binzhifuyuan.com/client/login.php
156.225.151.206200 OK 7.3 kB URL User Request GET HTTP/1.1 binzhifuyuan.com/client/login.php
IP 156.225.151.206:80
ASN #142286 LUOGELANG FRANCE LIMITED
File type HTML document, ISO-8859 text, with very long lines (13626), with CRLF, LF line terminators
Hash cc2636c78a40936db3d8a8cac3ebff00
f894eacc40cf1cb3a037eb040a5e3a33a8029ecf
4e34ac2743c0eb5c93fc699befe511aaf47b0e579cd3f6c0ba0803b9e4a3ee8f
GET /client/login.php HTTP/1.1
Host: binzhifuyuan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 May 2024 13:49:31 GMT
Content-Type: text/html; charset=gbk
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: PHPSESSID=ibr7ksg4vrl7hu8bii1nvdujr4; path=/
Content-Encoding: gzip
sdk.51.la/js-sdk-pro.min.js
47.246.44.238200 OK 13 kB URL GET HTTP/1.1 sdk.51.la/js-sdk-pro.min.js
IP 47.246.44.238:80
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Requested by http://binzhifuyuan.com/client/login.php
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (34110)
Hash 24bb520e9517f2ed3ed987b46aeaf723
846723563d7dd2bff3954f93633b11af0103adc8
d1f1bfe698f2ffb7b3e7a885a301d58f9554d45df0a31c3e8b53c84b33c80d27
GET /js-sdk-pro.min.js HTTP/1.1
Host: sdk.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://binzhifuyuan.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/javascript
Content-Length: 12846
Connection: keep-alive
Date: Sun, 21 Apr 2024 10:11:16 GMT
x-oss-request-id: 6624E644CC8CEC34394ACD92
x-oss-cdn-auth: success
x-oss-object-type: Normal
x-oss-storage-class: Standard
Content-MD5: JLtSDpUX8u0+2Ye0aur3Iw==
x-oss-server-time: 3
Ali-Swift-Global-Savetime: 1713694276
Via: cache15.l2de2[0,0,304-0,H], cache4.l2de2[1,0], ens-cache18.se2[0,0,200-0,H], ens-cache2.se2[1,0]
Accept-Ranges: bytes
Vary: Accept-Encoding
Last-Modified: Thu, 08 Jun 2023 02:24:34 GMT
x-oss-hash-crc64ecma: 5143829838470429443
Content-Encoding: gzip
Age: 1136299
X-Cache: HIT TCP_MEM_HIT dirn:11:314957921
X-Swift-SaveTime: Thu, 02 May 2024 02:56:26 GMT
X-Swift-CacheTime: 371690
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
EagleId: 2ff62c9617148305759854771e
collect-v6.51.la/v6/collect?dt=4
203.107.86.226403 0 B URL POST HTTP/1.1 collect-v6.51.la/v6/collect?dt=4
IP 203.107.86.226:80
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
Requested by http://binzhifuyuan.com/client/login.php
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v6/collect?dt=4 HTTP/1.1
Host: collect-v6.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Length: 255
Origin: http://binzhifuyuan.com
DNT: 1
Connection: keep-alive
Referer: http://binzhifuyuan.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403
Date: Sat, 04 May 2024 13:49:37 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: aliyungf_tc=2beb8e5d3e277ab5318ac96a0be6c768cdf0a1b7faee9971ce6d40b7742b843a; Path=/; HttpOnly
acw_tc=ac11000117148305771232428ea3ae56cf2cf26f243c70222e23c9531f56d9;path=/;HttpOnly;Max-Age=1800
Server: nginx
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Access-Control-Allow-Origin: http://binzhifuyuan.com
Access-Control-Allow-Credentials: true
push.zhanzhang.baidu.com/push.js
182.61.244.229200 OK 227 B URL GET HTTP/1.1 push.zhanzhang.baidu.com/push.js
IP 182.61.244.229:80
ASN #38365 Beijing Baidu Netcom Science and Technology Co., Ltd.
