5dad362b
983f4d3e3fe469e2ae456b178d8d37c1d435aef3
7faf88fec45b6da14d19fb9f70a7bb4223a7638c730f9841aba01d1bf1176038
GET /rb/H/cir3,as,cc,nc/ERBV2D_88FLlm3tJfOqYug7pIrw.css?bu=IoMGqgOMBZwEqgOqA6oDqgOqA6oD2wbdBrwGqgOqA6oDqgO3Bu8ElwaqA6oD0gaqA4cFqgPfBu0GqgOqA8EEqgPVBKoD&or=w HTTP/1.1
Host: r.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://ua152.ffzw.link/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-length: 9146
content-type: text/css; charset=utf-8
server: Kestrel
access-control-allow-headers: *
access-control-allow-origin: *
content-encoding: br
last-modified: Mon, 09 Aug 2010 13:54:56 GMT
x-eventid: 6557e67c28cb431287daab7717522fd3
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
x-as-instrumentationoptions: AppServerLoggingMaster=1
x-as-machinename: DUBEEAP0000E12A
x-as-suppresssetcookie: 1
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":0.5}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingrms"}]}
cache-control: public, max-age=72923
expires: Mon, 27 Nov 2023 12:11:51 GMT
date: Sun, 26 Nov 2023 15:56:28 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.154f2417.1701014188.63ef9bb6
timing-allow-origin: *
X-Firefox-Spdy: h2
ua152.ffzw.link/sa/simg/favicon-trans-bg-blue-mg.ico
4.3 kB URL ua152.ffzw.link/sa/simg/favicon-trans-bg-blue-mg.ico
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data
Hash 30967b1b52cb6df18a8af8fcc04f83c9
aaf67cd84fcd64fb2d8974d7135d6f1e4fc03588
439b6089e45ef1e0c37ef88764d5c99a3b2752609c4e2af3376480d7ffcfaf2e
GET /sa/simg/favicon-trans-bg-blue-mg.ico HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:28 GMT
Content-Type: image/x-icon
Content-Length: 4286
Connection: keep-alive
Cache-Control: public, max-age=15552000
Last-Modified: Mon, 01 Jan 1601 00:00:00 GMT
X-Cache: TCP_HIT
X-EventID: 65592dca53d4483494776e52b05e2e16
UserAgentReductionOptOut: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-MSEdge-Ref: Ref A: D3CE53C7CAFD41F49AA0B16937D6D813 Ref B: SLAEDGE1611 Ref C: 2023-11-26T15:56:28Z
ua152.ffzw.link/fd/ls/l?IG=7C73DE283EAE42229B89933196E76768&CID=0E02A7C1FED666F8226FB414FFF667B5&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:483,%22BC%22:483,%22SE%22:-1,%22TC%22:-1,%22H%22:1213,%22BP%22:1270,%22CT%22:1285,%22IL%22:30},%22ad%22:[-1,-1,1280,1024,1280,4745,0]}&P=SERP&DA=PUSE01
200 OK 0 B URL GET HTTP/1.1 ua152.ffzw.link/fd/ls/l?IG=7C73DE283EAE42229B89933196E76768&CID=0E02A7C1FED666F8226FB414FFF667B5&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:483,%22BC%22:483,%22SE%22:-1,%22TC%22:-1,%22H%22:1213,%22BP%22:1270,%22CT%22:1285,%22IL%22:30},%22ad%22:[-1,-1,1280,1024,1280,4745,0]}&P=SERP&DA=PUSE01
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /fd/ls/l?IG=7C73DE283EAE42229B89933196E76768&CID=0E02A7C1FED666F8226FB414FFF667B5&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:483,%22BC%22:483,%22SE%22:-1,%22TC%22:-1,%22H%22:1213,%22BP%22:1270,%22CT%22:1285,%22IL%22:30},%22ad%22:[-1,-1,1280,1024,1280,4745,0]}&P=SERP&DA=PUSE01 HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:28 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
X-Cache: CONFIG_NOCACHE
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-MSEdge-Ref: Ref A: 3B351C46B2DA4B5DA878DDF16172EB99 Ref B: SLAEDGE1709 Ref C: 2023-11-26T15:56:28Z
ua152.ffzw.link/rp/0lTV1Ww6BLBVP0rxj-z-65knyNs.js
200 OK 17 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/0lTV1Ww6BLBVP0rxj-z-65knyNs.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (17402), with no line terminators
Hash f4be1a0bba957f4296aceca775b33ca5
d254d5d56c3a04b0553f4af18fecfeeb9927c8db
48d780a6e405cc2b1fba774f15748a66ec54a0e3e7a86ea429330833feb5cd06
GET /rp/0lTV1Ww6BLBVP0rxj-z-65knyNs.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:28 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 17402
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: 9L4aC7qVf0KWrOyndbM8pQ==
Last-Modified: Wed, 19 Jul 2023 05:08:55 GMT
ETag: 0x8DB881640B658EA
X-Cache: TCP_HIT
x-ms-request-id: 0f3d9e46-701e-0061-2637-1cec68000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 95937CFF653E405BBA019A49638AE589 Ref B: SEL20EDGE0612 Ref C: 2023-11-23T05:04:08Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: BFE83C75545647F4B35D8969BCF86FDF Ref B: SLAEDGE1314 Ref C: 2023-11-26T15:56:28Z
ua152.ffzw.link/fd/ls/lsp.aspx?
204 No Content 0 B URL POST HTTP/1.1 ua152.ffzw.link/fd/ls/lsp.aspx?
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /fd/ls/lsp.aspx? HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Content-Type: text/plain;charset=UTF-8
Content-Length: 360
Origin: https://ua152.ffzw.link
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 204 No Content
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:28 GMT
Connection: keep-alive
Access-Control-Allow-Origin: *
X-Cache: CONFIG_NOCACHE
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-MSEdge-Ref: Ref A: 621383D3DAE84CA79E22552B214E55BA Ref B: SLAEDGE1610 Ref C: 2023-11-26T15:56:28Z
r.bing.com/rs/78/j4/jnc,nj/weTZhMT4W5x_tgtmsDnFQb89lPY.js?or=w
200 OK 666 B URL GET HTTP/3 r.bing.com/rs/78/j4/jnc,nj/weTZhMT4W5x_tgtmsDnFQb89lPY.js?or=w
IP
ASN #20940 Akamai International B.V.
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerMicrosoft Corporation
Subjectr.bing.com
Fingerprint23:E0:B1:D9:C5:02:8F:FE:35:CB:2A:E6:86:20:A8:83:F8:82:34:9B
ValidityWed, 18 Oct 2023 20:32:40 GMT - Thu, 27 Jun 2024 23:59:59 GMT
File type ASCII text, with very long lines (1580), with no line terminators
Hash 37d6135265108fa3bd673ff5df085f8e
8188ab901c6f90c2ab5c9f42369a76f5877d9adb
22a62a0578748ecb72aca68bf5345db60b5aac25d187b12e957702be51ed9236
GET /rs/78/j4/jnc,nj/weTZhMT4W5x_tgtmsDnFQb89lPY.js?or=w HTTP/1.1
Host: r.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ua152.ffzw.link
DNT: 1
Connection: keep-alive
Referer: https://ua152.ffzw.link/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 666
content-type: application/x-javascript; charset=utf-8
server: Kestrel
access-control-allow-headers: *
access-control-allow-origin: *
content-encoding: gzip
last-modified: Sun, 19 Nov 2023 19:10:57 GMT
x-eventid: 655ee25caa274b08a14caaf64fe6a8c5
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
x-as-instrumentationoptions: AppServerLoggingMaster=1
x-as-machinename: DUBEEAP0000E13C
x-as-suppresssetcookie: 1
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":0.5}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingrms"}]}
cache-control: public, max-age=134881
expires: Tue, 28 Nov 2023 05:24:30 GMT
date: Sun, 26 Nov 2023 15:56:29 GMT
vary: Accept-Encoding
quic-version: 0x00000001
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.154f2417.1701014189.63efa957
timing-allow-origin: *
r.bing.com/rs/78/xs/nj/V9Lbi4rGakA-OjwcLcoh5jr1zfY.js?or=w
356 B URL r.bing.com/rs/78/xs/nj/V9Lbi4rGakA-OjwcLcoh5jr1zfY.js?or=w
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (520), with no line terminators
Hash f03cfee55a7f1e0b91dd062a5654fc3d
57d2db8b8ac66a403e3a3c1c2dca21e63af5cdf6
39477bae95ee7073936851a67106a42f585454ebd6c4feadeacc818c52da49a4
GET /rs/78/xs/nj/V9Lbi4rGakA-OjwcLcoh5jr1zfY.js?or=w HTTP/1.1
Host: r.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ua152.ffzw.link
DNT: 1
Connection: keep-alive
Referer: https://ua152.ffzw.link/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 356
content-type: application/x-javascript; charset=utf-8
server: Kestrel
access-control-allow-headers: *
access-control-allow-origin: *
content-encoding: br
last-modified: Sun, 19 Nov 2023 19:10:57 GMT
x-eventid: 655e98c2db2643579e5908a468ac1e51
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
x-as-instrumentationoptions: AppServerLoggingMaster=1
x-as-machinename: DUBEEAP0000E058
x-as-suppresssetcookie: 1
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-INCMIEZyL3PqegE4rhsNOT5okWQtrwUCUt23d77tQzo='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}, {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingrms"}]}
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":0.5}
cache-control: public, max-age=116069
expires: Tue, 28 Nov 2023 00:10:58 GMT
date: Sun, 26 Nov 2023 15:56:29 GMT
quic-version: 0x00000001
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.154f2417.1701014189.63efa9bf
timing-allow-origin: *
ua152.ffzw.link/fd/ls/l?IG=7C73DE283EAE42229B89933196E76768&CID=0E02A7C1FED666F8226FB414FFF667B5&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22ClientDimNotSent%22,%22Text%22:%221%22}]
200 OK 0 B URL GET HTTP/1.1 ua152.ffzw.link/fd/ls/l?IG=7C73DE283EAE42229B89933196E76768&CID=0E02A7C1FED666F8226FB414FFF667B5&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22ClientDimNotSent%22,%22Text%22:%221%22}]
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /fd/ls/l?IG=7C73DE283EAE42229B89933196E76768&CID=0E02A7C1FED666F8226FB414FFF667B5&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22ClientDimNotSent%22,%22Text%22:%221%22}] HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:29 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
X-Cache: CONFIG_NOCACHE
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-MSEdge-Ref: Ref A: 9A4567D675D34BDDB3CE4F58879DB5E3 Ref B: SLAEDGE1007 Ref C: 2023-11-26T15:56:29Z
ua152.ffzw.link/rp/ZqcguoCiF8MOwMO7koYG5q3zX2A.png
2.4 kB URL ua152.ffzw.link/rp/ZqcguoCiF8MOwMO7koYG5q3zX2A.png
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type PNG image data, 58 x 59, 8-bit colormap, non-interlaced\012- data
Hash adaf58265b16e5dd34897ec6e40b9895
66a720ba80a217c30ec0c3bb928606e6adf35f60
c69c8cc7469f4ed1457531eb35fd7c616d0498a0e756aa65b907fa8459cae00a
GET /rp/ZqcguoCiF8MOwMO7koYG5q3zX2A.png HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:29 GMT
Content-Type: image/png
Content-Length: 2380
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: ra9YJlsW5d00iX7G5AuYlQ==
Last-Modified: Fri, 07 Jul 2023 15:20:05 GMT
ETag: 0x8DB7EFDA4773D0D
X-Cache: TCP_HIT
x-ms-request-id: b72677a0-501e-0010-032f-1c9e51000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 138BD84C5E604B939C926277D50F2B63 Ref B: SEL20EDGE0207 Ref C: 2023-11-24T08:26:23Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 967DB181518A4995926B8CC31DDF7271 Ref B: SLAEDGE1320 Ref C: 2023-11-26T15:56:29Z
ua152.ffzw.link/fd/ls/l?IG=7C73DE283EAE42229B89933196E76768&CID=0E02A7C1FED666F8226FB414FFF667B5&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]
200 OK 0 B URL GET HTTP/1.1 ua152.ffzw.link/fd/ls/l?IG=7C73DE283EAE42229B89933196E76768&CID=0E02A7C1FED666F8226FB414FFF667B5&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /fd/ls/l?IG=7C73DE283EAE42229B89933196E76768&CID=0E02A7C1FED666F8226FB414FFF667B5&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}] HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:29 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
X-Cache: CONFIG_NOCACHE
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-MSEdge-Ref: Ref A: 3817A7DA136E48EAA08F8407B4FC81CE Ref B: SLAEDGE1820 Ref C: 2023-11-26T15:56:29Z
r.bing.com/rs/78/t1/jnc,nj/2RFgnacsz6nPw9vvxd8AGFyaQr8.js?or=w
182 B URL r.bing.com/rs/78/t1/jnc,nj/2RFgnacsz6nPw9vvxd8AGFyaQr8.js?or=w
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (308), with no line terminators
Hash e849f94cd30ec77987643a0d405e33e4
d911609da72ccfa9cfc3dbefc5df00185c9a42bf
b39968f3ab3c3867efc7115c77d0239b0a2c505ae87766231bf46e32f7797c43
GET /rs/78/t1/jnc,nj/2RFgnacsz6nPw9vvxd8AGFyaQr8.js?or=w HTTP/1.1
Host: r.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ua152.ffzw.link
DNT: 1
Connection: keep-alive
Referer: https://ua152.ffzw.link/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 182
content-type: application/x-javascript; charset=utf-8
server: Kestrel
access-control-allow-headers: *
access-control-allow-origin: *
content-encoding: br
last-modified: Sun, 19 Nov 2023 19:10:57 GMT
x-eventid: 655e993096a14ce8862e0ee1d79fd95c
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
x-as-instrumentationoptions: AppServerLoggingMaster=1
x-as-machinename: DUBEEAP0000E0B8
x-as-suppresssetcookie: 1
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":0.5}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingrms"}]}
cache-control: public, max-age=116160
expires: Tue, 28 Nov 2023 00:12:29 GMT
date: Sun, 26 Nov 2023 15:56:29 GMT
quic-version: 0x00000001
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.154f2417.1701014189.63efab89
timing-allow-origin: *
ua152.ffzw.link/fd/ls/l?IG=7C73DE283EAE42229B89933196E76768&CID=0E02A7C1FED666F8226FB414FFF667B5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.MiniTP%22,%22FID%22:%22CI%22,%22Name%22:%22MiniTp%22,%22Text%22:%22show%22}]
200 OK 0 B URL GET HTTP/1.1 ua152.ffzw.link/fd/ls/l?IG=7C73DE283EAE42229B89933196E76768&CID=0E02A7C1FED666F8226FB414FFF667B5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.MiniTP%22,%22FID%22:%22CI%22,%22Name%22:%22MiniTp%22,%22Text%22:%22show%22}]
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /fd/ls/l?IG=7C73DE283EAE42229B89933196E76768&CID=0E02A7C1FED666F8226FB414FFF667B5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.MiniTP%22,%22FID%22:%22CI%22,%22Name%22:%22MiniTp%22,%22Text%22:%22show%22}] HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:29 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
X-Cache: CONFIG_NOCACHE
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-MSEdge-Ref: Ref A: 79E019DEB7134E419AB98F5AF54BF3BF Ref B: SLAEDGE1918 Ref C: 2023-11-26T15:56:29Z
ua152.ffzw.link/geolocation/write?isDevLoc=false&lat=59,93682098388672&lon=10,907066345214844&dispName=%25E5%25A5%25A5%25E6%2596%25AF%25E9%2599%2586%25EF%25BC%258C%25E5%25A5%25A5%25E6%2596%25AF%25E9%2599%2586&isEff=1&effLocType=1&clientsid=undefined
200 OK 0 B URL GET HTTP/1.1 ua152.ffzw.link/geolocation/write?isDevLoc=false&lat=59,93682098388672&lon=10,907066345214844&dispName=%25E5%25A5%25A5%25E6%2596%25AF%25E9%2599%2586%25EF%25BC%258C%25E5%25A5%25A5%25E6%2596%25AF%25E9%2599%2586&isEff=1&effLocType=1&clientsid=undefined
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /geolocation/write?isDevLoc=false&lat=59,93682098388672&lon=10,907066345214844&dispName=%25E5%25A5%25A5%25E6%2596%25AF%25E9%2599%2586%25EF%25BC%258C%25E5%25A5%25A5%25E6%2596%25AF%25E9%2599%2586&isEff=1&effLocType=1&clientsid=undefined HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:29 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: private
P3P: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
Set-Cookie: MUID=0E02A7C1FED666F8226FB414FFF667B5; domain=.bing.com; expires=Fri, 20-Dec-2024 15:56:29 GMT; path=/; secure; SameSite=None
_EDGE_S=SID=2B3BD1845B816CA502BFC2515A946DF1; domain=.bing.com; path=/; HttpOnly
MUIDB=0E02A7C1FED666F8226FB414FFF667B5; expires=Fri, 20-Dec-2024 15:56:29 GMT; path=/; HttpOnly
SRCHD=AF=NOFORM; domain=.bing.com; expires=Fri, 20-Dec-2024 15:56:29 GMT; path=/; secure; SameSite=None
SRCHUID=V=2&GUID=5B9F7D7F539A454189ADCA11A077FE53&dmnchg=1; domain=.bing.com; expires=Fri, 20-Dec-2024 15:56:29 GMT; path=/; secure; SameSite=None
SRCHUSR=DOB=20231126; domain=.bing.com; expires=Fri, 20-Dec-2024 15:56:29 GMT; path=/; secure; SameSite=None
SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0&SRCHLANG=zh-Hans; domain=.bing.com; expires=Fri, 20-Dec-2024 15:56:29 GMT; path=/; secure; SameSite=None
_SS=SID=2B3BD1845B816CA502BFC2515A946DF1; domain=.bing.com; path=/; secure; SameSite=None
X-EventID: 65636aad56f34133bdd83cd13654ab5b
UserAgentReductionOptOut: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
X-Cache: CONFIG_NOCACHE
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-MSEdge-Ref: Ref A: F1B78B3F11744571BE62BD3FA8E0DDEF Ref B: SLAEDGE1416 Ref C: 2023-11-26T15:56:29Z
ua152.ffzw.link/rp/fnh6u82JKXX7QPoqc8lSG36VTPI.js
200 OK 7.5 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/fnh6u82JKXX7QPoqc8lSG36VTPI.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (7471), with no line terminators
Hash 633fba98f5592ed7e3be6109eb9edbab
7e787abbcd892975fb40fa2a73c9521b7e954cf2
1a5a52a6282152c5b718bd9a82bba0137e1219322a9620f8f45514a7c78189d0
GET /rp/fnh6u82JKXX7QPoqc8lSG36VTPI.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:29 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 7471
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: Yz+6mPVZLtfjvmEJ657bqw==
Last-Modified: Fri, 01 Sep 2023 22:21:24 GMT
ETag: 0x8DBAB39C7311C82
X-Cache: TCP_HIT
x-ms-request-id: 57a2624b-b01e-0033-6a27-1cf19a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: CDC5631E5AB845E99E872E085812B271 Ref B: SEL20EDGE0412 Ref C: 2023-11-23T10:06:08Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 5B856A980EF94F5A83593DFD7D74B884 Ref B: SLAEDGE1716 Ref C: 2023-11-26T15:56:29Z
ua152.ffzw.link/rp/rfwivDBRwX561Waug8h7nAI1UzM.js
200 OK 821 B URL GET HTTP/1.1 ua152.ffzw.link/rp/rfwivDBRwX561Waug8h7nAI1UzM.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (821), with no line terminators
Hash dadded83a18ffea03ed011c369ec5168
adfc22bc3051c17e7ad566ae83c87b9c02355333
526101adc839075396f6ddec830ebe53a065cddbb143135a9bca0c586249ff72
GET /rp/rfwivDBRwX561Waug8h7nAI1UzM.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:29 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 821
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: 2t3tg6GP/qA+0BHDaexRaA==
Last-Modified: Fri, 03 Feb 2023 09:53:52 GMT
ETag: 0x8DB05CC8E4ABD4B
X-Cache: TCP_HIT
x-ms-request-id: 463476f9-601e-0057-2331-1c413a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 73F90876D2F442F68AD1A91EA705E452 Ref B: SEL20EDGE0305 Ref C: 2023-11-22T03:56:03Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: C510469110FF456E8CA649EF40D10906 Ref B: SLAEDGE1820 Ref C: 2023-11-26T15:56:29Z
ua152.ffzw.link/rp/XcS7FVvrNVdVx4-g2ZHEVpZJd5Q.js
13 kB URL ua152.ffzw.link/rp/XcS7FVvrNVdVx4-g2ZHEVpZJd5Q.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (10033), with CRLF line terminators
Hash 3e1cd65b12888a023f899069eb6fd830
5dc4bb155beb355755c78fa0d991c45696497794
b8bb4d94b0fcfeceae541a257dea9bc8f598c2e008beb857274607868ba3fb10
GET /rp/XcS7FVvrNVdVx4-g2ZHEVpZJd5Q.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:29 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 12933
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: PhzWWxKIigI/iZBp62/YMA==
Last-Modified: Wed, 03 Nov 2021 01:12:29 GMT
ETag: 0x8D99E67017CA9C1
X-Cache: TCP_HIT
x-ms-request-id: f07c81de-b01e-001a-3217-1c87d8000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: EB03E1E3303A4DB7A69248130AB9BC4F Ref B: SEL20EDGE0414 Ref C: 2023-11-23T09:31:17Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: A4EE34AD6D6E4B9C8F8F9462286D9A48 Ref B: SLAEDGE1614 Ref C: 2023-11-26T15:56:29Z
ua152.ffzw.link/rp/ZT02jv3UmMr2Vnfh1U8D3RiwJrU.js
200 OK 22 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/ZT02jv3UmMr2Vnfh1U8D3RiwJrU.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (21819)
Hash 30280c218d3caaf6b04ec8c6f906e190
653d368efdd498caf65677e1d54f03dd18b026b5
d313c6fff97701cc24db9d84c8b0643ca7a82a01c0868517e6e543779985c46e
GET /rp/ZT02jv3UmMr2Vnfh1U8D3RiwJrU.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:29 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 21850
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: MCgMIY08qvawTsjG+QbhkA==
Last-Modified: Wed, 28 Jun 2023 05:06:24 GMT
ETag: 0x8DB77956B8DC168
X-Cache: TCP_HIT
x-ms-request-id: e7d6e526-e01e-0002-0600-1faa4d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 1EF9C50F6CE04FF28751E8667697767A Ref B: SEL20EDGE0413 Ref C: 2023-11-25T04:07:25Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: DA30DDD91555431C8D727A5446C789F4 Ref B: SLAEDGE1709 Ref C: 2023-11-26T15:56:29Z
ua152.ffzw.link/rp/_cTVIwHRhwQtCi8TbO7ywAXcu4s.js
200 OK 824 B URL GET HTTP/1.1 ua152.ffzw.link/rp/_cTVIwHRhwQtCi8TbO7ywAXcu4s.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (824), with no line terminators
Hash 3ff8eecb7a6996c1056bbe9d4dde50b4
fdc4d52301d187042d0a2f136ceef2c005dcbb8b
01b479f35b53d8078baca650bdd8b926638d8daaa6eb4a9059e232dbd984f163
GET /rp/_cTVIwHRhwQtCi8TbO7ywAXcu4s.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:29 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 824
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: P/juy3pplsEFa76dTd5QtA==
Last-Modified: Mon, 20 Sep 2021 06:08:50 GMT
ETag: 0x8D97BFD1DD1AC32
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: d493614d-c01e-0015-2c05-206a2e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 2F0E039C710645049F05F95FCB70E52C Ref B: SEL20EDGE0605 Ref C: 2023-11-26T15:56:29Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: FC3C58D118834B76A86D3EF64436C6BD Ref B: SLAEDGE2013 Ref C: 2023-11-26T15:56:29Z
ua152.ffzw.link/rp/6I8DMgiMXPa7ofFW5IcWMP-3id8.js
200 OK 88 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/6I8DMgiMXPa7ofFW5IcWMP-3id8.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash ef0acf6f34714d07570fd4186cce0d97
e88f0332088c5cf6bba1f156e4871630ffb789df
576a6eb46444c8b9053eaa72dd5e9ed37a2ae28dc2a061ff597a5fc77ff10e44
GET /rp/6I8DMgiMXPa7ofFW5IcWMP-3id8.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:29 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 87815
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: 7wrPbzRxTQdXD9QYbM4Nlw==
Last-Modified: Sun, 19 Nov 2023 17:20:22 GMT
ETag: 0x8DBE923CFD0AFB6
X-Cache: TCP_HIT
x-ms-request-id: ec85a543-001e-006e-4671-1f019e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 7117F92AC0EF4D4A80B24C1A0FEDD87F Ref B: SEL20EDGE0411 Ref C: 2023-11-26T15:56:09Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: E585C0C105D441908F957B958DBE0654 Ref B: SLAEDGE2010 Ref C: 2023-11-26T15:56:29Z
ua152.ffzw.link/rp/fEzca4bKO4pRulhVlOoat7eLgmU.js
200 OK 1.3 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/fEzca4bKO4pRulhVlOoat7eLgmU.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (1274), with no line terminators
Hash a969230a51dba5ab5adf5877bcc28cfa
7c4cdc6b86ca3b8a51ba585594ea1ab7b78b8265
8e572950cbda0558f7b9563ce4f5017e06bc9c262cf487e33927a948f8d78f7f
GET /rp/fEzca4bKO4pRulhVlOoat7eLgmU.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:29 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 1274
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: qWkjClHbpata31h3vMKM+g==
Last-Modified: Wed, 23 Feb 2022 18:00:23 GMT
ETag: 0x8D9F6F65CF753D6
X-Cache: TCP_HIT
x-ms-request-id: 8ec5b2ac-a01e-000e-3c0e-1c44bc000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 1350125A212349F3B444CA159763640C Ref B: SEL20EDGE0207 Ref C: 2023-11-22T22:57:50Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: B1ED713739B64CB888C665274560F67C Ref B: SLAEDGE1019 Ref C: 2023-11-26T15:56:29Z
ua152.ffzw.link/rp/_o7n0RDT6F_-98apjB-NNksFbDE.js
200 OK 4.7 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/_o7n0RDT6F_-98apjB-NNksFbDE.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (4725), with no line terminators
Hash 8320f02c3c5a4e6c15115f0fae3723b9
fe8ee7d110d3e85ffef7c6a98c1f8d364b056c31
0eddd22ddece1e7b126fdcb262c8b29260ff8f903371595095cffdd26f5873bf
GET /rp/_o7n0RDT6F_-98apjB-NNksFbDE.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:29 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 4725
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: gyDwLDxaTmwVEV8PrjcjuQ==
Last-Modified: Sat, 18 Nov 2023 04:40:22 GMT
ETag: 0x8DBE7F07A19F297
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: 73748ddb-601e-003a-7116-1eeb14000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 747C1F34DC8D47398ED74960260F7D37 Ref B: SEL20EDGE0314 Ref C: 2023-11-26T15:56:29Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 677B0F55547C47E18AA807D9B56403B6 Ref B: SLAEDGE1613 Ref C: 2023-11-26T15:56:29Z
ua152.ffzw.link/rp/No5xIZMVh9KdmI4bjLD9p4Xl0Ys.js
200 OK 1.6 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/No5xIZMVh9KdmI4bjLD9p4Xl0Ys.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type Unicode text, UTF-8 text, with very long lines (1587), with no line terminators
Hash cb027ba6eb6dd3f033c02183b9423995
368e7121931587d29d988e1b8cb0fda785e5d18b
04a007926a68bb33e36202eb27f53882af7fd009c1ec3ad7177fba380a5fb96f
GET /rp/No5xIZMVh9KdmI4bjLD9p4Xl0Ys.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:29 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 1589
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: ywJ7putt0/AzwCGDuUI5lQ==
Last-Modified: Wed, 30 Jun 2021 06:36:19 GMT
ETag: 0x8D93B915EB5C971
X-Cache: TCP_HIT
x-ms-request-id: 23ee16b8-001e-0065-5744-2019ea000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 5853DA9E30AD48A28F6B8F8915115638 Ref B: SEL20EDGE0220 Ref C: 2023-11-26T15:56:09Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 93C6223B53164D20A78F2E45406294DF Ref B: SLAEDGE2006 Ref C: 2023-11-26T15:56:29Z
ua152.ffzw.link/rp/MWgq_OYohQuMsx-qjpxMXsnruVc.js
200 OK 226 B URL GET HTTP/1.1 ua152.ffzw.link/rp/MWgq_OYohQuMsx-qjpxMXsnruVc.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with no line terminators
Hash a5363c37b617d36dfd6d25bfb89ca56b
31682afce628850b8cb31faa8e9c4c5ec9ebb957
8b4d85985e62c264c03c88b31e68dbabdcc9bd42f40032a43800902261ff373f
GET /rp/MWgq_OYohQuMsx-qjpxMXsnruVc.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:29 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 226
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: pTY8N7YX0239bSW/uJylaw==
Last-Modified: Fri, 28 May 2021 21:50:01 GMT
ETag: 0x8D922228B6B1D40
X-Cache: TCP_HIT
x-ms-request-id: 0ccdf738-101e-0058-751d-20accc000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: DA83969E54124848B1ACDCEEEEFC88B9 Ref B: SEL20EDGE0606 Ref C: 2023-11-26T15:56:09Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: DA44F33F41844A909D6588DC8776066A Ref B: SLAEDGE1915 Ref C: 2023-11-26T15:56:29Z
ua152.ffzw.link/rp/KjCBfzuZ475zX0-Fu2bdXt9qifQ.js
200 OK 576 B URL GET HTTP/1.1 ua152.ffzw.link/rp/KjCBfzuZ475zX0-Fu2bdXt9qifQ.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (576), with no line terminators
Hash f5712e664873fde8ee9044f693cd2db7
2a30817f3b99e3be735f4f85bb66dd5edf6a89f4
1562669ad323019cda49a6cf3bddece1672282e7275f9d963031b30ea845ffb2
GET /rp/KjCBfzuZ475zX0-Fu2bdXt9qifQ.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:30 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 576
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: 9XEuZkhz/ejukET2k80ttw==
Last-Modified: Fri, 28 May 2021 21:43:54 GMT
ETag: 0x8D92221B0A13708
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: e441bd39-f01e-0059-4f0d-20ad31000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 8A2E93F35CFF47358E6C2831A0D2ECA8 Ref B: SEL20EDGE0421 Ref C: 2023-11-26T15:56:30Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: F67F4503B8744E89B84804262AEAEE65 Ref B: SLAEDGE1017 Ref C: 2023-11-26T15:56:29Z
ua152.ffzw.link/rp/iWHKha2Cu3AUNv_GRkKDPPuv8wM.js
511 B URL GET ua152.ffzw.link/rp/iWHKha2Cu3AUNv_GRkKDPPuv8wM.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (511), with no line terminators
Hash d6741608ba48e400a406aca7f3464765
8961ca85ad82bb701436ffc64642833cfbaff303
b1db1d8c0e5316d2c8a14e778b7220ac75adae5333a6d58ba7fd07f4e6eaa83c
GET /rp/iWHKha2Cu3AUNv_GRkKDPPuv8wM.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:30 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 511
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: 1nQWCLpI5ACkBqyn80ZHZQ==
Last-Modified: Fri, 28 May 2021 23:26:45 GMT
ETag: 0x8D922300EC81DE6
X-Cache: TCP_HIT
x-ms-request-id: 8d5db8b2-401e-0040-7f3b-1c8159000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: DC0EDBCEB23745AC99C9F66611651218 Ref B: SEL20EDGE0613 Ref C: 2023-11-23T02:29:59Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 85E0CE747E1E4BE38FBB21E43239669A Ref B: SLAEDGE1408 Ref C: 2023-11-26T15:56:30Z
ua152.ffzw.link/rp/YFZQyvbBpI7MdYf4CR9fU8RWUxo.js
126 kB URL ua152.ffzw.link/rp/YFZQyvbBpI7MdYf4CR9fU8RWUxo.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 126 kB (126514 bytes)
Hash 811ecfecce1449b757b9eae42c5f3646
605650caf6c1a48ecc7587f8091f5f53c456531a
5e692fae95e98541e016c15f4068ba7ba7f912d7ca24ea593ad5b1b2e59b70ba
GET /rp/YFZQyvbBpI7MdYf4CR9fU8RWUxo.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:29 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 126514
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: gR7P7M4USbdXuerkLF82Rg==
Last-Modified: Fri, 17 Nov 2023 03:26:20 GMT
ETag: 0x8DBE71CF7D82705
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: c62da30d-501e-0010-5d21-1d9e51000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 7B774581AF624E1FAED78CFA78EE50FC Ref B: SEL20EDGE0420 Ref C: 2023-11-26T15:56:29Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 80D654F226C143418BED28E9AEAF7CB8 Ref B: SLAEDGE1722 Ref C: 2023-11-26T15:56:29Z
ua152.ffzw.link/rp/kmQOPQp8vl1HvI8PfMk2LoJInSM.js
391 B URL ua152.ffzw.link/rp/kmQOPQp8vl1HvI8PfMk2LoJInSM.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (391), with no line terminators
Hash 55ec2297c0cf262c5fa9332f97c1b77a
92640e3d0a7cbe5d47bc8f0f7cc9362e82489d23
342c3dd52a8a456f53093671d8d91f7af5b3299d72d60edb28e4f506368c6467
GET /rp/kmQOPQp8vl1HvI8PfMk2LoJInSM.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:30 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 391
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: Vewil8DPJixfqTMvl8G3eg==
Last-Modified: Fri, 28 May 2021 23:35:02 GMT
ETag: 0x8D9223137384E76
X-Cache: TCP_HIT
x-ms-request-id: f47ca7c3-701e-002e-330e-1c2870000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: ACEBA1C47EDA4393B340C3EC50625F41 Ref B: SEL20EDGE0608 Ref C: 2023-11-22T16:56:41Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: DE982B13F18B4E029224898254E432B5 Ref B: SLAEDGE1811 Ref C: 2023-11-26T15:56:30Z
ua152.ffzw.link/rp/VMYMrXeSZyOXW5LQn-ede-_1jZk.js
924 B URL ua152.ffzw.link/rp/VMYMrXeSZyOXW5LQn-ede-_1jZk.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (924), with no line terminators
Hash 47442e8d5838baaa640a856f98e40dc6
54c60cad77926723975b92d09fe79d7beff58d99
15ed1579bccf1571a7d8b888226e9fe455aca5628684419d1a18f7cda68af89e
GET /rp/VMYMrXeSZyOXW5LQn-ede-_1jZk.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:30 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 924
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: R0QujVg4uqpkCoVvmOQNxg==
Last-Modified: Mon, 11 Jul 2022 23:07:39 GMT
ETag: 0x8DA63922724C366
X-Cache: TCP_HIT
x-ms-request-id: 479ffc28-601e-0013-092a-1c9d56000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 5F20E21DE8A6486DBCAA388D4B9ABFA2 Ref B: SEL20EDGE0214 Ref C: 2023-11-24T21:54:57Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: CE5D0138186B4357901C87A5BBD117B7 Ref B: SLAEDGE1615 Ref C: 2023-11-26T15:56:30Z
