Report - api.bestedm.net/new_track/t4/MHx8MjAyMzEyMDQtMTUwMTAtc210cHx8c3Vud2VpbGlAZGlkaWNodXhpbmcuY29tfHxodHRwczovL3d3dy5zY2llbmNlaW5nLmNvbS91c2VyL2xvZ2lu

Report Overview

Visited public
2023-12-04 06:13:52
Tags
URL
api.bestedm.net/new_track/t4/MHx8MjAyMzEyMDQtMTUwMTAtc210cHx8c3Vud2VpbGlAZGlkaWNodXhpbmcuY29tfHxodHRwczovL3d3dy5zY2llbmNlaW5nLmNvbS91c2VyL2xvZ2lu
Finishing URL
www.scienceing.com/user/login
IP / ASN
59.36.212.72
#4134 Chinanet
Title
登录-Scienceing

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
api.bestedm.net	unknown	2021-02-26	2022-05-12 05:00:20	2023-12-02 22:19:13	611 B	371 B	59.36.212.72
www.scienceing.com	unknown	unknown	No data	No data	9.5 kB	1.0 MB	121.52.219.52
polyfill.io	102644	2013-03-18	2016-02-12 01:04:58	2023-12-03 18:17:30	432 B	937 B	151.101.1.26
cdn.jsdelivr.net	439	2012-05-16	2012-09-30 02:15:09	2023-12-03 05:09:21	434 B	639 kB	151.101.193.229
ocsp.int-r1.certainly.com	unknown	2002-07-18	2023-03-14 14:34:32	2023-12-03 19:31:08	349 B	1.1 kB	151.101.195.3
ipinfo.io	8136	2013-04-23	2013-12-16 08:25:53	2023-12-04 05:35:20	432 B	794 B	34.117.59.81
ocsp.trust-provider.cn	unknown	2015-04-09	2022-02-10 09:18:30	2023-12-03 09:28:20	346 B	1.4 kB	111.206.23.199

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-12-04 06:13:43	medium	Client IP	34.117.59.81	ET POLICY Possible External IP Lookup Domain Observed in SNI (ipinfo. io)

Threat Detection Systems

Public InfoSec YARA rules

Scan Date	Severity	Indicator	Alert
2023-12-04	medium	www.scienceing.com/apps/articleSearch/api/usercenter/account/v1/searchMajorByFronIp?ip=91.90.42.154	Webshells iisstart.aspx and Logout.aspx

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (14)

	URL	From	Size	First Seen	Last Seen
	www.scienceing.com/_next/static/chunks/2805-7c7ab1979d286abd.js	ScriptElement	14 kB	2023-12-04	2023-12-04
Pretty URL www.scienceing.com/_next/static/chunks/2805-7c7ab1979d286abd.js IP 121.52.219.52 ASN #4808 China Unicom Beijing Province Network Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-04 07:13 Last Seen2023-12-04 07:13 Times Seen2 Hash f56676276750bbf825d828e8571e6a6e f06724c551fdf28edd01d437d5c74d4809cbab92 f0fdcf28f5ed1dfdd424f2690596235600521ee7fffbeca3ff944f4676ba3947 Loading...

	www.scienceing.com/_next/static/chunks/pages/_app-874cd238a0ae1dc5.js	ScriptElement	1.1 MB	2023-12-04	2023-12-04
Pretty URL www.scienceing.com/_next/static/chunks/pages/_app-874cd238a0ae1dc5.js IP 121.52.219.52 ASN #4808 China Unicom Beijing Province Network Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-04 07:13 Last Seen2023-12-04 07:13 Times Seen2 Hash 8c9a5481a1b8b5a28454b13ae3dd9880 0f6e97d5ab43fb673a853ae739875d891c7c0d9a 1b03ad328544e8d3556acc654797118f35bec2cb22d30c33344147d33857f850 Loading...

	www.scienceing.com/_next/static/chunks/6981-30c17f7627303756.js	ScriptElement	32 kB	2023-12-04	2023-12-04
Pretty URL www.scienceing.com/_next/static/chunks/6981-30c17f7627303756.js IP 121.52.219.52 ASN #4808 China Unicom Beijing Province Network Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-04 07:13 Last Seen2023-12-04 07:13 Times Seen2 Hash 34cb93ce14238329b22a9b1248970083 d699f6323e5e30f3684a594d138e009f2c2e11b9 cf6da1da1d15db2101ab6036f4329cb72030b857deb3b76b570cc6911b57bc0e Loading...

	www.scienceing.com/_next/static/chunks/pages/user/login-7b668aa22874ef9f.js	ScriptElement	22 kB	2023-12-04	2023-12-04
Pretty URL www.scienceing.com/_next/static/chunks/pages/user/login-7b668aa22874ef9f.js IP 121.52.219.52 ASN #4808 China Unicom Beijing Province Network Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-04 07:13 Last Seen2023-12-04 07:13 Times Seen2 Hash e6d54c6994ae9952b36f960c6b682dd5 8af592fe92580afef3953efa19a2a797bba399db abbd367d639f3276a48f887c475f74d7798c1c930e42ce134c4c9b693486105f Loading...

	www.scienceing.com/_next/static/dl4tggDtoLqVx-DM0E_xo/_buildManifest.js	ScriptElement	5.2 kB	2023-12-04	2023-12-04
Pretty URL www.scienceing.com/_next/static/dl4tggDtoLqVx-DM0E_xo/_buildManifest.js IP 121.52.219.52 ASN #4808 China Unicom Beijing Province Network Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-04 07:13 Last Seen2023-12-04 07:13 Times Seen2 Hash 4d7f93f3f5b7b1d256066284f20ddc81 51bd8c64eb860797d64dfef82014e120bb6f1aeb 892cffe6f4c81af5d359a088099c126e6df9efc183db85f76fefb46cdf3b601e Loading...

	polyfill.io/v3/polyfill.min.js?features=es6	ScriptElement	101 B	2023-03-07	2025-04-28
Pretty URL polyfill.io/v3/polyfill.min.js?features=es6 IP 151.101.1.26 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-04-28 12:07 Times Seen4182 Hash 66a7d2a5dd73e9fca370d85360c85447 2e4ca9cb2ed0fcd0436ee10516b2bb441fc16a63 d7f817255acac24d24766a420471f23c0796b5228b84f8432bf70570ed870b72 Loading...