Requested by http://binzhifuyuan.com/client/login.php
File type ASCII text, with no line terminators
Hash 1bb5a3267c9865ad4abe8d937734b62b
b5478dd2edb3e64242eced1db2dbd945ef81f592
674bc0c70f98d627b8a7e1d278a1f21ffe33815565f7d5371bf0275da57571b2
GET /push.js HTTP/1.1
Host: push.zhanzhang.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://binzhifuyuan.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Content-Encoding: gzip
Content-Length: 227
Content-Type: text/javascript
Date: Sat, 04 May 2024 13:49:37 GMT
Etag: "4078521116"
Expires: Sun, 04 May 2025 13:49:37 GMT
Last-Modified: Wed, 25 Nov 2015 07:47:55 GMT
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: apache
Set-Cookie: BAIDUID=57D0F19A8B6590CC1C938A8213A5164E:FG=1; max-age=31536000; expires=Sun, 04-May-25 13:49:37 GMT; domain=.baidu.com; path=/; version=1
Vary: Accept-Encoding
hm.baidu.com/hm.js?017cc2d7ebce90a3248c648430f05b19
14.215.183.79200 OK 11 kB URL GET HTTP/1.1 hm.baidu.com/hm.js?017cc2d7ebce90a3248c648430f05b19
IP 14.215.183.79:443
Requested by http://binzhifuyuan.com/client/login.php
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type JavaScript source, ASCII text, with very long lines (622)
Hash 71a6eb844dad6213999fe0d85edad332
095b7f35465f171a913c26c4e9a73a186b2ec33b
2412288887ede865f442fe323c8d1da8ddd7c29030ad5333d0b16f61fc7fdb1b
GET /hm.js?017cc2d7ebce90a3248c648430f05b19 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://binzhifuyuan.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11260
Content-Type: application/javascript
Date: Sat, 04 May 2024 13:49:39 GMT
Etag: ed5350cfed35374b969681cb0d26b419
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=A5050ED9C33E6D51; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
binzhifuyuan.com/haha.js
156.225.151.206200 OK 734 B IP 156.225.151.206:80
ASN #142286 LUOGELANG FRANCE LIMITED
Requested by http://binzhifuyuan.com/client/login.php
File type JavaScript source, ASCII text, with very long lines (388)
Hash 7ce1ee33c88f9d42fd6d237504aa096c
26765e9803587263cf9f97e70d3c5c45afd2a367
8aaa422327c9607e14ed8a06f6d1fefae9d6db6dc35377d537d1811fbd9d79d9
GET /haha.js HTTP/1.1
Host: binzhifuyuan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://binzhifuyuan.com/client/login.php
Cookie: PHPSESSID=ibr7ksg4vrl7hu8bii1nvdujr4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 May 2024 13:49:35 GMT
Content-Type: application/javascript
Last-Modified: Thu, 12 Oct 2023 03:53:42 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"65276dc6-5ce"
Expires: Sun, 05 May 2024 01:49:35 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
binzhifuyuan.com/js.js
156.225.151.206200 OK 2.0 kB IP 156.225.151.206:80
ASN #142286 LUOGELANG FRANCE LIMITED
Requested by http://binzhifuyuan.com/client/login.php
File type JavaScript source, ASCII text, with very long lines (4413)
Hash ada1f9cb0816460bb5ae652c285dbe4a
b5aa27c1a65bbabdfe539f1df277f5732a564a63
b6708ca79c027fb1a6834784f7613a61855346e8c5551c5f7151fbb9f78f4d7e
GET /js.js HTTP/1.1
Host: binzhifuyuan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://binzhifuyuan.com/client/login.php
Cookie: PHPSESSID=ibr7ksg4vrl7hu8bii1nvdujr4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 May 2024 13:49:35 GMT
Content-Type: application/javascript
Last-Modified: Thu, 04 Apr 2024 13:31:51 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"660eabc7-142a"
Expires: Sun, 05 May 2024 01:49:35 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
sdk.51.la/js-sdk-pro.min.js
47.246.44.238200 OK 13 kB URL GET HTTP/1.1 sdk.51.la/js-sdk-pro.min.js
IP 47.246.44.238:80
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Requested by http://binzhifuyuan.com/client/login.php
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (34110)
Hash 24bb520e9517f2ed3ed987b46aeaf723
846723563d7dd2bff3954f93633b11af0103adc8
d1f1bfe698f2ffb7b3e7a885a301d58f9554d45df0a31c3e8b53c84b33c80d27
GET /js-sdk-pro.min.js HTTP/1.1
Host: sdk.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://binzhifuyuan.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/javascript
Content-Length: 12846
Connection: keep-alive
Date: Sun, 21 Apr 2024 10:11:16 GMT
x-oss-request-id: 6624E644CC8CEC34394ACD92
x-oss-cdn-auth: success
x-oss-object-type: Normal
x-oss-storage-class: Standard
Content-MD5: JLtSDpUX8u0+2Ye0aur3Iw==
x-oss-server-time: 3
Ali-Swift-Global-Savetime: 1713694276
Via: cache15.l2de2[0,0,304-0,H], cache4.l2de2[1,0], ens-cache18.se2[0,0,200-0,H], ens-cache2.se2[1,0]
Accept-Ranges: bytes
Vary: Accept-Encoding
Last-Modified: Thu, 08 Jun 2023 02:24:34 GMT
x-oss-hash-crc64ecma: 5143829838470429443