ua152.ffzw.link/rp/zeCxMEtVi23nUD1VnJIBRkRzb4g.js
200 OK 3.4 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/zeCxMEtVi23nUD1VnJIBRkRzb4g.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (3363), with no line terminators
Hash fabb77c7ae3fd2271f5909155fb490e5
cde0b1304b558b6de7503d559c92014644736f88
e482bf4baaa167335f326b9b4f4b83e806cc21fb428b988a4932c806d918771c
GET /rp/zeCxMEtVi23nUD1VnJIBRkRzb4g.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:30 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 3363
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: +rt3x64/0icfWQkVX7SQ5Q==
Last-Modified: Wed, 21 Jun 2023 19:07:57 GMT
ETag: 0x8DB728AD2D1EA34
X-Cache: TCP_HIT
x-ms-request-id: a363b692-e01e-0009-5d0d-20b239000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 6BB6CCCBCBE4403D99F4DEFEA515EC90 Ref B: SEL20EDGE0518 Ref C: 2023-11-26T06:54:41Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 9ED7B3DE338941C1A7ED0465C88A828E Ref B: SLAEDGE1311 Ref C: 2023-11-26T15:56:30Z
ua152.ffzw.link/rp/QtZcquNOunoFE0KySXJmXmH6auI.js
200 OK 2.5 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/QtZcquNOunoFE0KySXJmXmH6auI.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (2524), with no line terminators
Hash 17cdab99027114dbcbd9d573c5b7a8a9
42d65caae34eba7a051342b24972665e61fa6ae2
5ff6b0f0620aa14559d5d869dbeb96febc4014051fa7d5df20223b10b35312de
GET /rp/QtZcquNOunoFE0KySXJmXmH6auI.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:30 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 2524
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: F82rmQJxFNvL2dVzxbeoqQ==
Last-Modified: Thu, 29 Jul 2021 19:01:00 GMT
ETag: 0x8D952C334B419A2
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: 635aaa8a-b01e-0011-3e03-209fac000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 4F6D9138FA0642399F75B16AECBF882B Ref B: SEL20EDGE0512 Ref C: 2023-11-26T15:56:30Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 539E001A4CDB4FC6895B5DE117510421 Ref B: SLAEDGE1818 Ref C: 2023-11-26T15:56:30Z
ua152.ffzw.link/rp/FZKT2ZNGon4gVKgSRRkJ3oMsoNE.js
200 OK 1.1 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/FZKT2ZNGon4gVKgSRRkJ3oMsoNE.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (1051), with no line terminators
Hash f76d06d7669e399dc0788bc5473562bb
159293d99346a27e2054a812451909de832ca0d1
23f0357ae77648ee38f39960e56507d87f8d690c48e759a0e054f6e691c843ec
GET /rp/FZKT2ZNGon4gVKgSRRkJ3oMsoNE.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:30 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 1051
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: 920G12aeOZ3AeIvFRzViuw==
Last-Modified: Tue, 14 Jun 2022 17:04:07 GMT
ETag: 0x8DA4E27E4BD1DA1
X-Cache: TCP_HIT
x-ms-request-id: 59d5b466-601e-005c-5515-1c594e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: EA538C4089104C02BF5BBD73C0D8A07B Ref B: SEL20EDGE0419 Ref C: 2023-11-22T00:48:35Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 316EE914B52943129E8DF8B4059913D1 Ref B: SLAEDGE1309 Ref C: 2023-11-26T15:56:30Z
ua152.ffzw.link/rp/eXfvbnlHE4C4eHtbcUjp_wp0ogM.js
2.0 kB URL ua152.ffzw.link/rp/eXfvbnlHE4C4eHtbcUjp_wp0ogM.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (2009), with no line terminators
Hash 601102ca711e0b4140af45c1657db13f
7977ef6e79471380b8787b5b7148e9ff0a74a203
e47318cd9d80769ac59e732347fb4f574cd4eea9e2c787f3a996805265069001
GET /rp/eXfvbnlHE4C4eHtbcUjp_wp0ogM.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:30 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 2009
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: YBECynEeC0FAr0XBZX2xPw==
Last-Modified: Fri, 06 Oct 2023 19:35:24 GMT
ETag: 0x8DBC6A362F109A8
X-Cache: TCP_HIT
x-ms-request-id: 26e0f09a-f01e-001d-5a0f-1c715d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 3576AD539BED4CBF9950B7F6E76BDE67 Ref B: SEL20EDGE0313 Ref C: 2023-11-22T03:20:20Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 7AE5660942BA457682A1D31617C89276 Ref B: SLAEDGE1021 Ref C: 2023-11-26T15:56:30Z
ua152.ffzw.link/rp/bVDj-v45uX-PoSRsOWdRtQ3qRx4.js
200 OK 28 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/bVDj-v45uX-PoSRsOWdRtQ3qRx4.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (28425), with no line terminators
Hash fe527822ec006ea4236bf1104d89d9c9
6d50e3fafe39b97f8fa1246c396751b50dea471e
7906cd35b4b7c2b3f3993c507247e9a4a63a7e645845988220267a803ba54970
GET /rp/bVDj-v45uX-PoSRsOWdRtQ3qRx4.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:30 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 28425
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: /lJ4IuwAbqQja/EQTYnZyQ==
Last-Modified: Tue, 24 Oct 2023 21:10:44 GMT
ETag: 0x8DBD4D5AF8DCFDF
X-Cache: TCP_HIT
x-ms-request-id: 489c59ac-c01e-005a-47d2-1eae36000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: FF646299BBC74CABAB01277728C3AE03 Ref B: SEL20EDGE0410 Ref C: 2023-11-25T19:30:02Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 4317C3B2EDFC48AAA40C103468DDFBC6 Ref B: SLAEDGE2010 Ref C: 2023-11-26T15:56:30Z
ua152.ffzw.link/rp/t6Bkpkzq5ckAnvfW2PY7kNOTPJ0.js
200 OK 242 B URL GET HTTP/1.1 ua152.ffzw.link/rp/t6Bkpkzq5ckAnvfW2PY7kNOTPJ0.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with no line terminators
Hash 6c2c6db3832d53062d303cdff5e2bd30
b7a064a64ceae5c9009ef7d6d8f63b90d3933c9d
06b77ee16a2cd34acd210b4f2b6e423762ea8874bb26ae5a37db9dd01a00ff70
GET /rp/t6Bkpkzq5ckAnvfW2PY7kNOTPJ0.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:30 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 242
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: bCxts4MtUwYtMDzf9eK9MA==
Last-Modified: Tue, 06 Jun 2023 10:33:33 GMT
ETag: 0x8DB66797A7D7A7C
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: 838be537-001e-004c-2305-206fa8000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 268A38B975484F2CBFF3DBB57D26F364 Ref B: SEL20EDGE0321 Ref C: 2023-11-26T15:56:30Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 34D6CAD90EDD442DB648151C57EC565D Ref B: SLAEDGE1408 Ref C: 2023-11-26T15:56:30Z
ua152.ffzw.link/rp/FWhkflrNeDUyHYRwJN8__fYp5Uc.js
200 OK 375 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/FWhkflrNeDUyHYRwJN8__fYp5Uc.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 375 kB (374789 bytes)
Hash e6940bda64389c1fa2ae8e1727abe131
1568647e5acd7835321d847024df3ffdf629e547
eef5dd06cf622fb43ea42872bc616d956de98a3335861af84d35dbaf2ab32699
GET /rp/FWhkflrNeDUyHYRwJN8__fYp5Uc.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:29 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 374789
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: 5pQL2mQ4nB+iro4XJ6vhMQ==
Last-Modified: Thu, 06 Apr 2023 01:33:55 GMT
ETag: 0x8DB363EFC44FE69
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: bd7521bb-201e-005b-46f6-1fafcb000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 3B10427A8C7A481E9760279A4035D53D Ref B: SEL20EDGE0511 Ref C: 2023-11-26T15:56:29Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 6443D635D41B48C89DEBFCE2E89DD9B9 Ref B: SLAEDGE1916 Ref C: 2023-11-26T15:56:29Z
ua152.ffzw.link/rp/pmOe4agH9kAdm8fG_9-Sre5Xldw.js
200 OK 3.0 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/pmOe4agH9kAdm8fG_9-Sre5Xldw.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (2959), with no line terminators
Hash 5be8cec0edfc63051d407fce6a10b768
a6639ee1a807f6401d9bc7c6ffdf92adee5795dc
52424c5c5f2ab509fd676a76e58f3bd502dbe5b42846001990e4806e1410741d
GET /rp/pmOe4agH9kAdm8fG_9-Sre5Xldw.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:30 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 2959
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: W+jOwO38YwUdQH/OahC3aA==
Last-Modified: Wed, 01 Nov 2023 17:11:10 GMT
ETag: 0x8DBDAFD8B9D8AE8
X-Cache: TCP_HIT
x-ms-request-id: 73f1c33c-e01e-0002-6f0e-1caa4d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 209BF0C243C042BCAF064ACC99DBD41E Ref B: SEL20EDGE0520 Ref C: 2023-11-24T11:49:33Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 2BFE8FFB6B614F21B0E500D87BFFCBDA Ref B: SLAEDGE1408 Ref C: 2023-11-26T15:56:30Z
ua152.ffzw.link/rp/WzXD9EMxzJH8S6t9LXEMkOU4vIs.js
229 B URL ua152.ffzw.link/rp/WzXD9EMxzJH8S6t9LXEMkOU4vIs.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with no line terminators
Hash eee26aac05916e789b25e56157b2c712
5b35c3f44331cc91fc4bab7d2d710c90e538bc8b
249bcdcaa655bdee9d61edff9d93544fa343e0c2b4dca4ec4264af2cb00216c2
GET /rp/WzXD9EMxzJH8S6t9LXEMkOU4vIs.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:30 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 229
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: 7uJqrAWRbnibJeVhV7LHEg==
Last-Modified: Fri, 28 May 2021 22:26:05 GMT
ETag: 0x8D9222795271D1D
X-Cache: TCP_HIT
x-ms-request-id: 551a70c2-001e-0047-23cb-1d77dc000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 8134C1843AEF4DB1A59535B381AAEBE7 Ref B: SEL20EDGE0521 Ref C: 2023-11-24T12:31:33Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 13376DEED606471983B37BA474C23C5F Ref B: SLAEDGE2007 Ref C: 2023-11-26T15:56:30Z
ua152.ffzw.link/rp/ishJygyEUAqCT8_WiLb5ZbiszEw.js
200 OK 1.4 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/ishJygyEUAqCT8_WiLb5ZbiszEw.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (1434), with no line terminators
Hash d42baf2a964c88aaa1bb892e1b26d09c
8ac849ca0c84500a824fcfd688b6f965b8accc4c
e3a15dab8cc5adbd2cfa1a162bf06583da6fb7be3831323d819cd881bfb0672c
GET /rp/ishJygyEUAqCT8_WiLb5ZbiszEw.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:30 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 1434
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: 1CuvKpZMiKqhu4kuGybQnA==
Last-Modified: Thu, 09 Nov 2023 08:37:42 GMT
ETag: 0x8DBE0FF2402F71D
X-Cache: TCP_HIT
x-ms-request-id: bc4d3092-e01e-0020-7913-1cc47b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 7F26CB3FCDB84C1DA9660D876F9FE820 Ref B: SEL20EDGE0419 Ref C: 2023-11-23T11:29:33Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 235F7A1D46B24E369BAC3056CD58B4A5 Ref B: SLAEDGE1621 Ref C: 2023-11-26T15:56:30Z
ua152.ffzw.link/rp/2NNJBOURscmq4VZboQzNBFyUAzM.js
888 B URL ua152.ffzw.link/rp/2NNJBOURscmq4VZboQzNBFyUAzM.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (888), with no line terminators
Hash f1cf1909716ce3da53172898bb780024
d8d34904e511b1c9aae1565ba10ccd045c940333
9abac0cbfa6f89106b66cd4f698ead5ccbf615ecf8cd7e9e88567a7c33cfec01
GET /rp/2NNJBOURscmq4VZboQzNBFyUAzM.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:30 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 888
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: 8c8ZCXFs49pTFyiYu3gAJA==
Last-Modified: Fri, 11 Aug 2023 12:51:11 GMT
ETag: 0x8DB9A69A3B502B2
X-Cache: TCP_HIT
x-ms-request-id: e6bcfa18-a01e-0041-0585-1f80a4000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 405A32C3941D4D619DC4CEA2535A49CB Ref B: SEL20EDGE0618 Ref C: 2023-11-26T04:58:16Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 17EF68A8362143BAAD27902A3778BC10 Ref B: SLAEDGE1315 Ref C: 2023-11-26T15:56:30Z
ua152.ffzw.link/rp/2rPKJux6hCbwNBE6-iEj7fqjKnY.js
200 OK 289 B URL GET HTTP/1.1 ua152.ffzw.link/rp/2rPKJux6hCbwNBE6-iEj7fqjKnY.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with no line terminators
Hash 9085e17b6172d9fc7b7373762c3d6e74
dab3ca26ec7a8426f034113afa2123edfaa32a76
586d8f94486a8116af00c80a255cba96c5d994c5864e47deac5a7f1ae1e24b0d
GET /rp/2rPKJux6hCbwNBE6-iEj7fqjKnY.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:30 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 289
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: kIXhe2Fy2fx7c3N2LD1udA==
Last-Modified: Sat, 28 May 2022 01:13:00 GMT
ETag: 0x8DA404734F81FF3
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: 9965313a-401e-0040-440e-1d8159000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 8C521C5DE1DC4101ABAB49796E4C3A41 Ref B: SEL20EDGE0221 Ref C: 2023-11-26T15:56:30Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: E71B32ABFE5349718010FF59245B8F4A Ref B: SLAEDGE1317 Ref C: 2023-11-26T15:56:30Z
ua152.ffzw.link/rp/chRhkXPE7Aab4f8A3WEJL9KYGvA.js
200 OK 667 B URL GET HTTP/1.1 ua152.ffzw.link/rp/chRhkXPE7Aab4f8A3WEJL9KYGvA.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (667), with no line terminators
Hash 2ab12bf4a9e00a1f96849ebb31e03d48
7214619173c4ec069be1ff00dd61092fd2981af0
f8b5acf4da28e0617f1c81093192d044bd5a6cc2a2e0c77677f859adcf3430ac
GET /rp/chRhkXPE7Aab4f8A3WEJL9KYGvA.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:30 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 667
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: KrEr9KngCh+WhJ67MeA9SA==
Last-Modified: Fri, 28 May 2021 22:56:59 GMT
ETag: 0x8D9222BE66B7D84
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: 4082b733-f01e-0034-2b05-20071f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 9E335FADC3424A58BA4D3DD0AABBFCCA Ref B: SEL20EDGE0405 Ref C: 2023-11-26T15:56:30Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: B2E5E037F088415781CDCC5719C84A46 Ref B: SLAEDGE1216 Ref C: 2023-11-26T15:56:30Z
ua152.ffzw.link/rp/SF5GIPQzwCZ4vpjfcGuYgN0mq3Q.js
200 OK 899 B URL GET HTTP/1.1 ua152.ffzw.link/rp/SF5GIPQzwCZ4vpjfcGuYgN0mq3Q.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (899), with no line terminators
Hash 602cb27ca7ee88bd54c98b10e44cd175
485e4620f433c02678be98df706b9880dd26ab74
f1c39ee3528b8f6bb887150c10152cd3bbf849c4b305da9be3d4a92614e2f3f8
GET /rp/SF5GIPQzwCZ4vpjfcGuYgN0mq3Q.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:31 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 899
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: YCyyfKfuiL1UyYsQ5EzRdQ==
Last-Modified: Wed, 09 Aug 2023 15:29:42 GMT
ETag: 0x8DB98ED73CE1079
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: 882ca852-401e-0004-05d5-1d5d35000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 66327733CE5B41DB91CD4889AB79BBA4 Ref B: SEL20EDGE0517 Ref C: 2023-11-26T15:56:31Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 7A45DC91F6EF44E09C7E32FAF12D7EF7 Ref B: SLAEDGE1107 Ref C: 2023-11-26T15:56:31Z
ua152.ffzw.link/rp/9IaydF5GN9iBQi04x3gMBBYYFoo.js
674 B URL ua152.ffzw.link/rp/9IaydF5GN9iBQi04x3gMBBYYFoo.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (674), with no line terminators
Hash 8d078e26c28e9c85885f8a362cb80db9
f486b2745e4637d881422d38c7780c041618168a
0bf9f3ad9cdbbc4d37c8b9e22dd06cc26eea12a27ef6c0f95db6cbe930177461
GET /rp/9IaydF5GN9iBQi04x3gMBBYYFoo.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:31 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 674
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: jQeOJsKOnIWIX4o2LLgNuQ==
Last-Modified: Fri, 28 May 2021 21:05:27 GMT
ETag: 0x8D9221C51C45971
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: d0d5d4e1-d01e-004e-1ffd-1f6d52000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 44AA4709CABF46B6B9DFE03213646069 Ref B: SEL20EDGE0519 Ref C: 2023-11-26T15:56:31Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 3836AD655B7448879500F43F93F339DD Ref B: SLAEDGE1006 Ref C: 2023-11-26T15:56:31Z
ua152.ffzw.link/rp/pNapkjHZUfN9lRvYNW2dF2ZL9Ec.js
200 OK 838 B URL GET HTTP/1.1 ua152.ffzw.link/rp/pNapkjHZUfN9lRvYNW2dF2ZL9Ec.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (838), with no line terminators
Hash 8c8b189422c448709ea6bd43ee898afb
a4d6a99231d951f37d951bd8356d9d17664bf447
567506d6f20f55859e137fcbd98f9e1a678c0d51192ff186e16fd99d6d301cff
GET /rp/pNapkjHZUfN9lRvYNW2dF2ZL9Ec.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:31 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 838
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: jIsYlCLESHCepr1D7omK+w==
Last-Modified: Fri, 28 May 2021 23:51:12 GMT
ETag: 0x8D9223379A26BCA
X-Cache: TCP_HIT
x-ms-request-id: df18977f-201e-001f-6b0f-1c73a7000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: A9022A61DE9E4025A8141B114E2DF322 Ref B: SEL20EDGE0616 Ref C: 2023-11-24T01:47:00Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 764A8738738C4AD685070145F3D13BE5 Ref B: SLAEDGE1409 Ref C: 2023-11-26T15:56:31Z
ua152.ffzw.link/rp/Qyrq7lsQVC_DuFBUIAK3IoRAiQo.js
200 OK 300 B URL GET HTTP/1.1 ua152.ffzw.link/rp/Qyrq7lsQVC_DuFBUIAK3IoRAiQo.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with no line terminators
Hash b10af7333dcc67fc77973579d33a28e1
432aeaee5b10542fc3b850542002b7228440890a
d99b46c716faee91274a2d94869953fb78d312857cab5c1a61ea63d7ae90cc68
GET /rp/Qyrq7lsQVC_DuFBUIAK3IoRAiQo.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:31 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 300
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: sQr3Mz3MZ/x3lzV50zoo4Q==
Last-Modified: Fri, 28 May 2021 22:04:46 GMT
ETag: 0x8D922249B0EC2E2
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: 1686d745-301e-006d-210d-200299000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 383A2A5808D245B1950EA125B6FB000A Ref B: SEL20EDGE0210 Ref C: 2023-11-26T15:56:31Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 0EABC303C6314EFD9CB5CCC61B02988F Ref B: SLAEDGE1418 Ref C: 2023-11-26T15:56:31Z
ua152.ffzw.link/rp/0HRCvcj_qE_kjHTQBq15hJCVuxM.js
488 B URL ua152.ffzw.link/rp/0HRCvcj_qE_kjHTQBq15hJCVuxM.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (488), with no line terminators
Hash 829db0a34727a1f69687979044f4fbe5
d07442bdc8ffa84fe48c74d006ad79849095bb13
4261efdc61bb87524733b866f35a969717f3e910af30290cbfea349105d1bbae
GET /rp/0HRCvcj_qE_kjHTQBq15hJCVuxM.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:31 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 488
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: gp2wo0cnofaWh5eQRPT75Q==
Last-Modified: Fri, 10 Nov 2023 14:26:52 GMT
ETag: 0x8DBE1F915A8BC0B
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: 65c11e0a-d01e-0045-172f-207526000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 5160F92775B6417D9A6C1E96F738B73F Ref B: SEL20EDGE0608 Ref C: 2023-11-26T15:56:31Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: FB9D77D4F72D4FE5AAA71551C63BA690 Ref B: SLAEDGE2020 Ref C: 2023-11-26T15:56:31Z
ua152.ffzw.link/rp/Y5sPBQOMac_CGtVc6SuSxxubuLo.js
37 kB URL ua152.ffzw.link/rp/Y5sPBQOMac_CGtVc6SuSxxubuLo.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (37078), with no line terminators
Hash 3296f64a7a2bf91e144553e17654643b
639b0f05038c69cfc21ad55ce92b92c71b9bb8ba
4de9e2c37234da98c8be5f282084e5603918a287602df7f75af3f1bcf825781f
GET /rp/Y5sPBQOMac_CGtVc6SuSxxubuLo.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:31 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 37078
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: Mpb2Snor+R4URVPhdlRkOw==
Last-Modified: Fri, 21 Apr 2023 04:27:05 GMT
ETag: 0x8DB4220A9DE7A68
X-Cache: TCP_HIT
x-ms-request-id: 062b758c-501e-005f-7b30-205a49000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 699BCE72533747CBB3C62295A260C3D7 Ref B: SEL20EDGE0215 Ref C: 2023-11-26T14:38:19Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 09F70DE76A304EE0AFE40C557C53D8B3 Ref B: SLAEDGE1918 Ref C: 2023-11-26T15:56:31Z
ua152.ffzw.link/rp/UJNL4Px0vyhtlpZX62E1hVtOvyk.js
200 OK 1.8 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/UJNL4Px0vyhtlpZX62E1hVtOvyk.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (1772), with no line terminators
Hash b7bfa4b5bd91261544ec3af325fc959f
50934be0fc74bf286d969657eb6135855b4ebf29
4726966e38d630052ff80db65df3af7256a28c577397dcbab577827e5652f52b
GET /rp/UJNL4Px0vyhtlpZX62E1hVtOvyk.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:31 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 1772
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: t7+ktb2RJhVE7DrzJfyVnw==
Last-Modified: Fri, 28 May 2021 22:16:46 GMT
ETag: 0x8D9222648587423
X-Cache: TCP_HIT
x-ms-request-id: 16875c38-301e-006d-6e1b-200299000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: F196B1B64D8D4B1DB69B871442D9A413 Ref B: SEL20EDGE0308 Ref C: 2023-11-26T15:56:11Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 0AAE14C9D9564AA5AEAE627DA58936C7 Ref B: SLAEDGE2015 Ref C: 2023-11-26T15:56:31Z
ua152.ffzw.link/rp/-Skc06IUZ0oYb0voXNxlWms6Mfo.js
200 OK 77 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/-Skc06IUZ0oYb0voXNxlWms6Mfo.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (65188)
Hash 13b147a683af38608f9c22ee9d66a832
f9291cd3a214674a186f4be85cdc655a6b3a31fa
f0b2216568bb538a00ee14c13ad49ea15b1653044a219a698889610edcf9bf05
GET /rp/-Skc06IUZ0oYb0voXNxlWms6Mfo.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:31 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 77391
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: E7FHpoOvOGCPnCLunWaoMg==
Last-Modified: Fri, 26 May 2023 14:46:45 GMT
ETag: 0x8DB5DF8070F6C03
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: 2cb2ca8a-201e-0036-29ff-1f05e5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: D7C40E4D1181482C90D0D35C202DA920 Ref B: SEL20EDGE0218 Ref C: 2023-11-26T15:56:31Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 135227808E004F47B1F3F3D64613018B Ref B: SLAEDGE1518 Ref C: 2023-11-26T15:56:31Z
ua152.ffzw.link/rp/AuRjYmJS744WkYPMWwTd7dmVI58.js
252 B URL ua152.ffzw.link/rp/AuRjYmJS744WkYPMWwTd7dmVI58.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with no line terminators
Hash d7b1a8f127298855aff0611800b9d326
02e463626252ef8e169183cc5b04ddedd995239f
f6d3695568a8b593a69b86c68260e12d40c84a94f2d01c498fc2087fa5ac511b
GET /rp/AuRjYmJS744WkYPMWwTd7dmVI58.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:31 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 252
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: 17Go8ScpiFWv8GEYALnTJg==
Last-Modified: Fri, 10 Feb 2023 02:47:57 GMT
ETag: 0x8DB0B1137268555
X-Cache: TCP_HIT
x-ms-request-id: 3fa2a198-d01e-0045-7571-1e7526000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 21CDFD9C72F942B1B6CD616E515A950C Ref B: SEL20EDGE0220 Ref C: 2023-11-26T15:56:11Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 5ADB872DD58143BDA64A84EFD8B627B1 Ref B: SLAEDGE1011 Ref C: 2023-11-26T15:56:31Z
ua152.ffzw.link/rp/-kST3hIyBwlx40C3s_CznNpwIRM.js
13 kB URL ua152.ffzw.link/rp/-kST3hIyBwlx40C3s_CznNpwIRM.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (12560), with no line terminators
Hash 030f78629c21a06814f7cf67ea23d23a
fa4493de1232070971e340b7b3f0b39cda702113
cce95ad3efca6a67cdbc6d0d245cf851ee306eaf883fa10c841d868eaa7ae66d
GET /rp/-kST3hIyBwlx40C3s_CznNpwIRM.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:31 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 12560
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: Aw94YpwhoGgU989n6iPSOg==
Last-Modified: Thu, 09 Nov 2023 02:52:47 GMT
ETag: 0x8DBE0CEF49C9908
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: df60c424-301e-000b-0d29-20b0c3000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: D17A4093D9434391B7BFC9E720BE3713 Ref B: SEL20EDGE0408 Ref C: 2023-11-26T15:56:31Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: C2653A46FC1F473BA20ED67A4F939454 Ref B: SLAEDGE1814 Ref C: 2023-11-26T15:56:31Z
ua152.ffzw.link/rp/2d84erP495_WR3BudWQr9WV4Ev8.js
200 OK 18 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/2d84erP495_WR3BudWQr9WV4Ev8.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (17993), with no line terminators
Hash 68fa269c207010469880fe96162d464b
d9df387ab3f8f79fd647706e75642bf5657812ff
3ad8c1acffafcecc9f0a91c6b41a699409aa58cf12d6a39ac4bcb5169e9f5603
GET /rp/2d84erP495_WR3BudWQr9WV4Ev8.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:31 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 17993
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: aPomnCBwEEaYgP6WFi1GSw==
Last-Modified: Sat, 18 Nov 2023 03:17:41 GMT
ETag: 0x8DBE7E4ED0FB83E
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: ebf857b9-801e-003b-14de-1deae9000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: FB21F9557B9E4BD89E6EF3F380D47782 Ref B: SEL20EDGE0311 Ref C: 2023-11-26T15:56:31Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 993BEAD7B16644FC836CD8D93AA10A6E Ref B: SLAEDGE1510 Ref C: 2023-11-26T15:56:31Z
ua152.ffzw.link/rp/BmAb6YwXiTpGV3TxJ_xnxXYg1wI.js
200 OK 994 B URL GET HTTP/1.1 ua152.ffzw.link/rp/BmAb6YwXiTpGV3TxJ_xnxXYg1wI.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (994), with no line terminators
Hash 84217b7bd5a4553171ec41d20d27c459
06601be98c17893a465774f127fc67c57620d702
794129c3c6a3e39980638403ca15f9d84a588aa2ec48cb49843389ad2926e14e
GET /rp/BmAb6YwXiTpGV3TxJ_xnxXYg1wI.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:31 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 994
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: hCF7e9WkVTFx7EHSDSfEWQ==
Last-Modified: Tue, 24 Jan 2023 22:05:07 GMT
ETag: 0x8DAFE570DFC5EDC
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: c719eecf-601e-0031-7412-20f360000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: E891C7F9B9E042BD97F96247D6B69F1C Ref B: SEL20EDGE0521 Ref C: 2023-11-26T15:56:31Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: E60ABE3D44034F52A30E7AEC02B1EC68 Ref B: SLAEDGE1521 Ref C: 2023-11-26T15:56:31Z
ua152.ffzw.link/rp/aqoKIh1pNFiSz07YcaDoaUenfGI.js
687 B URL ua152.ffzw.link/rp/aqoKIh1pNFiSz07YcaDoaUenfGI.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (687), with no line terminators
Hash 619c014b5fac62184e52814eeae0a20c
6aaa0a221d69345892cf4ed871a0e86947a77c62
8d08f24c8bd1ea612854dfb333441f01ce7651f4c49b9475926e96075811aede
GET /rp/aqoKIh1pNFiSz07YcaDoaUenfGI.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:31 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 687
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: YZwBS1+sYhhOUoFO6uCiDA==
Last-Modified: Fri, 21 Oct 2022 13:04:50 GMT
ETag: 0x8DAB364D6C1CFB6
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: 2b006aa5-a01e-002c-3044-202a8a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: D1B25F04F08440C58C1587878B4FAC26 Ref B: SEL20EDGE0617 Ref C: 2023-11-26T15:56:31Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: FC7D307A22D24AAF97B1F0B86879F7CB Ref B: SLAEDGE1716 Ref C: 2023-11-26T15:56:31Z
ua152.ffzw.link/rp/WoPKBi8TaxoaU_G2MAwbEk14D-M.js
200 OK 8.7 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/WoPKBi8TaxoaU_G2MAwbEk14D-M.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (8684), with no line terminators
Hash 4e9a4ee82fa5b6d82fd1e7a14b08c6fb
5a83ca062f136b1a1a53f1b6300c1b124d780fe3
14f14b96a9e9b91a410f61da9585b622f335373379ad05bc1089513cc9254fa4
GET /rp/WoPKBi8TaxoaU_G2MAwbEk14D-M.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:31 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 8684
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: TppO6C+lttgv0eehSwjG+w==
Last-Modified: Sun, 19 Nov 2023 15:22:21 GMT
ETag: 0x8DBE913535CE7F5
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: 0e04f908-d01e-006c-447a-1f0364000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 78573A898FF04018BFE2E872C2503724 Ref B: SEL20EDGE0305 Ref C: 2023-11-26T15:56:31Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 18223D2225F64194A378E51F9E9D6522 Ref B: SLAEDGE1419 Ref C: 2023-11-26T15:56:31Z
ua152.ffzw.link/rp/E-ct2GPeEmmyqnFVokBQcrVRlFI.js
2.0 kB URL ua152.ffzw.link/rp/E-ct2GPeEmmyqnFVokBQcrVRlFI.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (2019), with no line terminators
Hash 3379c87cf316e6cb80e0959384abd189
13e72dd863de1269b2aa7155a2405072b5519452
dea970a5ed5be0e33114fd981c7de2dd0922b8160cdd077a2262fd2b8c3fd280
GET /rp/E-ct2GPeEmmyqnFVokBQcrVRlFI.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:32 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 2019
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: M3nIfPMW5suA4JWThKvRiQ==
Last-Modified: Tue, 14 Nov 2023 20:52:21 GMT
ETag: 0x8DBE55398F333F5
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: 354c4640-c01e-005a-770a-20ae36000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 55FC1B2BA1EB4856984EA72E6907CC3B Ref B: SEL20EDGE0507 Ref C: 2023-11-26T15:56:32Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 71526A62EB47466EAC7ABA59BD6A8515 Ref B: SLAEDGE1717 Ref C: 2023-11-26T15:56:32Z
ua152.ffzw.link/rp/2HRHbF0qOqTUm9suc5fyFpm1oPU.js
200 OK 27 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/2HRHbF0qOqTUm9suc5fyFpm1oPU.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (26879), with no line terminators
Hash 98daaa625883d391379475e64bb5cd5a
d874476c5d2a3aa4d49bdb2e7397f21699b5a0f5
a07ad62448342650cfb192d613962f96719612c28f542a527a9ef901019b9111
GET /rp/2HRHbF0qOqTUm9suc5fyFpm1oPU.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:32 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 26879
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: mNqqYliD05E3lHXmS7XNWg==
Last-Modified: Sat, 18 Nov 2023 21:12:10 GMT
ETag: 0x8DBE87B074C71C9
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: e8e394e8-001e-004c-3584-1e6fa8000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: E3829A338B8D4996B99AC3702D33F50A Ref B: SEL20EDGE0520 Ref C: 2023-11-26T15:56:32Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 1E8B34E98326452B8E83C4564996C404 Ref B: SLAEDGE1811 Ref C: 2023-11-26T15:56:32Z
ua152.ffzw.link/rp/T6lcs6iqB7rn36FIXybLwbqPwEI.js
200 OK 568 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/T6lcs6iqB7rn36FIXybLwbqPwEI.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 568 kB (567790 bytes)
Hash f22aef5e40b4fc45d422d6326d4e82cf
4fa95cb3a8aa07bae7dfa1485f26cbc1ba8fc042
597a5a961aff54e9e5ad009c670674a5dc11c9f829764b32b925066b5ab9dc8b
GET /rp/T6lcs6iqB7rn36FIXybLwbqPwEI.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:31 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 567790
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: 8irvXkC0/EXUItYybU6Czw==
Last-Modified: Thu, 16 Feb 2023 05:52:09 GMT
ETag: 0x8DB0FE1F1314833
X-Cache: TCP_HIT
x-ms-request-id: 7b68fa7d-f01e-0016-4f13-1c6929000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: B3965CE3FB564F2EB3FC5E5DF1EF9F92 Ref B: SEL20EDGE0418 Ref C: 2023-11-21T16:11:59Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: A066BAD80CAC4551A0257650CA86C148 Ref B: SLAEDGE1418 Ref C: 2023-11-26T15:56:31Z
ua152.ffzw.link/rp/ll5safRRGP6rhu7ruw_Elk8rOpg.js
200 OK 317 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/ll5safRRGP6rhu7ruw_Elk8rOpg.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (19008)
Size 317 kB (316988 bytes)
Hash 8192d891e754afd81a399f98bc6b265f
965e6c69f45118feab86eeebbb0fc4964f2b3a98
e2e4d97c20d4478e8e947480c8f6c71a2c795776d405366be70db82e4ea4ba77
GET /rp/ll5safRRGP6rhu7ruw_Elk8rOpg.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:31 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 316988
