Loading ...

Play interactive tourEdit tour

Windows Analysis Report oxi2YNRd0r.exe

Overview

General Information

Sample Name:oxi2YNRd0r.exe
Analysis ID:498232
MD5:8d20d8f43ef5e0aa06c7d3cff7dddf03
SHA1:03538e1ac0891efd12aeccef5f33b1199aae076e
SHA256:fc6401d5a9a05017e8551916ac6a39894467301d3d0349f719bb11ba1ecc38d6
Infos:

Most interesting Screenshot:

Detection

CobaltStrike
Score:100
Range:0 - 100
Whitelisted:false
Confidence:100%

Signatures

Found malware configuration
Malicious sample detected (through community Yara rule)
Sigma detected: CobaltStrike Named Pipe
Antivirus / Scanner detection for submitted sample
System process connects to network (likely due to code injection or exploit)
Antivirus detection for URL or domain
Yara detected CobaltStrike
Sigma detected: Bad Opsec Defaults Sacrificial Processes With Improper Arguments
Changes security center settings (notifications, updates, antivirus, firewall)
Found API chain indicative of debugger detection
Machine Learning detection for sample
Modifies the context of a thread in another process (thread injection)
C2 URLs / IPs found in malware configuration
Sigma detected: Suspicious Rundll32 Without Any CommandLine Params
Sets debug register (to hijack the execution of another thread)
Yara signature match
May sleep (evasive loops) to hinder dynamic analysis
Checks if Antivirus/Antispyware/Firewall program is installed (via WMI)
Uses code obfuscation techniques (call, push, ret)
PE file contains sections with non-standard names
Internet Provider seen in connection with other malware
Detected potential crypto function
Sample execution stops while process was sleeping (likely an evasion)
AV process strings found (often used to terminate AV products)
Uses a known web browser user agent for HTTP communication
Creates a process in suspended mode (likely to inject code)

Classification

Process Tree

  • System is w10x64
  • cmd.exe (PID: 6100 cmdline: cmd /c sc create IXePV binpath= 'C:\Users\user\Desktop\oxi2YNRd0r.exe' >> C:\servicereg.log 2>&1 MD5: F3BDBE3BB6F734E357235F4D5898582D)
    • conhost.exe (PID: 5932 cmdline: C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 MD5: EA777DEEA782E8B4D7C7C33BBF8A4496)
    • sc.exe (PID: 1716 cmdline: sc create IXePV binpath= 'C:\Users\user\Desktop\oxi2YNRd0r.exe' MD5: 24A3E2603E63BCB9695A2935D3B24695)
  • svchost.exe (PID: 4972 cmdline: C:\Windows\System32\svchost.exe -k NetworkService -p MD5: 32569E403279B3FD2EDB7EBD036273FA)
  • SgrmBroker.exe (PID: 5524 cmdline: C:\Windows\system32\SgrmBroker.exe MD5: D3170A3F3A9626597EEE1888686E3EA6)
  • svchost.exe (PID: 4892 cmdline: c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s wscsvc MD5: 32569E403279B3FD2EDB7EBD036273FA)
    • MpCmdRun.exe (PID: 4364 cmdline: 'C:\Program Files\Windows Defender\mpcmdrun.exe' -wdenable MD5: A267555174BFA53844371226F482B86B)
      • conhost.exe (PID: 2944 cmdline: C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 MD5: EA777DEEA782E8B4D7C7C33BBF8A4496)
  • cmd.exe (PID: 1364 cmdline: cmd /c sc start IXePV >> C:\servicestart.log 2>&1 MD5: F3BDBE3BB6F734E357235F4D5898582D)
    • conhost.exe (PID: 6936 cmdline: C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 MD5: EA777DEEA782E8B4D7C7C33BBF8A4496)
    • sc.exe (PID: 5572 cmdline: sc start IXePV MD5: 24A3E2603E63BCB9695A2935D3B24695)
  • oxi2YNRd0r.exe (PID: 6708 cmdline: C:\Users\user\Desktop\oxi2YNRd0r.exe MD5: 8D20D8F43EF5E0AA06C7D3CFF7DDDF03)
    • rundll32.exe (PID: 5332 cmdline: C:\Windows\System32\rundll32.exe MD5: 73C519F050C20580F8A62C849D49215A)
  • svchost.exe (PID: 5056 cmdline: C:\Windows\System32\svchost.exe -k netsvcs -p MD5: 32569E403279B3FD2EDB7EBD036273FA)
  • svchost.exe (PID: 5640 cmdline: C:\Windows\System32\svchost.exe -k netsvcs -p MD5: 32569E403279B3FD2EDB7EBD036273FA)
  • svchost.exe (PID: 1864 cmdline: C:\Windows\System32\svchost.exe -k netsvcs -p MD5: 32569E403279B3FD2EDB7EBD036273FA)
  • svchost.exe (PID: 6036 cmdline: C:\Windows\System32\svchost.exe -k netsvcs -p MD5: 32569E403279B3FD2EDB7EBD036273FA)
  • cleanup