	www.scienceing.com/_next/static/chunks/framework-4ed89e9640adfb9e.js	ScriptElement	141 kB	2023-03-07	2025-05-10
Pretty URL www.scienceing.com/_next/static/chunks/framework-4ed89e9640adfb9e.js IP 121.52.219.52 ASN #4808 China Unicom Beijing Province Network Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09 Last Seen2025-05-10 00:57 Times Seen5440 Hash 559e777379007506d17e0a4e7f608a51 631dd16c25dc9420a721518022761eadcb6a3171 8b219e2882c6c3918baca761cc2f4b4212b90d1664a43608155b1200013939ca Loading...

	www.scienceing.com/_next/static/chunks/1687-25e53590e2f4d443.js	ScriptElement	10 kB	2023-12-04	2023-12-04
Pretty URL www.scienceing.com/_next/static/chunks/1687-25e53590e2f4d443.js IP 121.52.219.52 ASN #4808 China Unicom Beijing Province Network Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-04 07:13 Last Seen2023-12-04 07:13 Times Seen2 Hash 543b4760ef7b4c384992ecf75abb5449 4b3a43c56e0888473ad6c8eab5540e9ac17488d7 af17f02bd1f51c77037f9901a435de9bc5439d7e1e6f79cf9d17cb9acea59f1c Loading...

	www.scienceing.com/_next/static/dl4tggDtoLqVx-DM0E_xo/_ssgManifest.js	ScriptElement	88 B	2023-03-07	2025-05-11
Pretty URL www.scienceing.com/_next/static/dl4tggDtoLqVx-DM0E_xo/_ssgManifest.js IP 121.52.219.52 ASN #4808 China Unicom Beijing Province Network Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:05 Last Seen2025-05-11 09:16 Times Seen450 Hash bee22ea531beed3eeff60fb48f41c658 89872b1690c01c7cde8edd754d54e832e829f3bf a66383b381b46cccc8f600e19dedea91beedf07e06bb49f011fa7f7073ead591 Loading...

	www.scienceing.com/_next/static/chunks/webpack-c4db82eee54d421f.js	ScriptElement	4.8 kB	2023-12-04	2023-12-04
Pretty URL www.scienceing.com/_next/static/chunks/webpack-c4db82eee54d421f.js IP 121.52.219.52 ASN #4808 China Unicom Beijing Province Network Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-04 07:13 Last Seen2023-12-04 07:13 Times Seen2 Hash a5801a8279f8f76ffdc73aab28480c98 23c56ac9e084eeef0f95a1e394ba754c883a5247 9c8e6c8ff4c6087258baa4fe3f72e9281f55f741317be19e538ef2124fe09a27 Loading...

	www.scienceing.com/_next/static/chunks/main-35c016f7aae0c1ad.js	ScriptElement	109 kB	2023-05-13	2024-08-20
Pretty URL www.scienceing.com/_next/static/chunks/main-35c016f7aae0c1ad.js IP 121.52.219.52 ASN #4808 China Unicom Beijing Province Network Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-13 08:51 Last Seen2024-08-20 16:51 Times Seen4 Hash b6d3e4ba5835a66c4687f433edb59a09 478afe079d44b3e9cbefdee887b017a9207764c3 655ba4dc420c14c5deb2575e62f8f7287fb6489eb29a8efbb7ee3559a65bd68d Loading...

	ipinfo.io/?callback=getIP&token=ipinfo.io	ScriptElement	279 B	2023-03-12	2024-10-21
Pretty URL ipinfo.io/?callback=getIP&token=ipinfo.io IP 34.117.59.81 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 20:41 Last Seen2024-10-21 23:53 Times Seen8 Hash ab94685cdac4382b72a1c5c18cb0435a 6f9b16c5c39aa60bec7a70586a6ef522ad2240c9 05108e8525756e97d557d1a7b2c91590157419ea57a608d0c40bfeb336ea51a7 Loading...

	cdn.jsdelivr.net/npm/mathjax@3/es5/tex-svg.js	ScriptElement	2.1 MB	2023-04-22	2025-05-01
Pretty URL cdn.jsdelivr.net/npm/mathjax@3/es5/tex-svg.js IP 151.101.193.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-22 22:41 Last Seen2025-05-01 22:59 Times Seen26 Hash e767e9be86ed9a6bbe91b3908df7faf1 cfb8e18acf40a77004f8925491402f7c9d08e536 d4295dc33744836935c1399feece5159577b34c5c8ffb9f1c6324cd82e03a882 Loading...

	www.scienceing.com/_next/static/chunks/8361.290a2402657e680c.js	ScriptElement	56 kB	2023-12-04	2024-08-20
Pretty URL www.scienceing.com/_next/static/chunks/8361.290a2402657e680c.js IP 121.52.219.52 ASN #4808 China Unicom Beijing Province Network Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-04 07:13 Last Seen2024-08-20 16:51 Times Seen4 Hash deaa2f9c6ef106522fb881805ee5e583 447460f45caaac9e5bed1e537b287799006a80b9 cf69abe2a098b25b1a952900febeaccf80e7587bca922271e1de33995add44b5 Loading...

HTTP Transactions (26)

URL IP Response Size

ocsp.trust-provider.cn/

111.206.23.199

600 B

URL
ocsp.trust-provider.cn/
IP
111.206.23.199:0
ASN
#4808 China Unicom Beijing Province Network