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: gZLYkedUr9gaOZ+YvGsmXw==
Last-Modified: Tue, 01 Nov 2022 22:38:22 GMT
ETag: 0x8DABC59C8876873
X-Cache: TCP_HIT
x-ms-request-id: 017b1add-801e-0012-3719-1c9cab000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 765AFADC98524311A3547CD01C781E1C Ref B: SEL20EDGE0605 Ref C: 2023-11-21T16:02:34Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 8AFD4123F07A42F98C6E29946FD10CD0 Ref B: SLAEDGE1716 Ref C: 2023-11-26T15:56:31Z
ua152.ffzw.link/rp/OZ_K1z4BO6soZ1Z7cxsODqonikk.js
3.0 kB URL ua152.ffzw.link/rp/OZ_K1z4BO6soZ1Z7cxsODqonikk.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (2996), with no line terminators
Hash a4a2895e7fbfe6377307b4c2aab9e525
399fcad73e013bab2867567b731b0e0eaa278a49
2f754393d443981912bdd0e557b8cf9724b956e552c50bfd75044848ac347aa5
GET /rp/OZ_K1z4BO6soZ1Z7cxsODqonikk.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:32 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 2996
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: pKKJXn+/5jdzB7TCqrnlJQ==
Last-Modified: Thu, 31 Aug 2023 22:07:00 GMT
ETag: 0x8DBAA6E997F5085
X-Cache: TCP_HIT
x-ms-request-id: fea6dc60-401e-002d-3360-1d2b77000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 5477ADF17B16420C8D00E67DA4CE2A1F Ref B: SEL20EDGE0615 Ref C: 2023-11-22T16:22:12Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 76A65D89CEE1497A8FB463656E203C5B Ref B: SLAEDGE1814 Ref C: 2023-11-26T15:56:32Z
ua152.ffzw.link/rp/lEymARQcHEBi5-vEGQ_KomWjWq0.js
489 B URL ua152.ffzw.link/rp/lEymARQcHEBi5-vEGQ_KomWjWq0.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (489), with no line terminators
Hash 1b2a435a789c13a2bd15b9daf7cc240a
944ca601141c1c4062e7ebc4190fcaa265a35aad
5feed0cb9e52210875b953d1b2a624bd538fcc502666741106890d6326b31718
GET /rp/lEymARQcHEBi5-vEGQ_KomWjWq0.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:32 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 489
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: GypDWnicE6K9Fbna98wkCg==
Last-Modified: Wed, 19 Apr 2023 12:31:31 GMT
ETag: 0x8DB40D2016C344F
X-Cache: TCP_HIT
x-ms-request-id: d379aaba-801e-0012-6705-209cab000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 8892FA1BDA5B478EBF4F5897C1160151 Ref B: SEL20EDGE0419 Ref C: 2023-11-26T15:56:12Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 187D569FF2F24536932FCA4F1B2D3C9A Ref B: SLAEDGE1706 Ref C: 2023-11-26T15:56:32Z
ua152.ffzw.link/rp/1q2qj1c_OEGDSQPCvrqhX6TJcVI.js
1.0 kB URL ua152.ffzw.link/rp/1q2qj1c_OEGDSQPCvrqhX6TJcVI.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (1002), with no line terminators
Hash ec94048dee8b240fcf3deadf4475a104
d6adaa8f573f3841834903c2bebaa15fa4c97152
24734282583c6c3238e8b436146b19d8e56f1210d32c028a349dd731e2169813
GET /rp/1q2qj1c_OEGDSQPCvrqhX6TJcVI.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:32 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 1002
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: 7JQEje6LJA/PPerfRHWhBA==
Last-Modified: Tue, 05 Sep 2023 06:28:39 GMT
ETag: 0x8DBADD957FCF756
X-Cache: TCP_HIT
x-ms-request-id: c06b9e84-101e-001c-6024-2070a0000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 9AB45B8CAAAC4E9283C33383F060EA0B Ref B: SEL20EDGE0619 Ref C: 2023-11-26T15:56:12Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: C343DC0CF46248F297E222F84ABF0DC6 Ref B: SLAEDGE1406 Ref C: 2023-11-26T15:56:32Z
ua152.ffzw.link/rp/VzJCCN2zqegKvTNGYH1xLJmcLlA.js
8.7 kB URL ua152.ffzw.link/rp/VzJCCN2zqegKvTNGYH1xLJmcLlA.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (8674), with no line terminators
Hash 1c0981ac86e2ea5b7f08f34548af3280
57324208ddb3a9e80abd3346607d712c999c2e50
00ff3483d93259aedb929a9fee4454a623830b18a08f08781ac1961c1e98774a
GET /rp/VzJCCN2zqegKvTNGYH1xLJmcLlA.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:32 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 8674
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: HAmBrIbi6lt/CPNFSK8ygA==
Last-Modified: Fri, 20 Oct 2023 23:58:19 GMT
ETag: 0x8DBD1C86F777AF7
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: 6fbe1f4c-301e-006d-3ef6-1c0299000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: C92B8EEA1DB24CE1BCE64BAB1C787C77 Ref B: SEL20EDGE0312 Ref C: 2023-11-26T15:56:32Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 82EC6CF324814FFF89A4A9B45099A402 Ref B: SLAEDGE1217 Ref C: 2023-11-26T15:56:32Z
ua152.ffzw.link/rp/927Cz2OI3S9hrbXauDAfIEUYRvo.js
1.6 kB URL ua152.ffzw.link/rp/927Cz2OI3S9hrbXauDAfIEUYRvo.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (1578), with no line terminators
Hash 0c0ad3fd8c0f48386b239455d60f772e
f76ec2cf6388dd2f61adb5dab8301f20451846fa
db6dde4aef63304df67b89f427019d29632345d8b3b5fe1b55980f5d78d6e1e7
GET /rp/927Cz2OI3S9hrbXauDAfIEUYRvo.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:32 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 1578
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: DArT/YwPSDhrI5RV1g93Lg==
Last-Modified: Fri, 28 May 2021 21:03:41 GMT
ETag: 0x8D9221C12C7C174
X-Cache: TCP_HIT
x-ms-request-id: f8edcd91-401e-004b-7b09-1c992d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 1699D1EDD92F4966A76EA11044772C6D Ref B: SEL20EDGE0611 Ref C: 2023-11-23T02:30:04Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 1004047B37E24B3EB2FBE4DF28F722D6 Ref B: SLAEDGE1513 Ref C: 2023-11-26T15:56:32Z
ua152.ffzw.link/rp/i6rB9K6vwIjCJ6F-XdM5OdOMxBo.js
1.7 kB URL ua152.ffzw.link/rp/i6rB9K6vwIjCJ6F-XdM5OdOMxBo.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (1729), with no line terminators
Hash a433650379bab51bd0d50b7539e142ef
8baac1f4aeafc088c227a17e5dd33939d38cc41a
ecd739c27bd814db96cbfb612c7854a224bae21296aa0cff7a5c66294ccfa203
GET /rp/i6rB9K6vwIjCJ6F-XdM5OdOMxBo.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:32 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 1729
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: pDNlA3m6tRvQ1Qt1OeFC7w==
Last-Modified: Tue, 26 Jul 2022 03:45:47 GMT
ETag: 0x8DA6EB9534D8465
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: 9f8f7d3e-201e-003d-13bf-1f1d91000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: DC1585A875344B0FAD69D966979902ED Ref B: SEL20EDGE0513 Ref C: 2023-11-26T15:56:32Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 4122DFFD1C444640B35ACF88848D47B9 Ref B: SLAEDGE2006 Ref C: 2023-11-26T15:56:32Z
ua152.ffzw.link/rp/G4SZBvalAhb4W5AsViuhU1ii_pI.js
200 OK 1.3 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/G4SZBvalAhb4W5AsViuhU1ii_pI.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (1345), with no line terminators
Hash 1174545448fdceeac97791fb61e77d7e
1b849906f6a50216f85b902c562ba15358a2fe92
43490c2cb9a634745c90e0cadac31a900202732d8446a0c861e789cb191c9fd6
GET /rp/G4SZBvalAhb4W5AsViuhU1ii_pI.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:32 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 1345
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: EXRUVEj9zurJd5H7Yed9fg==
Last-Modified: Fri, 13 Aug 2021 05:55:35 GMT
ETag: 0x8D95E1EF860D5A6
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: b7e36467-a01e-0041-0960-1e80a4000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 140882780BAC4775A1199511FA24F0E8 Ref B: SEL20EDGE0505 Ref C: 2023-11-26T15:56:32Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: B46E5C7B4F0E44A383804E98E682CFC5 Ref B: SLAEDGE1821 Ref C: 2023-11-26T15:56:32Z
ua152.ffzw.link/rp/svGlQAYYlyaQ1QnpcMw6vrclE_Q.js
1.9 kB URL ua152.ffzw.link/rp/svGlQAYYlyaQ1QnpcMw6vrclE_Q.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (1949), with no line terminators
Hash 718c9d9c2d2a498de3c6953b6347a22f
b2f1a5400618972690d509e970cc3abeb72513f4
66133f155e3a433e9eeca08dfc3b4e225d358e1a89ab0665379eff319f9f0081
GET /rp/svGlQAYYlyaQ1QnpcMw6vrclE_Q.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:32 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 1949
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: cYydnC0qSY3jxpU7Y0eiLw==
Last-Modified: Sat, 29 May 2021 00:05:02 GMT
ETag: 0x8D9223567DA1B47
X-Cache: TCP_HIT
x-ms-request-id: cc87c95c-501e-0054-1924-20423d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 6D83162DF3544422B4CE2AF5EBF1F660 Ref B: SEL20EDGE0611 Ref C: 2023-11-26T04:58:13Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: DDB7A8B570464182AC6EAD84CFA20F4A Ref B: SLAEDGE1019 Ref C: 2023-11-26T15:56:32Z
ua152.ffzw.link/rp/PDj6_B2L-KF9Hy74XxFE51es1HU.js
200 OK 5.4 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/PDj6_B2L-KF9Hy74XxFE51es1HU.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (5358), with no line terminators
Hash bb9e70eebcbda2bf0de9c74ef2f2f9c4
3c38fafc1d8bf8a17d1f2ef85f1144e757acd475
4e10dbf6668676e0e21f627615f99be23521ccde4134ed171d4e0bf29db8d86d
GET /rp/PDj6_B2L-KF9Hy74XxFE51es1HU.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:32 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 5358
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: u55w7ry9or8N6cdO8vL5xA==
Last-Modified: Thu, 22 Dec 2022 06:03:47 GMT
ETag: 0x8DAE3E24A9130F9
X-Cache: TCP_HIT
x-ms-request-id: b925b90d-601e-0057-73f6-1a413a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 5BC231E844444F879C311A34462992F8 Ref B: SEL20EDGE0216 Ref C: 2023-11-22T02:17:11Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 81C1E7D64C9D4F0EB5718061545EDC37 Ref B: SLAEDGE2010 Ref C: 2023-11-26T15:56:32Z
ua152.ffzw.link/rp/w1N5_IfUVatfiu7UA_Qioku60ZQ.js
200 OK 3.0 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/w1N5_IfUVatfiu7UA_Qioku60ZQ.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (3010), with no line terminators
Hash 12ae5624bf6de63e7f1a62704a827d3f
c35379fc87d455ab5f8aeed403f422a24bbad194
1fb3b58965bebc71f24af200d4b7bc53e576d00acf519fb67fe3f3abdea0a543
GET /rp/w1N5_IfUVatfiu7UA_Qioku60ZQ.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:32 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 3010
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: Eq5WJL9t5j5/GmJwSoJ9Pw==
Last-Modified: Sat, 29 May 2021 00:15:53 GMT
ETag: 0x8D92236EC045446
X-Cache: TCP_HIT
x-ms-request-id: 6d654769-401e-004b-0516-20992d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: B9FD689B09394812A5EDABB2EE1DF9CB Ref B: SEL20EDGE0513 Ref C: 2023-11-26T06:20:27Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: F929D6A7019846F08C8BB0930E724FED Ref B: SLAEDGE1313 Ref C: 2023-11-26T15:56:32Z
ua152.ffzw.link/rp/HxQ6JNe8Sho9n5H0ny4borHD1Ic.js
544 B URL ua152.ffzw.link/rp/HxQ6JNe8Sho9n5H0ny4borHD1Ic.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (544), with no line terminators
Hash 2ac240e28f5c156e62cf65486fc9ca2a
1f143a24d7bc4a1a3d9f91f49f2e1ba2b1c3d487
4325982915d0a661f3f0c30c05eb11a94cb56736d448fdc0313143818741faa3
GET /rp/HxQ6JNe8Sho9n5H0ny4borHD1Ic.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:32 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 544
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: KsJA4o9cFW5iz2VIb8nKKg==
Last-Modified: Fri, 28 May 2021 21:35:15 GMT
ETag: 0x8D922207B8D9FF6
X-Cache: TCP_HIT
x-ms-request-id: 2629dbc8-e01e-0064-1236-1c1817000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: E625ED9BB35C4101A1F4FCCBAFD4E9B0 Ref B: SEL20EDGE0608 Ref C: 2023-11-22T11:26:15Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 591E87AA1FDD4D4CADD6B50B79D6978E Ref B: SLAEDGE1615 Ref C: 2023-11-26T15:56:32Z
ua152.ffzw.link/rp/FLQipqCzAj5k3Z-QEJ2OAhS5prc.js
198 B URL ua152.ffzw.link/rp/FLQipqCzAj5k3Z-QEJ2OAhS5prc.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with no line terminators
Hash b19ac21dfdc03a156ae40e0d3359796f
14b422a6a0b3023e64dd9f90109d8e0214b9a6b7
830e0be70c2f2dd3876bf80598a4d1753589ea24f4a09aad4277935ba83fd3df
GET /rp/FLQipqCzAj5k3Z-QEJ2OAhS5prc.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:33 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 198
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: sZrCHf3AOhVq5A4NM1l5bw==
Last-Modified: Mon, 30 Oct 2023 21:30:11 GMT
ETag: 0x8DBD98F65E1DABE
X-Cache: TCP_HIT
x-ms-request-id: 7b689609-f01e-0016-7f09-1c6929000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 19DFE9D60C384684BDC10FDD87F9DF79 Ref B: SEL20EDGE0614 Ref C: 2023-11-23T11:05:56Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 5E6E5619989841F58ECF68EA24B2FAC2 Ref B: SLAEDGE1121 Ref C: 2023-11-26T15:56:33Z
ua152.ffzw.link/rp/qpP2mjWKxGxK_uqikcY_3lzakz4.js
4.3 MB URL ua152.ffzw.link/rp/qpP2mjWKxGxK_uqikcY_3lzakz4.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (65468)
Size 4.3 MB (4347586 bytes)
Hash aab98b69867d923ed7a67242baa09f59
aa93f69a358ac46c4afeeaa291c63fde5cda933e
06444f601a7b93f064f30074339511164cfa024195562fe60b52dd3bbe488041
Analyzer Verdict Alert urlquery MSOffice_Macro_HTTP_Payload_Download
GET /rp/qpP2mjWKxGxK_uqikcY_3lzakz4.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:31 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 4347586
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: qrmLaYZ9kj7XpnJCuqCfWQ==
Last-Modified: Fri, 17 Nov 2023 16:52:01 GMT
ETag: 0x8DBE78D855AC9E7
X-Cache: TCP_HIT
x-ms-request-id: c9969f29-401e-0040-6a9d-1d8159000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 806A6811472949D09BF3A0A72BC979B4 Ref B: SEL20EDGE0218 Ref C: 2023-11-26T15:56:11Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: A2197684580A4C04A9DE01B8BCE3B4B8 Ref B: SLAEDGE1013 Ref C: 2023-11-26T15:56:31Z
ua152.ffzw.link/rp/fk2QSorfeyXVy6gN15t699SrbhQ.js
15 kB URL ua152.ffzw.link/rp/fk2QSorfeyXVy6gN15t699SrbhQ.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (14820), with no line terminators
Hash e3b937d2a6c5f7a9b33f42a937e0755b
7e4d904a8adf7b25d5cba80dd79b7af7d4ab6e14
66e8e533eb3adab8bfcb33713685d003d538ac4d513582851f64833134fead68
GET /rp/fk2QSorfeyXVy6gN15t699SrbhQ.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:33 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 14820
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: 47k30qbF96mzP0KpN+B1Ww==
Last-Modified: Fri, 10 Nov 2023 04:12:47 GMT
ETag: 0x8DBE1A34C0A8965
X-Cache: TCP_HIT
x-ms-request-id: fe09a9d5-801e-0056-0a09-1c40c7000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: DBC3201CF006472DAA159C23646FD14C Ref B: SEL20EDGE0420 Ref C: 2023-11-25T16:50:48Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 563BF4DBE7AA4109BC398FC38BE0419C Ref B: SLAEDGE1412 Ref C: 2023-11-26T15:56:33Z
ua152.ffzw.link/rp/sej04I6xiMH_FXN177iv5Qd-wz8.js
200 OK 2.3 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/sej04I6xiMH_FXN177iv5Qd-wz8.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (2345), with no line terminators
Hash 1511e1305fbeae4e2826ea0e2fe94e96
b1e8f4e08eb188c1ff157375efb8afe5077ec33f
e5c67347f550530145ab3d849e51e480fefdbe3bd7bb97b714b19f7012edcfc3
GET /rp/sej04I6xiMH_FXN177iv5Qd-wz8.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:33 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 2345
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: FRHhMF++rk4oJuoOL+lOlg==
Last-Modified: Tue, 29 Aug 2023 06:58:49 GMT
ETag: 0x8DBA85D65997E82
X-Cache: TCP_HIT
x-ms-request-id: 8830fb94-501e-0054-126b-1e423d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 42870425989B42FF8435BF3D760DD0CA Ref B: SEL20EDGE0513 Ref C: 2023-11-26T15:56:13Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: CD2D4A13553143C785BA6F68965C832F Ref B: SLAEDGE1707 Ref C: 2023-11-26T15:56:33Z
ua152.ffzw.link/rp/WnodUeXxtjYoWWmjHnM05SVusHo.js
200 OK 5.2 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/WnodUeXxtjYoWWmjHnM05SVusHo.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (5221), with no line terminators
Hash d39510884ee1cc5d9ba822543a71be20
5a7a1d51e5f1b636285969a31e7334e5256eb07a
e67a34d821594f5e9c5a430dc32cdc6cf0c66b6f95e9bd27d4c4094514004ce6
GET /rp/WnodUeXxtjYoWWmjHnM05SVusHo.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:33 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 5221
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: 05UQiE7hzF2bqCJUOnG+IA==
Last-Modified: Tue, 17 Oct 2023 20:22:06 GMT
ETag: 0x8DBCF4EBBDF85C2
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: 44b0921d-901e-0042-1803-2083a3000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: B535C7DACBC34FE69374C25FE2D9BFCC Ref B: SEL20EDGE0414 Ref C: 2023-11-26T15:56:33Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: F5DDBBACEA3B48E29355DD335451A0D3 Ref B: SLAEDGE1121 Ref C: 2023-11-26T15:56:33Z
ua152.ffzw.link/rp/_m0J0q4SfuxAjOCC-l_ilfgD6S0.js
1.3 kB URL ua152.ffzw.link/rp/_m0J0q4SfuxAjOCC-l_ilfgD6S0.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (1282), with no line terminators
Hash eb8aa421c5061f7eceb605c499779712
fe6d09d2ae127eec408ce082fa5fe295f803e92d
bf0522679a5e3b62e1309c7412c183375c1029b4e19c69c07d7f736f587c2b35
GET /rp/_m0J0q4SfuxAjOCC-l_ilfgD6S0.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:33 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 1282
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: 64qkIcUGH37OtgXEmXeXEg==
Last-Modified: Mon, 14 Aug 2023 06:01:24 GMT
ETag: 0x8DB9C8BE423DF19
X-Cache: TCP_HIT
x-ms-request-id: f6ac6b21-b01e-005e-32f6-1c5bb4000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 2711E5A3FEE64C5DB70D147D418D300C Ref B: SEL20EDGE0208 Ref C: 2023-11-26T15:56:14Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 48FD903BB8DE48D2B89A873705388FC5 Ref B: SLAEDGE1805 Ref C: 2023-11-26T15:56:33Z
ua152.ffzw.link/rp/UxNh487vAEX70Pwo60ysqWB5YbY.js
200 OK 3.8 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/UxNh487vAEX70Pwo60ysqWB5YbY.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (3807), with no line terminators
Hash cf61572e78751a97f1973d9d298a7e25
531361e3ceef0045fbd0fc28eb4caca9607961b6
41ebdb61fe66ad618e5a3ef8e6b902d555ceff60f3653603828bc01b90c0ccb1
GET /rp/UxNh487vAEX70Pwo60ysqWB5YbY.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:33 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 3807
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: z2FXLnh1Gpfxlz2dKYp+JQ==
Last-Modified: Tue, 24 Oct 2023 22:27:16 GMT
ETag: 0x8DBD4E060DB67BE
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: 8c20ca43-201e-0050-2912-20b7bf000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: A4A1B7BE6C834BCCAE209DF4960C9ABD Ref B: SEL20EDGE0518 Ref C: 2023-11-26T15:56:33Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 939EFBD96A5646D4B61B5B4F23CFE591 Ref B: SLAEDGE1907 Ref C: 2023-11-26T15:56:33Z
ua152.ffzw.link/rp/rGKyDXPi-mEDDVhd7tU-WNA-90o.js
200 OK 232 B URL GET HTTP/1.1 ua152.ffzw.link/rp/rGKyDXPi-mEDDVhd7tU-WNA-90o.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with no line terminators
Hash 5b3e2fd8e824e69b2e32469c046a35e5
ac62b20d73e2fa61030d585deed53e58d03ef74a
9077771f70727a1d7007a97feb2a07ce753e90e3d1da19a733e46f36e7910397
GET /rp/rGKyDXPi-mEDDVhd7tU-WNA-90o.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:33 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 232
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: Wz4v2Ogk5psuMkacBGo15Q==
Last-Modified: Sat, 28 May 2022 12:43:54 GMT
ETag: 0x8DA40A7B9BD838C
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: 06238dd4-701e-002e-2d0d-202870000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 043DE6C2DE674723A50CF78E290AB885 Ref B: SEL20EDGE0310 Ref C: 2023-11-26T15:56:33Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 9BF3F1F799F94DDABF5C39C61E1FBF9D Ref B: SLAEDGE1911 Ref C: 2023-11-26T15:56:33Z
ua152.ffzw.link/rp/mblUCzO2lNnqxv5daD5nJtcrvU0.js
716 B URL ua152.ffzw.link/rp/mblUCzO2lNnqxv5daD5nJtcrvU0.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (716), with no line terminators
Hash 23466624683daff4c2894116c7b9ac6c
99b9540b33b694d9eac6fe5d683e6726d72bbd4d
0b0ff20d9134242926337f043aa9e12dad809e78273db9b69796f970eba52019
GET /rp/mblUCzO2lNnqxv5daD5nJtcrvU0.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:33 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 716
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: I0ZmJGg9r/TCiUEWx7msbA==
Last-Modified: Sat, 05 Feb 2022 02:26:20 GMT
ETag: 0x8D9E84EE5848E71
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: 02887630-301e-0029-152a-20def5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 179035AF40154383920C196D9FC73FBF Ref B: SEL20EDGE0312 Ref C: 2023-11-26T15:56:33Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 7AAB1F51561E46469A98D89B09686DDF Ref B: SLAEDGE1814 Ref C: 2023-11-26T15:56:33Z
ua152.ffzw.link/rp/fj8GHOD79qqIvUxJrl905ehPwr8.js
4.0 kB URL ua152.ffzw.link/rp/fj8GHOD79qqIvUxJrl905ehPwr8.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (4044), with no line terminators
Hash 3c0e47e84a81f367dab175bd020ac9ee
7e3f061ce0fbf6aa88bd4c49ae5f74e5e84fc2bf
73c11b91b105e2ceac93645e1d90515326ab52ca600f881504e86fc845ea8587
GET /rp/fj8GHOD79qqIvUxJrl905ehPwr8.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:33 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 4044
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: PA5H6EqB82fasXW9AgrJ7g==
Last-Modified: Sat, 24 Jun 2023 00:45:54 GMT
ETag: 0x8DB744C5DA00D85
X-Cache: TCP_HIT
x-ms-request-id: 5163bd0f-201e-0036-2d0f-1c05e5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 0EEE1177437D4E29973B00A8E2F88166 Ref B: SEL20EDGE0315 Ref C: 2023-11-24T01:46:58Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 6C72360BC1504EA99071869954AF84F6 Ref B: SLAEDGE1021 Ref C: 2023-11-26T15:56:33Z
ua152.ffzw.link/rp/P3aygHt38obwRFkrh9fNLVNC46M.js
200 OK 5.4 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/P3aygHt38obwRFkrh9fNLVNC46M.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (5358), with no line terminators
Hash 6aa31b2e1206b5fb4457b17f7d8ff677
3f76b2807b77f286f044592b87d7cd2d5342e3a3
220641c38e01902f0ed9fe147e7213236c6ffdb63794057602bff534c8f0e437
GET /rp/P3aygHt38obwRFkrh9fNLVNC46M.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:33 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 5358
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: aqMbLhIGtftEV7F/fY/2dw==
Last-Modified: Fri, 07 Jul 2023 21:40:40 GMT
ETag: 0x8DB7F32CF5F1892
X-Cache: TCP_HIT
x-ms-request-id: 17d8c2ab-401e-002d-8009-1c2b77000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: ECED3A6AC2F94494A5B657D7B2609B8E Ref B: SEL20EDGE0619 Ref C: 2023-11-23T02:30:03Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: E60251C8EA4E403BA8D6A758574C66AB Ref B: SLAEDGE1709 Ref C: 2023-11-26T15:56:33Z
ua152.ffzw.link/rp/gJU15y09vgD5RYk_dYHrOJf0Q5o.js
200 OK 598 B URL GET HTTP/1.1 ua152.ffzw.link/rp/gJU15y09vgD5RYk_dYHrOJf0Q5o.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (598), with no line terminators
Hash 4ff32905762c3a445028e11ed69f04a0
809535e72d3dbe00f945893f7581eb3897f4439a
336342b76b1eec2f9698dacb5d7d7749148a2036172435cd0c1a80a80a9886e7
GET /rp/gJU15y09vgD5RYk_dYHrOJf0Q5o.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:33 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 598
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: T/MpBXYsOkRQKOEe1p8EoA==
Last-Modified: Fri, 28 May 2021 23:18:39 GMT
ETag: 0x8D9222EED436E35
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: 76a7e59d-501e-0054-70f8-1f423d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: C365F227B21C479BADDF4A34D03F2340 Ref B: SEL20EDGE0617 Ref C: 2023-11-26T15:56:33Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 0490A7FD846B4E5689B190BE25D9D4A4 Ref B: SLAEDGE1317 Ref C: 2023-11-26T15:56:33Z
ua152.ffzw.link/rp/VRDZwwEoh1YhsvWHVj58HQFT8WQ.js
1.4 kB URL ua152.ffzw.link/rp/VRDZwwEoh1YhsvWHVj58HQFT8WQ.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (1410), with no line terminators
Hash 480df9ada0ab4f05ef58e5cb2e2392e1
5510d9c30128875621b2f587563e7c1d0153f164
1c56cffb0e9950e4a61b6955e8708befa2ceca71017838f1fc233e2038b23c2c
GET /rp/VRDZwwEoh1YhsvWHVj58HQFT8WQ.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:33 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 1410
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: SA35raCrTwXvWOXLLiOS4Q==
Last-Modified: Thu, 16 Jun 2022 06:46:02 GMT
ETag: 0x8DA4F63E11DEA93
X-Cache: TCP_HIT
x-ms-request-id: ac04cb07-801e-0074-3b04-202ef1000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 8619D72197FE44BDB1BF2D8B1E09746C Ref B: SEL20EDGE0607 Ref C: 2023-11-26T03:09:55Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: B6D56F63DFD648F7910412FE5D3704B1 Ref B: SLAEDGE1617 Ref C: 2023-11-26T15:56:33Z
ua152.ffzw.link/rp/kfjnLzUX2Goo7esbR2-Q-l-XIWg.js
353 B URL ua152.ffzw.link/rp/kfjnLzUX2Goo7esbR2-Q-l-XIWg.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (353), with no line terminators
Hash 794184fae3c0890ae4ea642fd8f7fbf8
91f8e72f3517d86a28edeb1b476f90fa5f972168
00ea5dc006fa84e08d604bf9708135b98138ae0a092bd2c101a912b5efe3fe17
GET /rp/kfjnLzUX2Goo7esbR2-Q-l-XIWg.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:33 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 353
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: eUGE+uPAiQrk6mQv2Pf7+A==
Last-Modified: Fri, 28 May 2021 23:34:36 GMT
ETag: 0x8D92231277BE7DB
X-Cache: TCP_HIT
x-ms-request-id: 57663116-801e-0019-6b1c-2084df000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 2DE7476C7956488B800C9C9809BAC590 Ref B: SEL20EDGE0406 Ref C: 2023-11-26T15:56:13Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 735B1B4D664F448A802C355E7B5ECD03 Ref B: SLAEDGE1707 Ref C: 2023-11-26T15:56:33Z
ua152.ffzw.link/rp/AsbE1iumgGso8caUYuVeYxrhOXA.js
200 OK 5.5 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/AsbE1iumgGso8caUYuVeYxrhOXA.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (5460), with no line terminators
Hash ffdc7892743e65d4e1747d695ab8fa3a
02c6c4d62ba6806b28f1c69462e55e631ae13970
e7f80dfe7b61e64faef1f7408f32ed0194ae648931d406fa987ec50c7326eb2d
GET /rp/AsbE1iumgGso8caUYuVeYxrhOXA.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:33 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 5460
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: /9x4knQ+ZdThdH1pWrj6Og==
Last-Modified: Fri, 30 Dec 2022 13:30:30 GMT
ETag: 0x8DAEA6A056FA3C7
X-Cache: TCP_HIT
x-ms-request-id: 59d59a08-601e-005c-6412-1c594e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 7D5333F8D2AB4BA1BE14DA9E1E3D01AC Ref B: SEL20EDGE0608 Ref C: 2023-11-23T04:00:43Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 066BF8C59A49413DA393D0B54AF97294 Ref B: SLAEDGE1115 Ref C: 2023-11-26T15:56:33Z
ua152.ffzw.link/rp/dXWh89w2eyMy2DekbR3SdIsiXDg.js
1.2 kB URL ua152.ffzw.link/rp/dXWh89w2eyMy2DekbR3SdIsiXDg.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (1199), with no line terminators
Hash f5dfb6428494da3c1f195528588587cb
7575a1f3dc367b2332d837a46d1dd2748b225c38
f45968b3999174976d6fbea229f627f0bda56fd84f8b1924c01da624bfea01e3
GET /rp/dXWh89w2eyMy2DekbR3SdIsiXDg.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:33 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 1199
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: 9d+2QoSU2jwfGVUoWIWHyw==
Last-Modified: Fri, 28 May 2021 23:02:05 GMT
ETag: 0x8D9222C9CF2DBDA
X-Cache: TCP_HIT
x-ms-request-id: e35a2abf-601e-005c-7bdb-1e594e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 5F89C7F896CA451BBE6C910C934E99CD Ref B: SEL20EDGE0509 Ref C: 2023-11-26T03:09:55Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: C55F91F81642455E8B6D75434A9555C5 Ref B: SLAEDGE1213 Ref C: 2023-11-26T15:56:33Z
ua152.ffzw.link/rp/PBqJ1eYezcY3mFmLFDUQMXr0ejc.js
200 OK 2.5 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/PBqJ1eYezcY3mFmLFDUQMXr0ejc.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (2489), with no line terminators
Hash 2e84ed4e7d796e1bbf52e2567e7ac781
3c1a89d5e61ecdc63798598b143510317af47a37
128970eea8d753fe5f6f4af16650536ba26eb3b10944ae4724649832187c4908
GET /rp/PBqJ1eYezcY3mFmLFDUQMXr0ejc.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:33 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 2489
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: LoTtTn15bhu/UuJWfnrHgQ==
Last-Modified: Fri, 09 Sep 2022 05:24:40 GMT
ETag: 0x8DA9223985D8C81
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: 08d1c25d-f01e-0016-06f8-1f6929000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: F63DC0A2FC9B405E8F945A221B5BDBA0 Ref B: SEL20EDGE0305 Ref C: 2023-11-26T15:56:33Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: DC4BCF6135D344B1BD53ECE413DE883A Ref B: SLAEDGE1706 Ref C: 2023-11-26T15:56:33Z
ua152.ffzw.link/rp/egIOumQnHHdCgWranYtamvUr6JA.js
5.8 kB URL ua152.ffzw.link/rp/egIOumQnHHdCgWranYtamvUr6JA.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (5772), with no line terminators
Hash e561c275f8ed21dd5507e90cc459be10
7a020eba64271c7742816ada9d8b5a9af52be890
7b150b4c64d3e893cc3b567d5b91ef3378e7243e05862d34ee168e4a93efe9b4
GET /rp/egIOumQnHHdCgWranYtamvUr6JA.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:33 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 5772
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: 5WHCdfjtId1VB+kMxFm+EA==
Last-Modified: Tue, 17 Oct 2023 15:23:29 GMT
ETag: 0x8DBCF25040DBF47
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: e06686f3-001e-006e-6fbc-1e019e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 0AB08CC980E444F68BAE725E053010A0 Ref B: SEL20EDGE0418 Ref C: 2023-11-26T15:56:33Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 3D334391247D46A1B9CAC8359857C072 Ref B: SLAEDGE1708 Ref C: 2023-11-26T15:56:33Z
ua152.ffzw.link/rp/R8mHC-sgCnTSdP356Yqi781U770.js
200 OK 5.0 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/R8mHC-sgCnTSdP356Yqi781U770.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (5000), with no line terminators
Hash 487d9ac02e3cf57172045869ac3f97a2
47c9870beb200a74d274fdf9e98aa2efcd54efbd
a97799ff4c48323ad3314a13e6a20a69145d0f8257fdae6882551d6fb6610ea6
GET /rp/R8mHC-sgCnTSdP356Yqi781U770.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:34 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 5000
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: SH2awC489XFyBFhprD+Xog==
Last-Modified: Mon, 12 Jun 2023 12:06:27 GMT
ETag: 0x8DB6B3D73204F62
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: 42621713-801e-0030-5708-20f29d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 86D0ADECE68946DB9C30334022E27606 Ref B: SEL20EDGE0418 Ref C: 2023-11-26T15:56:33Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 9BB5A3200C9D4456ACF751B1AD95C98E Ref B: SLAEDGE1611 Ref C: 2023-11-26T15:56:33Z
ua152.ffzw.link/rp/Hl9lmPf2tDpvThsqkAzhZ24MAk0.js