Content-Encoding: gzip
Age: 1136306
X-Cache: HIT TCP_MEM_HIT dirn:11:314957921
X-Swift-SaveTime: Thu, 02 May 2024 02:56:26 GMT
X-Swift-CacheTime: 371690
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
EagleId: 2ff62c9617148305827991295e
sdk.51.la/js-sdk-pro.min.js
47.246.44.238200 OK 13 kB URL GET HTTP/1.1 sdk.51.la/js-sdk-pro.min.js
IP 47.246.44.238:80
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Requested by http://binzhifuyuan.com/client/login.php
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (34110)
Hash 24bb520e9517f2ed3ed987b46aeaf723
846723563d7dd2bff3954f93633b11af0103adc8
d1f1bfe698f2ffb7b3e7a885a301d58f9554d45df0a31c3e8b53c84b33c80d27
GET /js-sdk-pro.min.js HTTP/1.1
Host: sdk.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://binzhifuyuan.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/javascript
Content-Length: 12846
Connection: keep-alive
Date: Sun, 21 Apr 2024 10:11:16 GMT
x-oss-request-id: 6624E644CC8CEC34394ACD92
x-oss-cdn-auth: success
x-oss-object-type: Normal
x-oss-storage-class: Standard
Content-MD5: JLtSDpUX8u0+2Ye0aur3Iw==
x-oss-server-time: 3
Ali-Swift-Global-Savetime: 1713694276
Via: cache15.l2de2[0,0,304-0,H], cache4.l2de2[1,0], ens-cache18.se2[0,0,200-0,H], ens-cache2.se2[1,0]
Accept-Ranges: bytes
Vary: Accept-Encoding
Last-Modified: Thu, 08 Jun 2023 02:24:34 GMT
x-oss-hash-crc64ecma: 5143829838470429443
Content-Encoding: gzip
Age: 1136306
X-Cache: HIT TCP_MEM_HIT dirn:11:314957921
X-Swift-SaveTime: Thu, 02 May 2024 02:56:26 GMT
X-Swift-CacheTime: 371690
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
EagleId: 2ff62c9617148305828251319e
hm.baidu.com/hm.js?017cc2d7ebce90a3248c648430f05b19
183.240.98.228200 OK 11 kB URL GET HTTP/1.1 hm.baidu.com/hm.js?017cc2d7ebce90a3248c648430f05b19
IP 183.240.98.228:443
ASN #56040 China Mobile communications corporation
Requested by http://binzhifuyuan.com/client/login.php
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type JavaScript source, ASCII text, with very long lines (622)
Hash 39b18d40214e733e8c4de54110d2ea8e
e385a12dd145b1e40011f0636dbb29ab4d5f1763
f0e0e045c237b3f748984d9c1d0689919ab1215de4b1cdb26d83653f4e095931
GET /hm.js?017cc2d7ebce90a3248c648430f05b19 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://binzhifuyuan.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11260
Content-Type: application/javascript
Date: Sat, 04 May 2024 13:49:42 GMT
Etag: d614e8d5958d3915dcc97f902e17c070
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=0829EE809BF3DA03; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=143544792&si=017cc2d7ebce90a3248c648430f05b19&v=1.3.0&lv=1&sn=41770&r=0&ww=1280&u=http%3A%2F%2Fbinzhifuyuan.com%2Fclient%2Flogin.php
14.215.183.79200 OK 43 B URL GET HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=143544792&si=017cc2d7ebce90a3248c648430f05b19&v=1.3.0&lv=1&sn=41770&r=0&ww=1280&u=http%3A%2F%2Fbinzhifuyuan.com%2Fclient%2Flogin.php
IP 14.215.183.79:443
Requested by http://binzhifuyuan.com/client/login.php
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=143544792&si=017cc2d7ebce90a3248c648430f05b19&v=1.3.0&lv=1&sn=41770&r=0&ww=1280&u=http%3A%2F%2Fbinzhifuyuan.com%2Fclient%2Flogin.php HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://binzhifuyuan.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 04 May 2024 13:49:42 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=C0542EE80B456140; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
collect-v6.51.la/v6/collect?dt=4
203.107.86.226403 0 B URL POST HTTP/1.1 collect-v6.51.la/v6/collect?dt=4
IP 203.107.86.226:80
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
Requested by http://binzhifuyuan.com/client/login.php
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v6/collect?dt=4 HTTP/1.1
Host: collect-v6.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Length: 264
Origin: http://binzhifuyuan.com
DNT: 1
Connection: keep-alive
Referer: http://binzhifuyuan.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403
Date: Sat, 04 May 2024 13:49:43 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: aliyungf_tc=f6a2cceaf8fda77a3b067764d71446cf44e072242e4610f57ba833b49535c938; Path=/; HttpOnly
acw_tc=ac11000117148305830012947ea3aeccaccea072b32a8be371a99bce047c86;path=/;HttpOnly;Max-Age=1800
Server: nginx
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Access-Control-Allow-Origin: http://binzhifuyuan.com
Access-Control-Allow-Credentials: true
push.zhanzhang.baidu.com/push.js
182.61.244.229200 OK 227 B URL GET HTTP/1.1 push.zhanzhang.baidu.com/push.js
IP 182.61.244.229:80
ASN #38365 Beijing Baidu Netcom Science and Technology Co., Ltd.