File type
data
Size
600 B (600 bytes)
Hash
ba90089b3118afb27fa44e2d8a19e5af
34a3b809d9a5f59e7ce528daaa434ed859fa6b4d
71343d197e684b8dadf0a57bbc7d1e92b76e6b73b3bb17b7f22ed23de6f03a3a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: volc-dcdn
Content-Type: application/ocsp-response
Content-Length: 600
Connection: keep-alive
Date: Mon, 04 Dec 2023 06:13:34 GMT
Accept-Ranges: bytes
Age: 1
CF-Cache-Status: EXPIRED
CF-RAY: 82eab92d1a5dcf35-SJC
ETag: "34a3b809d9a5f59e7ce528daaa434ed859fa6b4d"
Expires: Fri, 08 Dec 2023 10:21:24 GMT
Last-Modified: Fri, 01 Dec 2023 10:21:25 GMT
WS-Cache-Status: 0
X-CCACDN-Proxy-ID: scdpinlb1
X-Frame-Options: SAMEORIGIN
X-Via: 1.1 CS-000-01f4L24:12 (Cdn Cache Server V2.0), 1.1 gwt17:3 (Cdn Cache Server V2.0)
X-Ws-Request-Id: 656d6e0e_gangwangtong16_11397-15424
via: n173-090-131.bdcdn-bjcu.ToB
x-request-ip: 91.90.42.154
x-tt-trace-tag: id=5
x-dsa-trace-id: 1701670414c9e22776f4db2fe3b299ae83abeb25af
X-Dsa-Origin-Status: 200
server-timing: cdn-cache;desc=MISS, origin;dur=5, edge;dur=0

api.bestedm.net/new_track/t4/MHx8MjAyMzEyMDQtMTUwMTAtc210cHx8c3Vud2VpbGlAZGlkaWNodXhpbmcuY29tfHxodHRwczovL3d3dy5zY2llbmNlaW5nLmNvbS91c2VyL2xvZ2lu

59.36.212.72

302 Found

0 B

URL User Request GET HTTP/1.1
api.bestedm.net/new_track/t4/MHx8MjAyMzEyMDQtMTUwMTAtc210cHx8c3Vud2VpbGlAZGlkaWNodXhpbmcuY29tfHxodHRwczovL3d3dy5zY2llbmNlaW5nLmNvbS91c2VyL2xvZ2lu
IP
59.36.212.72:443
ASN
#4134 Chinanet

Certificate
IssuerTrustAsia Technologies, Inc.
Subjectapi.bestedm.net
Fingerprint76:15:F8:12:3C:77:14:A7:6E:70:2C:BE:3F:15:10:F7:41:05:BC:B9
ValidityFri, 14 Apr 2023 00:00:00 GMT - Sat, 13 Apr 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /new_track/t4/MHx8MjAyMzEyMDQtMTUwMTAtc210cHx8c3Vud2VpbGlAZGlkaWNodXhpbmcuY29tfHxodHRwczovL3d3dy5zY2llbmNlaW5nLmNvbS91c2VyL2xvZ2lu HTTP/1.1
Host: api.bestedm.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Server: nginx
Date: Mon, 04 Dec 2023 06:13:34 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Language, Cookie
X-Frame-Options: SAMEORIGIN
Location: https://www.scienceing.com/user/login
Content-Language: en-us
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload

www.scienceing.com/user/login

121.52.219.52

200 OK

778 B

URL User Request GET HTTP/1.1
www.scienceing.com/user/login
IP
121.52.219.52:443
ASN
#4808 China Unicom Beijing Province Network

Certificate
IssuerDigiCert Inc
Subjectwww.scienceing.com
Fingerprint3F:33:B0:B1:0D:3B:B3:E9:1B:B4:46:92:88:8B:1A:D2:F5:C1:BD:D4
ValidityMon, 08 May 2023 00:00:00 GMT - Tue, 07 May 2024 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1954), with no line terminators
Size
778 B (778 bytes)
Hash
43141ab2887863af7bc878469a44081c
7be5844c5310bb5ea88d959085e828955ddd6db0
4598ce520d87acee8d12727ac6f968721e366c426098b43c300dec35da23c828

HTTP Headers

GET /user/login HTTP/1.1
Host: www.scienceing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 04 Dec 2023 06:13:35 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Next.js
ETag: "zgg25dpn6q1ia"
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=15724800; includeSubDomains

www.scienceing.com/_next/static/css/b19d836107741686.css

121.52.219.52

200 OK

9.3 kB

URL GET HTTP/1.1
www.scienceing.com/_next/static/css/b19d836107741686.css
IP
121.52.219.52:443
ASN
#4808 China Unicom Beijing Province Network

Requested by
https://www.scienceing.com/user/login
Certificate
IssuerDigiCert Inc
Subjectwww.scienceing.com
Fingerprint3F:33:B0:B1:0D:3B:B3:E9:1B:B4:46:92:88:8B:1A:D2:F5:C1:BD:D4
ValidityMon, 08 May 2023 00:00:00 GMT - Tue, 07 May 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (48359), with no line terminators
Size
9.3 kB (9272 bytes)
Hash
9b11c3215d74723a8a268c3b890adc07
78815ea6e9ab8f7d4f3c79ad02b43fccf562c6c3
481332dfa93a798e1ec198b4d32671aa7e75ba75b289a2ccabb3a9ae85dcc930

HTTP Headers

GET /_next/static/css/b19d836107741686.css HTTP/1.1
Host: www.scienceing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.scienceing.com/user/login
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 04 Dec 2023 06:13:35 GMT
Content-Type: text/css; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=31536000, immutable
Accept-Ranges: bytes
Last-Modified: Mon, 27 Nov 2023 10:33:18 GMT
ETag: W/"bdc3-18c10572db0"
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=15724800; includeSubDomains

www.scienceing.com/_next/static/css/04f1e5b1f64a682c.css

121.52.219.52

200 OK

2.0 kB

URL GET HTTP/1.1
www.scienceing.com/_next/static/css/04f1e5b1f64a682c.css
IP
121.52.219.52:443
ASN
#4808 China Unicom Beijing Province Network

Requested by
https://www.scienceing.com/user/login
Certificate
IssuerDigiCert Inc
Subjectwww.scienceing.com
Fingerprint3F:33:B0:B1:0D:3B:B3:E9:1B:B4:46:92:88:8B:1A:D2:F5:C1:BD:D4
ValidityMon, 08 May 2023 00:00:00 GMT - Tue, 07 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (9419), with no line terminators
Size
2.0 kB (2018 bytes)
Hash
daa32beaa49b4c179f621d559420a7cb
92782ffc02fb326f37009a5fe44a489e4aec0f56
190f0aad632c83c45ae1b8850c436e4f7750fc2d20c87f0b2f2b28e060047678