200 OK 7.1 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/Hl9lmPf2tDpvThsqkAzhZ24MAk0.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (7146), with no line terminators
Hash 142a83c5800451a9731a262400de2419
1e5f6598f7f6b43a6f4e1b2a900ce1676e0c024d
7d49a33d66c98ab838f9a15d2ff49bbac72c1588d979644fc174116d0afcb852
GET /rp/Hl9lmPf2tDpvThsqkAzhZ24MAk0.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:34 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 7146
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: FCqDxYAEUalzGiYkAN4kGQ==
Last-Modified: Mon, 13 Mar 2023 07:23:13 GMT
ETag: 0x8DB2393CE3ABCF1
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: 6d64aaba-401e-004b-4f07-20992d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 783EB7C39A9847D8A3BB0905B8239E08 Ref B: SEL20EDGE0210 Ref C: 2023-11-26T15:56:34Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 12B833618D184166A1F4D1CCC7F8B1FF Ref B: SLAEDGE1718 Ref C: 2023-11-26T15:56:34Z
ua152.ffzw.link/rp/y9MRbs1Z_UpE-LPNlYy_9ySYmik.js
200 OK 4.2 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/y9MRbs1Z_UpE-LPNlYy_9ySYmik.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (4228), with no line terminators
Hash fc3708a7ac43ace3d3406c2e5f7f1116
cbd3116ecd59fd4a44f8b3cd958cbff724989a29
37d9b83c929f1a8d94c4f29000cbfdfa72c4bc61c3950df02523252928591c29
GET /rp/y9MRbs1Z_UpE-LPNlYy_9ySYmik.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:34 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 4228
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: /DcIp6xDrOPTQGwuX38RFg==
Last-Modified: Tue, 27 Dec 2022 08:55:33 GMT
ETag: 0x8DAE7E81D4E8DCA
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: 2e325251-501e-0076-4821-202c0b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 2E3B77F71E4A4B7480FB0D8EFC3B2EFE Ref B: SEL20EDGE0317 Ref C: 2023-11-26T15:56:34Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 2F228F5EE0734998934479770F749776 Ref B: SLAEDGE1709 Ref C: 2023-11-26T15:56:34Z
ua152.ffzw.link/rp/ZimnKx8IttEoPGU-_hTKhD4xlZ0.js
2.7 kB URL ua152.ffzw.link/rp/ZimnKx8IttEoPGU-_hTKhD4xlZ0.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (2703), with no line terminators
Hash 4bdde2bda78febf33f1206a6bd0998c2
6629a72b1f08b6d1283c653efe14ca843e31959d
e756e88544a52eaf76ed6d67d1b5862cf901c3b1074e2125f1433050e8b28c3d
GET /rp/ZimnKx8IttEoPGU-_hTKhD4xlZ0.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:34 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 2703
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: S93ivaeP6/M/EgamvQmYwg==
Last-Modified: Fri, 01 Sep 2023 03:41:32 GMT
ETag: 0x8DBAA9D557B2078
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: d1904d14-501e-0032-6f8e-1ff067000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 7B32726703AD4CA7B803D6ED9722BDD3 Ref B: SEL20EDGE0507 Ref C: 2023-11-26T15:56:34Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 7B7AF5B7ACD54131BCFD72BE51F2C058 Ref B: SLAEDGE2022 Ref C: 2023-11-26T15:56:34Z
ua152.ffzw.link/rp/zR1_7umkICzzoyFy6MWwgYVfMGE.js
200 OK 104 B URL GET HTTP/1.1 ua152.ffzw.link/rp/zR1_7umkICzzoyFy6MWwgYVfMGE.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with no line terminators
Hash 41e1135d5d4aefe240c4dbd7b71f40dd
cd1d7feee9a4202cf3a32172e8c5b081855f3061
2e51a8c4ab5b014aeff1eeac9da5a0937f5ca7dcde7f089f88db05460f2c47ca
GET /rp/zR1_7umkICzzoyFy6MWwgYVfMGE.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:34 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 104
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: QeETXV1K7+JAxNvXtx9A3Q==
Last-Modified: Sat, 29 May 2021 00:28:20 GMT
ETag: 0x8D92238A92FB448
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: 609e27a4-f01e-001d-30d1-1c715d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: D22AFC6B91E3429C847DEA72DEAA33F0 Ref B: SEL20EDGE0612 Ref C: 2023-11-26T15:56:34Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: F9552868D5664562B426399512A167D8 Ref B: SLAEDGE1217 Ref C: 2023-11-26T15:56:34Z
ua152.ffzw.link/rp/0K6FJOfLmSwoeBaAlubcbjs3LYg.js
9.8 kB URL ua152.ffzw.link/rp/0K6FJOfLmSwoeBaAlubcbjs3LYg.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (9807), with no line terminators
Hash a3ed0a10d3402385766a2d530e3552ae
d0ae8524e7cb992c2878168096e6dc6e3b372d88
9225ded8980e0b2b2fb218039906f4bbd7fee0c68fb33aacfadfcef21b7dfe75
GET /rp/0K6FJOfLmSwoeBaAlubcbjs3LYg.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:34 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 9807
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: o+0KENNAI4V2ai1TDjVSrg==
Last-Modified: Tue, 17 Oct 2023 15:23:31 GMT
ETag: 0x8DBCF2505725C42
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: 8c206fbd-201e-0050-3808-20b7bf000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 79FFCA8A9FAF418FB531FD5F1053F659 Ref B: SEL20EDGE0507 Ref C: 2023-11-26T15:56:34Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 89462D9F5E784FFD84CB24D464160BDA Ref B: SLAEDGE1108 Ref C: 2023-11-26T15:56:34Z
ua152.ffzw.link/rp/zQLHhIVDA3MouZ0KcjMmnZHAnLY.js
1.7 kB URL ua152.ffzw.link/rp/zQLHhIVDA3MouZ0KcjMmnZHAnLY.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (1744), with no line terminators
Hash 3f22c97ad1aae5bf855e63454826532a
cd02c7848543037328b99d0a7233269d91c09cb6
4cc29d46de0573ccbc2b322b68a6c3a97707725062e1943183956ec64106115d
GET /rp/zQLHhIVDA3MouZ0KcjMmnZHAnLY.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:34 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 1744
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: PyLJetGq5b+FXmNFSCZTKg==
Last-Modified: Mon, 07 Mar 2022 08:23:27 GMT
ETag: 0x8DA0013C126B475
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: 29f38f7f-a01e-000e-24f6-1f44bc000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: D8D17D6F79624486BD830A2A5B023B03 Ref B: SEL20EDGE0505 Ref C: 2023-11-26T15:56:34Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 95F2F34758C14DC6A0315CABEE636C7E Ref B: SLAEDGE1906 Ref C: 2023-11-26T15:56:34Z
ua152.ffzw.link/rp/S4KnNkBPmiEIJLwWecf3Rw5rZCc.js
7.2 kB URL ua152.ffzw.link/rp/S4KnNkBPmiEIJLwWecf3Rw5rZCc.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (7173), with no line terminators
Hash 7d1ac79e0379574acbb0b63cf545c835
4b82a736404f9a210824bc1679c7f7470e6b6427
953c355a6e7167acf7bb4fd915f1ac798c45c7a1dc24606f5dc4bd25feb6925a
GET /rp/S4KnNkBPmiEIJLwWecf3Rw5rZCc.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:34 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 7173
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: fRrHngN5V0rLsLY89UXINQ==
Last-Modified: Tue, 22 Aug 2023 10:55:22 GMT
ETag: 0x8DBA2FE4851EFE9
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: 2cb427f8-201e-0036-1318-2005e5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 9156EB01CE634359A437697201836E7F Ref B: SEL20EDGE0505 Ref C: 2023-11-26T15:56:34Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: F27B9D3D8A714BD3B6FDA1A6A70FD195 Ref B: SLAEDGE1119 Ref C: 2023-11-26T15:56:34Z
ua152.ffzw.link/rp/bN7nBvzJOYBh_sKjnZph2cKIkuI.js
32 kB URL ua152.ffzw.link/rp/bN7nBvzJOYBh_sKjnZph2cKIkuI.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (31711), with no line terminators
Hash eb2531bff7cb8247af65dded455d6eb2
6cdee706fcc9398061fec2a39d9a61d9c28892e2
023e633dbba4b5dae98f09bb8c3e3c709c70e9acd9bef4442e08ab91a216940c
GET /rp/bN7nBvzJOYBh_sKjnZph2cKIkuI.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:34 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 31711
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: 6yUxv/fLgkevZd3tRV1usg==
Last-Modified: Tue, 17 Oct 2023 15:23:20 GMT
ETag: 0x8DBCF24FF1517BC
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: 47c3b1ce-601e-003a-5224-20eb14000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 62F0EF1F857841B0943A6FB1B3C9C234 Ref B: SEL20EDGE0316 Ref C: 2023-11-26T15:56:34Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 5270DA89CB5644BE9C845C83E21AFC38 Ref B: SLAEDGE1721 Ref C: 2023-11-26T15:56:34Z
ua152.ffzw.link/rp/pXryvUvEfLGpwFy7y2mycA-tSyE.js
5.4 kB URL ua152.ffzw.link/rp/pXryvUvEfLGpwFy7y2mycA-tSyE.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (5411), with no line terminators
Hash f14827d1112ece3a5a1a9363ada605c3
a57af2bd4bc47cb1a9c05cbbcb69b2700fad4b21
4191d965ca71924b5adcdd0590809844d72aed7f97ac400a60c9fea50b83d295
GET /rp/pXryvUvEfLGpwFy7y2mycA-tSyE.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:34 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 5411
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: 8Ugn0REuzjpaGpNjraYFww==
Last-Modified: Thu, 02 Mar 2023 06:34:22 GMT
ETag: 0x8DB1AE8292950FF
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: afd01cea-d01e-0045-6f04-207526000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 2DC6609B7C6B4269BBB2038A3856DEB6 Ref B: SEL20EDGE0611 Ref C: 2023-11-26T15:56:34Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 7714B31EF8044B8E888E10B9033D00B3 Ref B: SLAEDGE2018 Ref C: 2023-11-26T15:56:34Z
ua152.ffzw.link/rp/4ucWBkL-KL1zGhKHz72gejtRcbc.js
200 OK 2.0 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/4ucWBkL-KL1zGhKHz72gejtRcbc.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (1961), with no line terminators
Hash 6932cd1a76e6959ad4d0f330d6536bb4
e2e7160642fe28bd731a1287cfbda07a3b5171b7
041eb2e6f2582f4c19c0820acf9a0e9a2c7262edede0d397a5f6f0215e83f666
GET /rp/4ucWBkL-KL1zGhKHz72gejtRcbc.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:34 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 1961
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: aTLNGnbmlZrU0PMw1lNrtA==
Last-Modified: Fri, 28 May 2021 20:41:04 GMT
ETag: 0x8D92218E9D61969
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: 29a87089-f01e-0070-6ef5-1fdb73000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: AE11867A3949475BA9BF5C49AF519208 Ref B: SEL20EDGE0605 Ref C: 2023-11-26T15:56:34Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 141FADF85280420C91C4B349E4324807 Ref B: SLAEDGE1720 Ref C: 2023-11-26T15:56:34Z
ua152.ffzw.link/rp/M5UWUjKKKeB8UkbcHxEJ0mqpYVM.js
38 kB URL ua152.ffzw.link/rp/M5UWUjKKKeB8UkbcHxEJ0mqpYVM.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (38507), with no line terminators
Hash 79f819a4d3076d7fc01fd2c0b9e3c6d1
33951652328a29e07c5246dc1f1109d26aa96153
1d521107941fb250abd6dec68418d69d2902784722bd6e036df116dc83be13f3
GET /rp/M5UWUjKKKeB8UkbcHxEJ0mqpYVM.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:34 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 38507
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: efgZpNMHbX/AH9LAuePG0Q==
Last-Modified: Mon, 30 Oct 2023 21:30:11 GMT
ETag: 0x8DBD98F65FCB1FB
X-Cache: TCP_HIT
x-ms-request-id: b83cf180-001e-0065-58df-1d19ea000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 118EA75CA3354151BD58A35D91DE4999 Ref B: SEL20EDGE0618 Ref C: 2023-11-26T03:56:17Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 047127D267F34F4DB38E963C599196E8 Ref B: SLAEDGE1019 Ref C: 2023-11-26T15:56:34Z
ua152.ffzw.link/rp/x-A4tAoSs9ntI-aUvUy0rAK-EPs.js
6.6 kB URL ua152.ffzw.link/rp/x-A4tAoSs9ntI-aUvUy0rAK-EPs.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (6559), with no line terminators
Hash b674f85f98d15606f3c3d19261901406
c7e038b40a12b3d9ed23e694bd4cb4ac02be10fb
b4d23c85d95c4b00a6583bacf146489400cf499319039a54a755e8b86063e14e
GET /rp/x-A4tAoSs9ntI-aUvUy0rAK-EPs.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:34 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 6559
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: tnT4X5jRVgbzw9GSYZAUBg==
Last-Modified: Sat, 07 Oct 2023 09:28:08 GMT
ETag: 0x8DBC717B7F193DF
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: a3634630-e01e-0009-0201-20b239000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 07C00154A7224AABAC8F34BE2076434E Ref B: SEL20EDGE0310 Ref C: 2023-11-26T15:56:34Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 3F50B170ED3245BB81BEB4EC69BCA024 Ref B: SLAEDGE1512 Ref C: 2023-11-26T15:56:34Z
ua152.ffzw.link/rp/LzT8SRmEBvTMP8iLMYz0dO6PtTs.js
3.5 kB URL ua152.ffzw.link/rp/LzT8SRmEBvTMP8iLMYz0dO6PtTs.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (3480), with no line terminators
Hash 4290e6d2665a5305237844b856c8d5c0
2f34fc49198406f4cc3fc88b318cf474ee8fb53b
e063bb80ffc70222e266e5b133229ac6ebd06e3b73fd11040b917f524ef0e857
GET /rp/LzT8SRmEBvTMP8iLMYz0dO6PtTs.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:34 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 3480
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: QpDm0mZaUwUjeES4VsjVwA==
Last-Modified: Fri, 08 Sep 2023 09:38:52 GMT
ETag: 0x8DBB04F69CDA447
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: 99f9ed13-101e-0071-5d0d-1eda8e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 0763A63D017C4671A73016ADCDC2E425 Ref B: SEL20EDGE0306 Ref C: 2023-11-26T15:56:34Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 2B3964539C4044988F306BE7233E9F1B Ref B: SLAEDGE1806 Ref C: 2023-11-26T15:56:34Z
ua152.ffzw.link/rp/-3U4FK5f1--Ttxnoz-hHxm_l9YE.js
200 OK 2.3 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/-3U4FK5f1--Ttxnoz-hHxm_l9YE.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (2312), with no line terminators
Hash 862e17f5d98f70556fbffa8e2de25987
fb753814ae5fd7ef93b719e8cfe847c66fe5f581
bd16aa0941f8d18fccc27cde7b692ad7bf5bf061f0e7195dd85128c055138b96
GET /rp/-3U4FK5f1--Ttxnoz-hHxm_l9YE.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:34 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 2312
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: hi4X9dmPcFVvv/qOLeJZhw==
Last-Modified: Wed, 25 Oct 2023 09:55:00 GMT
ETag: 0x8DBD54073DC2A0B
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: 0a2a4501-001e-0065-78fd-1f19ea000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: BDE08B239BFD47C4A164B6E79BA88829 Ref B: SEL20EDGE0509 Ref C: 2023-11-26T15:56:34Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: EF2F358B372B4E8AAE1F6497BE089D07 Ref B: SLAEDGE1110 Ref C: 2023-11-26T15:56:34Z
ua152.ffzw.link/rp/0UmQfjaUOrsaTx4YiaPnDpNIcHs.js
200 OK 198 B URL GET HTTP/1.1 ua152.ffzw.link/rp/0UmQfjaUOrsaTx4YiaPnDpNIcHs.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with no line terminators
Hash e3c4a4463b9c8d7dd23e2bc4a7605f2b
d149907e36943abb1a4f1e1889a3e70e9348707b
cfb7fa1c682c6eee2b763b37e002022463cd6435434a16f6335f33fb98f994a6
GET /rp/0UmQfjaUOrsaTx4YiaPnDpNIcHs.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:34 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 198
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: 48SkRjucjX3SPivEp2BfKw==
Last-Modified: Wed, 02 Jun 2021 18:35:13 GMT
ETag: 0x8D925F528EE1AC6
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: 838e56c7-001e-004c-0e44-206fa8000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 909B4A54DC1C40EDAC7ADB0BDBC5243A Ref B: SEL20EDGE0414 Ref C: 2023-11-26T15:56:34Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: AC475E7B960843919367FE4BAC1775BB Ref B: SLAEDGE1911 Ref C: 2023-11-26T15:56:34Z
ua152.ffzw.link/rp/LgE-JO8kQyFcaxhOnf4YC35WKEg.js
574 B URL ua152.ffzw.link/rp/LgE-JO8kQyFcaxhOnf4YC35WKEg.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (574), with no line terminators
Hash 072d0f8c7fdb7655402fb9c592d66e18
2e013e24ef2443215c6b184e9dfe180b7e562848
4cd4cc3d07bbacdecb7331bf78fc5353b4b2664b6c81c1c0237136123d8e704a
GET /rp/LgE-JO8kQyFcaxhOnf4YC35WKEg.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:34 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 574
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: By0PjH/bdlVAL7nFktZuGA==
Last-Modified: Sat, 04 Jun 2022 00:11:39 GMT
ETag: 0x8DA45BECBDAFD48
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: 8c2082d7-201e-0050-270a-20b7bf000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 48E29B50472E468D86BA590C78A39311 Ref B: SEL20EDGE0319 Ref C: 2023-11-26T15:56:34Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: F3127F36AE1C456194CD1D8DDFD9EB29 Ref B: SLAEDGE1107 Ref C: 2023-11-26T15:56:34Z
ua152.ffzw.link/rp/HlaXtFDbFiJNQsr1DecRpAXEteY.js
4.9 kB URL ua152.ffzw.link/rp/HlaXtFDbFiJNQsr1DecRpAXEteY.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (4930), with no line terminators
Hash f0b47869072148871c9ef8fd599d1561
1e5697b450db16224d42caf50de711a405c4b5e6
a214296c5311c24def18e675844a5b9363e5e262a3f21388d5fd9d14e49a6322
GET /rp/HlaXtFDbFiJNQsr1DecRpAXEteY.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:34 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 4930
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: 8LR4aQchSIccnvj9WZ0VYQ==
Last-Modified: Wed, 26 Jul 2023 08:30:05 GMT
ETag: 0x8DB8DB283D93C5E
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: f71d43df-601e-005c-142a-20594e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 9A362EAC80D244ADBB4E3A230AC30025 Ref B: SEL20EDGE0219 Ref C: 2023-11-26T15:56:34Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 459433627DEC4595A8828B085D4AB158 Ref B: SLAEDGE1205 Ref C: 2023-11-26T15:56:34Z
ua152.ffzw.link/rp/vE_Wye-y6H0tMPGd14yRiLbXay0.js
938 B URL ua152.ffzw.link/rp/vE_Wye-y6H0tMPGd14yRiLbXay0.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (938), with no line terminators
Hash dbf771b1f0b05393d18bc55fd6dd94a7
bc4fd6c9efb2e87d2d30f19dd78c9188b6d76b2d
f2c5677d58718ae60f7f4e98351643afeb8ad7fdfe4b2b6af0b7b63108cb7071
GET /rp/vE_Wye-y6H0tMPGd14yRiLbXay0.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:35 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 938
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: 2/dxsfCwU5PRi8Vf1t2Upw==
Last-Modified: Tue, 14 Jun 2022 17:07:11 GMT
ETag: 0x8DA4E28526F0478
X-Cache: TCP_HIT
x-ms-request-id: 29f46096-a01e-000e-470c-2044bc000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 4EC2B054AC394CC6BF91A6713DB003CC Ref B: SEL20EDGE0411 Ref C: 2023-11-26T07:21:13Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 5F7B0140CF23423AA64A6E1E17180A96 Ref B: SLAEDGE1415 Ref C: 2023-11-26T15:56:35Z
ua152.ffzw.link/rp/whv3CAEvlIBEdx3sZAs8IhPnW6E.js
1.5 kB URL ua152.ffzw.link/rp/whv3CAEvlIBEdx3sZAs8IhPnW6E.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (1494), with no line terminators
Hash a31d65e2f94b0c7671947a653e7f7ec6
c21bf708012f948044771dec640b3c2213e75ba1
457cbadcfb29fb7fa3650b9580493f71b7e57142178045b6ca0985589d91f2cc
GET /rp/whv3CAEvlIBEdx3sZAs8IhPnW6E.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:35 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 1494
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: ox1l4vlLDHZxlHplPn9+xg==
Last-Modified: Tue, 04 Oct 2022 19:00:07 GMT
ETag: 0x8DAA63AA7A0B9FE
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: 24d0a862-701e-0048-6145-209a2a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: B58C198026464D0EA7F629196877D5AA Ref B: SEL20EDGE0614 Ref C: 2023-11-26T15:56:35Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 3FA0B9B8DA484E129E9C9E05816ED3B3 Ref B: SLAEDGE1018 Ref C: 2023-11-26T15:56:35Z
ua152.ffzw.link/rp/_9-EDvSk_BSbMsRZ_vt15-GYlhk.js
11 kB URL ua152.ffzw.link/rp/_9-EDvSk_BSbMsRZ_vt15-GYlhk.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (10924), with no line terminators
Hash 7fde246b74c5f67f0aa8c7d7cc79e80e
ffdf840ef4a4fc149b32c459fefb75e7e1989619
7b51d998064518a7dba2e327ebbb4bcad2536e8803f00c30711b8b8dbbd5d5a5
GET /rp/_9-EDvSk_BSbMsRZ_vt15-GYlhk.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:35 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 10924
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: f94ka3TF9n8KqMfXzHnoDg==
Last-Modified: Wed, 16 Nov 2022 08:58:33 GMT
ETag: 0x8DAC7B0BDB4035B
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: 7ce9ecb0-001e-006e-261e-1f019e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 2959A25239A14BDD81C5A69AB8859A3D Ref B: SEL20EDGE0313 Ref C: 2023-11-26T15:56:35Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 5F34A514A5734DBD966A704284D6672F Ref B: SLAEDGE1312 Ref C: 2023-11-26T15:56:35Z
ua152.ffzw.link/rp/OLYbEP38nMxOO370TQDiXX_NaYY.js
200 OK 1.0 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/OLYbEP38nMxOO370TQDiXX_NaYY.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (1039), with no line terminators
Hash 6f8f957cc14471d1deaa886c119bfc31
38b61b10fdfc9ccc4e3b7ef44d00e25d7fcd6986
10455402c4bee3a0a450116f9b0844222ac401e9b826e4ccdf3267a1f38bfc6e
GET /rp/OLYbEP38nMxOO370TQDiXX_NaYY.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:35 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 1039
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: b4+VfMFEcdHeqohsEZv8MQ==
Last-Modified: Tue, 15 Mar 2022 07:26:31 GMT
ETag: 0x8DA065520B4B94D
X-Cache: TCP_HIT
x-ms-request-id: df63b49e-301e-000b-1f81-20b0c3000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: CD0BB2E5F183476BB5103B0FFFD1A32D Ref B: SEL20EDGE0406 Ref C: 2023-11-26T15:56:15Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: D1FD1981ED3A47C988A6C84C1CE02DD7 Ref B: SLAEDGE1908 Ref C: 2023-11-26T15:56:35Z
ua152.ffzw.link/rp/OCmf9YpFHv1y4C2V3DcTFtSahjo.js
200 OK 1.2 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/OCmf9YpFHv1y4C2V3DcTFtSahjo.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (1203), with no line terminators
Hash dbbd25a4a4f730c8ff26d9c8a21a939d
38299ff58a451efd72e02d95dc371316d49a863a
42453a710eec2630e8857ee9ad65ae5b0b6dd6e3cdb88874b720ee2c2826fab6
GET /rp/OCmf9YpFHv1y4C2V3DcTFtSahjo.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:35 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 1203
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: 270lpKT3MMj/JtnIohqTnQ==
Last-Modified: Tue, 14 Jun 2022 01:49:05 GMT
ETag: 0x8DA4DA810564D28
X-Cache: TCP_HIT
x-ms-request-id: 19e6fe5d-901e-000d-460d-2047bb000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: FCED1C14DDE0451F93B33ECDBD277808 Ref B: SEL20EDGE0621 Ref C: 2023-11-26T15:56:15Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: BC708D27A138424A9045C07A4D69982D Ref B: SLAEDGE1320 Ref C: 2023-11-26T15:56:35Z
ua152.ffzw.link/rp/q1gevfcEFkupSPW9UPJMXOxgP-c.js
2.1 kB URL ua152.ffzw.link/rp/q1gevfcEFkupSPW9UPJMXOxgP-c.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (2042)
Hash 9bd59261c4f7060c0a56fbebe640d193
ab581ebdf704164ba948f5bd50f24c5cec603fe7
f2e33bd98a56131c29d724c93d9502d8db6a69a9ff6f3e05dc0632fa5815be22
GET /rp/q1gevfcEFkupSPW9UPJMXOxgP-c.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:35 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 2073
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: m9WSYcT3BgwKVvvr5kDRkw==
Last-Modified: Fri, 28 May 2021 23:53:46 GMT
ETag: 0x8D92233D5691F43
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: 76a89d9c-501e-0054-010c-20423d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 11A0206018654BE0AAF4B5048EA532AA Ref B: SEL20EDGE0309 Ref C: 2023-11-26T15:56:35Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: E20D1F97BF0E4918858751F247954896 Ref B: SLAEDGE1221 Ref C: 2023-11-26T15:56:35Z
ua152.ffzw.link/rp/xlo3EyP_8uNgvtWhLWJ4khAI6zg.js
200 OK 1.5 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/xlo3EyP_8uNgvtWhLWJ4khAI6zg.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (1534), with no line terminators
Hash 643e14fe793987d9bb21bf798efb1dba
c65a371323fff2e360bed5a12d6278921008eb38
f37567196fe3233ff3080b514f1fe727556c5033b026592abd76b0f870083d7a
GET /rp/xlo3EyP_8uNgvtWhLWJ4khAI6zg.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:35 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 1534
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: ZD4U/nk5h9m7Ib95jvsdug==
Last-Modified: Thu, 06 Oct 2022 21:21:18 GMT
ETag: 0x8DAA7E0B55FCB10
X-Cache: TCP_HIT
x-ms-request-id: b547a08e-101e-0053-460b-20b4b8000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: CC00016F36994AD78588161D8480B969 Ref B: SEL20EDGE0321 Ref C: 2023-11-26T15:56:15Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 4C409F1B77674680819978ECCD4A66DC Ref B: SLAEDGE1521 Ref C: 2023-11-26T15:56:35Z
ua152.ffzw.link/rp/ovgZwgoTI_lTG2-Q_18bCRKVMes.js
589 B URL ua152.ffzw.link/rp/ovgZwgoTI_lTG2-Q_18bCRKVMes.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (589), with no line terminators
Hash dec79fa9480f655ff352fee67af23cd1
a2f819c20a1323f9531b6f90ff5f1b09129531eb
d7eb0b84a53521afcadc9a0eb7dba51a0e77451b9e7ebeee126b1d676949f6bd
GET /rp/ovgZwgoTI_lTG2-Q_18bCRKVMes.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:35 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 589
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: 3sefqUgPZV/zUv7mevI80Q==
Last-Modified: Tue, 05 Sep 2023 03:29:14 GMT
ETag: 0x8DBADC04788BD77
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: 210414b1-501e-001b-2de8-1c8625000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 607F7C78DD8B454AA3964EB8D89C054E Ref B: SEL20EDGE0610 Ref C: 2023-11-26T15:56:35Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 1453E53DCC924EDD894EB6CB3253035F Ref B: SLAEDGE1907 Ref C: 2023-11-26T15:56:35Z
ua152.ffzw.link/rp/OUGU-N0FiScxTUHgZZYbR2CE9yQ.js
2.7 kB URL ua152.ffzw.link/rp/OUGU-N0FiScxTUHgZZYbR2CE9yQ.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (2683), with no line terminators
Hash fb797698ef041dd693aee90fb9c13c7e
394194f8dd058927314d41e065961b476084f724
795e9290718eb62a1fb00646dc738f6a6b715b1171dd54a3d2defa013a74f3da
GET /rp/OUGU-N0FiScxTUHgZZYbR2CE9yQ.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:35 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 2683
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: +3l2mO8EHdaTrukPucE8fg==
Last-Modified: Thu, 09 Nov 2023 08:37:43 GMT
ETag: 0x8DBE0FF24285D22
X-Cache: TCP_HIT
x-ms-request-id: d44db70d-401e-002d-3b29-202b77000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: EA385C6E61D34FAE9D6CA7E400437BCA Ref B: SEL20EDGE0212 Ref C: 2023-11-26T09:11:45Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: C97F2D4DBB68439183011E24DD583996 Ref B: SLAEDGE1116 Ref C: 2023-11-26T15:56:35Z
ua152.ffzw.link/rp/OYRPfpMqGonG0X-t0CRL12zyi3k.js
403 B URL ua152.ffzw.link/rp/OYRPfpMqGonG0X-t0CRL12zyi3k.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (403), with no line terminators
Hash 2a7b6c9f95f74857f397645f08afbed6
39844f7e932a1a89c6d17fadd0244bd76cf28b79
7430ea156df5b7911dcdba754cb602ae1a75274146e84d9a79231fb09facdd45
GET /rp/OYRPfpMqGonG0X-t0CRL12zyi3k.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:35 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 403
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: Kntsn5X3SFfzl2RfCK++1g==
Last-Modified: Tue, 03 Oct 2023 11:45:45 GMT
ETag: 0x8DBC40647763B2A
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: 25152b0c-401e-0004-2c71-1e5d35000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: A6FCDA916C9A4687B564E39A3ADDF913 Ref B: SEL20EDGE0317 Ref C: 2023-11-26T15:56:35Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 3177FAA818AB4F4986A0350E635AE314 Ref B: SLAEDGE1212 Ref C: 2023-11-26T15:56:35Z
ua152.ffzw.link/rp/kQQLc9OgBv4VjrDr_0MWc5d3AIE.js
200 OK 2.1 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/kQQLc9OgBv4VjrDr_0MWc5d3AIE.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (2070), with no line terminators
Hash ae033e8d6c14c4be9de0b0f2050ef164
91040b73d3a006fe158eb0ebff43167397770081
7e1de309beb9f6f805e0574d046a8cb58afbb05ebcb38eeb6b544e5edb1efedd
GET /rp/kQQLc9OgBv4VjrDr_0MWc5d3AIE.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:35 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 2070
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: rgM+jWwUxL6d4LDyBQ7xZA==
Last-Modified: Wed, 27 Sep 2023 13:08:41 GMT
ETag: 0x8DBBF5ADF4EE90F
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: 8c02920c-401e-0069-3f5b-20f71b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 71CA4B4F23C247338A58B190756ECC79 Ref B: SEL20EDGE0416 Ref C: 2023-11-26T15:56:35Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 7BA8A02763AD4F1C94FFD068CB3C1DD7 Ref B: SLAEDGE1209 Ref C: 2023-11-26T15:56:35Z
ua152.ffzw.link/rp/GIka8UxMSDuqbLNcmFxt66stnIo.js
200 OK 883 B URL GET HTTP/1.1 ua152.ffzw.link/rp/GIka8UxMSDuqbLNcmFxt66stnIo.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (883), with no line terminators
Hash fd88c51edb7fcfe4f8d0aa2763cebe4a
18891af14c4c483baa6cb35c985c6debab2d9c8a
51f58a23f7723b6cbd51b994cb784fbc2a4ab58442adaeda6c778f648073b699
GET /rp/GIka8UxMSDuqbLNcmFxt66stnIo.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:35 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 883
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: /YjFHtt/z+T40KonY86+Sg==
Last-Modified: Fri, 28 May 2021 21:30:01 GMT
ETag: 0x8D9221FC0232D0C
X-Cache: TCP_HIT
x-ms-request-id: 51d06f46-501e-0039-4324-20e813000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 1A3527A39F7C4041AA080E4125E4AB10 Ref B: SEL20EDGE0217 Ref C: 2023-11-26T15:56:15Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 94AB313A88BC4217BFB1C77253F0D4EC Ref B: SLAEDGE1709 Ref C: 2023-11-26T15:56:35Z
ua152.ffzw.link/rp/y4T8XTr7fr1j6Opp4MxgK5GMjlk.js
2.0 kB URL ua152.ffzw.link/rp/y4T8XTr7fr1j6Opp4MxgK5GMjlk.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type Unicode text, UTF-8 text, with very long lines (1987), with no line terminators
Hash 4f0d333a83a3e0ac875111e745fa4cc8
cb84fc5d3afb7ebd63e8ea69e0cc602b918c8e59
ea1b4486642ec0a2cba03b8e93a1fae1dfa80a4543eba93c72990ace03c7ad9c
GET /rp/y4T8XTr7fr1j6Opp4MxgK5GMjlk.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:35 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 1989
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: Tw0zOoOj4KyHURHnRfpMyA==
Last-Modified: Thu, 18 May 2023 01:41:20 GMT
ETag: 0x8DB5740FB5FA2BE
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: 99645671-401e-0040-7af7-1c8159000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 42929297ACFE434498A86698F9AF96FB Ref B: SEL20EDGE0316 Ref C: 2023-11-26T15:56:35Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 1F4A4A9087D548179B8ED4C9E84534EA Ref B: SLAEDGE1921 Ref C: 2023-11-26T15:56:35Z
ua152.ffzw.link/rp/fnh6u82JKXX7QPoqc8lSG36VTPI.js
200 OK 7.5 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/fnh6u82JKXX7QPoqc8lSG36VTPI.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (7471), with no line terminators
Hash 633fba98f5592ed7e3be6109eb9edbab
7e787abbcd892975fb40fa2a73c9521b7e954cf2
1a5a52a6282152c5b718bd9a82bba0137e1219322a9620f8f45514a7c78189d0
GET /rp/fnh6u82JKXX7QPoqc8lSG36VTPI.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:35 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 7471
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: Yz+6mPVZLtfjvmEJ657bqw==
Last-Modified: Fri, 01 Sep 2023 22:21:24 GMT