Malware Configuration

Threatname: CobaltStrike

{"BeaconType": ["HTTP"], "Port": 80, "SleepTime": 45000, "MaxGetSize": 1403644, "Jitter": 37, "C2Server": "fastapi-us01.fbapp.cloudns.asia,/hapi/v13/jquery-3.2.1.min.js,fastapi-ua01.fbapp.cloudns.asia,/hapi/v13/jquery-3.2.1.min.js,fastapi-ss01.fbapp.cloudns.asia,/hapi/v13/jquery-3.2.1.min.js", "HttpPostUri": "/hapi/v13/jquery-3.2.2.min.js", "Malleable_C2_Instructions": ["Remove 1522 bytes from the end", "Remove 84 bytes from the beginning", "Remove 3931 bytes from the beginning", "Base64 URL-safe decode", "XOR mask w/ random key"], "SpawnTo": "AAAAAAAAAAAAAAAAAAAAAA==", "HttpGet_Verb": "GET", "HttpPost_Verb": "POST", "HttpPostChunk": 0, "Spawnto_x86": "%windir%\\syswow64\\dllhost.exe", "Spawnto_x64": "%windir%\\sysnative\\dllhost.exe", "CryptoScheme": 0, "Proxy_Behavior": "Use IE settings", "Watermark": 0, "bStageCleanup": "True", "bCFGCaution": "False", "KillDate": 0, "bProcInject_StartRWX": "False", "bProcInject_UseRWX": "False", "bProcInject_MinAllocSize": 17500, "ProcInject_PrependAppend_x86": ["kJA=", "Empty"], "ProcInject_PrependAppend_x64": ["kJA=", "Empty"], "ProcInject_Execute": ["ntdll:RtlUserThreadStart", "CreateThread", "NtQueueApcThread-s", "CreateRemoteThread", "RtlCreateUserThread"], "ProcInject_AllocationMethod": "NtMapViewOfSection", "bUsesCookies": "True", "HostHeader": ""}