HTTP Headers

GET /_next/static/css/04f1e5b1f64a682c.css HTTP/1.1
Host: www.scienceing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.scienceing.com/user/login
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 04 Dec 2023 06:13:35 GMT
Content-Type: text/css; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=31536000, immutable
Accept-Ranges: bytes
Last-Modified: Mon, 27 Nov 2023 10:33:18 GMT
ETag: W/"24cb-18c10572db0"
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=15724800; includeSubDomains

www.scienceing.com/_next/static/chunks/6981-30c17f7627303756.js

121.52.219.52

200 OK

10 kB

URL GET HTTP/1.1
www.scienceing.com/_next/static/chunks/6981-30c17f7627303756.js
IP
121.52.219.52:443
ASN
#4808 China Unicom Beijing Province Network

Requested by
https://www.scienceing.com/user/login
Certificate
IssuerDigiCert Inc
Subjectwww.scienceing.com
Fingerprint3F:33:B0:B1:0D:3B:B3:E9:1B:B4:46:92:88:8B:1A:D2:F5:C1:BD:D4
ValidityMon, 08 May 2023 00:00:00 GMT - Tue, 07 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (32133), with no line terminators
Size
10 kB (10084 bytes)
Hash
34cb93ce14238329b22a9b1248970083
d699f6323e5e30f3684a594d138e009f2c2e11b9
cf6da1da1d15db2101ab6036f4329cb72030b857deb3b76b570cc6911b57bc0e

HTTP Headers

GET /_next/static/chunks/6981-30c17f7627303756.js HTTP/1.1
Host: www.scienceing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.scienceing.com/user/login
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 04 Dec 2023 06:13:36 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=31536000, immutable
Accept-Ranges: bytes
Last-Modified: Mon, 27 Nov 2023 10:33:18 GMT
ETag: W/"7d85-18c10572db0"
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=15724800; includeSubDomains

www.scienceing.com/_next/static/chunks/webpack-c4db82eee54d421f.js

121.52.219.52

200 OK

2.4 kB

URL GET HTTP/1.1
www.scienceing.com/_next/static/chunks/webpack-c4db82eee54d421f.js
IP
121.52.219.52:443
ASN
#4808 China Unicom Beijing Province Network

Requested by
https://www.scienceing.com/user/login
Certificate
IssuerDigiCert Inc
Subjectwww.scienceing.com
Fingerprint3F:33:B0:B1:0D:3B:B3:E9:1B:B4:46:92:88:8B:1A:D2:F5:C1:BD:D4
ValidityMon, 08 May 2023 00:00:00 GMT - Tue, 07 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (4843), with no line terminators
Size
2.4 kB (2377 bytes)
Hash
a5801a8279f8f76ffdc73aab28480c98
23c56ac9e084eeef0f95a1e394ba754c883a5247
9c8e6c8ff4c6087258baa4fe3f72e9281f55f741317be19e538ef2124fe09a27

HTTP Headers

GET /_next/static/chunks/webpack-c4db82eee54d421f.js HTTP/1.1
Host: www.scienceing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.scienceing.com/user/login
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 04 Dec 2023 06:13:36 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=31536000, immutable
Accept-Ranges: bytes
Last-Modified: Mon, 27 Nov 2023 10:33:18 GMT
ETag: W/"12eb-18c10572db0"
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=15724800; includeSubDomains

www.scienceing.com/_next/static/chunks/1687-25e53590e2f4d443.js

121.52.219.52

200 OK

3.3 kB

URL GET HTTP/1.1
www.scienceing.com/_next/static/chunks/1687-25e53590e2f4d443.js
IP
121.52.219.52:443
ASN
#4808 China Unicom Beijing Province Network

Requested by
https://www.scienceing.com/user/login
Certificate
IssuerDigiCert Inc
Subjectwww.scienceing.com
Fingerprint3F:33:B0:B1:0D:3B:B3:E9:1B:B4:46:92:88:8B:1A:D2:F5:C1:BD:D4
ValidityMon, 08 May 2023 00:00:00 GMT - Tue, 07 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (10257), with no line terminators
Size
3.3 kB (3296 bytes)
Hash
543b4760ef7b4c384992ecf75abb5449
4b3a43c56e0888473ad6c8eab5540e9ac17488d7
af17f02bd1f51c77037f9901a435de9bc5439d7e1e6f79cf9d17cb9acea59f1c

HTTP Headers

GET /_next/static/chunks/1687-25e53590e2f4d443.js HTTP/1.1
Host: www.scienceing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.scienceing.com/user/login
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 04 Dec 2023 06:13:36 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=31536000, immutable
Accept-Ranges: bytes
Last-Modified: Mon, 27 Nov 2023 10:33:18 GMT
ETag: W/"2811-18c10572db0"
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=15724800; includeSubDomains

www.scienceing.com/_next/static/chunks/2805-7c7ab1979d286abd.js

121.52.219.52

200 OK

4.9 kB

URL GET HTTP/1.1
www.scienceing.com/_next/static/chunks/2805-7c7ab1979d286abd.js
IP
121.52.219.52:443
ASN
#4808 China Unicom Beijing Province Network

Requested by
https://www.scienceing.com/user/login
Certificate
IssuerDigiCert Inc
Subjectwww.scienceing.com
Fingerprint3F:33:B0:B1:0D:3B:B3:E9:1B:B4:46:92:88:8B:1A:D2:F5:C1:BD:D4
ValidityMon, 08 May 2023 00:00:00 GMT - Tue, 07 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (13552), with no line terminators
Size
4.9 kB (4852 bytes)
Hash
f56676276750bbf825d828e8571e6a6e
f06724c551fdf28edd01d437d5c74d4809cbab92
f0fdcf28f5ed1dfdd424f2690596235600521ee7fffbeca3ff944f4676ba3947

HTTP Headers

GET /_next/static/chunks/2805-7c7ab1979d286abd.js HTTP/1.1
Host: www.scienceing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.scienceing.com/user/login
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 04 Dec 2023 06:13:36 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=31536000, immutable
Accept-Ranges: bytes
Last-Modified: Mon, 27 Nov 2023 10:33:18 GMT
ETag: W/"34f0-18c10572db0"
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=15724800; includeSubDomains

www.scienceing.com/_next/static/chunks/pages/user/login-7b668aa22874ef9f.js

121.52.219.52

200 OK

5.9 kB

URL GET HTTP/1.1
www.scienceing.com/_next/static/chunks/pages/user/login-7b668aa22874ef9f.js
IP
121.52.219.52:443
ASN
#4808 China Unicom Beijing Province Network