ETag: 0x8DBAB39C7311C82
X-Cache: TCP_HIT
x-ms-request-id: 57a2624b-b01e-0033-6a27-1cf19a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: D18D6CB465744D41B39578686AE68F9B Ref B: SEL20EDGE0413 Ref C: 2023-11-24T20:04:40Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 1D08DAE8B4AE4F7B8F3476843A8C802C Ref B: SLAEDGE1914 Ref C: 2023-11-26T15:56:35Z
ua152.ffzw.link/fd/ls/l?IG=7C73DE283EAE42229B89933196E76768&CID=0E02A7C1FED666F8226FB414FFF667B5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.MiniTP%22,%22FID%22:%22CI%22,%22Name%22:%22FullTP%22,%22Text%22:%22show%22}]
0 B URL ua152.ffzw.link/fd/ls/l?IG=7C73DE283EAE42229B89933196E76768&CID=0E02A7C1FED666F8226FB414FFF667B5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.MiniTP%22,%22FID%22:%22CI%22,%22Name%22:%22FullTP%22,%22Text%22:%22show%22}]
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /fd/ls/l?IG=7C73DE283EAE42229B89933196E76768&CID=0E02A7C1FED666F8226FB414FFF667B5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.MiniTP%22,%22FID%22:%22CI%22,%22Name%22:%22FullTP%22,%22Text%22:%22show%22}] HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:35 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
X-Cache: CONFIG_NOCACHE
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-MSEdge-Ref: Ref A: 54F5BF576F8F403E86CE30D4E204A2E9 Ref B: SLAEDGE1814 Ref C: 2023-11-26T15:56:35Z
ua152.ffzw.link/fd/ls/l?IG=7C73DE283EAE42229B89933196E76768&CID=0E02A7C1FED666F8226FB414FFF667B5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1701014192308%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1701014192308%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%221024%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1701014192309%2C%22Name%22%3A%22T%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1701014192313%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1701014192315%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1701014192316%2C%22Name%22%3A1662%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.PoleQSLoadSucess%22%2C%22TS%22%3A1701014192317%2C%22Name%22%3A%22PoleQS%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Index%22%3A%221%22%2C%22T%22%3A%22CI.View%22%2C%22TS%22%3A1701014192342%2C%22Name%22%3A%22TobRRPosition%22%2C%22FID%22%3A%22TobRR%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1701014192344%2C%22Name%22%3A%22BottomBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1701014192344%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1701014192345%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1701014192346%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%2C%7B%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1701014192347%2C%22Name%22%3A%22tryWriteEffectiveLocation%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D
200 OK 0 B URL GET HTTP/1.1 ua152.ffzw.link/fd/ls/l?IG=7C73DE283EAE42229B89933196E76768&CID=0E02A7C1FED666F8226FB414FFF667B5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1701014192308%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1701014192308%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%221024%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1701014192309%2C%22Name%22%3A%22T%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1701014192313%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1701014192315%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1701014192316%2C%22Name%22%3A1662%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.PoleQSLoadSucess%22%2C%22TS%22%3A1701014192317%2C%22Name%22%3A%22PoleQS%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Index%22%3A%221%22%2C%22T%22%3A%22CI.View%22%2C%22TS%22%3A1701014192342%2C%22Name%22%3A%22TobRRPosition%22%2C%22FID%22%3A%22TobRR%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1701014192344%2C%22Name%22%3A%22BottomBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1701014192344%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1701014192345%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1701014192346%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%2C%7B%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1701014192347%2C%22Name%22%3A%22tryWriteEffectiveLocation%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /fd/ls/l?IG=7C73DE283EAE42229B89933196E76768&CID=0E02A7C1FED666F8226FB414FFF667B5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1701014192308%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1701014192308%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%221024%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1701014192309%2C%22Name%22%3A%22T%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1701014192313%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1701014192315%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1701014192316%2C%22Name%22%3A1662%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.PoleQSLoadSucess%22%2C%22TS%22%3A1701014192317%2C%22Name%22%3A%22PoleQS%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Index%22%3A%221%22%2C%22T%22%3A%22CI.View%22%2C%22TS%22%3A1701014192342%2C%22Name%22%3A%22TobRRPosition%22%2C%22FID%22%3A%22TobRR%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1701014192344%2C%22Name%22%3A%22BottomBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1701014192344%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1701014192345%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1701014192346%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%2C%7B%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1701014192347%2C%22Name%22%3A%22tryWriteEffectiveLocation%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:35 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
X-Cache: CONFIG_NOCACHE
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-MSEdge-Ref: Ref A: 8EA10E9FCD2447CE952D4DB892238A28 Ref B: SLAEDGE1111 Ref C: 2023-11-26T15:56:35Z
ua152.ffzw.link/rp/2Ro4LD_2OaiuqUlZYlpozEd7Bf0.svg
200 OK 1.4 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/2Ro4LD_2OaiuqUlZYlpozEd7Bf0.svg
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1280)
Hash eef6a20d0495f97370bed4a23d981888
d91a382c3ff639a8aea94959625a68cc477b05fd
6badef122a8cdf05902c86d65e410abc2bbb90d50970ed514c81b0d3dcb4955b
GET /rp/2Ro4LD_2OaiuqUlZYlpozEd7Bf0.svg HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:35 GMT
Content-Type: image/svg+xml
Content-Length: 1393
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: 7vaiDQSV+XNwvtSiPZgYiA==
Last-Modified: Tue, 25 Jul 2023 16:47:09 GMT
ETag: 0x8DB8D2EC9782FFB
X-Cache: TCP_HIT
x-ms-request-id: f0e73b84-a01e-0068-2ff5-1ff6e6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 1132A2F5DE7940C5B5E981DF317B47E3 Ref B: SEL20EDGE0507 Ref C: 2023-11-26T15:56:15Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 4E91389A6F144384AD593A0698A39362 Ref B: SLAEDGE1615 Ref C: 2023-11-26T15:56:35Z
ua152.ffzw.link/rp/Ald4Nnlmu2BHSinrGiRNy1JMSz8.svg
200 OK 493 B URL GET HTTP/1.1 ua152.ffzw.link/rp/Ald4Nnlmu2BHSinrGiRNy1JMSz8.svg
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (395), with CRLF line terminators
Hash 0d382104bd26701ff4adc20ff494dcda
025778367966bb60474a29eb1a244dcb524c4b3f
855179aee2331c59593692878358d6b0f00023ff8aaa2778f8c40a4447739d76
GET /rp/Ald4Nnlmu2BHSinrGiRNy1JMSz8.svg HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:35 GMT
Content-Type: image/svg+xml
Content-Length: 493
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: DTghBL0mcB/0rcIP9JTc2g==
Last-Modified: Thu, 17 Aug 2023 10:07:05 GMT
ETag: 0x8DB9F09B5F4A008
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: 4452edb7-701e-0061-1d06-20ec68000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: F2D8D8889D484F6D962A3FFF5174C042 Ref B: SEL20EDGE0219 Ref C: 2023-11-26T15:56:35Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 4CA36E67286E41BAB24C4B5499A9E079 Ref B: SLAEDGE1717 Ref C: 2023-11-26T15:56:35Z
ua152.ffzw.link/th?id=ODLS.f9daea21-9936-4164-815f-b5209459f3c6&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2
200 OK 209 B URL GET HTTP/1.1 ua152.ffzw.link/th?id=ODLS.f9daea21-9936-4164-815f-b5209459f3c6&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 7d4555b1487ec50930c7567b2690bf10
544c4b9a47d0d12fd38fdc07900d32d31c0f600f
50bbdf35a7de6804b4e50971d7e3656d6c8100e4a03cf935f841d0afd47d8371
GET /th?id=ODLS.f9daea21-9936-4164-815f-b5209459f3c6&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2 HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:35 GMT
Content-Type: image/png
Content-Length: 209
Connection: keep-alive
Cache-Control: public, max-age=2592000
X-Cache: TCP_MISS
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Timing-Allow-Origin: *
Report-To: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}
NEL: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-MSEdge-Ref: Ref A: 218FD568ED62455D853444F020F100A0 Ref B: SLAEDGE1420 Ref C: 2023-11-26T15:56:35Z
ua152.ffzw.link/th?id=ODLS.fad0afdf-9a8a-4b29-b03f-8904b684a207:ODLS.87518fab-8fc1-4893-a7f1-c7d88283a35a:ODLS.b98cdf55-c576-44c7-be3f-73b8dd892c6b:ODLS.10316189-64ed-44e8-98b3-c284bd7675fe:ODLS.1f02509d-37c9-4aa1-ba05-705328a45f91:ODLS.7f053868-4d84-44a8-9b95-8fc671ba7f4f:ODLS.b161da63-f84a-479d-9af5-ac8faa9f9508&w=16&h=16&o=6&pid=1.2&bw=3&bc=ffffff
3.9 kB URL ua152.ffzw.link/th?id=ODLS.fad0afdf-9a8a-4b29-b03f-8904b684a207:ODLS.87518fab-8fc1-4893-a7f1-c7d88283a35a:ODLS.b98cdf55-c576-44c7-be3f-73b8dd892c6b:ODLS.10316189-64ed-44e8-98b3-c284bd7675fe:ODLS.1f02509d-37c9-4aa1-ba05-705328a45f91:ODLS.7f053868-4d84-44a8-9b95-8fc671ba7f4f:ODLS.b161da63-f84a-479d-9af5-ac8faa9f9508&w=16&h=16&o=6&pid=1.2&bw=3&bc=ffffff
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type PNG image data, 136 x 22, 8-bit/color RGBA, non-interlaced\012- data
Hash bfbb800c8030b86548e3e5f02b6716b9
a8c96f5ff56245ddbad05a1906f1302b1df66101
d6f8055cc7c2b71cd5d283cd760f6e7d795caecdd7a38bc4dd80dfdd0cf31079
GET /th?id=ODLS.fad0afdf-9a8a-4b29-b03f-8904b684a207:ODLS.87518fab-8fc1-4893-a7f1-c7d88283a35a:ODLS.b98cdf55-c576-44c7-be3f-73b8dd892c6b:ODLS.10316189-64ed-44e8-98b3-c284bd7675fe:ODLS.1f02509d-37c9-4aa1-ba05-705328a45f91:ODLS.7f053868-4d84-44a8-9b95-8fc671ba7f4f:ODLS.b161da63-f84a-479d-9af5-ac8faa9f9508&w=16&h=16&o=6&pid=1.2&bw=3&bc=ffffff HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:35 GMT
Content-Type: image/png
Content-Length: 3857
Connection: keep-alive
Cache-Control: public, max-age=1209600
X-Cache: TCP_MISS
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Timing-Allow-Origin: *
Report-To: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}
NEL: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-MSEdge-Ref: Ref A: 57B076694524455FB79E2444699F9226 Ref B: SLAEDGE1407 Ref C: 2023-11-26T15:56:35Z
ua152.ffzw.link/th?id=ODLS.b468ff0c-224d-4edf-8720-0849e5987d7a&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2
200 OK 209 B URL GET HTTP/1.1 ua152.ffzw.link/th?id=ODLS.b468ff0c-224d-4edf-8720-0849e5987d7a&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 7d4555b1487ec50930c7567b2690bf10
544c4b9a47d0d12fd38fdc07900d32d31c0f600f
50bbdf35a7de6804b4e50971d7e3656d6c8100e4a03cf935f841d0afd47d8371
GET /th?id=ODLS.b468ff0c-224d-4edf-8720-0849e5987d7a&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2 HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:36 GMT
Content-Type: image/png
Content-Length: 209
Connection: keep-alive
Cache-Control: public, max-age=2592000
X-Cache: TCP_MISS
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Timing-Allow-Origin: *
Report-To: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}
NEL: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-MSEdge-Ref: Ref A: F0B5399C0541450FA956745F9BBA6F24 Ref B: SLAEDGE1411 Ref C: 2023-11-26T15:56:36Z
ua152.ffzw.link/rp/ZT02jv3UmMr2Vnfh1U8D3RiwJrU.js
200 OK 22 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/ZT02jv3UmMr2Vnfh1U8D3RiwJrU.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (21819)
Hash 30280c218d3caaf6b04ec8c6f906e190
653d368efdd498caf65677e1d54f03dd18b026b5
d313c6fff97701cc24db9d84c8b0643ca7a82a01c0868517e6e543779985c46e
GET /rp/ZT02jv3UmMr2Vnfh1U8D3RiwJrU.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:36 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 21850
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: MCgMIY08qvawTsjG+QbhkA==
Last-Modified: Wed, 28 Jun 2023 05:06:24 GMT
ETag: 0x8DB77956B8DC168
X-Cache: TCP_HIT
x-ms-request-id: e7d6e526-e01e-0002-0600-1faa4d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 18082B3039BF416981AB1C898A152CAE Ref B: SEL20EDGE0413 Ref C: 2023-11-24T18:02:09Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 453FCCB46CB94E3FBC1B3CA58F2A6D3E Ref B: SLAEDGE1316 Ref C: 2023-11-26T15:56:36Z
ua152.ffzw.link/th?id=ODLS.4c547ec3-0e57-49a1-9787-ffc800aeb7d0&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2
527 B URL ua152.ffzw.link/th?id=ODLS.4c547ec3-0e57-49a1-9787-ffc800aeb7d0&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash ea46c381402cfe19ecff1229c0ab2c98
a57d1e7247a80ee8ba41ae61ab20cd7daa007fe6
92ad794e83fdf31641339bb26d0be064591d6fe78b02a23773fd080cffef9a9a
GET /th?id=ODLS.4c547ec3-0e57-49a1-9787-ffc800aeb7d0&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2 HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:36 GMT
Content-Type: image/png
Content-Length: 527
Connection: keep-alive
Cache-Control: public, max-age=2592000
X-Cache: TCP_MISS
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Timing-Allow-Origin: *
Report-To: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}
NEL: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-MSEdge-Ref: Ref A: C427487E4DD244278FC991E7D77A8280 Ref B: SLAEDGE1609 Ref C: 2023-11-26T15:56:36Z
ua152.ffzw.link/th?id=OIP.yocrMo7tPspD-_vaCqeVMgHaEK&w=80&h=80&c=1&vt=10&bgcl=59371d&r=0&o=6&pid=5.1
1.3 kB URL ua152.ffzw.link/th?id=OIP.yocrMo7tPspD-_vaCqeVMgHaEK&w=80&h=80&c=1&vt=10&bgcl=59371d&r=0&o=6&pid=5.1
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data
Hash 108be4a3a674a793729ba8cd621eb166
2dbe708d560b5daee44a00ee8ba5decd06323304
7e47f494e5bde4dad8646a027047b92d1fca1800efcf0fc03fb5f6bbbcb6cb6e
GET /th?id=OIP.yocrMo7tPspD-_vaCqeVMgHaEK&w=80&h=80&c=1&vt=10&bgcl=59371d&r=0&o=6&pid=5.1 HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:36 GMT
Content-Type: image/jpeg
Content-Length: 1281
Connection: keep-alive
Cache-Control: public, max-age=1209600
X-Cache: TCP_MISS
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Timing-Allow-Origin: *
Report-To: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}
NEL: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-MSEdge-Ref: Ref A: 4ECC517000784A79BA90B2D4564922A9 Ref B: SLAEDGE1420 Ref C: 2023-11-26T15:56:36Z
ua152.ffzw.link/th?id=ODLS.f9daea21-9936-4164-815f-b5209459f3c6&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2
200 OK 209 B URL GET HTTP/1.1 ua152.ffzw.link/th?id=ODLS.f9daea21-9936-4164-815f-b5209459f3c6&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 7d4555b1487ec50930c7567b2690bf10
544c4b9a47d0d12fd38fdc07900d32d31c0f600f
50bbdf35a7de6804b4e50971d7e3656d6c8100e4a03cf935f841d0afd47d8371
GET /th?id=ODLS.f9daea21-9936-4164-815f-b5209459f3c6&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2 HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:36 GMT
Content-Type: image/png
Content-Length: 209
Connection: keep-alive
Cache-Control: public, max-age=2592000
X-Cache: TCP_HIT
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Timing-Allow-Origin: *
Report-To: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}
NEL: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-MSEdge-Ref: Ref A: E353F668DD9E495DBC034A313587D2BF Ref B: SLAEDGE1918 Ref C: 2023-11-26T15:56:36Z
ua152.ffzw.link/th?id=ODLS.f9daea21-9936-4164-815f-b5209459f3c6&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2
200 OK 209 B URL GET HTTP/1.1 ua152.ffzw.link/th?id=ODLS.f9daea21-9936-4164-815f-b5209459f3c6&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 7d4555b1487ec50930c7567b2690bf10
544c4b9a47d0d12fd38fdc07900d32d31c0f600f
50bbdf35a7de6804b4e50971d7e3656d6c8100e4a03cf935f841d0afd47d8371
GET /th?id=ODLS.f9daea21-9936-4164-815f-b5209459f3c6&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2 HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:36 GMT
Content-Type: image/png
Content-Length: 209
Connection: keep-alive
Cache-Control: public, max-age=2592000
X-Cache: TCP_HIT
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Timing-Allow-Origin: *
Report-To: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}
NEL: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-MSEdge-Ref: Ref A: 771C245F7B044B8A98DC54DD9D600933 Ref B: SLAEDGE1113 Ref C: 2023-11-26T15:56:36Z
ua152.ffzw.link/th?id=ODLS.dcdd87f7-69e3-4d3c-8ec4-26c755a37545&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2
200 OK 1.1 kB URL GET HTTP/1.1 ua152.ffzw.link/th?id=ODLS.dcdd87f7-69e3-4d3c-8ec4-26c755a37545&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash ff290bf9708e08815a48ae48c43c55ba
1ae794279bcd8ffe8a75e99d6ad345af62362c77
09aea058c59f401d0206520179edff45cd69daba1b0a24f59fb401d79b3b0914
GET /th?id=ODLS.dcdd87f7-69e3-4d3c-8ec4-26c755a37545&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2 HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:36 GMT
Content-Type: image/png
Content-Length: 1106
Connection: keep-alive
Cache-Control: public, max-age=2592000
X-Cache: TCP_HIT
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Timing-Allow-Origin: *
Report-To: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}
NEL: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-MSEdge-Ref: Ref A: 5EA669F5498F44A0B855C33096BE5C44 Ref B: SLAEDGE1005 Ref C: 2023-11-26T15:56:36Z
ua152.ffzw.link/th?id=ODLS.f9daea21-9936-4164-815f-b5209459f3c6:ODLS.dcdd87f7-69e3-4d3c-8ec4-26c755a37545:ODLS.f9daea21-9936-4164-815f-b5209459f3c6:ODLS.dcdd87f7-69e3-4d3c-8ec4-26c755a37545&w=16&h=16&c=7&o=6&pid=1.7&bw=3&bc=ffffff
1.1 kB URL ua152.ffzw.link/th?id=ODLS.f9daea21-9936-4164-815f-b5209459f3c6:ODLS.dcdd87f7-69e3-4d3c-8ec4-26c755a37545:ODLS.f9daea21-9936-4164-815f-b5209459f3c6:ODLS.dcdd87f7-69e3-4d3c-8ec4-26c755a37545&w=16&h=16&c=7&o=6&pid=1.7&bw=3&bc=ffffff
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type PNG image data, 79 x 22, 8-bit/color RGBA, non-interlaced\012- data
Hash ead9c5c41d15e13489253455a7c8dd0c
9f86a3e03feb44c2a20cbb281a3aba97bf7ed060
9a6fa5f65c20c2d8836a691a2ac0ecb43bf0729bcbaf21f140bc3d94adcbd17a
GET /th?id=ODLS.f9daea21-9936-4164-815f-b5209459f3c6:ODLS.dcdd87f7-69e3-4d3c-8ec4-26c755a37545:ODLS.f9daea21-9936-4164-815f-b5209459f3c6:ODLS.dcdd87f7-69e3-4d3c-8ec4-26c755a37545&w=16&h=16&c=7&o=6&pid=1.7&bw=3&bc=ffffff HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:36 GMT
Content-Type: image/png
Content-Length: 1054
Connection: keep-alive
Cache-Control: public, max-age=1209600
X-Cache: TCP_MISS
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Timing-Allow-Origin: *
Report-To: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}
NEL: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-MSEdge-Ref: Ref A: 8EA0B58D71F1444AB990C94A0E74159A Ref B: SLAEDGE1008 Ref C: 2023-11-26T15:56:36Z
ua152.ffzw.link/th?id=OVP.owTQkVxcUS5TkyD_V8x8HwEsDh:OVP.D34-_aGFZHh0qo8Nw6PyLgEsDh:OVP.3ADKl5B2H3n3EJE6SlrGPQIIFF:OVP.ojXU4L8sfxU09NIinW15cwEsDh:OVP.MJ5ZZDyIyP5VTxZohrCxwwEsDh:OVP.sSu7_D-IibDX87K6ru5BSAEkII&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7&bw=3&bc=ffffff
200 OK 45 kB URL GET HTTP/1.1 ua152.ffzw.link/th?id=OVP.owTQkVxcUS5TkyD_V8x8HwEsDh:OVP.D34-_aGFZHh0qo8Nw6PyLgEsDh:OVP.3ADKl5B2H3n3EJE6SlrGPQIIFF:OVP.ojXU4L8sfxU09NIinW15cwEsDh:OVP.MJ5ZZDyIyP5VTxZohrCxwwEsDh:OVP.sSu7_D-IibDX87K6ru5BSAEkII&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7&bw=3&bc=ffffff
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1203x116, components 3\012- data
Hash deae3b71188aa31739a68ad588001ceb
b89c8658c15149cd545f9febcc34088414221bed
0bc8a42f75f21ce757cf2458f2e238add5b6c72ac555505f721fb489ad6556aa
GET /th?id=OVP.owTQkVxcUS5TkyD_V8x8HwEsDh:OVP.D34-_aGFZHh0qo8Nw6PyLgEsDh:OVP.3ADKl5B2H3n3EJE6SlrGPQIIFF:OVP.ojXU4L8sfxU09NIinW15cwEsDh:OVP.MJ5ZZDyIyP5VTxZohrCxwwEsDh:OVP.sSu7_D-IibDX87K6ru5BSAEkII&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7&bw=3&bc=ffffff HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:36 GMT
Content-Type: image/jpeg
Content-Length: 45420
Connection: keep-alive
Cache-Control: public, max-age=1209600
X-Cache: TCP_MISS
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Timing-Allow-Origin: *
Report-To: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}
NEL: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-MSEdge-Ref: Ref A: 151AEFC1139B4C9EA0CDA24C40DFA559 Ref B: SLAEDGE1208 Ref C: 2023-11-26T15:56:36Z
ua152.ffzw.link/th?id=ODLS.dcdd87f7-69e3-4d3c-8ec4-26c755a37545&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2
200 OK 1.1 kB URL GET HTTP/1.1 ua152.ffzw.link/th?id=ODLS.dcdd87f7-69e3-4d3c-8ec4-26c755a37545&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash ff290bf9708e08815a48ae48c43c55ba
1ae794279bcd8ffe8a75e99d6ad345af62362c77
09aea058c59f401d0206520179edff45cd69daba1b0a24f59fb401d79b3b0914
GET /th?id=ODLS.dcdd87f7-69e3-4d3c-8ec4-26c755a37545&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2 HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:36 GMT
Content-Type: image/png
Content-Length: 1106
Connection: keep-alive
Cache-Control: public, max-age=2592000
X-Cache: TCP_HIT
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Timing-Allow-Origin: *
Report-To: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}
NEL: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-MSEdge-Ref: Ref A: 137763DA5B6545829D9B57D91FDD7FC5 Ref B: SLAEDGE2015 Ref C: 2023-11-26T15:56:36Z
ua152.ffzw.link/th?id=ODLS.f9daea21-9936-4164-815f-b5209459f3c6&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2
200 OK 209 B URL GET HTTP/1.1 ua152.ffzw.link/th?id=ODLS.f9daea21-9936-4164-815f-b5209459f3c6&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 7d4555b1487ec50930c7567b2690bf10
544c4b9a47d0d12fd38fdc07900d32d31c0f600f
50bbdf35a7de6804b4e50971d7e3656d6c8100e4a03cf935f841d0afd47d8371
GET /th?id=ODLS.f9daea21-9936-4164-815f-b5209459f3c6&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2 HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:36 GMT
Content-Type: image/png
Content-Length: 209
Connection: keep-alive
Cache-Control: public, max-age=2592000
X-Cache: TCP_HIT
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Timing-Allow-Origin: *
Report-To: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}
NEL: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-MSEdge-Ref: Ref A: E925AE70B2FF44568A7920783434444A Ref B: SLAEDGE1119 Ref C: 2023-11-26T15:56:36Z
ua152.ffzw.link/th?id=OIP.0Goi_orQHdgii5nOWXwXJQAAAA&w=80&h=80&c=1&vt=10&bgcl=9034ca&r=0&o=6&pid=5.1
200 OK 1.3 kB URL GET HTTP/1.1 ua152.ffzw.link/th?id=OIP.0Goi_orQHdgii5nOWXwXJQAAAA&w=80&h=80&c=1&vt=10&bgcl=9034ca&r=0&o=6&pid=5.1
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data
Hash e7db8b68806f88976b8d2c5429a1338f
0173b9ade515f51a9200442907097ca67c508d75
23214bc3ae1b13a53a1b06f5ff06e6c6c3c96005d1f086cf976b11d4bac0242d
GET /th?id=OIP.0Goi_orQHdgii5nOWXwXJQAAAA&w=80&h=80&c=1&vt=10&bgcl=9034ca&r=0&o=6&pid=5.1 HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:36 GMT
Content-Type: image/jpeg
Content-Length: 1280
Connection: keep-alive
Cache-Control: public, max-age=1209600
X-Cache: TCP_MISS
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Timing-Allow-Origin: *
Report-To: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}
NEL: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-MSEdge-Ref: Ref A: B1C20C6DBFA24A33BF9C0AAD06A89D7B Ref B: SLAEDGE1911 Ref C: 2023-11-26T15:56:36Z
ua152.ffzw.link/th?id=ODLS.dcdd87f7-69e3-4d3c-8ec4-26c755a37545&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2
200 OK 1.1 kB URL GET HTTP/1.1 ua152.ffzw.link/th?id=ODLS.dcdd87f7-69e3-4d3c-8ec4-26c755a37545&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash ff290bf9708e08815a48ae48c43c55ba
1ae794279bcd8ffe8a75e99d6ad345af62362c77
09aea058c59f401d0206520179edff45cd69daba1b0a24f59fb401d79b3b0914
GET /th?id=ODLS.dcdd87f7-69e3-4d3c-8ec4-26c755a37545&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2 HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:36 GMT
Content-Type: image/png
Content-Length: 1106
Connection: keep-alive
Cache-Control: public, max-age=2592000
X-Cache: TCP_MISS
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Timing-Allow-Origin: *
Report-To: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}
NEL: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-MSEdge-Ref: Ref A: B3C9A659709141E4B6DFAF55A83439A8 Ref B: SLAEDGE1419 Ref C: 2023-11-26T15:56:36Z
ua152.ffzw.link/th?id=OIP.wwNu4agiSPRWOjDMpZvQUgHaEp&w=80&h=80&c=1&vt=10&bgcl=201f3c&r=0&o=6&pid=5.1
200 OK 1.3 kB URL GET HTTP/1.1 ua152.ffzw.link/th?id=OIP.wwNu4agiSPRWOjDMpZvQUgHaEp&w=80&h=80&c=1&vt=10&bgcl=201f3c&r=0&o=6&pid=5.1
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data
Hash 25ae492721b0d5270af77889930d5d5e
7eb501318066c1512dc7f764e74398e36cdbb321
efb37e685e2b5e144be93c39943183016437bc70b0de51d120875f7dd132c078
GET /th?id=OIP.wwNu4agiSPRWOjDMpZvQUgHaEp&w=80&h=80&c=1&vt=10&bgcl=201f3c&r=0&o=6&pid=5.1 HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:36 GMT
Content-Type: image/jpeg
Content-Length: 1315
Connection: keep-alive
Cache-Control: public, max-age=1209600
X-Cache: TCP_MISS
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Timing-Allow-Origin: *
Report-To: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}
NEL: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-MSEdge-Ref: Ref A: 654F9FD810E14EB6B91A2F85AF1DD8B0 Ref B: SLAEDGE1310 Ref C: 2023-11-26T15:56:36Z
ua152.ffzw.link/th?id=ODLS.5026a943-8705-42e2-bff3-ef8b9386484b&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2
200 OK 1.8 kB URL GET HTTP/1.1 ua152.ffzw.link/th?id=ODLS.5026a943-8705-42e2-bff3-ef8b9386484b&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 60a3b7588db80d21072479c2077d9d79
e4f5b13aaa4a4b9b52aa0de0dfd75065067e8d9b
92f7d298cf132cef978a6f1a2a648726d3f46a69f340204bd629fb1be19a491f
GET /th?id=ODLS.5026a943-8705-42e2-bff3-ef8b9386484b&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2 HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:36 GMT
Content-Type: image/png
Content-Length: 1787
Connection: keep-alive
Cache-Control: public, max-age=2592000
X-Cache: TCP_MISS
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Timing-Allow-Origin: *
Report-To: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}
NEL: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-MSEdge-Ref: Ref A: 9C9F7407704746C1B752247114412699 Ref B: SLAEDGE1818 Ref C: 2023-11-26T15:56:36Z
ua152.ffzw.link/th?id=OSK.HERO2bU545gtq283v93zgqsgC-CES1klCymPRlmRZLiJbJY&w=600&h=315&c=13&o=6&pid=SANGAM
6.4 kB URL ua152.ffzw.link/th?id=OSK.HERO2bU545gtq283v93zgqsgC-CES1klCymPRlmRZLiJbJY&w=600&h=315&c=13&o=6&pid=SANGAM
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 600x315, components 3\012- data
Hash c2ff42a3e6ad7dbe3205a984ad83f549
a0d515b49125b1c2ca235f11f119c47dfa7de0c8
f83c81875cd25a8328d4c7247ec4e3ae07d816c950dc9f12b4c94ee7626d0580
GET /th?id=OSK.HERO2bU545gtq283v93zgqsgC-CES1klCymPRlmRZLiJbJY&w=600&h=315&c=13&o=6&pid=SANGAM HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:36 GMT
Content-Type: image/jpeg
Content-Length: 6404
Connection: keep-alive
Cache-Control: public, max-age=2592000
X-Cache: TCP_HIT
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Timing-Allow-Origin: *
Report-To: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}
NEL: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-MSEdge-Ref: Ref A: 343CA9FFEB4D43F6B4078084CC6BB92A Ref B: SLAEDGE1105 Ref C: 2023-11-26T15:56:36Z
ua152.ffzw.link/fd/ls/l?IG=7C73DE283EAE42229B89933196E76768&CID=0E02A7C1FED666F8226FB414FFF667B5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1701014192942%2C%22Name%22%3A%22WriteEffectiveLocationSuccess%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D
0 B URL ua152.ffzw.link/fd/ls/l?IG=7C73DE283EAE42229B89933196E76768&CID=0E02A7C1FED666F8226FB414FFF667B5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1701014192942%2C%22Name%22%3A%22WriteEffectiveLocationSuccess%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /fd/ls/l?IG=7C73DE283EAE42229B89933196E76768&CID=0E02A7C1FED666F8226FB414FFF667B5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1701014192942%2C%22Name%22%3A%22WriteEffectiveLocationSuccess%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:36 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
X-Cache: CONFIG_NOCACHE
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-MSEdge-Ref: Ref A: ADA91AB9D7A84F828CC76E733775F1C1 Ref B: SLAEDGE1906 Ref C: 2023-11-26T15:56:36Z
ua152.ffzw.link/fd/ls/l?IG=7C73DE283EAE42229B89933196E76768&CID=0E02A7C1FED666F8226FB414FFF667B5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%227%22}]
0 B URL ua152.ffzw.link/fd/ls/l?IG=7C73DE283EAE42229B89933196E76768&CID=0E02A7C1FED666F8226FB414FFF667B5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%227%22}]
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /fd/ls/l?IG=7C73DE283EAE42229B89933196E76768&CID=0E02A7C1FED666F8226FB414FFF667B5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%227%22}] HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:37 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
X-Cache: CONFIG_NOCACHE
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-MSEdge-Ref: Ref A: 2FB681BD7B7E4D3789B7ABED2423F4A2 Ref B: SLAEDGE1612 Ref C: 2023-11-26T15:56:37Z
ua152.ffzw.link/fd/ls/l?IG=7C73DE283EAE42229B89933196E76768&CID=0E02A7C1FED666F8226FB414FFF667B5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]
200 OK 0 B URL GET HTTP/1.1 ua152.ffzw.link/fd/ls/l?IG=7C73DE283EAE42229B89933196E76768&CID=0E02A7C1FED666F8226FB414FFF667B5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /fd/ls/l?IG=7C73DE283EAE42229B89933196E76768&CID=0E02A7C1FED666F8226FB414FFF667B5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}] HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:37 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
X-Cache: CONFIG_NOCACHE
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-MSEdge-Ref: Ref A: 0BD24AD452944A5F8A2DDCF91D2EC675 Ref B: SLAEDGE1322 Ref C: 2023-11-26T15:56:37Z
r.bing.com/rs/78/j4/jnc,nj/weTZhMT4W5x_tgtmsDnFQb89lPY.js?or=w
200 OK 666 B URL GET HTTP/3 r.bing.com/rs/78/j4/jnc,nj/weTZhMT4W5x_tgtmsDnFQb89lPY.js?or=w
IP
ASN #20940 Akamai International B.V.