Yara Overview

Memory Dumps

SourceRuleDescriptionAuthorStrings
0000000B.00000003.292593237.00000110A3580000.00000020.00000001.sdmpCobaltbaltstrike_Beacon_x64Detects CobaltStrike payloadsAvast Threat Intel Team
  • 0x9:$h01: 4D 5A 41 52 55 48 89 E5 48 81 EC 20 00 00 00 48 8D 1D EA FF FF FF 48 89
  • 0x3aa39:$h13: 2E 2F 2E 2F 2E 2C 2E 2E 2E 2C 2E 2F 2E 2C 2E 7E 2E
0000000B.00000003.292593237.00000110A3580000.00000020.00000001.sdmpCobaltStrike_C2_Encoded_XOR_Config_IndicatorDetects CobaltStrike C2 encoded profile configurationyara@s3c.za.net
  • 0x3aa39:$s046: 2E 2F 2E 2F 2E 2C 2E 2E 2E 2C 2E 2F 2E 2C 2E 7E 2E 2D 2E 2C 2E 2A 2E 2E 81 E6 2E 2A 2E 2C 2E 2A 2E 3B 44 D2 2E 2B 2E 2F 2E 2C 2E 0B
0000000B.00000003.292593237.00000110A3580000.00000020.00000001.sdmpCobaltStrike_MZ_LauncherDetects CobaltStrike MZ header ReflectiveLoader launcheryara@s3c.za.net
  • 0x9:$mz_launcher: 4D 5A 41 52 55 48 89 E5 48 81 EC 20 00 00 00 48 8D 1D
0000000B.00000003.292593237.00000110A3580000.00000020.00000001.sdmpSUSP_XORed_MozillaDetects suspicious XORed keyword - Mozilla/5.0Florian Roth
  • 0x3ad97:$xo1: cATGBBO\x01\x1B\x1E
0000000B.00000003.292593237.00000110A3580000.00000020.00000001.sdmpJoeSecurity_CobaltStrike_2Yara detected CobaltStrikeJoe Security
    Click to see the 11 entries

    Sigma Overview

    System Summary:

    barindex
    Sigma detected: CobaltStrike Named PipeShow sources
    Source: Pipe createdAuthor: Florian Roth, Wojciech Lesicki: Data: PipeName: \MSSE-4697-server
    Sigma detected: Bad Opsec Defaults Sacrificial Processes With Improper ArgumentsShow sources
    Source: Process startedAuthor: Oleg Kolesnikov @securonix invrep_de, oscd.community, Florian Roth, Christian Burkard: Data: Command: C:\Windows\System32\rundll32.exe, CommandLine: C:\Windows\System32\rundll32.exe, CommandLine|base64offset|contains: , Image: C:\Windows\System32\rundll32.exe, NewProcessName: C:\Windows\System32\rundll32.exe, OriginalFileName: C:\Windows\System32\rundll32.exe, ParentCommandLine: C:\Users\user\Desktop\oxi2YNRd0r.exe, ParentImage: C:\Users\user\Desktop\oxi2YNRd0r.exe, ParentProcessId: 6708, ProcessCommandLine: C:\Windows\System32\rundll32.exe, ProcessId: 5332
    Sigma detected: Suspicious Rundll32 Without Any CommandLine ParamsShow sources
    Source: Process startedAuthor: Florian Roth: Data: Command: C:\Windows\System32\rundll32.exe, CommandLine: C:\Windows\System32\rundll32.exe, CommandLine|base64offset|contains: , Image: C:\Windows\System32\rundll32.exe, NewProcessName: C:\Windows\System32\rundll32.exe, OriginalFileName: C:\Windows\System32\rundll32.exe, ParentCommandLine: C:\Users\user\Desktop\oxi2YNRd0r.exe, ParentImage: C:\Users\user\Desktop\oxi2YNRd0r.exe, ParentProcessId: 6708, ProcessCommandLine: C:\Windows\System32\rundll32.exe, ProcessId: 5332
    Sigma detected: New Service CreationShow sources
    Source: Process startedAuthor: Timur Zinniatullin, Daniil Yugoslavskiy, oscd.community: Data: Command: sc create IXePV binpath= 'C:\Users\user\Desktop\oxi2YNRd0r.exe' , CommandLine: sc create IXePV binpath= 'C:\Users\user\Desktop\oxi2YNRd0r.exe' , CommandLine|base64offset|contains: , Image: C:\Windows\SysWOW64\sc.exe, NewProcessName: C:\Windows\SysWOW64\sc.exe, OriginalFileName: C:\Windows\SysWOW64\sc.exe, ParentCommandLine: cmd /c sc create IXePV binpath= 'C:\Users\user\Desktop\oxi2YNRd0r.exe' >> C:\servicereg.log 2>&1, ParentImage: C:\Windows\SysWOW64\cmd.exe, ParentProcessId: 6100, ProcessCommandLine: sc create IXePV binpath= 'C:\Users\user\Desktop\oxi2YNRd0r.exe' , ProcessId: 1716