Requested by
https://www.scienceing.com/user/login
Certificate
IssuerDigiCert Inc
Subjectwww.scienceing.com
Fingerprint3F:33:B0:B1:0D:3B:B3:E9:1B:B4:46:92:88:8B:1A:D2:F5:C1:BD:D4
ValidityMon, 08 May 2023 00:00:00 GMT - Tue, 07 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (22399), with no line terminators
Size
5.9 kB (5868 bytes)
Hash
e6d54c6994ae9952b36f960c6b682dd5
8af592fe92580afef3953efa19a2a797bba399db
abbd367d639f3276a48f887c475f74d7798c1c930e42ce134c4c9b693486105f

HTTP Headers

GET /_next/static/chunks/pages/user/login-7b668aa22874ef9f.js HTTP/1.1
Host: www.scienceing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.scienceing.com/user/login
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 04 Dec 2023 06:13:36 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=31536000, immutable
Accept-Ranges: bytes
Last-Modified: Mon, 27 Nov 2023 10:33:18 GMT
ETag: W/"577f-18c10572db0"
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=15724800; includeSubDomains

www.scienceing.com/_next/static/chunks/main-35c016f7aae0c1ad.js

121.52.219.52

200 OK

32 kB

URL GET HTTP/1.1
www.scienceing.com/_next/static/chunks/main-35c016f7aae0c1ad.js
IP
121.52.219.52:443
ASN
#4808 China Unicom Beijing Province Network

Requested by
https://www.scienceing.com/user/login
Certificate
IssuerDigiCert Inc
Subjectwww.scienceing.com
Fingerprint3F:33:B0:B1:0D:3B:B3:E9:1B:B4:46:92:88:8B:1A:D2:F5:C1:BD:D4
ValidityMon, 08 May 2023 00:00:00 GMT - Tue, 07 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
32 kB (31782 bytes)
Hash
b6d3e4ba5835a66c4687f433edb59a09
478afe079d44b3e9cbefdee887b017a9207764c3
655ba4dc420c14c5deb2575e62f8f7287fb6489eb29a8efbb7ee3559a65bd68d

HTTP Headers

GET /_next/static/chunks/main-35c016f7aae0c1ad.js HTTP/1.1
Host: www.scienceing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.scienceing.com/user/login
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 04 Dec 2023 06:13:36 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=31536000, immutable
Accept-Ranges: bytes
Last-Modified: Mon, 27 Nov 2023 10:33:18 GMT
ETag: W/"1a9c9-18c10572db0"
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=15724800; includeSubDomains

www.scienceing.com/_next/static/dl4tggDtoLqVx-DM0E_xo/_buildManifest.js

121.52.219.52

200 OK

1.8 kB

URL GET HTTP/1.1
www.scienceing.com/_next/static/dl4tggDtoLqVx-DM0E_xo/_buildManifest.js
IP
121.52.219.52:443
ASN
#4808 China Unicom Beijing Province Network

Requested by
https://www.scienceing.com/user/login
Certificate
IssuerDigiCert Inc
Subjectwww.scienceing.com
Fingerprint3F:33:B0:B1:0D:3B:B3:E9:1B:B4:46:92:88:8B:1A:D2:F5:C1:BD:D4
ValidityMon, 08 May 2023 00:00:00 GMT - Tue, 07 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (5205), with no line terminators
Size
1.8 kB (1815 bytes)
Hash
4d7f93f3f5b7b1d256066284f20ddc81
51bd8c64eb860797d64dfef82014e120bb6f1aeb
892cffe6f4c81af5d359a088099c126e6df9efc183db85f76fefb46cdf3b601e

HTTP Headers

GET /_next/static/dl4tggDtoLqVx-DM0E_xo/_buildManifest.js HTTP/1.1
Host: www.scienceing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.scienceing.com/user/login
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 04 Dec 2023 06:13:36 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=31536000, immutable
Accept-Ranges: bytes
Last-Modified: Mon, 27 Nov 2023 10:33:18 GMT
ETag: W/"1455-18c10572db0"
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=15724800; includeSubDomains

www.scienceing.com/_next/static/dl4tggDtoLqVx-DM0E_xo/_ssgManifest.js

121.52.219.52

200 OK

88 B

URL GET HTTP/1.1
www.scienceing.com/_next/static/dl4tggDtoLqVx-DM0E_xo/_ssgManifest.js
IP
121.52.219.52:443
ASN
#4808 China Unicom Beijing Province Network

Requested by
https://www.scienceing.com/user/login
Certificate
IssuerDigiCert Inc
Subjectwww.scienceing.com
Fingerprint3F:33:B0:B1:0D:3B:B3:E9:1B:B4:46:92:88:8B:1A:D2:F5:C1:BD:D4
ValidityMon, 08 May 2023 00:00:00 GMT - Tue, 07 May 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
88 B (88 bytes)
Hash
bee22ea531beed3eeff60fb48f41c658
89872b1690c01c7cde8edd754d54e832e829f3bf
a66383b381b46cccc8f600e19dedea91beedf07e06bb49f011fa7f7073ead591

HTTP Headers

GET /_next/static/dl4tggDtoLqVx-DM0E_xo/_ssgManifest.js HTTP/1.1
Host: www.scienceing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.scienceing.com/user/login
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 04 Dec 2023 06:13:36 GMT
Content-Type: application/javascript; charset=UTF-8
Content-Length: 88
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=31536000, immutable
Accept-Ranges: bytes
Last-Modified: Mon, 27 Nov 2023 10:33:38 GMT
ETag: W/"58-18c10577bd0"
Vary: Accept-Encoding
Strict-Transport-Security: max-age=15724800; includeSubDomains

www.scienceing.com/_next/static/chunks/framework-4ed89e9640adfb9e.js

121.52.219.52

200 OK

45 kB

URL GET HTTP/1.1
www.scienceing.com/_next/static/chunks/framework-4ed89e9640adfb9e.js
IP
121.52.219.52:443
ASN
#4808 China Unicom Beijing Province Network