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerMicrosoft Corporation
Subjectr.bing.com
Fingerprint23:E0:B1:D9:C5:02:8F:FE:35:CB:2A:E6:86:20:A8:83:F8:82:34:9B
ValidityWed, 18 Oct 2023 20:32:40 GMT - Thu, 27 Jun 2024 23:59:59 GMT
File type ASCII text, with very long lines (1580), with no line terminators
Hash 37d6135265108fa3bd673ff5df085f8e
8188ab901c6f90c2ab5c9f42369a76f5877d9adb
22a62a0578748ecb72aca68bf5345db60b5aac25d187b12e957702be51ed9236
GET /rs/78/j4/jnc,nj/weTZhMT4W5x_tgtmsDnFQb89lPY.js?or=w HTTP/1.1
Host: r.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ua152.ffzw.link
DNT: 1
Connection: keep-alive
Referer: https://ua152.ffzw.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 666
content-type: application/x-javascript; charset=utf-8
server: Kestrel
access-control-allow-headers: *
access-control-allow-origin: *
content-encoding: gzip
last-modified: Sun, 19 Nov 2023 19:10:57 GMT
x-eventid: 655ee25caa274b08a14caaf64fe6a8c5
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
x-as-instrumentationoptions: AppServerLoggingMaster=1
x-as-machinename: DUBEEAP0000E13C
x-as-suppresssetcookie: 1
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":0.5}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingrms"}]}
cache-control: public, max-age=134873
expires: Tue, 28 Nov 2023 05:24:30 GMT
date: Sun, 26 Nov 2023 15:56:37 GMT
vary: Accept-Encoding
quic-version: 0x00000001
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.154f2417.1701014197.63f03bea
timing-allow-origin: *
ua152.ffzw.link/th?id=OPN.NEWSOS_7BA9340AED91AE2FFAA09EC333B5B6F7:OPN.NEWSOS_DB1E44D86F766000401B9E8ED2B1CEFD:OPN.NEWSOS_7B4AF415343BFFAADD7CDBAB691C94AB:OPN.NEWSOS_67C7B1BCA59D22FAA03EC59BEA3968A1:OPN.NEWSOS_DA2C802D52EB0A23F344F8D2EA5E5E5A:OPN.NEWSOS_B55DAEC79E5F2F2280200F105DD8F88A:OPN.NEWSOS_B8041F54A6A2CA5A675865AAB2A368F9:OPN.NEWSOS_25009A16DE9FE35EA4297259784EB796:OPN.NEWSOS_41C3B27533DE0134DF3D47CC53776C66:OPN.NEWSOS_AEF6C867B83EF2E9F8957E3CAA1F06DD:OPN.NEWSOS_EC453277DABB87AC58A0A4691EB51052:OPN.NEWSOS_21E4ED8AA991CF233AC9BFD32326994D:OPN.NEWSOS_A7A1898DE7AB5F56005A42BDD2AABBFE:OPN.NEWSOS_C6C4982A19919E659960E904E8C09055&w=128&h=64&c=7&rs=2&qlt=80&o=6&pid=PopNow&bw=3&bc=ffffff
200 OK 39 kB URL GET HTTP/1.1 ua152.ffzw.link/th?id=OPN.NEWSOS_7BA9340AED91AE2FFAA09EC333B5B6F7:OPN.NEWSOS_DB1E44D86F766000401B9E8ED2B1CEFD:OPN.NEWSOS_7B4AF415343BFFAADD7CDBAB691C94AB:OPN.NEWSOS_67C7B1BCA59D22FAA03EC59BEA3968A1:OPN.NEWSOS_DA2C802D52EB0A23F344F8D2EA5E5E5A:OPN.NEWSOS_B55DAEC79E5F2F2280200F105DD8F88A:OPN.NEWSOS_B8041F54A6A2CA5A675865AAB2A368F9:OPN.NEWSOS_25009A16DE9FE35EA4297259784EB796:OPN.NEWSOS_41C3B27533DE0134DF3D47CC53776C66:OPN.NEWSOS_AEF6C867B83EF2E9F8957E3CAA1F06DD:OPN.NEWSOS_EC453277DABB87AC58A0A4691EB51052:OPN.NEWSOS_21E4ED8AA991CF233AC9BFD32326994D:OPN.NEWSOS_A7A1898DE7AB5F56005A42BDD2AABBFE:OPN.NEWSOS_C6C4982A19919E659960E904E8C09055&w=128&h=64&c=7&rs=2&qlt=80&o=6&pid=PopNow&bw=3&bc=ffffff
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1837x70, components 3\012- data
Hash d4d965d28f687a60fc00516b99eb7e8b
ccf61dd18e609243201c64407ccca28267fe407b
5dcd325271c5684673cbe665ae9dead3476c68515124179e7c3382ef6a3faff1
GET /th?id=OPN.NEWSOS_7BA9340AED91AE2FFAA09EC333B5B6F7:OPN.NEWSOS_DB1E44D86F766000401B9E8ED2B1CEFD:OPN.NEWSOS_7B4AF415343BFFAADD7CDBAB691C94AB:OPN.NEWSOS_67C7B1BCA59D22FAA03EC59BEA3968A1:OPN.NEWSOS_DA2C802D52EB0A23F344F8D2EA5E5E5A:OPN.NEWSOS_B55DAEC79E5F2F2280200F105DD8F88A:OPN.NEWSOS_B8041F54A6A2CA5A675865AAB2A368F9:OPN.NEWSOS_25009A16DE9FE35EA4297259784EB796:OPN.NEWSOS_41C3B27533DE0134DF3D47CC53776C66:OPN.NEWSOS_AEF6C867B83EF2E9F8957E3CAA1F06DD:OPN.NEWSOS_EC453277DABB87AC58A0A4691EB51052:OPN.NEWSOS_21E4ED8AA991CF233AC9BFD32326994D:OPN.NEWSOS_A7A1898DE7AB5F56005A42BDD2AABBFE:OPN.NEWSOS_C6C4982A19919E659960E904E8C09055&w=128&h=64&c=7&rs=2&qlt=80&o=6&pid=PopNow&bw=3&bc=ffffff HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:36 GMT
Content-Type: image/jpeg
Content-Length: 38904
Connection: keep-alive
Cache-Control: public, max-age=1209600
X-Cache: TCP_MISS
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Timing-Allow-Origin: *
Report-To: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}
NEL: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-MSEdge-Ref: Ref A: 0E6F53A9614349DAB84F7782A5499498 Ref B: SLAEDGE1310 Ref C: 2023-11-26T15:56:36Z
ua152.ffzw.link/rp/rfwivDBRwX561Waug8h7nAI1UzM.js
200 OK 821 B URL GET HTTP/1.1 ua152.ffzw.link/rp/rfwivDBRwX561Waug8h7nAI1UzM.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (821), with no line terminators
Hash dadded83a18ffea03ed011c369ec5168
adfc22bc3051c17e7ad566ae83c87b9c02355333
526101adc839075396f6ddec830ebe53a065cddbb143135a9bca0c586249ff72
GET /rp/rfwivDBRwX561Waug8h7nAI1UzM.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:37 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 821
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: 2t3tg6GP/qA+0BHDaexRaA==
Last-Modified: Fri, 03 Feb 2023 09:53:52 GMT
ETag: 0x8DB05CC8E4ABD4B
X-Cache: TCP_HIT
x-ms-request-id: 463476f9-601e-0057-2331-1c413a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: E72925264684491EBFBF039E1492BEB1 Ref B: SEL20EDGE0219 Ref C: 2023-11-23T10:50:24Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: A359039786B247CE8270A312596E6CE5 Ref B: SLAEDGE1117 Ref C: 2023-11-26T15:56:37Z
ua152.ffzw.link/rp/XcS7FVvrNVdVx4-g2ZHEVpZJd5Q.js
13 kB URL ua152.ffzw.link/rp/XcS7FVvrNVdVx4-g2ZHEVpZJd5Q.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (10033), with CRLF line terminators
Hash 3e1cd65b12888a023f899069eb6fd830
5dc4bb155beb355755c78fa0d991c45696497794
b8bb4d94b0fcfeceae541a257dea9bc8f598c2e008beb857274607868ba3fb10
GET /rp/XcS7FVvrNVdVx4-g2ZHEVpZJd5Q.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:37 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 12933
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: PhzWWxKIigI/iZBp62/YMA==
Last-Modified: Wed, 03 Nov 2021 01:12:29 GMT
ETag: 0x8D99E67017CA9C1
X-Cache: TCP_HIT
x-ms-request-id: f07c81de-b01e-001a-3217-1c87d8000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: E30064380C964597BDA2DFA1254E9F74 Ref B: SEL20EDGE0505 Ref C: 2023-11-24T08:45:42Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 7338A9B59BFD4DA196B0799C3615714B Ref B: SLAEDGE1808 Ref C: 2023-11-26T15:56:37Z
ua152.ffzw.link/rp/FWhkflrNeDUyHYRwJN8__fYp5Uc.js
200 OK 375 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/FWhkflrNeDUyHYRwJN8__fYp5Uc.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 375 kB (374789 bytes)
Hash e6940bda64389c1fa2ae8e1727abe131
1568647e5acd7835321d847024df3ffdf629e547
eef5dd06cf622fb43ea42872bc616d956de98a3335861af84d35dbaf2ab32699
GET /rp/FWhkflrNeDUyHYRwJN8__fYp5Uc.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:38 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 374789
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: 5pQL2mQ4nB+iro4XJ6vhMQ==
Last-Modified: Thu, 06 Apr 2023 01:33:55 GMT
ETag: 0x8DB363EFC44FE69
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: bd7521bb-201e-005b-46f6-1fafcb000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: C2AB0588EC8845A99B769F7C4A7D489A Ref B: SEL20EDGE0517 Ref C: 2023-11-26T15:56:38Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 03F006E69D6A4978ACEDD919D2F1E5F6 Ref B: SLAEDGE1720 Ref C: 2023-11-26T15:56:37Z
ua152.ffzw.link/rp/YFZQyvbBpI7MdYf4CR9fU8RWUxo.js
126 kB URL ua152.ffzw.link/rp/YFZQyvbBpI7MdYf4CR9fU8RWUxo.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 126 kB (126514 bytes)
Hash 811ecfecce1449b757b9eae42c5f3646
605650caf6c1a48ecc7587f8091f5f53c456531a
5e692fae95e98541e016c15f4068ba7ba7f912d7ca24ea593ad5b1b2e59b70ba
GET /rp/YFZQyvbBpI7MdYf4CR9fU8RWUxo.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:38 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 126514
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: gR7P7M4USbdXuerkLF82Rg==
Last-Modified: Fri, 17 Nov 2023 03:26:20 GMT
ETag: 0x8DBE71CF7D82705
X-Cache: TCP_HIT
x-ms-request-id: c62da30d-501e-0010-5d21-1d9e51000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 917506FB258C4DD6A5F5E199DEDBC263 Ref B: SEL20EDGE0405 Ref C: 2023-11-24T01:46:54Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 3603CEA89AB54297AD59138C67EA95C3 Ref B: SLAEDGE1105 Ref C: 2023-11-26T15:56:38Z
ua152.ffzw.link/rp/_cTVIwHRhwQtCi8TbO7ywAXcu4s.js
200 OK 824 B URL GET HTTP/1.1 ua152.ffzw.link/rp/_cTVIwHRhwQtCi8TbO7ywAXcu4s.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (824), with no line terminators
Hash 3ff8eecb7a6996c1056bbe9d4dde50b4
fdc4d52301d187042d0a2f136ceef2c005dcbb8b
01b479f35b53d8078baca650bdd8b926638d8daaa6eb4a9059e232dbd984f163
GET /rp/_cTVIwHRhwQtCi8TbO7ywAXcu4s.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:38 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 824
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: P/juy3pplsEFa76dTd5QtA==
Last-Modified: Mon, 20 Sep 2021 06:08:50 GMT
ETag: 0x8D97BFD1DD1AC32
X-Cache: TCP_HIT
x-ms-request-id: d493614d-c01e-0015-2c05-206a2e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 14254A4A9EC34E829BD1FF46E5E534B0 Ref B: SEL20EDGE0618 Ref C: 2023-11-26T04:55:20Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: F0BB0965C90A43D283B47533677501D1 Ref B: SLAEDGE1321 Ref C: 2023-11-26T15:56:38Z
ua152.ffzw.link/fd/ls/l?IG=7C73DE283EAE42229B89933196E76768&CID=0E02A7C1FED666F8226FB414FFF667B5&TYPE=Event.ClientInst&DATA=%5B%7B%22Time%22%3A12745%2C%22time%22%3A12747%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1701014201974%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D
200 OK 0 B URL GET HTTP/1.1 ua152.ffzw.link/fd/ls/l?IG=7C73DE283EAE42229B89933196E76768&CID=0E02A7C1FED666F8226FB414FFF667B5&TYPE=Event.ClientInst&DATA=%5B%7B%22Time%22%3A12745%2C%22time%22%3A12747%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1701014201974%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /fd/ls/l?IG=7C73DE283EAE42229B89933196E76768&CID=0E02A7C1FED666F8226FB414FFF667B5&TYPE=Event.ClientInst&DATA=%5B%7B%22Time%22%3A12745%2C%22time%22%3A12747%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1701014201974%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:38 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
X-Cache: CONFIG_NOCACHE
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-MSEdge-Ref: Ref A: 6E6CB1503A0440D2BD3340FADA02AEE4 Ref B: SLAEDGE1805 Ref C: 2023-11-26T15:56:38Z
ua152.ffzw.link/fd/ls/l?IG=7C73DE283EAE42229B89933196E76768&CID=0E02A7C1FED666F8226FB414FFF667B5&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A12748%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1701014201975%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D
0 B URL ua152.ffzw.link/fd/ls/l?IG=7C73DE283EAE42229B89933196E76768&CID=0E02A7C1FED666F8226FB414FFF667B5&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A12748%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1701014201975%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /fd/ls/l?IG=7C73DE283EAE42229B89933196E76768&CID=0E02A7C1FED666F8226FB414FFF667B5&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A12748%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1701014201975%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:38 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
X-Cache: CONFIG_NOCACHE
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-MSEdge-Ref: Ref A: 43B941FC9A7648239A005969A3AE9F44 Ref B: SLAEDGE1017 Ref C: 2023-11-26T15:56:38Z
ua152.ffzw.link/fd/ls/l?IG=7C73DE283EAE42229B89933196E76768&CID=0E02A7C1FED666F8226FB414FFF667B5&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A12748%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1701014201975%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D
200 OK 0 B URL GET HTTP/1.1 ua152.ffzw.link/fd/ls/l?IG=7C73DE283EAE42229B89933196E76768&CID=0E02A7C1FED666F8226FB414FFF667B5&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A12748%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1701014201975%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /fd/ls/l?IG=7C73DE283EAE42229B89933196E76768&CID=0E02A7C1FED666F8226FB414FFF667B5&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A12748%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1701014201975%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:38 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
X-Cache: CONFIG_NOCACHE
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-MSEdge-Ref: Ref A: 97C383DB7A4948B683158FFDA9B12CE0 Ref B: SLAEDGE1919 Ref C: 2023-11-26T15:56:38Z
ua152.ffzw.link/images/sbi?mmasync=1&ig=7C73DE283EAE42229B89933196E76768&iid=.5089&ptn=Web&ep=0&iconpl=1
200 OK 48 kB URL GET HTTP/1.1 ua152.ffzw.link/images/sbi?mmasync=1&ig=7C73DE283EAE42229B89933196E76768&iid=.5089&ptn=Web&ep=0&iconpl=1
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type HTML document, Unicode text, UTF-8 text, with very long lines (29897)
Hash 1682a1dfa18d6e583bae3aaa3cede5fb
81b196f8ba1fccd9b35341dd807201712fbb1824
c1b2cef3a0e948d6b8b632db80c582e5eff8e1179c9ee9a7056a5dce95756982
GET /images/sbi?mmasync=1&ig=7C73DE283EAE42229B89933196E76768&iid=.5089&ptn=Web&ep=0&iconpl=1 HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:39 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: private
P3P: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
Set-Cookie: MUID=0E02A7C1FED666F8226FB414FFF667B5; domain=.bing.com; expires=Fri, 20-Dec-2024 15:56:39 GMT; path=/; secure; SameSite=None
_EDGE_S=SID=0B306A6CE1486C4E0E5179B9E0686D2A; domain=.bing.com; path=/; HttpOnly
MUIDB=0E02A7C1FED666F8226FB414FFF667B5; expires=Fri, 20-Dec-2024 15:56:39 GMT; path=/; HttpOnly
SRCHD=AF=NOFORM; domain=.bing.com; expires=Fri, 20-Dec-2024 15:56:39 GMT; path=/; secure; SameSite=None
SRCHUID=V=2&GUID=434615BC50F24025B5E6AB00AA74105D&dmnchg=1; domain=.bing.com; expires=Fri, 20-Dec-2024 15:56:39 GMT; path=/; secure; SameSite=None
SRCHUSR=DOB=20231126; domain=.bing.com; expires=Fri, 20-Dec-2024 15:56:39 GMT; path=/; secure; SameSite=None
SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0&SRCHLANG=zh-Hans; domain=.bing.com; expires=Fri, 20-Dec-2024 15:56:39 GMT; path=/; secure; SameSite=None
_SS=SID=0B306A6CE1486C4E0E5179B9E0686D2A; domain=.bing.com; path=/; secure; SameSite=None
X-EventID: 65636ab651a44db3836e5d6dfac29e95
UserAgentReductionOptOut: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
X-Cache: CONFIG_NOCACHE
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-MSEdge-Ref: Ref A: EA726C65972F46C883B3CCE6BDEA80AF Ref B: SLAEDGE1716 Ref C: 2023-11-26T15:56:38Z
ua152.ffzw.link/rp/fdVZU4ttbw8NDRm6H3I5BW3_vCo.svg
200 OK 671 B URL GET HTTP/1.1 ua152.ffzw.link/rp/fdVZU4ttbw8NDRm6H3I5BW3_vCo.svg
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with CRLF line terminators
Hash d9ed1a42342f37695571419070f8e818
7dd559538b6d6f0f0d0d19ba1f7239056dffbc2a
0c1e2169110dd2b16f43a9bc2621b78cc55423d769b0716edaa24f95e8c2e9fe
GET /rp/fdVZU4ttbw8NDRm6H3I5BW3_vCo.svg HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:39 GMT
Content-Type: image/svg+xml
Content-Length: 671
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: 2e0aQjQvN2lVcUGQcPjoGA==
Last-Modified: Fri, 28 May 2021 23:15:33 GMT
ETag: 0x8D9222E7EB677DF
X-Cache: TCP_HIT
x-ms-request-id: 0f3c25f4-701e-0061-6b12-1cec68000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: DAD38E3C7A4E4F239DD33AEF16C7DA9B Ref B: SEL20EDGE0413 Ref C: 2023-11-22T10:36:23Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 1331E9F2AA00478BB94320AEF38F3667 Ref B: SLAEDGE1321 Ref C: 2023-11-26T15:56:39Z
ua152.ffzw.link/rp/4L4QdyjTv0HYE2Ig2ol9eYoqxg8.svg
200 OK 1.1 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/4L4QdyjTv0HYE2Ig2ol9eYoqxg8.svg
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (796), with CRLF line terminators
Hash 91cd11cfcca65cface96153268d71f63
e0be107728d3bf41d8136220da897d798a2ac60f
8ee1e6d7a487c38412d7b375ac4a6bd7e47f70858055eeb7957226ada05544be
GET /rp/4L4QdyjTv0HYE2Ig2ol9eYoqxg8.svg HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:39 GMT
Content-Type: image/svg+xml
Content-Length: 1101
Connection: keep-alive
Cache-Control: public, max-age=15552000
Content-MD5: kc0Rz8ymXPrOlhUyaNcfYw==
Last-Modified: Fri, 28 May 2021 20:38:35 GMT
ETag: 0x8D9221890C98BC2
X-Cache: TCP_HIT
x-ms-request-id: a4647a87-c01e-003c-1e2d-181c6c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: E61FC3735D4F4506996E025153444731 Ref B: SEL20EDGE0305 Ref C: 2023-11-16T18:55:06Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 2EC7EE7189A14B6786EF3AEA41965502 Ref B: SLAEDGE1709 Ref C: 2023-11-26T15:56:39Z
ua152.ffzw.link/rp/6I8DMgiMXPa7ofFW5IcWMP-3id8.js
200 OK 88 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/6I8DMgiMXPa7ofFW5IcWMP-3id8.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash ef0acf6f34714d07570fd4186cce0d97
e88f0332088c5cf6bba1f156e4871630ffb789df
576a6eb46444c8b9053eaa72dd5e9ed37a2ae28dc2a061ff597a5fc77ff10e44
GET /rp/6I8DMgiMXPa7ofFW5IcWMP-3id8.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:39 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 87815
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: 7wrPbzRxTQdXD9QYbM4Nlw==
Last-Modified: Sun, 19 Nov 2023 17:20:22 GMT
ETag: 0x8DBE923CFD0AFB6
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: ec85a543-001e-006e-4671-1f019e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 10E95D30C5FA4D2E88B1FF561BD87900 Ref B: SEL20EDGE0607 Ref C: 2023-11-26T15:56:39Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: D578103EF86B4AF897C198EAF17B6A58 Ref B: SLAEDGE1515 Ref C: 2023-11-26T15:56:38Z
ua152.ffzw.link/rp/UYtUYDcn1oZlFG-YfBPz59zejYI.svg
200 OK 964 B URL GET HTTP/1.1 ua152.ffzw.link/rp/UYtUYDcn1oZlFG-YfBPz59zejYI.svg
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (964), with no line terminators
Hash 88e3ed3dd7eee133f73ffb9d36b04b6f
518b54603727d68665146f987c13f3e7dcde8d82
a39ab0a67c08d907eddb18741460399232202c26648d676a22ad06e9c1d874cb
GET /rp/UYtUYDcn1oZlFG-YfBPz59zejYI.svg HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:39 GMT
Content-Type: image/svg+xml
Content-Length: 964
Connection: keep-alive
Cache-Control: public, max-age=15552000
Content-MD5: iOPtPdfu4TP3P/udNrBLbw==
Last-Modified: Fri, 28 May 2021 22:16:58 GMT
ETag: 0x8D922264F273A54
X-Cache: TCP_HIT
x-ms-request-id: 082f3f26-701e-002e-49be-182870000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 463ED778769F422DB7253E491DCD6403 Ref B: SEL20EDGE0305 Ref C: 2023-11-16T18:56:02Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: EF676492B2DD4556BCDBA9444006634D Ref B: SLAEDGE2013 Ref C: 2023-11-26T15:56:39Z
ua152.ffzw.link/rp/kiGH9ukZK6Q4hvtDtwwVc1yvueg.svg
200 OK 1.4 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/kiGH9ukZK6Q4hvtDtwwVc1yvueg.svg
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with CRLF line terminators
Hash 620580657e8a45b4a7b8450b8da5cd32
922187f6e9192ba43886fb43b70c15735cafb9e8
91de3100632e986cdb6897793ef1b2a8655b15ed4145098ca489856c043d207e
GET /rp/kiGH9ukZK6Q4hvtDtwwVc1yvueg.svg HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:39 GMT
Content-Type: image/svg+xml
Content-Length: 1391
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: YgWAZX6KRbSnuEULjaXNMg==
Last-Modified: Fri, 28 May 2021 23:34:14 GMT
ETag: 0x8D922311AE3527D
X-Cache: TCP_HIT
x-ms-request-id: 80dc5993-901e-002f-34ec-1f298d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: A4820F5E96F24125911CBA33D8156727 Ref B: SEL20EDGE0214 Ref C: 2023-11-26T15:56:19Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: E559761978464F69BBF9D299BE811801 Ref B: SLAEDGE1719 Ref C: 2023-11-26T15:56:39Z
ua152.ffzw.link/rp/Fsa_OI0AplCnVoXGca8ALOo0S0s.svg
282 B URL ua152.ffzw.link/rp/Fsa_OI0AplCnVoXGca8ALOo0S0s.svg
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with CRLF line terminators
Hash e38795b634154ec1ff41c6bcda54ee52
16c6bf388d00a650a75685c671af002cea344b4b
66b589f920473f0fd69c45c8e3c93a95bb456b219cba3d52873f2a3a1880f3f0
GET /rp/Fsa_OI0AplCnVoXGca8ALOo0S0s.svg HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:39 GMT
Content-Type: image/svg+xml
Content-Length: 282
Connection: keep-alive
Cache-Control: public, max-age=15552000
Content-MD5: 44eVtjQVTsH/Qca82lTuUg==
Last-Modified: Fri, 28 May 2021 21:28:18 GMT
ETag: 0x8D9221F82E2A227
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: ccc19315-401e-000f-676a-1a4541000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: FD5C2DA235694ADB87183AE02AE3F20B Ref B: SEL20EDGE0620 Ref C: 2023-11-26T15:56:39Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 49C38950739D475585C8385262392CD6 Ref B: SLAEDGE1522 Ref C: 2023-11-26T15:56:39Z
ua152.ffzw.link/rp/KC_nX2_tPPyFvVw1RK20Yu1FyDk.svg
200 OK 726 B URL GET HTTP/1.1 ua152.ffzw.link/rp/KC_nX2_tPPyFvVw1RK20Yu1FyDk.svg
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (557), with CRLF line terminators
Hash 6601e4a25ab847203e1015b32514b16c
282fe75f6fed3cfc85bd5c3544adb462ed45c839
6e5d3fff70eec85ff6d42c84062076688cb092a3d605f47260dbbe6b3b836b21
GET /rp/KC_nX2_tPPyFvVw1RK20Yu1FyDk.svg HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:39 GMT
Content-Type: image/svg+xml
Content-Length: 726
Connection: keep-alive
Cache-Control: public, max-age=15552000
Content-MD5: ZgHkolq4RyA+EBWzJRSxbA==
Last-Modified: Fri, 28 May 2021 21:42:16 GMT
ETag: 0x8D92221766B2404
X-Cache: TCP_HIT
x-ms-request-id: 4fcba8b2-101e-003e-28bd-181e96000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 8DBE6A0B992C4A18B093A52DB8FAFF01 Ref B: SEL20EDGE0216 Ref C: 2023-11-18T21:57:52Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 13143917661147F4B43C980EBB619058 Ref B: SLAEDGE1115 Ref C: 2023-11-26T15:56:39Z
ua152.ffzw.link/rp/3Xnc1ybcH2dL_dbMoXdLQYlO6DQ.js
200 OK 358 B URL GET HTTP/1.1 ua152.ffzw.link/rp/3Xnc1ybcH2dL_dbMoXdLQYlO6DQ.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (358), with no line terminators
Hash 22bbef96386de58676450eea893229ba
dd79dcd726dc1f674bfdd6cca1774b41894ee834
a27ce87030a23782d13d27cb296137bb2c79cdfee2fd225778da7362865eb214
GET /rp/3Xnc1ybcH2dL_dbMoXdLQYlO6DQ.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:39 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 358
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: Irvvljht5YZ2RQ7qiTIpug==
Last-Modified: Wed, 02 Jun 2021 18:53:56 GMT
ETag: 0x8D925F7C6709A12
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: e4425870-f01e-0059-5c1e-20ad31000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: A6BDCD91B93B429DA8B30D61ED6D0E58 Ref B: SEL20EDGE0415 Ref C: 2023-11-26T15:56:39Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 10951FD96F2647978C91452874D19DCE Ref B: SLAEDGE1209 Ref C: 2023-11-26T15:56:39Z
ua152.ffzw.link/rp/cye7NhBZJb1Rti8Cl6_Q9XmgID0.js
200 OK 371 B URL GET HTTP/1.1 ua152.ffzw.link/rp/cye7NhBZJb1Rti8Cl6_Q9XmgID0.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (371), with no line terminators
Hash b743465bb18a1be636f4cbbbbd2c8080
7327bb36105925bd51b62f0297afd0f579a0203d
fee47f1645bc40fbc0f98e05e8a53c4211f8081629ffda2f785107c1f3f05235
GET /rp/cye7NhBZJb1Rti8Cl6_Q9XmgID0.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:39 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 371
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: t0NGW7GKG+Y29Mu7vSyAgA==
Last-Modified: Fri, 28 May 2021 22:58:31 GMT
ETag: 0x8D9222C1D519DB8
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: 424aae07-301e-0044-421e-2074db000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: EA8737652E8B4E4AB2E4ABB10D9543A1 Ref B: SEL20EDGE0315 Ref C: 2023-11-26T15:56:39Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 218C71A3E613450CA1395167A427F905 Ref B: SLAEDGE1618 Ref C: 2023-11-26T15:56:39Z
ua152.ffzw.link/rp/NnFHhz2jL6yzChtIhaB5IIVKY5k.svg
1.1 kB URL ua152.ffzw.link/rp/NnFHhz2jL6yzChtIhaB5IIVKY5k.svg
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (872), with CRLF line terminators
Hash c04c8834ac91802186e6ce677ae4a89d
367147873da32facb30a1b4885a07920854a6399
46cc84ba382b065045db005e895414686f2e76b64af854f5ad1ac0df020c3bdb
GET /rp/NnFHhz2jL6yzChtIhaB5IIVKY5k.svg HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:39 GMT
Content-Type: image/svg+xml
Content-Length: 1111
Connection: keep-alive
Cache-Control: public, max-age=15552000
Content-MD5: wEyINKyRgCGG5s5neuSonQ==
Last-Modified: Fri, 28 May 2021 21:54:08 GMT
ETag: 0x8D922231F011DBF
X-Cache: TCP_HIT
x-ms-request-id: 17c37c14-101e-0071-72b3-1eda8e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: F8AB951F249B47709573E69C97818172 Ref B: SEL20EDGE0311 Ref C: 2023-11-26T15:56:19Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 9786A2A90D6A41E4AF7BE2B5BFEEF91B Ref B: SLAEDGE1916 Ref C: 2023-11-26T15:56:39Z
ua152.ffzw.link/rp/hx-eea1zqtCz4K0bW2uH_oN7Fs4.jpg
200 OK 3.8 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/hx-eea1zqtCz4K0bW2uH_oN7Fs4.jpg
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=6, xresolution=86, yresolution=94, resolutionunit=2, software=GIMP 2.10.18, datetime=2020:04:16 19:04:38], progressive, precision 8, 160x160, components 3\012- data
Hash 299a479a2f7f1f30d09545ca8cc5d162
871f9e79ad73aad0b3e0ad1b5b6b87fe837b16ce
b314ead01e8e89c964273418bb1117d24dfe01e4838e7a1b46fa19f64699af05
GET /rp/hx-eea1zqtCz4K0bW2uH_oN7Fs4.jpg HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:39 GMT
Content-Type: image/jpeg
Content-Length: 3791
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: KZpHmi9/HzDQlUXKjMXRYg==
Last-Modified: Tue, 27 Dec 2022 02:26:58 GMT
ETag: 0x8DAE7B1D449D6F2
X-Cache: TCP_HIT
x-ms-request-id: 18946cbb-a01e-002c-0917-1c2a8a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 686B9625751740A582CCF4324D17D6E2 Ref B: SEL20EDGE0519 Ref C: 2023-11-21T16:12:00Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 65BFE0F7001A46C2905F44F7E79829B6 Ref B: SLAEDGE1017 Ref C: 2023-11-26T15:56:39Z
ua152.ffzw.link/rp/_o7n0RDT6F_-98apjB-NNksFbDE.js
200 OK 4.7 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/_o7n0RDT6F_-98apjB-NNksFbDE.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (4725), with no line terminators
Hash 8320f02c3c5a4e6c15115f0fae3723b9
fe8ee7d110d3e85ffef7c6a98c1f8d364b056c31
0eddd22ddece1e7b126fdcb262c8b29260ff8f903371595095cffdd26f5873bf
GET /rp/_o7n0RDT6F_-98apjB-NNksFbDE.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:39 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 4725
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: gyDwLDxaTmwVEV8PrjcjuQ==
Last-Modified: Sat, 18 Nov 2023 04:40:22 GMT
ETag: 0x8DBE7F07A19F297
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: 73748ddb-601e-003a-7116-1eeb14000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: AA606457E0F448F587E99122DEB601C1 Ref B: SEL20EDGE0210 Ref C: 2023-11-26T15:56:39Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 52E95B4DE61245AE8845384BB9BAF314 Ref B: SLAEDGE1217 Ref C: 2023-11-26T15:56:39Z
ua152.ffzw.link/rp/95z5wMy4UcfbSSSlSw780vQ5jKA.jpg
200 OK 5.4 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/95z5wMy4UcfbSSSlSw780vQ5jKA.jpg
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, xresolution=74, yresolution=82, resolutionunit=2, software=GIMP 2.10.8, datetime=2019:08:01 11:38:22], progressive, precision 8, 160x160, components 3\012- data
Hash 69d162774f894ff8b920330e376b7a62
f79cf9c0ccb851c7db4924a54b0efcd2f4398ca0
c9faa34663fe19eb4d8c007bf00ad7c4bc993f70c9fc42a04801eccdd59008f7
GET /rp/95z5wMy4UcfbSSSlSw780vQ5jKA.jpg HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:39 GMT
Content-Type: image/jpeg
Content-Length: 5387
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: adFid0+JT/i5IDMON2t6Yg==
Last-Modified: Tue, 27 Dec 2022 02:26:58 GMT
ETag: 0x8DAE7B1D4483ED1
X-Cache: TCP_HIT
x-ms-request-id: bd9f8839-201e-003d-4115-1c1d91000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: EB182D61053E465EB6DAA492CA9DCE5E Ref B: SEL20EDGE0421 Ref C: 2023-11-24T11:49:38Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 6741C0B3CF1E4901A3B3C296EDB7B6E9 Ref B: SLAEDGE1217 Ref C: 2023-11-26T15:56:39Z
ua152.ffzw.link/rp/GJDmKr3_TS3Qpm6KEL9UKUQKUO4.jpg
6.8 kB URL ua152.ffzw.link/rp/GJDmKr3_TS3Qpm6KEL9UKUQKUO4.jpg
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, xresolution=74, yresolution=82, resolutionunit=2, software=GIMP 2.10.8, datetime=2019:08:01 11:40:12], progressive, precision 8, 160x160, components 3\012- data
Hash 0c41ee31b04e978b4882d17690f03a3a
1890e62abdff4d2dd0a66e8a10bf5429440a50ee
97785743a5ffc303ff8b7b465cd12af8403f7eed2b2d19687e118e2621059741
GET /rp/GJDmKr3_TS3Qpm6KEL9UKUQKUO4.jpg HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:39 GMT
Content-Type: image/jpeg
Content-Length: 6817
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: DEHuMbBOl4tIgtF2kPA6Og==
Last-Modified: Tue, 27 Dec 2022 02:26:58 GMT
ETag: 0x8DAE7B1D4488CE6
X-Cache: TCP_HIT