    Jbx Signature Overview

    Click to jump to signature section

    Show All Signature Results

    AV Detection:

    barindex
    Found malware configurationShow sources
    Source: 0000000B.00000003.292593237.00000110A3580000.00000020.00000001.sdmpMalware Configuration Extractor: CobaltStrike {"BeaconType": ["HTTP"], "Port": 80, "SleepTime": 45000, "MaxGetSize": 1403644, "Jitter": 37, "C2Server": "fastapi-us01.fbapp.cloudns.asia,/hapi/v13/jquery-3.2.1.min.js,fastapi-ua01.fbapp.cloudns.asia,/hapi/v13/jquery-3.2.1.min.js,fastapi-ss01.fbapp.cloudns.asia,/hapi/v13/jquery-3.2.1.min.js", "HttpPostUri": "/hapi/v13/jquery-3.2.2.min.js", "Malleable_C2_Instructions": ["Remove 1522 bytes from the end", "Remove 84 bytes from the beginning", "Remove 3931 bytes from the beginning", "Base64 URL-safe decode", "XOR mask w/ random key"], "SpawnTo": "AAAAAAAAAAAAAAAAAAAAAA==", "HttpGet_Verb": "GET", "HttpPost_Verb": "POST", "HttpPostChunk": 0, "Spawnto_x86": "%windir%\\syswow64\\dllhost.exe", "Spawnto_x64": "%windir%\\sysnative\\dllhost.exe", "CryptoScheme": 0, "Proxy_Behavior": "Use IE settings", "Watermark": 0, "bStageCleanup": "True", "bCFGCaution": "False", "KillDate": 0, "bProcInject_StartRWX": "False", "bProcInject_UseRWX": "False", "bProcInject_MinAllocSize": 17500, "ProcInject_PrependAppend_x86": ["kJA=", "Empty"], "ProcInject_PrependAppend_x64": ["kJA=", "Empty"], "ProcInject_Execute": ["ntdll:RtlUserThreadStart", "CreateThread", "NtQueueApcThread-s", "CreateRemoteThread", "RtlCreateUserThread"], "ProcInject_AllocationMethod": "NtMapViewOfSection", "bUsesCookies": "True", "HostHeader": ""}
    Antivirus / Scanner detection for submitted sampleShow sources
    Source: oxi2YNRd0r.exeAvira: detected
    Antivirus detection for URL or domainShow sources
    Source: http://fastapi-us01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.jsw:ZuAvira URL Cloud: Label: phishing
    Source: http://fastapi-us01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.js9Avira URL Cloud: Label: phishing
    Source: http://fastapi-us01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.js=:Avira URL Cloud: Label: phishing
    Source: http://fastapi-us01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.jsHAvira URL Cloud: Label: phishing
    Source: http://fastapi-ua01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.jse:duAvira URL Cloud: Label: phishing
    Source: http://fastapi-us01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.jsMAvira URL Cloud: Label: phishing
    Source: http://fastapi-ua01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.js1/.tAvira URL Cloud: Label: phishing
    Source: http://fastapi-us01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.jsDAvira URL Cloud: Label: phishing
    Source: http://fastapi-us01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.jsVAvira URL Cloud: Label: phishing
    Source: http://fastapi-ss01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.js6:Avira URL Cloud: Label: phishing
    Source: http://fastapi-us01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.jsQAvira URL Cloud: Label: phishing
    Source: http://fastapi-us01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.jsRAvira URL Cloud: Label: phishing
    Source: http://fastapi-us01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.jsgAvira URL Cloud: Label: phishing
    Source: http://fastapi-us01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.jsiAvira URL Cloud: Label: phishing
    Source: http://fastapi-us01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.jslAvira URL Cloud: Label: phishing
    Source: http://fastapi-ss01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.js_/Avira URL Cloud: Label: phishing
    Source: http://fastapi-ua01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.jsr/mt%Avira URL Cloud: Label: phishing
    Source: http://fastapi-us01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.jsr/mt%Avira URL Cloud: Label: phishing
    Source: http://fastapi-ss01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.jsH/Avira URL Cloud: Label: phishing
    Source: fastapi-us01.fbapp.cloudns.asiaAvira URL Cloud: Label: phishing
    Source: http://fastapi-us01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.jsptographicAvira URL Cloud: Label: phishing
    Source: http://fastapi-ss01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.jswAvira URL Cloud: Label: phishing
    Source: http://fastapi-ss01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.jsS:vuAvira URL Cloud: Label: phishing
    Source: http://fastapi-ss01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.jsAvira URL Cloud: Label: phishing