Requested by
https://www.scienceing.com/user/login
Certificate
IssuerDigiCert Inc
Subjectwww.scienceing.com
Fingerprint3F:33:B0:B1:0D:3B:B3:E9:1B:B4:46:92:88:8B:1A:D2:F5:C1:BD:D4
ValidityMon, 08 May 2023 00:00:00 GMT - Tue, 07 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
45 kB (45347 bytes)
Hash
559e777379007506d17e0a4e7f608a51
631dd16c25dc9420a721518022761eadcb6a3171
8b219e2882c6c3918baca761cc2f4b4212b90d1664a43608155b1200013939ca

HTTP Headers

GET /_next/static/chunks/framework-4ed89e9640adfb9e.js HTTP/1.1
Host: www.scienceing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.scienceing.com/user/login
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 04 Dec 2023 06:13:36 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=31536000, immutable
Accept-Ranges: bytes
Last-Modified: Mon, 27 Nov 2023 10:33:18 GMT
ETag: W/"22699-18c10572db0"
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=15724800; includeSubDomains

www.scienceing.com/_next/static/chunks/pages/_app-874cd238a0ae1dc5.js

121.52.219.52

200 OK

338 kB

URL GET HTTP/1.1
www.scienceing.com/_next/static/chunks/pages/_app-874cd238a0ae1dc5.js
IP
121.52.219.52:443
ASN
#4808 China Unicom Beijing Province Network

Requested by
https://www.scienceing.com/user/login
Certificate
IssuerDigiCert Inc
Subjectwww.scienceing.com
Fingerprint3F:33:B0:B1:0D:3B:B3:E9:1B:B4:46:92:88:8B:1A:D2:F5:C1:BD:D4
ValidityMon, 08 May 2023 00:00:00 GMT - Tue, 07 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
338 kB (337681 bytes)
Hash
8c9a5481a1b8b5a28454b13ae3dd9880
0f6e97d5ab43fb673a853ae739875d891c7c0d9a
1b03ad328544e8d3556acc654797118f35bec2cb22d30c33344147d33857f850

HTTP Headers

GET /_next/static/chunks/pages/_app-874cd238a0ae1dc5.js HTTP/1.1
Host: www.scienceing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.scienceing.com/user/login
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 04 Dec 2023 06:13:36 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=31536000, immutable
Accept-Ranges: bytes
Last-Modified: Mon, 27 Nov 2023 10:33:18 GMT
ETag: W/"10fa5a-18c10572db0"
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=15724800; includeSubDomains

polyfill.io/v3/polyfill.min.js?features=es6

151.101.1.26

200 OK

120 B

URL GET HTTP/2
polyfill.io/v3/polyfill.min.js?features=es6
IP
151.101.1.26:443
ASN
#54113 FASTLY

Requested by
https://www.scienceing.com/user/login
Certificate
IssuerCertainly
Subjectpolyfill.io
FingerprintCB:1B:4F:18:9E:29:CA:C4:CF:40:8A:92:A9:4B:A5:30:C2:E6:13:38
ValiditySat, 02 Dec 2023 07:45:17 GMT - Mon, 01 Jan 2024 07:45:16 GMT

File type
ASCII text
Size
120 B (120 bytes)
Hash
66a7d2a5dd73e9fca370d85360c85447
2e4ca9cb2ed0fcd0436ee10516b2bb441fc16a63
d7f817255acac24d24766a420471f23c0796b5228b84f8432bf70570ed870b72

HTTP Headers

GET /v3/polyfill.min.js?features=es6 HTTP/1.1
Host: polyfill.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.scienceing.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
content-type: text/javascript; charset=UTF-8
cache-control: public, s-maxage=31536000, max-age=604800, stale-while-revalidate=604800, stale-if-error=604800, immutable
content-encoding: gzip
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains; preload
referrer-policy: origin-when-cross-origin
timing-allow-origin: *
normalized-user-agent: firefox/105.0.0
detected-user-agent: Firefox/105.0.
accept-ranges: bytes
date: Mon, 04 Dec 2023 06:13:38 GMT
age: 43267
vary: User-Agent, Accept-Encoding
server-timing: HIT-CLUSTER, fastly;desc="Edge time";dur=1
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 120
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/mathjax@3/es5/tex-svg.js

151.101.193.229

200 OK

638 kB

URL GET HTTP/2
cdn.jsdelivr.net/npm/mathjax@3/es5/tex-svg.js
IP
151.101.193.229:443
ASN
#54113 FASTLY

Requested by
https://www.scienceing.com/user/login
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
exported SGML document, ASCII text, with very long lines (65536), with no line terminators
Size
638 kB (638161 bytes)
Hash
e767e9be86ed9a6bbe91b3908df7faf1
cfb8e18acf40a77004f8925491402f7c9d08e536
d4295dc33744836935c1399feece5159577b34c5c8ffb9f1c6324cd82e03a882

HTTP Headers

GET /npm/mathjax@3/es5/tex-svg.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.scienceing.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 3.2.2
x-jsd-version-type: version
etag: W/"202ca4-z7jhis9Ap3AE+JJUkUAvfJ0I5TY"
content-encoding: br
accept-ranges: bytes
date: Mon, 04 Dec 2023 06:13:38 GMT
age: 13682
x-served-by: cache-fra-eddf8230052-FRA, cache-bma1661-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 638161
X-Firefox-Spdy: h2

ocsp.int-r1.certainly.com/

151.101.195.3

523 B

URL
ocsp.int-r1.certainly.com/
IP
151.101.195.3:0
ASN
#54113 FASTLY

File type
data
Size
523 B (523 bytes)
Hash
979aa32ed5330a374db1e6c074863f1b
d93d2e4e66b73005ea9edbbbec46d6b74d5186ea
364dae79ca25ae8037860bff6cf50f2f446b4508f20b53e9bccae13f7a00ab97