x-ms-request-id: bcf003d6-001e-0008-1e0d-1cb3c4000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 17480F6FB555419CBB36C290F1C92D3E Ref B: SEL20EDGE0618 Ref C: 2023-11-23T21:57:15Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 320AFA7A3A5B48F18A4FD0F31F58F101 Ref B: SLAEDGE1613 Ref C: 2023-11-26T15:56:39Z
ua152.ffzw.link/rp/dbmNS45xQvD1diApY1T2HExvOo8.jpg
200 OK 4.9 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/dbmNS45xQvD1diApY1T2HExvOo8.jpg
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, xresolution=74, yresolution=82, resolutionunit=2, software=GIMP 2.10.8, datetime=2019:07:31 17:53:43], progressive, precision 8, 160x160, components 3\012- data
Hash fda2ceae0679611937e6e71f701a36ab
75b98d4b8e7142f0f57620296354f61c4c6f3a8f
b818c1e9b0b46cccdc158aca581c3c5f4a9bd3dda380da03af52f43f14f5651e
GET /rp/dbmNS45xQvD1diApY1T2HExvOo8.jpg HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:39 GMT
Content-Type: image/jpeg
Content-Length: 4934
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: /aLOrgZ5YRk35ucfcBo2qw==
Last-Modified: Tue, 27 Dec 2022 02:26:58 GMT
ETag: 0x8DAE7B1D449D6F2
X-Cache: TCP_HIT
x-ms-request-id: db1a81c8-301e-0022-1515-1cc681000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: F53E5DC781514E5E9DACA1CDD316A070 Ref B: SEL20EDGE0521 Ref C: 2023-11-23T21:57:14Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 775CB2A530A04896971D4B9AC1EEF952 Ref B: SLAEDGE2018 Ref C: 2023-11-26T15:56:39Z
ua152.ffzw.link/rp/ln5TQq6AIWfcBlduDk-5bnaJMpY.jpg
200 OK 4.4 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/ln5TQq6AIWfcBlduDk-5bnaJMpY.jpg
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, xresolution=74, yresolution=82, resolutionunit=2, software=GIMP 2.10.8, datetime=2019:07:31 17:58:04], progressive, precision 8, 160x160, components 3\012- data
Hash a98a08bdb99b8422c9dc9d6fdd9387c3
967e5342ae802167dc06576e0e4fb96e76893296
5fab9ee214738e71d6c01392ebc7b1eec09ef8e19ca508ef28154e3e7a769acf
GET /rp/ln5TQq6AIWfcBlduDk-5bnaJMpY.jpg HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:39 GMT
Content-Type: image/jpeg
Content-Length: 4409
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: qYoIvbmbhCLJ3J1v3ZOHww==
Last-Modified: Tue, 27 Dec 2022 02:26:58 GMT
ETag: 0x8DAE7B1D449FDFB
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: 4ce9dac7-c01e-001e-5411-20725a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: F77B254EA3234357B18A271DF5401CB7 Ref B: SEL20EDGE0211 Ref C: 2023-11-26T15:56:39Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 12DEEE105AEB42C084543C6C8A6E54BC Ref B: SLAEDGE1407 Ref C: 2023-11-26T15:56:39Z
ua152.ffzw.link/rp/lvCKZ07bEYtoYmY62ifMzVa0RIE.jpg
200 OK 5.9 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/lvCKZ07bEYtoYmY62ifMzVa0RIE.jpg
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, xresolution=74, yresolution=82, resolutionunit=2, software=GIMP 2.10.8, datetime=2019:07:31 17:59:08], progressive, precision 8, 160x160, components 3\012- data
Hash f6e70da298349ad94215f0b4a6875037
96f08a674edb118b6862663ada27cccd56b44481
68b6356ba9f37ff17eae98bc094a493075f83d446b1e88f1ed32c2926e72e76c
GET /rp/lvCKZ07bEYtoYmY62ifMzVa0RIE.jpg HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:39 GMT
Content-Type: image/jpeg
Content-Length: 5944
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: 9ucNopg0mtlCFfC0podQNw==
Last-Modified: Tue, 27 Dec 2022 02:26:58 GMT
ETag: 0x8DAE7B1D449D6F2
X-Cache: TCP_HIT
x-ms-request-id: 46332b27-601e-0057-4f0d-1c413a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: A2E319C88F4D44DB9E675CE8B5492121 Ref B: SEL20EDGE0616 Ref C: 2023-11-24T11:49:38Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 52CA20AB8519484888D624B7E73319D4 Ref B: SLAEDGE1918 Ref C: 2023-11-26T15:56:39Z
ua152.ffzw.link/rp/cfeVf2-uV0hUo3ToTbLjztuomWk.jpg
200 OK 4.5 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/cfeVf2-uV0hUo3ToTbLjztuomWk.jpg
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, xresolution=74, yresolution=82, resolutionunit=2, software=GIMP 2.10.8, datetime=2019:07:31 17:51:08], progressive, precision 8, 160x158, components 3\012- data
Hash 7aef4ccf6e47b9ba038365cd3d1f5693
71f7957f6fae574854a374e84db2e3cedba89969
08102ba7a0388b1afc9a351b3387b2ddeda846551303170e0273b2f305aeccb2
GET /rp/cfeVf2-uV0hUo3ToTbLjztuomWk.jpg HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:39 GMT
Content-Type: image/jpeg
Content-Length: 4547
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: eu9Mz25HuboDg2XNPR9Wkw==
Last-Modified: Tue, 27 Dec 2022 02:26:58 GMT
ETag: 0x8DAE7B1D449D6F2
X-Cache: TCP_HIT
x-ms-request-id: bd9ffa0e-201e-003d-2e21-1c1d91000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 766B9C90AD6C49CEA892E939F09A2B0B Ref B: SEL20EDGE0320 Ref C: 2023-11-23T21:57:15Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: AF80C936307B4831B68344D812FBB0FF Ref B: SLAEDGE1908 Ref C: 2023-11-26T15:56:39Z
ua152.ffzw.link/rp/ni3MyKKVu9pK0SgY6gb6Z2NOGpg.jpg
3.8 kB URL ua152.ffzw.link/rp/ni3MyKKVu9pK0SgY6gb6Z2NOGpg.jpg
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, xresolution=74, yresolution=82, resolutionunit=2, software=GIMP 2.10.8, datetime=2019:08:01 11:43:45], progressive, precision 8, 160x160, components 3\012- data
Hash 281570611f89219a970f2589f98a09db
9e2dccc8a295bbda4ad12818ea06fa67634e1a98
7bdab4155253e159b748e2be6cb1c0af736f18d2a4dbddf79d93d6219a3de9dd
GET /rp/ni3MyKKVu9pK0SgY6gb6Z2NOGpg.jpg HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:40 GMT
Content-Type: image/jpeg
Content-Length: 3814
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: KBVwYR+JIZqXDyWJ+YoJ2w==
Last-Modified: Tue, 27 Dec 2022 02:26:58 GMT
ETag: 0x8DAE7B1D44A250E
X-Cache: TCP_HIT
x-ms-request-id: 403acee3-d01e-0023-7a3e-1cc77c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 4DEDE7159CFF4017B7983303ED05B3E3 Ref B: SEL20EDGE0218 Ref C: 2023-11-24T11:49:38Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 2B7374F73F3F4C179C1CA2F3A920A3E0 Ref B: SLAEDGE1818 Ref C: 2023-11-26T15:56:40Z
ua152.ffzw.link/rp/fEzca4bKO4pRulhVlOoat7eLgmU.js
200 OK 1.3 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/fEzca4bKO4pRulhVlOoat7eLgmU.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (1274), with no line terminators
Hash a969230a51dba5ab5adf5877bcc28cfa
7c4cdc6b86ca3b8a51ba585594ea1ab7b78b8265
8e572950cbda0558f7b9563ce4f5017e06bc9c262cf487e33927a948f8d78f7f
GET /rp/fEzca4bKO4pRulhVlOoat7eLgmU.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:40 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 1274
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: qWkjClHbpata31h3vMKM+g==
Last-Modified: Wed, 23 Feb 2022 18:00:23 GMT
ETag: 0x8D9F6F65CF753D6
X-Cache: TCP_HIT
x-ms-request-id: 0cccc4bb-101e-0058-1ffd-1faccc000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 9AC8A131D1C341A0ABE83967628866C6 Ref B: SEL20EDGE0314 Ref C: 2023-11-26T15:56:19Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 8D377F8E5D6B48A6B6C77FF102AFDFCB Ref B: SLAEDGE1416 Ref C: 2023-11-26T15:56:40Z
ua152.ffzw.link/rp/No5xIZMVh9KdmI4bjLD9p4Xl0Ys.js
200 OK 1.6 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/No5xIZMVh9KdmI4bjLD9p4Xl0Ys.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (1409), with no line terminators, Unicode text, UTF-8 text, with very long lines (1587), with no line terminators
Hash cb027ba6eb6dd3f033c02183b9423995
368e7121931587d29d988e1b8cb0fda785e5d18b
04a007926a68bb33e36202eb27f53882af7fd009c1ec3ad7177fba380a5fb96f
GET /rp/No5xIZMVh9KdmI4bjLD9p4Xl0Ys.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:40 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 1589
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: ywJ7putt0/AzwCGDuUI5lQ==
Last-Modified: Wed, 30 Jun 2021 06:36:19 GMT
ETag: 0x8D93B915EB5C971
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: 23ee16b8-001e-0065-5744-2019ea000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 77FAB42A5CCD4DF1B1F9ED116F87415A Ref B: SEL20EDGE0206 Ref C: 2023-11-26T15:56:40Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 5A099660E9CD4EEABDCF3F9695BC6664 Ref B: SLAEDGE1120 Ref C: 2023-11-26T15:56:40Z
ua152.ffzw.link/rp/MWgq_OYohQuMsx-qjpxMXsnruVc.js
200 OK 226 B URL GET HTTP/1.1 ua152.ffzw.link/rp/MWgq_OYohQuMsx-qjpxMXsnruVc.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with no line terminators
Hash a5363c37b617d36dfd6d25bfb89ca56b
31682afce628850b8cb31faa8e9c4c5ec9ebb957
8b4d85985e62c264c03c88b31e68dbabdcc9bd42f40032a43800902261ff373f
GET /rp/MWgq_OYohQuMsx-qjpxMXsnruVc.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:40 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 226
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: pTY8N7YX0239bSW/uJylaw==
Last-Modified: Fri, 28 May 2021 21:50:01 GMT
ETag: 0x8D922228B6B1D40
X-Cache: TCP_HIT
x-ms-request-id: 0ccdf738-101e-0058-751d-20accc000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: DA83969E54124848B1ACDCEEEEFC88B9 Ref B: SEL20EDGE0606 Ref C: 2023-11-26T15:56:09Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 54EEA370CF194EE4B6C5C02AF9806045 Ref B: SLAEDGE1912 Ref C: 2023-11-26T15:56:40Z
ua152.ffzw.link/rp/KjCBfzuZ475zX0-Fu2bdXt9qifQ.js
200 OK 576 B URL GET HTTP/1.1 ua152.ffzw.link/rp/KjCBfzuZ475zX0-Fu2bdXt9qifQ.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (576), with no line terminators
Hash f5712e664873fde8ee9044f693cd2db7
2a30817f3b99e3be735f4f85bb66dd5edf6a89f4
1562669ad323019cda49a6cf3bddece1672282e7275f9d963031b30ea845ffb2
GET /rp/KjCBfzuZ475zX0-Fu2bdXt9qifQ.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:41 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 576
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: 9XEuZkhz/ejukET2k80ttw==
Last-Modified: Fri, 28 May 2021 21:43:54 GMT
ETag: 0x8D92221B0A13708
X-Cache: TCP_HIT
x-ms-request-id: 86b6eee8-001e-0047-3d0f-1c77dc000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 3AA46E54AA0D42EA835A1C5BCC2AF8E7 Ref B: SEL20EDGE0410 Ref C: 2023-11-25T16:50:52Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 0AFBEA223B1D4F9BB37B81A4194E164E Ref B: SLAEDGE1608 Ref C: 2023-11-26T15:56:41Z
ua152.ffzw.link/rp/iWHKha2Cu3AUNv_GRkKDPPuv8wM.js
511 B URL GET ua152.ffzw.link/rp/iWHKha2Cu3AUNv_GRkKDPPuv8wM.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (511), with no line terminators
Hash d6741608ba48e400a406aca7f3464765
8961ca85ad82bb701436ffc64642833cfbaff303
b1db1d8c0e5316d2c8a14e778b7220ac75adae5333a6d58ba7fd07f4e6eaa83c
GET /rp/iWHKha2Cu3AUNv_GRkKDPPuv8wM.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:41 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 511
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: 1nQWCLpI5ACkBqyn80ZHZQ==
Last-Modified: Fri, 28 May 2021 23:26:45 GMT
ETag: 0x8D922300EC81DE6
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: 0eebf741-801e-005d-392f-2058b3000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 87EC20FB6F0B45F88E490B9733022505 Ref B: SEL20EDGE0321 Ref C: 2023-11-26T15:56:41Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 729A5A719C1143DCBE62D015D35B6AA8 Ref B: SLAEDGE1020 Ref C: 2023-11-26T15:56:41Z
login.microsoftonline.com/common/oauth2/authorize?client_id=9ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7&response_type=id_token+code&nonce=97b7e4fc-b332-464a-8305-3ace7bfeb38e&redirect_uri=https%3a%2f%2fua152.ffzw.link%2forgid%2fidtoken%2fconditional&scope=openid%20email%20profile%209ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7/.default&response_mode=form_post&instance_aware=true&msafed=0&prompt=none&state=%7b%22ig%22%3a%227C73DE283EAE42229B89933196E76768%22%7d
8.5 kB URL login.microsoftonline.com/common/oauth2/authorize?client_id=9ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7&response_type=id_token+code&nonce=97b7e4fc-b332-464a-8305-3ace7bfeb38e&redirect_uri=https%3a%2f%2fua152.ffzw.link%2forgid%2fidtoken%2fconditional&scope=openid%20email%20profile%209ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7/.default&response_mode=form_post&instance_aware=true&msafed=0&prompt=none&state=%7b%22ig%22%3a%227C73DE283EAE42229B89933196E76768%22%7d
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (8860), with no line terminatorsHTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (6137), with CRLF, LF line terminators
Hash 226e38ef22517124696c301473e7bd61
451c8effb46c72a6935b4add80dad341cb2e0a0e
77fc7fc3f3b8fd8d10367ae322a250b8e14175362c8954b02f2c0d6d7a615f50
GET /common/oauth2/authorize?client_id=9ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7&response_type=id_token+code&nonce=97b7e4fc-b332-464a-8305-3ace7bfeb38e&redirect_uri=https%3a%2f%2fua152.ffzw.link%2forgid%2fidtoken%2fconditional&scope=openid%20email%20profile%209ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7/.default&response_mode=form_post&instance_aware=true&msafed=0&prompt=none&state=%7b%22ig%22%3a%227C73DE283EAE42229B89933196E76768%22%7d HTTP/1.1
Host: login.microsoftonline.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ua152.ffzw.link/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache
Pragma: no-cache
Content-Type: text/html; charset=utf-8
Content-Encoding: gzip
Expires: -1
Vary: Accept-Encoding
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
Link: <https://aadcdn.msftauth.net>; rel=preconnect; crossorigin, <https://aadcdn.msftauth.net>; rel=dns-prefetch, <https://aadcdn.msauth.net>; rel=dns-prefetch
X-DNS-Prefetch-Control: on
P3P: CP="DSP CUR OTPi IND OTRi ONL FIN"
x-ms-request-id: a3735d9f-dc4c-470e-95b7-ca787a81a201
x-ms-ests-server: 2.1.16729.8 - SEC ProdSlices
Referrer-Policy: strict-origin-when-cross-origin
X-XSS-Protection: 0
Set-Cookie: buid=0.ATAAMe_N-B6jSkuT5F9XHpElWnmtoZ62_ZpPi8MrcPluNMcBAAA.AQABAAEAAAAmoFfGtYxvRrNriQdPKIZ-mlEB_qrYqVtSBw0BTfonedW-XZTic0Hg6K1BXHd1CDILaW-RIUboJUwdf4XqZlmTnyy0CM3uZd2Jxm0Pd1aMFkN9lmPcqo2au3VLIrAmLJggAA; expires=Tue, 26-Dec-2023 15:56:41 GMT; path=/; secure; HttpOnly; SameSite=None
esctx-RpkNtiZKaZE=AQABAAEAAAAmoFfGtYxvRrNriQdPKIZ-6-A5Mrg2kbJkmnmyxRKTznuAABLyqAcxlcT9GhZaw3oBVIwNz-hB09MUZciE1iUFFOnS9XzdgEyIexzrLON6UXtOYQwcTmEXaxkbrbcB4y0KRNhRX0jBbYUtzKija6efBEuhY9MGhpZexZD_NYtAzSAA; domain=.login.microsoftonline.com; path=/; secure; HttpOnly; SameSite=None
fpc=AkXF7HJFnVVAks2pSXsir0-CeMQLAQAAALhh9dwOAAAA; expires=Tue, 26-Dec-2023 15:56:41 GMT; path=/; secure; HttpOnly; SameSite=None
esctx=PAQABAAEAAAAmoFfGtYxvRrNriQdPKIZ-oq_rgUsX_VrJjJnCTzzsfsrBof_WI_vHF66hgu3MZzPB9U_a3pjncWj__MzOUpfGmC08tG-2Beoq1_uhnuM6j4eqNKtfcthKHVJolvqReCa3T3_U24TvjstYy68dX1kk2FYpoGKRdsoy-Ta584gVwewNS0YlhNrwdZery8OTb-wgAA; domain=.login.microsoftonline.com; path=/; secure; HttpOnly; SameSite=None
x-ms-gateway-slice=estsfd; path=/; secure; samesite=none; httponly
stsservicecookie=estsfd; path=/; secure; samesite=none; httponly
Date: Sun, 26 Nov 2023 15:56:40 GMT
Content-Length: 8474
ua152.ffzw.link/rp/kmQOPQp8vl1HvI8PfMk2LoJInSM.js
391 B URL ua152.ffzw.link/rp/kmQOPQp8vl1HvI8PfMk2LoJInSM.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (391), with no line terminators
Hash 55ec2297c0cf262c5fa9332f97c1b77a
92640e3d0a7cbe5d47bc8f0f7cc9362e82489d23
342c3dd52a8a456f53093671d8d91f7af5b3299d72d60edb28e4f506368c6467
GET /rp/kmQOPQp8vl1HvI8PfMk2LoJInSM.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0; SRCHUSR=T=1701014186000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:41 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 391
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: Vewil8DPJixfqTMvl8G3eg==
Last-Modified: Fri, 28 May 2021 23:35:02 GMT
ETag: 0x8D9223137384E76
X-Cache: TCP_HIT
x-ms-request-id: f47ca7c3-701e-002e-330e-1c2870000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: ACEBA1C47EDA4393B340C3EC50625F41 Ref B: SEL20EDGE0608 Ref C: 2023-11-22T16:56:41Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: B910A3ABDAD24AD38BF8C77FB5B9EDE0 Ref B: SLAEDGE1807 Ref C: 2023-11-26T15:56:41Z
aadcdn.msftauth.net/ests/2.1/content/cdnbundles/converged.v2.login.min_ltjvsvk5aekta_kgibi0gg2.css
20 kB URL aadcdn.msftauth.net/ests/2.1/content/cdnbundles/converged.v2.login.min_ltjvsvk5aekta_kgibi0gg2.css
IP
File type ASCII text, with very long lines (61177)
Hash 2ed8d5b2f2b901e92d03f9068812341a
8470214fc8e246c3910bcb0eae9070d4abe3a389
1a0ea89ae667420caeae29d594d53258e6ed157dab7e8dfe6f154f0054b0cf99
GET /ests/2.1/content/cdnbundles/converged.v2.login.min_ltjvsvk5aekta_kgibi0gg2.css HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.microsoftonline.com/
Origin: https://login.microsoftonline.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
age: 6908672
cache-control: public, max-age=31536000
content-md5: znAMuOwBXwRYMjVZ8p4wCw==
content-type: text/css
date: Sun, 26 Nov 2023 15:56:41 GMT
etag: 0x8DBAF1F9F5D8653
last-modified: Wed, 06 Sep 2023 21:24:15 GMT
server: ECAcc (ska/F699)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: a859188b-b01e-00e0-2bab-e14f51000000
x-ms-version: 2009-09-19
content-length: 20208
X-Firefox-Spdy: h2
aadcdn.msftauth.net/ests/2.1/content/cdnbundles/ux.converged.error.strings-en.min_n8lrggxglna3se0_9oqipg2.js
11 kB URL aadcdn.msftauth.net/ests/2.1/content/cdnbundles/ux.converged.error.strings-en.min_n8lrggxglna3se0_9oqipg2.js
IP
File type Unicode text, UTF-8 text, with very long lines (30821), with no line terminators
Hash 9fc2d11865c62cd6b7b04d3ff4eaa2a6
77604fe2efe8c1abf11659b92a5c2a78ebf18e7e
702e945f65dcc2dc47c6a0a012e87dc0458b1520cdf14f3b9948c806c9e8c61b
GET /ests/2.1/content/cdnbundles/ux.converged.error.strings-en.min_n8lrggxglna3se0_9oqipg2.js HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.microsoftonline.com/
Origin: https://login.microsoftonline.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
age: 3205539
cache-control: public, max-age=31536000
content-md5: IGnRFJ3iYZAVgWZsCghwDQ==
content-type: application/x-javascript
date: Sun, 26 Nov 2023 15:56:41 GMT
etag: 0x8DBCF820CD0F767
last-modified: Wed, 18 Oct 2023 02:29:27 GMT
server: ECAcc (ska/F79D)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 27ae46a8-901e-00e2-0159-031955000000
x-ms-version: 2009-09-19
content-length: 10652
X-Firefox-Spdy: h2
aadcdn.msftauth.net/shared/1.0/content/js/ConvergedError_Core_DQi2BEMXvNqjTvcStl7kuQ2.js
96 kB URL aadcdn.msftauth.net/shared/1.0/content/js/ConvergedError_Core_DQi2BEMXvNqjTvcStl7kuQ2.js
IP
File type ASCII text, with very long lines (64616)
Hash 0d08b6044317bcdaa34ef712b65ee4b9
31f5d775568ba304101be6bcc04aa28a566d032d
811a0e3a506cf2715e80b8d904abeb94c767e5a730b9ef4c6ff2da8d199be54e
GET /shared/1.0/content/js/ConvergedError_Core_DQi2BEMXvNqjTvcStl7kuQ2.js HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.microsoftonline.com/
Origin: https://login.microsoftonline.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
age: 3205539
cache-control: public, max-age=31536000
content-md5: booOodh8CcIRrcO40FjhYg==
content-type: application/x-javascript
date: Sun, 26 Nov 2023 15:56:41 GMT
etag: 0x8DBCEFDC1792EA6
last-modified: Tue, 17 Oct 2023 10:42:27 GMT
server: ECAcc (ska/F689)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 36da180a-d01e-005e-1359-039b08000000
x-ms-version: 2009-09-19
content-length: 95918
X-Firefox-Spdy: h2
aadcdn.msftauth.net/ests/2.1/content/cdnbundles/watsonsupportwithjquery.3.5.min_dc940oomzau4rsu8qesnvg2.js
40 kB URL aadcdn.msftauth.net/ests/2.1/content/cdnbundles/watsonsupportwithjquery.3.5.min_dc940oomzau4rsu8qesnvg2.js
IP
File type ASCII text, with very long lines (65450), with CRLF line terminators
Hash 75cf78d0e38c65a538ad253ca9e48dbe
bf0452e4a42a9af3b69d5d8c3a3a0433f14921b6
df2aa8537c1992c94846a0ffffaa9031d430d9d0210b9e396ec059aff62627e0
GET /ests/2.1/content/cdnbundles/watsonsupportwithjquery.3.5.min_dc940oomzau4rsu8qesnvg2.js HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.microsoftonline.com/
Origin: https://login.microsoftonline.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
age: 26536519
cache-control: public, max-age=31536000
content-md5: HWW92uTq7vx3y5z+zFZbXQ==
content-type: application/x-javascript
date: Sun, 26 Nov 2023 15:56:42 GMT
etag: 0x8D8DA1E5A71125A
last-modified: Fri, 26 Feb 2021 06:18:37 GMT
server: ECAcc (ska/F775)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 8befbb6a-901e-0004-5428-2f3529000000
x-ms-version: 2009-09-19
content-length: 40454
X-Firefox-Spdy: h2
aadcdn.msftauth.net/ests/2.1/content/cdnbundles/frameworksupport.min_oadrnc13magb009k4d20lg2.js
4.9 kB URL aadcdn.msftauth.net/ests/2.1/content/cdnbundles/frameworksupport.min_oadrnc13magb009k4d20lg2.js
IP
File type ASCII text, with very long lines (512)
Hash 39a0eb35cd7799a181d34f4ae1ddb496
e933ca8534bcb6ad79d240316ce23c8b870050d0
c8cef105fcaf7cbf3f8682c861045505c24d41cf6686c20c1c03e14031a3db69
GET /ests/2.1/content/cdnbundles/frameworksupport.min_oadrnc13magb009k4d20lg2.js HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.microsoftonline.com/
Origin: https://login.microsoftonline.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Length,Date,Transfer-Encoding
age: 13704813
cache-control: public, max-age=31536000
content-md5: A8dgUeRfi6/VknMbox6Cuw==
content-type: application/x-javascript
date: Sun, 26 Nov 2023 15:56:42 GMT
etag: 0x8D876CB1F3EA0D9
last-modified: Thu, 22 Oct 2020 20:43:24 GMT
server: ECAcc (ska/F7A2)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: e572141c-801e-0029-6ddc-a379f6000000
x-ms-version: 2009-09-19
content-length: 4880
X-Firefox-Spdy: h2
aadcdn.msftauth.net/ests/2.1/content/cdnbundles/watson.min_q5ptmu8aniymd4ftuqdkda2.js
3.9 kB URL aadcdn.msftauth.net/ests/2.1/content/cdnbundles/watson.min_q5ptmu8aniymd4ftuqdkda2.js
IP
File type ASCII text, with very long lines (2054)
Hash 439a53994f1a9c860c7787ed5100ca0c
15ba120f64bbf6a59a457841b10df0d6d1b4574c
441bfa485fb0eb8ad2be7001209868b57c41769cae9512a774419f5882c093e6
GET /ests/2.1/content/cdnbundles/watson.min_q5ptmu8aniymd4ftuqdkda2.js HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.microsoftonline.com/
Origin: https://login.microsoftonline.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Length,Date,Transfer-Encoding
age: 12812600
cache-control: public, max-age=31536000
content-md5: up2irhKVlrgd4fr/sCzQ9w==
content-type: application/x-javascript
date: Sun, 26 Nov 2023 15:56:42 GMT
etag: 0x8DA5944E2DB65A3
last-modified: Tue, 28 Jun 2022 20:29:22 GMT
server: ECAcc (ska/F69C)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 1ea079c5-601e-005e-0bf9-ab5ce1000000
x-ms-version: 2009-09-19
content-length: 3921
X-Firefox-Spdy: h2
ua152.ffzw.link/rp/VMYMrXeSZyOXW5LQn-ede-_1jZk.js
924 B URL ua152.ffzw.link/rp/VMYMrXeSZyOXW5LQn-ede-_1jZk.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (924), with no line terminators
Hash 47442e8d5838baaa640a856f98e40dc6
54c60cad77926723975b92d09fe79d7beff58d99
15ed1579bccf1571a7d8b888226e9fe455aca5628684419d1a18f7cda68af89e
GET /rp/VMYMrXeSZyOXW5LQn-ede-_1jZk.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0; SRCHUSR=T=1701014186000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:42 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 924
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: R0QujVg4uqpkCoVvmOQNxg==
Last-Modified: Mon, 11 Jul 2022 23:07:39 GMT
ETag: 0x8DA63922724C366
X-Cache: TCP_MISS
x-ms-request-id: c070314b-101e-001c-6d81-2070a0000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: D8855A9EFB6C496DAC0750015A997DA7 Ref B: SEL20EDGE0611 Ref C: 2023-11-26T15:56:41Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: EE1B6B9DF71B4761B1559D3797B64D3C Ref B: SLAEDGE1321 Ref C: 2023-11-26T15:56:41Z
aadcdn.msftauth.net/shared/1.0/content/js/asyncchunk/convergederror_customizationloader_2f6c70bd81e8d08d2987.js
35 kB URL aadcdn.msftauth.net/shared/1.0/content/js/asyncchunk/convergederror_customizationloader_2f6c70bd81e8d08d2987.js
IP
File type ASCII text, with very long lines (56724)
Hash ffda0f2d97bbb8c4c6f38eae238cc36a
6c3c3242f094f1ac0697b302dd0d0d6cc2b5d316
a83e15dd25e7522fd1fac1d850abc1b3612851c84579af93635e3406591af928
GET /shared/1.0/content/js/asyncchunk/convergederror_customizationloader_2f6c70bd81e8d08d2987.js HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.microsoftonline.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
age: 4084884
cache-control: public, max-age=31536000
content-md5: skJodLrLJ46Op3QhIj5/+w==
content-type: application/x-javascript
date: Sun, 26 Nov 2023 15:56:42 GMT
etag: 0x8DBC609762DCABB
last-modified: Fri, 06 Oct 2023 01:13:34 GMT
server: ECAcc (ska/F6C4)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 6606b6a2-501e-0086-355a-fbf77f000000
x-ms-version: 2009-09-19
content-length: 34584
X-Firefox-Spdy: h2
aadcdn.msftauth.net/shared/1.0/content/images/check_small_48540c930333871c385fcba2c659ccdb.svg
1.0 kB URL aadcdn.msftauth.net/shared/1.0/content/images/check_small_48540c930333871c385fcba2c659ccdb.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2370), with CRLF line terminators
Hash c36fa14790dfc6ca22068a958373c2ba
c4e33a1a3356b535eb62ecde6fb0de1232b1b910
22d511adce8d3498f842b05df7281ce582fdc6817fe27606ecd21e72277857f3
GET /shared/1.0/content/images/check_small_48540c930333871c385fcba2c659ccdb.svg HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.microsoftonline.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
age: 15408435
cache-control: public, max-age=31536000
content-md5: iYTzOJM089b1SPwrN/KdOg==
content-type: image/svg+xml
date: Sun, 26 Nov 2023 15:56:42 GMT
etag: 0x8DB5C3F46C291A9
last-modified: Wed, 24 May 2023 10:11:44 GMT
server: ECAcc (ska/F6AD)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 3da84c06-f01e-0012-6f5d-946cc0000000
x-ms-version: 2009-09-19
content-length: 1009
X-Firefox-Spdy: h2
aadcdn.msftauth.net/shared/1.0/content/images/close_790189870c9543725dc3f5a15fb25e46.svg
190 B URL aadcdn.msftauth.net/shared/1.0/content/images/close_790189870c9543725dc3f5a15fb25e46.svg
IP
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with no line terminators
Hash 40eb39126300b56bf66c20ee75b54093
83678d94097257eb474713dec49e8094f49d2e2a
765709425a5b9209e875dccf2217d3161429d2d48159fc1df7b253b77c1574f4
GET /shared/1.0/content/images/close_790189870c9543725dc3f5a15fb25e46.svg HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.microsoftonline.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
age: 15408435
cache-control: public, max-age=31536000
content-md5: rp+/fadJKxLUo+jgFmYTeQ==
content-type: image/svg+xml
date: Sun, 26 Nov 2023 15:56:42 GMT
etag: 0x8DB5C3F4721247A
last-modified: Wed, 24 May 2023 10:11:44 GMT
server: ECAcc (ska/F697)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: cf4cbdca-101e-0042-0c5d-942f4a000000
x-ms-version: 2009-09-19
content-length: 190
X-Firefox-Spdy: h2
aadcdn.msftauth.net/shared/1.0/content/js/oneDs_f2e0f4a029670f10d892.js
61 kB URL aadcdn.msftauth.net/shared/1.0/content/js/oneDs_f2e0f4a029670f10d892.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 4877efc88055d60953886ec55b04de34
2341b026a3e2a3b01afa1a39d1706840d75e09b3
8405362eb8f09df13ae244de155b51b1577274673d9728b6c81cd0278a63c8b0
GET /shared/1.0/content/js/oneDs_f2e0f4a029670f10d892.js HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.microsoftonline.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
age: 15540608
cache-control: public, max-age=31536000
content-md5: wegr9xrdYirQ87+FcvY0/A==
content-type: application/x-javascript
date: Sun, 26 Nov 2023 15:56:42 GMT
etag: 0x8DB5D44A2CEB430
last-modified: Thu, 25 May 2023 17:22:37 GMT
server: ECAcc (ska/F6F4)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 23240edd-c01e-002b-0229-93749b000000
x-ms-version: 2009-09-19
content-length: 61052
X-Firefox-Spdy: h2
login.microsoftonline.com/common/oauth2/authorize?client_id=9ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7&response_type=id_token+code&nonce=97b7e4fc-b332-464a-8305-3ace7bfeb38e&redirect_uri=https%3a%2f%2fua152.ffzw.link%2forgid%2fidtoken%2fconditional&scope=openid%20email%20profile%209ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7/.default&response_mode=form_post&instance_aware=true&msafed=0&prompt=none&state=%7b%22ig%22%3a%227C73DE283EAE42229B89933196E76768%22%7d
8.5 kB URL login.microsoftonline.com/common/oauth2/authorize?client_id=9ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7&response_type=id_token+code&nonce=97b7e4fc-b332-464a-8305-3ace7bfeb38e&redirect_uri=https%3a%2f%2fua152.ffzw.link%2forgid%2fidtoken%2fconditional&scope=openid%20email%20profile%209ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7/.default&response_mode=form_post&instance_aware=true&msafed=0&prompt=none&state=%7b%22ig%22%3a%227C73DE283EAE42229B89933196E76768%22%7d
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (6001), with CRLF, LF line terminators
Hash 92f72b072a6a846dd47c06abf72a861c
473a617d579f9825e3533f801da5c9c023c91849
d0db0f725feec6e306184791d5887d064ba23c7a7eede6abea3d9e0b9ef5482e