    Source: http://fastapi-us01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.jsm/Avira URL Cloud: Label: phishing
    Source: http://fastapi-ua01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.js_/Avira URL Cloud: Label: phishing
    Source: http://fastapi-ss01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.jsr/mt%Avira URL Cloud: Label: phishing
    Source: http://fastapi-ss01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.jsH:Avira URL Cloud: Label: phishing
    Source: http://fastapi-ua01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.jsptographicAvira URL Cloud: Label: phishing
    Source: http://fastapi-us01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.jsicAvira URL Cloud: Label: phishing
    Source: http://fastapi-ss01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.jsDAvira URL Cloud: Label: phishing
    Source: http://fastapi-ss01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.jsptographicAvira URL Cloud: Label: phishing
    Source: http://fastapi-ua01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.jsAvira URL Cloud: Label: phishing
    Source: http://fastapi-ss01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.jsHAvira URL Cloud: Label: phishing
    Source: http://fastapi-ua01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.jsS:vuAvira URL Cloud: Label: phishing
    Source: http://fastapi-ss01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.jsMAvira URL Cloud: Label: phishing
    Source: http://fastapi-ua01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.js9Avira URL Cloud: Label: phishing
    Source: http://fastapi-us01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.jse:duAvira URL Cloud: Label: phishing
    Source: http://fastapi-ss01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.js9Avira URL Cloud: Label: phishing
    Source: http://fastapi-ua01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.jsicAvira URL Cloud: Label: phishing
    Source: http://fastapi-ss01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.jsicAvira URL Cloud: Label: phishing
    Source: http://fastapi-us01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.js1/.tAvira URL Cloud: Label: phishing
    Source: http://fastapi-ua01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.jsHAvira URL Cloud: Label: phishing
    Source: http://fastapi-ua01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.jsH:Avira URL Cloud: Label: phishing
    Source: http://fastapi-ss01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.jsgAvira URL Cloud: Label: phishing
    Source: http://fastapi-ua01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.jsDAvira URL Cloud: Label: phishing
    Source: http://fastapi-ss01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.jsiAvira URL Cloud: Label: phishing
    Source: http://fastapi-ss01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.js$:%uAvira URL Cloud: Label: phishing
    Source: http://fastapi-ss01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.jsd/Avira URL Cloud: Label: phishing
    Source: http://fastapi-ua01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.jsH/Avira URL Cloud: Label: phishing
    Source: http://fastapi-ss01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.jslAvira URL Cloud: Label: phishing
    Source: http://fastapi-ss01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.jsRAvira URL Cloud: Label: phishing
    Source: http://fastapi-ss01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.jsQAvira URL Cloud: Label: phishing
    Source: http://fastapi-ss01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.jsVAvira URL Cloud: Label: phishing
    Source: http://fastapi-ua01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.jsVAvira URL Cloud: Label: phishing
    Source: http://fastapi-us01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.jsd/Avira URL Cloud: Label: phishing
    Source: http://fastapi-ua01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.jsMAvira URL Cloud: Label: phishing
    Source: http://fastapi-ua01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.jsiAvira URL Cloud: Label: phishing
    Source: http://fastapi-us01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.jswAvira URL Cloud: Label: phishing
    Source: http://fastapi-ss01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.jsm/Avira URL Cloud: Label: phishing
    Source: http://fastapi-ua01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.jsgAvira URL Cloud: Label: phishing
    Source: http://fastapi-ua01.fbapp.cloudns.asia/hapi/v13/jquery-3.2.1.min.jsd/Avira URL Cloud: Label: phishing
    Machine Learning detection for sampleShow sources
    Source: oxi2YNRd0r.exeJoe Sandbox ML: detected