HTTP Headers

POST / HTTP/1.1
Host: ocsp.int-r1.certainly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 86
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 523
Cache-Control: max-age=342846, public, no-transform, must-revalidate
Content-Type: application/ocsp-response
Edge-Cache-Tag: 00
Etag: "364DAE79CA25AE8037860BFF6CF50F2F446B4508F20B53E9BCCAE13F7A00AB97"
Expires: Wed, 06 Dec 2023 07:59:59 UTC
Last-Modified: Sat, 02 Dec 2023 08:00:00 UTC
Accept-Ranges: bytes
Date: Mon, 04 Dec 2023 06:13:38 GMT
Via: 1.1 varnish
Age: 163666
X-Served-By: cache-bma1658-BMA
X-Cache: HIT
X-Cache-Hits: 782
X-Timer: S1701670418.371830,VS0,VE0

www.scienceing.com/favicon.ico

121.52.219.52

200 OK

1.2 kB

URL GET HTTP/1.1
www.scienceing.com/favicon.ico
IP
121.52.219.52:443
ASN
#4808 China Unicom Beijing Province Network

Requested by
https://www.scienceing.com/user/login
Certificate
IssuerDigiCert Inc
Subjectwww.scienceing.com
Fingerprint3F:33:B0:B1:0D:3B:B3:E9:1B:B4:46:92:88:8B:1A:D2:F5:C1:BD:D4
ValidityMon, 08 May 2023 00:00:00 GMT - Tue, 07 May 2024 23:59:59 GMT

File type
MS Windows icon resource - 1 icon, 48x48, 32 bits/pixel\012- data
Size
1.2 kB (1187 bytes)
Hash
1ad93dec10af544a94ed9f25fbe0bf5d
39d4b64b3a383d61ea2b83381f7919cfb14179bd
349ce1305a0e6f540ac024f60285926cab46b4571c2665afa7c2d7aab43abbf6

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.scienceing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.scienceing.com/user/login
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 04 Dec 2023 06:13:38 GMT
Content-Type: image/x-icon
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Tue, 18 Jul 2023 10:38:58 GMT
ETag: W/"25be-1896894edd0"
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=15724800; includeSubDomains

www.scienceing.com/_next/static/media/ke-ying-logo.7cf54bbe.png

121.52.219.52

200 OK

8.5 kB

URL GET HTTP/1.1
www.scienceing.com/_next/static/media/ke-ying-logo.7cf54bbe.png
IP
121.52.219.52:443
ASN
#4808 China Unicom Beijing Province Network

Requested by
https://www.scienceing.com/user/login
Certificate
IssuerDigiCert Inc
Subjectwww.scienceing.com
Fingerprint3F:33:B0:B1:0D:3B:B3:E9:1B:B4:46:92:88:8B:1A:D2:F5:C1:BD:D4
ValidityMon, 08 May 2023 00:00:00 GMT - Tue, 07 May 2024 23:59:59 GMT

File type
PNG image data, 192 x 80, 8-bit/color RGBA, non-interlaced\012- data
Size
8.5 kB (8540 bytes)
Hash
4e344e2cfde98f94f12c2adc4bf4add7
378e3fdd0685d9958521393d7982b78d35ed9fa0
c62c20ac65af72186c70376bbae1669555098ac0f9ccd8a12c32ddcdb7fc381e

HTTP Headers

GET /_next/static/media/ke-ying-logo.7cf54bbe.png HTTP/1.1
Host: www.scienceing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.scienceing.com/_next/static/css/04f1e5b1f64a682c.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 04 Dec 2023 06:13:38 GMT
Content-Type: image/png
Content-Length: 8540
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=31536000, immutable
Accept-Ranges: bytes
Last-Modified: Mon, 27 Nov 2023 10:33:18 GMT
ETag: W/"215c-18c10572db0"
Strict-Transport-Security: max-age=15724800; includeSubDomains

www.scienceing.com/_next/static/chunks/8361.290a2402657e680c.js

121.52.219.52

200 OK

17 kB

URL GET HTTP/1.1
www.scienceing.com/_next/static/chunks/8361.290a2402657e680c.js
IP
121.52.219.52:443
ASN
#4808 China Unicom Beijing Province Network

Requested by
https://www.scienceing.com/user/login
Certificate
IssuerDigiCert Inc
Subjectwww.scienceing.com
Fingerprint3F:33:B0:B1:0D:3B:B3:E9:1B:B4:46:92:88:8B:1A:D2:F5:C1:BD:D4
ValidityMon, 08 May 2023 00:00:00 GMT - Tue, 07 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (55717), with no line terminators
Size
17 kB (16642 bytes)
Hash
deaa2f9c6ef106522fb881805ee5e583
447460f45caaac9e5bed1e537b287799006a80b9
cf69abe2a098b25b1a952900febeaccf80e7587bca922271e1de33995add44b5

HTTP Headers

GET /_next/static/chunks/8361.290a2402657e680c.js HTTP/1.1
Host: www.scienceing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.scienceing.com/user/login
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 04 Dec 2023 06:13:38 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=31536000, immutable
Accept-Ranges: bytes
Last-Modified: Mon, 27 Nov 2023 10:33:18 GMT
ETag: W/"d9a5-18c10572db0"
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=15724800; includeSubDomains

www.scienceing.com/apps/articleSearch/api/usercenter/account/v1/searchMajorByFronIp?ip=91.90.42.154

121.52.219.52

200

196 B

URL GET HTTP/1.1
www.scienceing.com/apps/articleSearch/api/usercenter/account/v1/searchMajorByFronIp?ip=91.90.42.154
IP
121.52.219.52:443
ASN
#4808 China Unicom Beijing Province Network

Requested by
https://www.scienceing.com/user/login
Certificate
IssuerDigiCert Inc
Subjectwww.scienceing.com
Fingerprint3F:33:B0:B1:0D:3B:B3:E9:1B:B4:46:92:88:8B:1A:D2:F5:C1:BD:D4
ValidityMon, 08 May 2023 00:00:00 GMT - Tue, 07 May 2024 23:59:59 GMT

File type
JSON data\012- , Unicode text, UTF-8 text, with no line terminators
Size
196 B (196 bytes)
Hash
64e704974249e1db721ad93e41ba162d
bfcff312917744ba57595445e66f53d7e11200a7
e3dba1e66832a0b093d628a3223be2fce13a6d9cbc6c5a7b91e3956a191b85d7

Detections

Analyzer	Verdict	Alert
Public Nextron YARA rules	malware	Webshells iisstart.aspx and Logout.aspx