GET /common/oauth2/authorize?client_id=9ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7&response_type=id_token+code&nonce=97b7e4fc-b332-464a-8305-3ace7bfeb38e&redirect_uri=https%3a%2f%2fua152.ffzw.link%2forgid%2fidtoken%2fconditional&scope=openid%20email%20profile%209ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7/.default&response_mode=form_post&instance_aware=true&msafed=0&prompt=none&state=%7b%22ig%22%3a%227C73DE283EAE42229B89933196E76768%22%7d HTTP/1.1
Host: login.microsoftonline.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.microsoftonline.com/common/oauth2/authorize?client_id=9ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7&response_type=id_token+code&nonce=97b7e4fc-b332-464a-8305-3ace7bfeb38e&redirect_uri=https%3a%2f%2fua152.ffzw.link%2forgid%2fidtoken%2fconditional&scope=openid%20email%20profile%209ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7/.default&response_mode=form_post&instance_aware=true&msafed=0&prompt=none&state=%7b%22ig%22%3a%227C73DE283EAE42229B89933196E76768%22%7d
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Cookie: buid=0.ATAAMe_N-B6jSkuT5F9XHpElWnmtoZ62_ZpPi8MrcPluNMcBAAA.AQABAAEAAAAmoFfGtYxvRrNriQdPKIZ-mlEB_qrYqVtSBw0BTfonedW-XZTic0Hg6K1BXHd1CDILaW-RIUboJUwdf4XqZlmTnyy0CM3uZd2Jxm0Pd1aMFkN9lmPcqo2au3VLIrAmLJggAA; esctx-RpkNtiZKaZE=AQABAAEAAAAmoFfGtYxvRrNriQdPKIZ-6-A5Mrg2kbJkmnmyxRKTznuAABLyqAcxlcT9GhZaw3oBVIwNz-hB09MUZciE1iUFFOnS9XzdgEyIexzrLON6UXtOYQwcTmEXaxkbrbcB4y0KRNhRX0jBbYUtzKija6efBEuhY9MGhpZexZD_NYtAzSAA; fpc=AkXF7HJFnVVAks2pSXsir0-CeMQLAQAAALhh9dwOAAAA; esctx=PAQABAAEAAAAmoFfGtYxvRrNriQdPKIZ-oq_rgUsX_VrJjJnCTzzsfsrBof_WI_vHF66hgu3MZzPB9U_a3pjncWj__MzOUpfGmC08tG-2Beoq1_uhnuM6j4eqNKtfcthKHVJolvqReCa3T3_U24TvjstYy68dX1kk2FYpoGKRdsoy-Ta584gVwewNS0YlhNrwdZery8OTb-wgAA; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache
Pragma: no-cache
Content-Type: text/html; charset=utf-8
Content-Encoding: gzip
Expires: -1
Vary: Accept-Encoding
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
Link: <https://aadcdn.msftauth.net>; rel=preconnect; crossorigin, <https://aadcdn.msftauth.net>; rel=dns-prefetch, <https://aadcdn.msauth.net>; rel=dns-prefetch
X-DNS-Prefetch-Control: on
P3P: CP="DSP CUR OTPi IND OTRi ONL FIN"
x-ms-request-id: 1a273543-7b1a-4726-848b-6f9fac4f0a01
x-ms-ests-server: 2.1.16729.8 - WEULR1 ProdSlices
Referrer-Policy: strict-origin-when-cross-origin
X-XSS-Protection: 0
Set-Cookie: buid=0.ATAAMe_N-B6jSkuT5F9XHpElWnmtoZ62_ZpPi8MrcPluNMcBAAA.AQABAAEAAAAmoFfGtYxvRrNriQdPKIZ-vg5ly2aUhiGW8s6v8BNPOBdaTjedARsTbgGy1qC_BAps09pds2wFRpcAqAiTgW9xXPc9g6-T8Bnq0ezjQCfNsmTxU7o_dEb1Yx2mH4tTq0sgAA; expires=Tue, 26-Dec-2023 15:56:42 GMT; path=/; secure; HttpOnly; SameSite=None
esctx-FTCulsquy8c=AQABAAEAAAAmoFfGtYxvRrNriQdPKIZ-MkX1MlRY1-PFMx1UyR5j1hjGaqxMByqEkLU0I-7vtMz2xf3WXBRtklofHlzSbF7MhNcAI1AKDAVZgFGEPqhmyXffmvujHt2J4Pn19TV424ZYsIp_9T_C6MmOqD2xYiunLUYuk1ay8zjki3T9TFUN_CAA; domain=.login.microsoftonline.com; path=/; secure; HttpOnly; SameSite=None
fpc=AkXF7HJFnVVAks2pSXsir0-CeMQLAgAAALhh9dwOAAAA; expires=Tue, 26-Dec-2023 15:56:42 GMT; path=/; secure; HttpOnly; SameSite=None
x-ms-gateway-slice=estsfd; path=/; secure; samesite=none; httponly
Date: Sun, 26 Nov 2023 15:56:41 GMT
Content-Length: 8454
aadcdn.msftauth.net/shared/1.0/content/images/microsoft_logo_564db913a7fa0ca42727161c6d031bef.svg
1.4 kB URL aadcdn.msftauth.net/shared/1.0/content/images/microsoft_logo_564db913a7fa0ca42727161c6d031bef.svg
IP
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (3651), with no line terminators
Hash ee5c8d9fb6248c938fd0dc19370e90bd
d01a22720918b781338b5bbf9202b241a5f99ee4
04d29248ee3a13a074518c93a18d6efc491bf1f298f9b87fc989a6ae4b9fad7a
GET /shared/1.0/content/images/microsoft_logo_564db913a7fa0ca42727161c6d031bef.svg HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.microsoftonline.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
age: 15540607
cache-control: public, max-age=31536000
content-md5: nzaLxFgP7ZB3dfMcaybWzw==
content-type: image/svg+xml
date: Sun, 26 Nov 2023 15:56:42 GMT
etag: 0x8DB5C3F495F4B8C
last-modified: Wed, 24 May 2023 10:11:48 GMT
server: ECAcc (ska/F7A1)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 3ac418b8-601e-0058-0129-93ba20000000
x-ms-version: 2009-09-19
content-length: 1435
X-Firefox-Spdy: h2
aadcdn.msftauth.net/shared/1.0/content/images/backgrounds/2_11d9e3bcdfede9ce5ce5ace2d129f1c4.svg
673 B URL aadcdn.msftauth.net/shared/1.0/content/images/backgrounds/2_11d9e3bcdfede9ce5ce5ace2d129f1c4.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1864), with no line terminators
Hash bc3d32a696895f78c19df6c717586a5d
9191cb156a30a3ed79c44c0a16c95159e8ff689d
0e88b6fcbb8591edfd28184fa70a04b6dd3af8a14367c628edd7caba32e58c68
GET /shared/1.0/content/images/backgrounds/2_11d9e3bcdfede9ce5ce5ace2d129f1c4.svg HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.microsoftonline.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
age: 15540607
cache-control: public, max-age=31536000
content-md5: DhdidjYrlCeaRJJRG/y9mA==
content-type: image/svg+xml
date: Sun, 26 Nov 2023 15:56:42 GMT
etag: 0x8DB5C3F466DE917
last-modified: Wed, 24 May 2023 10:11:43 GMT
server: ECAcc (ska/F78F)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 0512e658-301e-0050-3b29-939d0f000000
x-ms-version: 2009-09-19
content-length: 673
X-Firefox-Spdy: h2
login.microsoftonline.com/common/handlers/watson
265 B URL login.microsoftonline.com/common/handlers/watson
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JSON data\012- , ASCII text, with no line terminators
Hash 5ae2843547089a1c8cb7dc42a6520679
988acfa9aeb7d4e3425ec8335cf62370fedc10be
4719bac5c85e6f6c09f73b0c2a0a8fa8819712e95f0900da3978dc179cac3472
POST /common/handlers/watson HTTP/1.1
Host: login.microsoftonline.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.microsoftonline.com/common/oauth2/authorize?client_id=9ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7&response_type=id_token+code&nonce=97b7e4fc-b332-464a-8305-3ace7bfeb38e&redirect_uri=https%3a%2f%2fua152.ffzw.link%2forgid%2fidtoken%2fconditional&scope=openid%20email%20profile%209ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7/.default&response_mode=form_post&instance_aware=true&msafed=0&prompt=none&state=%7b%22ig%22%3a%227C73DE283EAE42229B89933196E76768%22%7d
Content-Type: application/json; charset=utf-8
canary: PAQABAAEAAAAmoFfGtYxvRrNriQdPKIZ-E7Ezuqs9KPD-djRb6GNZhUT13S5k7k8xqkS76mct2db-SqqaLSkzz2Azlx3OJesLGPfes4wBALG_8ZELGBRSAfRp0ciHteTb5uBv_th1scKFYA2ybyoTG7kWbs2ukbE0VBOrCMXVVQ0rNYIz_6upPgjr4lhtfv3elGWa7o148-aH8ocxK2kgXkD5DTuSuOj5Y2zNWXD9NhGfXtZY6eCzdSAA
hpgid: 1117
hpgact: 1800
client-request-id: 2460909f-0d65-442f-b38f-ad4742d90adc
X-Requested-With: XMLHttpRequest
Content-Length: 5857
Origin: https://login.microsoftonline.com
DNT: 1
Connection: keep-alive
Cookie: buid=0.ATAAMe_N-B6jSkuT5F9XHpElWnmtoZ62_ZpPi8MrcPluNMcBAAA.AQABAAEAAAAmoFfGtYxvRrNriQdPKIZ-mlEB_qrYqVtSBw0BTfonedW-XZTic0Hg6K1BXHd1CDILaW-RIUboJUwdf4XqZlmTnyy0CM3uZd2Jxm0Pd1aMFkN9lmPcqo2au3VLIrAmLJggAA; esctx-RpkNtiZKaZE=AQABAAEAAAAmoFfGtYxvRrNriQdPKIZ-6-A5Mrg2kbJkmnmyxRKTznuAABLyqAcxlcT9GhZaw3oBVIwNz-hB09MUZciE1iUFFOnS9XzdgEyIexzrLON6UXtOYQwcTmEXaxkbrbcB4y0KRNhRX0jBbYUtzKija6efBEuhY9MGhpZexZD_NYtAzSAA; fpc=AkXF7HJFnVVAks2pSXsir0-CeMQLAQAAALhh9dwOAAAA; esctx=PAQABAAEAAAAmoFfGtYxvRrNriQdPKIZ-oq_rgUsX_VrJjJnCTzzsfsrBof_WI_vHF66hgu3MZzPB9U_a3pjncWj__MzOUpfGmC08tG-2Beoq1_uhnuM6j4eqNKtfcthKHVJolvqReCa3T3_U24TvjstYy68dX1kk2FYpoGKRdsoy-Ta584gVwewNS0YlhNrwdZery8OTb-wgAA; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache
Pragma: no-cache
Content-Type: application/json; charset=utf-8
Expires: -1
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
P3P: CP="DSP CUR OTPi IND OTRi ONL FIN"
client-request-id: 2460909f-0d65-442f-b38f-ad4742d90adc
x-ms-request-id: 71c1a2b9-afa7-47bb-bd10-c4700c45a601
x-ms-ests-server: 2.1.16729.8 - FRC ProdSlices
Referrer-Policy: strict-origin-when-cross-origin
X-XSS-Protection: 0
Set-Cookie: fpc=AkXF7HJFnVVAks2pSXsir0-CeMQLAQAAALhh9dwOAAAA; expires=Tue, 26-Dec-2023 15:56:42 GMT; path=/; secure; HttpOnly; SameSite=None
x-ms-gateway-slice=estsfd; path=/; secure; samesite=none; httponly
Date: Sun, 26 Nov 2023 15:56:42 GMT
Content-Length: 265
aadcdn.msftauth.net/shared/1.0/content/js/asyncchunk/convergederror_stringcustomizationhelper_f0f22200e8407b0cdb5c.js
36 kB URL aadcdn.msftauth.net/shared/1.0/content/js/asyncchunk/convergederror_stringcustomizationhelper_f0f22200e8407b0cdb5c.js
IP
File type ASCII text, with very long lines (64612)
Hash da3469c273dddb3709673ed7f61b46cc
ee85c3a03d0f81539dca1dd43d241db3d86b86e8
92a77053f226a9069083a001f72a71199b6894cc275b4f50e1389ca570970121
GET /shared/1.0/content/js/asyncchunk/convergederror_stringcustomizationhelper_f0f22200e8407b0cdb5c.js HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.microsoftonline.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
age: 3816543
cache-control: public, max-age=31536000
content-md5: TpQgiRIeu0jskEcFTACuRA==
content-type: application/x-javascript
date: Sun, 26 Nov 2023 15:56:42 GMT
etag: 0x8DBCA90CB5665C1
last-modified: Wed, 11 Oct 2023 19:32:23 GMT
server: ECAcc (ska/F68E)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 9c003b95-901e-008a-31cb-fd0366000000
x-ms-version: 2009-09-19
content-length: 35910
X-Firefox-Spdy: h2
ua152.ffzw.link/rp/zeCxMEtVi23nUD1VnJIBRkRzb4g.js
200 OK 3.4 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/zeCxMEtVi23nUD1VnJIBRkRzb4g.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (3363), with no line terminators
Hash fabb77c7ae3fd2271f5909155fb490e5
cde0b1304b558b6de7503d559c92014644736f88
e482bf4baaa167335f326b9b4f4b83e806cc21fb428b988a4932c806d918771c
GET /rp/zeCxMEtVi23nUD1VnJIBRkRzb4g.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0; SRCHUSR=T=1701014186000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:42 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 3363
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: +rt3x64/0icfWQkVX7SQ5Q==
Last-Modified: Wed, 21 Jun 2023 19:07:57 GMT
ETag: 0x8DB728AD2D1EA34
X-Cache: TCP_HIT
x-ms-request-id: a363b692-e01e-0009-5d0d-20b239000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 6BB6CCCBCBE4403D99F4DEFEA515EC90 Ref B: SEL20EDGE0518 Ref C: 2023-11-26T06:54:41Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: F98E8BF1DE5C4EC4AAB7018B804B4554 Ref B: SLAEDGE1022 Ref C: 2023-11-26T15:56:42Z
ua152.ffzw.link/rp/QtZcquNOunoFE0KySXJmXmH6auI.js
200 OK 2.5 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/QtZcquNOunoFE0KySXJmXmH6auI.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (2524), with no line terminators
Hash 17cdab99027114dbcbd9d573c5b7a8a9
42d65caae34eba7a051342b24972665e61fa6ae2
5ff6b0f0620aa14559d5d869dbeb96febc4014051fa7d5df20223b10b35312de
GET /rp/QtZcquNOunoFE0KySXJmXmH6auI.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0; SRCHUSR=T=1701014186000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:42 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 2524
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: F82rmQJxFNvL2dVzxbeoqQ==
Last-Modified: Thu, 29 Jul 2021 19:01:00 GMT
ETag: 0x8D952C334B419A2
X-Cache: TCP_HIT
x-ms-request-id: 635aaa8a-b01e-0011-3e03-209fac000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 4342D9B281A84EF99BE0519D1C6E7E67 Ref B: SEL20EDGE0406 Ref C: 2023-11-26T15:35:30Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 04F581178707494DBBDA73273296A370 Ref B: SLAEDGE1515 Ref C: 2023-11-26T15:56:42Z
ua152.ffzw.link/fd/ls/l?IG=7C73DE283EAE42229B89933196E76768&CID=0E02A7C1FED666F8226FB414FFF667B5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ClientInst%22%2C%22TS%22%3A1701014204957%2C%22Name%22%3A%22OrgId%22%2C%22FID%22%3A%22NoSignInAttempt%22%7D%2C%7B%22correlationId%22%3A%2265636aaabb8b4c8898f3cf758b1b9e22%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1701014205893%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2265636aaabb8b4c8898f3cf758b1b9e22%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1701014205893%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%5D
0 B URL ua152.ffzw.link/fd/ls/l?IG=7C73DE283EAE42229B89933196E76768&CID=0E02A7C1FED666F8226FB414FFF667B5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ClientInst%22%2C%22TS%22%3A1701014204957%2C%22Name%22%3A%22OrgId%22%2C%22FID%22%3A%22NoSignInAttempt%22%7D%2C%7B%22correlationId%22%3A%2265636aaabb8b4c8898f3cf758b1b9e22%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1701014205893%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2265636aaabb8b4c8898f3cf758b1b9e22%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1701014205893%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%5D
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /fd/ls/l?IG=7C73DE283EAE42229B89933196E76768&CID=0E02A7C1FED666F8226FB414FFF667B5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ClientInst%22%2C%22TS%22%3A1701014204957%2C%22Name%22%3A%22OrgId%22%2C%22FID%22%3A%22NoSignInAttempt%22%7D%2C%7B%22correlationId%22%3A%2265636aaabb8b4c8898f3cf758b1b9e22%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1701014205893%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2265636aaabb8b4c8898f3cf758b1b9e22%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1701014205893%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%5D HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0; SRCHUSR=T=1701014186000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:42 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
X-Cache: CONFIG_NOCACHE
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-MSEdge-Ref: Ref A: 9F1511C91C014577A19153A3764CE777 Ref B: SLAEDGE1916 Ref C: 2023-11-26T15:56:42Z
ua152.ffzw.link/rp/FZKT2ZNGon4gVKgSRRkJ3oMsoNE.js
200 OK 1.1 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/FZKT2ZNGon4gVKgSRRkJ3oMsoNE.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (1051), with no line terminators
Hash f76d06d7669e399dc0788bc5473562bb
159293d99346a27e2054a812451909de832ca0d1
23f0357ae77648ee38f39960e56507d87f8d690c48e759a0e054f6e691c843ec
GET /rp/FZKT2ZNGon4gVKgSRRkJ3oMsoNE.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0; SRCHUSR=T=1701014186000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:42 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 1051
Connection: keep-alive
Cache-Control: public, max-age=432000
Content-MD5: 920G12aeOZ3AeIvFRzViuw==
Last-Modified: Tue, 14 Jun 2022 17:04:07 GMT
ETag: 0x8DA4E27E4BD1DA1
X-Cache: TCP_HIT
x-ms-request-id: 59d5b466-601e-005c-5515-1c594e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 9054AA76839D4BE7B7AA75E27483EE28 Ref B: SEL20EDGE0509 Ref C: 2023-11-23T06:04:14Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: A37F04CC772E4447A381E69E02EB22A4 Ref B: SLAEDGE1406 Ref C: 2023-11-26T15:56:42Z
r.bing.com/rs/78/xs/nj/V9Lbi4rGakA-OjwcLcoh5jr1zfY.js?or=w
356 B URL r.bing.com/rs/78/xs/nj/V9Lbi4rGakA-OjwcLcoh5jr1zfY.js?or=w
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (520), with no line terminators
Hash f03cfee55a7f1e0b91dd062a5654fc3d
57d2db8b8ac66a403e3a3c1c2dca21e63af5cdf6
39477bae95ee7073936851a67106a42f585454ebd6c4feadeacc818c52da49a4
GET /rs/78/xs/nj/V9Lbi4rGakA-OjwcLcoh5jr1zfY.js?or=w HTTP/1.1
Host: r.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ua152.ffzw.link
DNT: 1
Connection: keep-alive
Referer: https://ua152.ffzw.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 356
content-type: application/x-javascript; charset=utf-8
server: Kestrel
access-control-allow-headers: *
access-control-allow-origin: *
content-encoding: br
last-modified: Sun, 19 Nov 2023 19:10:57 GMT
x-eventid: 655e98c2db2643579e5908a468ac1e51
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
x-as-instrumentationoptions: AppServerLoggingMaster=1
x-as-machinename: DUBEEAP0000E058
x-as-suppresssetcookie: 1
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-INCMIEZyL3PqegE4rhsNOT5okWQtrwUCUt23d77tQzo='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}, {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingrms"}]}
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":0.5}
cache-control: public, max-age=116055
expires: Tue, 28 Nov 2023 00:10:58 GMT
date: Sun, 26 Nov 2023 15:56:43 GMT
quic-version: 0x00000001
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.154f2417.1701014203.63f0acc1
timing-allow-origin: *
ua152.ffzw.link/rewardsapp/ncheader?ver=41311203&IID=SERP.5057&IG=7C73DE283EAE42229B89933196E76768
1.4 kB URL ua152.ffzw.link/rewardsapp/ncheader?ver=41311203&IID=SERP.5057&IG=7C73DE283EAE42229B89933196E76768
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type HTML document, ASCII text, with very long lines (906)
Hash 52887e2f50ebd56c1d431b6e6837fcfe
6b2705662b7e54098bc3a501c1b9290962a0aa68
349c8fe25da1bbb9fbc19f838d3cafd90c2a1a3f0ec6c5d3a9c601a18595aeb4
POST /rewardsapp/ncheader?ver=41311203&IID=SERP.5057&IG=7C73DE283EAE42229B89933196E76768 HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Content-type: application/x-www-form-urlencoded
Content-Length: 4
Origin: https://ua152.ffzw.link
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0; SRCHUSR=T=1701014186000
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:43 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: -1
P3P: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
Set-Cookie: MUID=0E02A7C1FED666F8226FB414FFF667B5; domain=.bing.com; expires=Fri, 20-Dec-2024 15:56:43 GMT; path=/; secure; SameSite=None
_EDGE_S=SID=2FF9F1A7542168281144E272550969FA; domain=.bing.com; path=/; HttpOnly
MUIDB=0E02A7C1FED666F8226FB414FFF667B5; expires=Fri, 20-Dec-2024 15:56:43 GMT; path=/; HttpOnly
SRCHD=AF=NOFORM; domain=.bing.com; expires=Fri, 20-Dec-2024 15:56:43 GMT; path=/; secure; SameSite=None
SRCHUID=V=2&GUID=55A4A6453CBB413ABB14A61CE7B0D25A&dmnchg=1; domain=.bing.com; expires=Fri, 20-Dec-2024 15:56:43 GMT; path=/; secure; SameSite=None
SRCHUSR=DOB=20231126; domain=.bing.com; expires=Fri, 20-Dec-2024 15:56:43 GMT; path=/; secure; SameSite=None
SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0&SRCHLANG=zh-Hans; domain=.bing.com; expires=Fri, 20-Dec-2024 15:56:43 GMT; path=/; secure; SameSite=None
_SS=SID=2FF9F1A7542168281144E272550969FA; domain=.bing.com; path=/; secure; SameSite=None
X-EventID: 65636abb486540cd8544eb0b7c3f9edf
UserAgentReductionOptOut: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
X-Cache: CONFIG_NOCACHE
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-MSEdge-Ref: Ref A: 787510F5C4CD4419B0BCE809AA74E401 Ref B: SLAEDGE2005 Ref C: 2023-11-26T15:56:43Z
ua152.ffzw.link/rp/eXfvbnlHE4C4eHtbcUjp_wp0ogM.js
2.0 kB URL ua152.ffzw.link/rp/eXfvbnlHE4C4eHtbcUjp_wp0ogM.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (2009), with no line terminators
Hash 601102ca711e0b4140af45c1657db13f
7977ef6e79471380b8787b5b7148e9ff0a74a203
e47318cd9d80769ac59e732347fb4f574cd4eea9e2c787f3a996805265069001
GET /rp/eXfvbnlHE4C4eHtbcUjp_wp0ogM.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0; SRCHUSR=T=1701014186000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:43 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 2009
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: YBECynEeC0FAr0XBZX2xPw==
Last-Modified: Fri, 06 Oct 2023 19:35:24 GMT
ETag: 0x8DBC6A362F109A8
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: b5473ae6-101e-0053-43ff-1fb4b8000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 4710403BC447487E978C951EA5CBA1F5 Ref B: SEL20EDGE0312 Ref C: 2023-11-26T15:56:43Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: E21E1892830B481CA5CE196F53B60E88 Ref B: SLAEDGE1117 Ref C: 2023-11-26T15:56:43Z
ua152.ffzw.link/rp/N2lJ7oj8-rzNUKGXa9HmrCDrDdw.js
8.5 kB URL ua152.ffzw.link/rp/N2lJ7oj8-rzNUKGXa9HmrCDrDdw.js
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (8484), with no line terminators
Hash 768c025cadc4cbd980733f771feba772
376949ee88fcfabccd50a1976bd1e6ac20eb0ddc
bd014843a7d652b50956a5faaa927f66f810c8d2086b53a487fe9b45bcdca1b1
GET /rp/N2lJ7oj8-rzNUKGXa9HmrCDrDdw.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0; SRCHUSR=T=1701014186000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:43 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 8484
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: dowCXK3Ey9mAcz93H+uncg==
Last-Modified: Tue, 10 Oct 2023 21:42:39 GMT
ETag: 0x8DBC9D9D3562DF7
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: 48717b8d-f01e-003f-546e-201f6b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: A34238C763D74076924BE37EA01D00C7 Ref B: SEL20EDGE0307 Ref C: 2023-11-26T15:56:43Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 5E03224BD66F4609A60810C27E3F0742 Ref B: SLAEDGE1521 Ref C: 2023-11-26T15:56:43Z
ua152.ffzw.link/rp/mTvYtesNthcOorYbOfifrZv-tbU.css
610 B URL ua152.ffzw.link/rp/mTvYtesNthcOorYbOfifrZv-tbU.css
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (610), with no line terminators
Hash f8a63d56887d438392803b9f90b4c119
993bd8b5eb0db6170ea2b61b39f89fad9bfeb5b5
ef156b16fdcf73f670e7d402d4e7980f6558609a39195729f7a144f2d7329bf3
GET /rp/mTvYtesNthcOorYbOfifrZv-tbU.css HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0; SRCHUSR=T=1701014186000
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:43 GMT
Content-Type: text/css; charset=utf-8
Content-Length: 610
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: +KY9Voh9Q4OSgDufkLTBGQ==
Last-Modified: Wed, 31 Aug 2022 07:20:11 GMT
ETag: 0x8DA8B213D9DCA81
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: 8e135c93-a01e-0063-376e-20ee92000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 349B62366ECF4A32BF1C9DD96A634B5F Ref B: SEL20EDGE0321 Ref C: 2023-11-26T15:56:43Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: B17E3E7CA61A4F1FB0557B3A1DDCA1C6 Ref B: SLAEDGE1706 Ref C: 2023-11-26T15:56:43Z
ua152.ffzw.link/rp/fCy-uLDoPoCVSxQ2C0xuQlVQvFQ.css
589 B URL ua152.ffzw.link/rp/fCy-uLDoPoCVSxQ2C0xuQlVQvFQ.css
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (589), with no line terminators
Hash 7a903a859615d137e561051c006435c2
7c2cbeb8b0e83e80954b14360b4c6e425550bc54
281d6234fd292800c2a5dbd14e524c9cee0d4438188b0b7d873abf41515a7666
GET /rp/fCy-uLDoPoCVSxQ2C0xuQlVQvFQ.css HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0; SRCHUSR=T=1701014186000
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:43 GMT
Content-Type: text/css; charset=utf-8
Content-Length: 589
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: epA6hZYV0TflYQUcAGQ1wg==
Last-Modified: Mon, 15 Aug 2022 22:49:41 GMT
ETag: 0x8DA7F1070C484DD
X-Cache: TCP_HIT
x-ms-request-id: a7f6f26f-f01e-0059-0a1b-1cad31000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 280BF503C0E541988F588D1DEA55F371 Ref B: SEL20EDGE0605 Ref C: 2023-11-23T14:32:16Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: FEAF6AD701694E04BC70B1A63CACC379 Ref B: SLAEDGE1012 Ref C: 2023-11-26T15:56:43Z
ua152.ffzw.link/rp/rlQNuNFG4Xz8PQnUazG9FrMwim0.css
824 B URL ua152.ffzw.link/rp/rlQNuNFG4Xz8PQnUazG9FrMwim0.css
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (824), with no line terminators
Hash 6d94f94bfb17721a8da8b53731eb0601
ae540db8d146e17cfc3d09d46b31bd16b3308a6d
21829c74fce2c9bbbb3099a7a487de71465ed712410c32bc6c69884db07a90dd
GET /rp/rlQNuNFG4Xz8PQnUazG9FrMwim0.css HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0; SRCHUSR=T=1701014186000
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:43 GMT
Content-Type: text/css; charset=utf-8
Content-Length: 824
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: bZT5S/sXchqNqLU3MesGAQ==
Last-Modified: Fri, 03 Feb 2023 20:31:06 GMT
ETag: 0x8DB062593B86752
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: f0e930d8-a01e-0068-722a-20f6e6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: B34ECD0502D342F49C1106455B1EE93D Ref B: SEL20EDGE0319 Ref C: 2023-11-26T15:56:43Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 726B3E01381B4EB0A6197237CC1515D9 Ref B: SLAEDGE1119 Ref C: 2023-11-26T15:56:43Z
ua152.ffzw.link/rp/ikajNe1ycBeDUJ_OWN6__UH-ZmQ.css
12 kB URL ua152.ffzw.link/rp/ikajNe1ycBeDUJ_OWN6__UH-ZmQ.css
IP
ASN #31898 ORACLE-BMC-31898
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (11781), with no line terminators
Hash 319c1515619060432178ec4a11266b77
8a46a335ed72701783509fce58debffd41fe6664
5610260c93c788c585752759192cfc81f543359191008d804427a187bbe56d51
GET /rp/ikajNe1ycBeDUJ_OWN6__UH-ZmQ.css HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0; SRCHUSR=T=1701014186000
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:43 GMT
Content-Type: text/css; charset=utf-8
Content-Length: 11781
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: MZwVFWGQYEMheOxKESZrdw==
Last-Modified: Thu, 16 Nov 2023 07:54:45 GMT
ETag: 0x8DBE6794CF02492
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: 8e29f034-401e-0069-1cd9-1cf71b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 5C3CDFB732F14624891100F14186FFF1 Ref B: SEL20EDGE0410 Ref C: 2023-11-26T15:56:43Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 052840E3F1B848D4A4F869735944AF4D Ref B: SLAEDGE1713 Ref C: 2023-11-26T15:56:43Z
ua152.ffzw.link/rp/bVDj-v45uX-PoSRsOWdRtQ3qRx4.js
200 OK 28 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/bVDj-v45uX-PoSRsOWdRtQ3qRx4.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (28425), with no line terminators
Hash fe527822ec006ea4236bf1104d89d9c9
6d50e3fafe39b97f8fa1246c396751b50dea471e
7906cd35b4b7c2b3f3993c507247e9a4a63a7e645845988220267a803ba54970
GET /rp/bVDj-v45uX-PoSRsOWdRtQ3qRx4.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0; SRCHUSR=T=1701014186000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:43 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 28425
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: /lJ4IuwAbqQja/EQTYnZyQ==
Last-Modified: Tue, 24 Oct 2023 21:10:44 GMT
ETag: 0x8DBD4D5AF8DCFDF
X-Cache: TCP_HIT
x-ms-request-id: 489c59ac-c01e-005a-47d2-1eae36000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: F304B0B428084A57B328DEF592BFE70A Ref B: SEL20EDGE0510 Ref C: 2023-11-26T15:56:10Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: CA3930D4B6724EBCA5C7D7A5F05FEAD5 Ref B: SLAEDGE1418 Ref C: 2023-11-26T15:56:43Z
ua152.ffzw.link/rp/t6Bkpkzq5ckAnvfW2PY7kNOTPJ0.js
200 OK 242 B URL GET HTTP/1.1 ua152.ffzw.link/rp/t6Bkpkzq5ckAnvfW2PY7kNOTPJ0.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with no line terminators
Hash 6c2c6db3832d53062d303cdff5e2bd30
b7a064a64ceae5c9009ef7d6d8f63b90d3933c9d
06b77ee16a2cd34acd210b4f2b6e423762ea8874bb26ae5a37db9dd01a00ff70
GET /rp/t6Bkpkzq5ckAnvfW2PY7kNOTPJ0.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0; SRCHUSR=T=1701014186000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:44 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 242
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: bCxts4MtUwYtMDzf9eK9MA==
Last-Modified: Tue, 06 Jun 2023 10:33:33 GMT
ETag: 0x8DB66797A7D7A7C
X-Cache: TCP_REMOTE_HIT
x-ms-request-id: 838be537-001e-004c-2305-206fa8000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 21F76D9E2A36447093EF849957EC9BF6 Ref B: SEL20EDGE0518 Ref C: 2023-11-26T15:56:44Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: C5FFA0C9640B427D9DF31518498A9939 Ref B: SLAEDGE1815 Ref C: 2023-11-26T15:56:44Z
ua152.ffzw.link/rp/pmOe4agH9kAdm8fG_9-Sre5Xldw.js
200 OK 3.0 kB URL GET HTTP/1.1 ua152.ffzw.link/rp/pmOe4agH9kAdm8fG_9-Sre5Xldw.js
IP
ASN #31898 ORACLE-BMC-31898
Requested by https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
Certificate IssuerLet's Encrypt
Subjectua152.ffzw.link
Fingerprint62:78:98:09:0C:26:9B:F8:4F:A0:F2:D9:C6:BC:94:34:8E:3C:90:D2
ValidityMon, 18 Sep 2023 13:31:16 GMT - Sun, 17 Dec 2023 13:31:15 GMT
File type ASCII text, with very long lines (2959), with no line terminators
Hash 5be8cec0edfc63051d407fce6a10b768
a6639ee1a807f6401d9bc7c6ffdf92adee5795dc
52424c5c5f2ab509fd676a76e58f3bd502dbe5b42846001990e4806e1410741d
GET /rp/pmOe4agH9kAdm8fG_9-Sre5Xldw.js HTTP/1.1
Host: ua152.ffzw.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ua152.ffzw.link/search?q=Bing+AI&showconv=1&FORM=hpcodx
DNT: 1
Connection: keep-alive
Cookie: MUIDB=0E02A7C1FED666F8226FB414FFF667B5; SRCHHPGUSR=BRW=M&BRH=T&CW=1280&CH=1024&SCW=1280&SCH=4745&DPR=1.0&UTC=0&DM=0; SRCHUSR=T=1701014186000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 26 Nov 2023 15:56:44 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 2959
Connection: keep-alive
Cache-Control: public, max-age=432000, no-transform, immutable
Content-MD5: W+jOwO38YwUdQH/OahC3aA==
Last-Modified: Wed, 01 Nov 2023 17:11:10 GMT
ETag: 0x8DBDAFD8B9D8AE8
X-Cache: TCP_HIT
x-ms-request-id: 73f1c33c-e01e-0002-6f0e-1caa4d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Azure-Ref-OriginShield: Ref A: 5751E388C8344DB587ED7B5DB62F4885 Ref B: SEL20EDGE0217 Ref C: 2023-11-23T21:57:11Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
X-MSEdge-Ref: Ref A: 1770EF072988454DA4FE4C26817C7CCF Ref B: SLAEDGE1022 Ref C: 2023-11-26T15:56:44Z
152.69.229.118
152.199.23.37
23.36.79.25
20.190.177.146