    Networking:

    barindex
    System process connects to network (likely due to code injection or exploit)Show sources
    Source: C:\Windows\System32\rundll32.exeNetwork Connect: 82.144.223.11 80Jump to behavior
    Source: C:\Windows\System32\rundll32.exeDomain query: fastapi-us01.fbapp.cloudns.asia
    Source: C:\Windows\System32\rundll32.exeDomain query: fastapi-ss01.fbapp.cloudns.asia
    Source: C:\Windows\System32\rundll32.exeNetwork Connect: 5.230.70.169 80Jump to behavior
    Source: C:\Windows\System32\rundll32.exeDomain query: fastapi-ua01.fbapp.cloudns.asia
    C2 URLs / IPs found in malware configurationShow sources
    Source: Malware configuration extractorURLs: fastapi-us01.fbapp.cloudns.asia
    Source: Joe Sandbox ViewASN Name: ASGHOSTNETDE ASGHOSTNETDE
    Source: Joe Sandbox ViewASN Name: VOLIA-ASUA VOLIA-ASUA
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-us01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ua01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ss01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-us01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ua01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ss01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-us01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ua01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ss01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-us01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ua01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ss01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-us01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ua01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ss01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-us01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ua01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ss01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-us01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ua01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ss01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-us01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ua01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ss01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-us01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ua01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ss01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-us01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ua01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ss01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-us01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ua01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ss01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-us01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ua01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ss01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-us01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ua01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ss01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-us01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ua01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ss01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-us01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ua01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ss01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-us01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ua01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ss01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-us01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ua01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ss01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-us01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ua01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ss01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-us01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ua01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ss01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-us01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ua01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ss01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-us01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ua01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ss01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-us01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ua01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ss01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-us01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ua01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ss01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-us01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ua01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ss01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-us01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ua01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ss01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-us01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ua01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ss01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-us01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ua01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ss01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-us01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ua01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ss01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-us01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ua01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ss01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-us01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ua01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ss01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-us01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ua01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ss01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-us01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ua01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ss01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-us01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ua01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ss01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-us01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ua01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ss01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-us01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ua01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ss01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-us01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ua01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ss01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-us01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ua01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ss01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-us01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ua01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ss01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-us01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ua01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ss01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-us01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ua01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ss01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-us01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ua01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ss01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-us01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ua01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ss01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-us01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ua01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-ss01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global trafficHTTP traffic detected: GET /hapi/v13/jquery-3.2.1.min.js HTTP/1.1Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Referer: http://code.jquery.com/Accept-Encoding: gzip, deflateCookie: __cfduid=XK9G66q_6D4FA0WuEgoKPS5t_houM9feN437yAY9IYg6sJ6IxfNnTVq5Sf7LdaBUSPK4eQPYR7ANvHlUqxDADwjOQwn-K_SKr6ZU-elDqJIU3LaUloG__aadcfcKov0MOnR28kgkkjuIQCbdfvm1tuFko1eN6qoNLymz-xVGy3YUser-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like GeckoHost: fastapi-us01.fbapp.cloudns.asiaConnection: Keep-AliveCache-Control: no-cache
    Source: global tra