HTTP Headers

GET /apps/articleSearch/api/usercenter/account/v1/searchMajorByFronIp?ip=91.90.42.154 HTTP/1.1
Host: www.scienceing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
IP: 91.90.42.154
DNT: 1
Connection: keep-alive
Referer: https://www.scienceing.com/user/login
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 04 Dec 2023 06:13:39 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=15724800; includeSubDomains

www.scienceing.com/_next/static/media/login-container-bg.3ef96aa8.png

121.52.219.52

200 OK

234 kB

URL GET HTTP/1.1
www.scienceing.com/_next/static/media/login-container-bg.3ef96aa8.png
IP
121.52.219.52:443
ASN
#4808 China Unicom Beijing Province Network

Requested by
https://www.scienceing.com/user/login
Certificate
IssuerDigiCert Inc
Subjectwww.scienceing.com
Fingerprint3F:33:B0:B1:0D:3B:B3:E9:1B:B4:46:92:88:8B:1A:D2:F5:C1:BD:D4
ValidityMon, 08 May 2023 00:00:00 GMT - Tue, 07 May 2024 23:59:59 GMT

File type
PNG image data, 1921 x 1098, 8-bit/color RGBA, non-interlaced\012- data
Size
234 kB (233977 bytes)
Hash
f1f236b625703607dda93dae39d7a8d8
8cf5fd26def6cf46bd18b5f54372fd8a3b02e827
71437250af4c835f75e09a61c642643896b9c0d12a976b8866652e3f167e6555

HTTP Headers

GET /_next/static/media/login-container-bg.3ef96aa8.png HTTP/1.1
Host: www.scienceing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.scienceing.com/_next/static/css/04f1e5b1f64a682c.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 04 Dec 2023 06:13:38 GMT
Content-Type: image/png
Content-Length: 233977
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=31536000, immutable
Accept-Ranges: bytes
Last-Modified: Mon, 27 Nov 2023 10:33:18 GMT
ETag: W/"391f9-18c10572db0"
Strict-Transport-Security: max-age=15724800; includeSubDomains

www.scienceing.com/favicon.ico

121.52.219.52

200 OK

1.2 kB

URL GET HTTP/1.1
www.scienceing.com/favicon.ico
IP
121.52.219.52:443
ASN
#4808 China Unicom Beijing Province Network

Requested by
https://www.scienceing.com/user/login
Certificate
IssuerDigiCert Inc
Subjectwww.scienceing.com
Fingerprint3F:33:B0:B1:0D:3B:B3:E9:1B:B4:46:92:88:8B:1A:D2:F5:C1:BD:D4
ValidityMon, 08 May 2023 00:00:00 GMT - Tue, 07 May 2024 23:59:59 GMT

File type
MS Windows icon resource - 1 icon, 48x48, 32 bits/pixel\012- data
Size
1.2 kB (1187 bytes)
Hash
1ad93dec10af544a94ed9f25fbe0bf5d
39d4b64b3a383d61ea2b83381f7919cfb14179bd
349ce1305a0e6f540ac024f60285926cab46b4571c2665afa7c2d7aab43abbf6

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.scienceing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.scienceing.com/user/login
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 04 Dec 2023 06:13:39 GMT
Content-Type: image/x-icon
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Tue, 18 Jul 2023 10:38:58 GMT
ETag: W/"25be-1896894edd0"
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=15724800; includeSubDomains

www.scienceing.com/_next/static/media/login-bg.7eb0a228.png

121.52.219.52

200 OK

299 kB

URL GET HTTP/1.1
www.scienceing.com/_next/static/media/login-bg.7eb0a228.png
IP
121.52.219.52:443
ASN
#4808 China Unicom Beijing Province Network

Requested by
https://www.scienceing.com/user/login
Certificate
IssuerDigiCert Inc
Subjectwww.scienceing.com
Fingerprint3F:33:B0:B1:0D:3B:B3:E9:1B:B4:46:92:88:8B:1A:D2:F5:C1:BD:D4
ValidityMon, 08 May 2023 00:00:00 GMT - Tue, 07 May 2024 23:59:59 GMT

File type
PNG image data, 1534 x 1122, 8-bit/color RGBA, non-interlaced\012- data
Size
299 kB (298593 bytes)
Hash
2eea9371844667055d68120aef84b068
d547fd3e98d59dc3367c601ece81e4e0f3d96387
089d7cad11cca39b637b1258044fef29b17da84fbfe130fb5b864ebd7f89130a

HTTP Headers

GET /_next/static/media/login-bg.7eb0a228.png HTTP/1.1
Host: www.scienceing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.scienceing.com/_next/static/css/04f1e5b1f64a682c.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 04 Dec 2023 06:13:38 GMT
Content-Type: image/png
Content-Length: 298593
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=31536000, immutable
Accept-Ranges: bytes
Last-Modified: Mon, 27 Nov 2023 10:33:18 GMT
ETag: W/"48e61-18c10572db0"
Strict-Transport-Security: max-age=15724800; includeSubDomains

ipinfo.io/?callback=getIP&token=ipinfo.io

34.117.59.81

200 OK

279 B

URL GET HTTP/2
ipinfo.io/?callback=getIP&token=ipinfo.io
IP
34.117.59.81:443
ASN
#15169 GOOGLE

Requested by
https://www.scienceing.com/user/login
Certificate
IssuerLet's Encrypt
Subjectipinfo.io
Fingerprint02:67:9A:BD:EB:E2:DF:E4:D3:87:6D:3B:B4:56:D4:77:D6:F3:61:E3
ValidityTue, 07 Nov 2023 06:17:02 GMT - Mon, 05 Feb 2024 06:17:01 GMT

File type
ASCII text, with very long lines (325), with no line terminators
Size
279 B (279 bytes)
Hash
6eef5056b3d2a4e7e06d34cf9fbf8fdf
69bbf6c1db4171f8066a988a9465a065184ccca9
018bf3be259ed20d1c044224ca083191306862c8332db9526567aa04d70b7836

HTTP Headers

GET /?callback=getIP&token=ipinfo.io HTTP/1.1
Host: ipinfo.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.scienceing.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-type: text/javascript; charset=utf-8
date: Mon, 04 Dec 2023 06:13:38 GMT
x-envoy-upstream-service-time: 2
strict-transport-security: max-age=2592000; includeSubDomains
vary: Accept-Encoding
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (14)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by