Requested by http://binzhifuyuan.com/client/login.php
File type ASCII text, with no line terminators
Hash 1bb5a3267c9865ad4abe8d937734b62b
b5478dd2edb3e64242eced1db2dbd945ef81f592
674bc0c70f98d627b8a7e1d278a1f21ffe33815565f7d5371bf0275da57571b2
GET /push.js HTTP/1.1
Host: push.zhanzhang.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://binzhifuyuan.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Content-Encoding: gzip
Content-Length: 227
Content-Type: text/javascript
Date: Sat, 04 May 2024 13:49:43 GMT
Etag: "4078521116"
Expires: Sun, 04 May 2025 13:49:43 GMT
Last-Modified: Wed, 25 Nov 2015 07:47:55 GMT
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: apache
Set-Cookie: BAIDUID=940597A85A2C26DA6FA33FD53D9730CF:FG=1; max-age=31536000; expires=Sun, 04-May-25 13:49:43 GMT; domain=.baidu.com; path=/; version=1
Vary: Accept-Encoding
api.share.baidu.com/s.gif?l=http://binzhifuyuan.com/client/login.php
182.61.201.93200 OK 0 B URL GET HTTP/1.1 api.share.baidu.com/s.gif?l=http://binzhifuyuan.com/client/login.php
IP 182.61.201.93:80
ASN #38365 Beijing Baidu Netcom Science and Technology Co., Ltd.
Requested by http://binzhifuyuan.com/client/login.php
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s.gif?l=http://binzhifuyuan.com/client/login.php HTTP/1.1
Host: api.share.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://binzhifuyuan.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 0
Content-Type: text/plain; charset=utf-8
Date: Sat, 04 May 2024 13:49:43 GMT
api.share.baidu.com/s.gif?l=http://www.binzhifuyuan.com/client/login.php
182.61.201.93200 OK 0 B URL GET HTTP/1.1 api.share.baidu.com/s.gif?l=http://www.binzhifuyuan.com/client/login.php
IP 182.61.201.93:80
ASN #38365 Beijing Baidu Netcom Science and Technology Co., Ltd.
Requested by http://binzhifuyuan.com/client/login.php
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s.gif?l=http://www.binzhifuyuan.com/client/login.php HTTP/1.1
Host: api.share.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://binzhifuyuan.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 0
Content-Type: text/plain; charset=utf-8
Date: Sat, 04 May 2024 13:49:43 GMT
collect-v6.51.la/v6/collect?dt=4
203.107.86.226403 0 B URL POST HTTP/1.1 collect-v6.51.la/v6/collect?dt=4
IP 203.107.86.226:80
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
Requested by http://binzhifuyuan.com/client/login.php
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v6/collect?dt=4 HTTP/1.1
Host: collect-v6.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Length: 265
Origin: http://binzhifuyuan.com
DNT: 1
Connection: keep-alive
Referer: http://binzhifuyuan.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403
Date: Sat, 04 May 2024 13:49:43 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: aliyungf_tc=78285263baa466bb4f5c08af592942b63d45db60dfc117783bf0b49c054818b8; Path=/; HttpOnly
acw_tc=1a0c39ca17148305833513157ed15ec67eafa9583207bad0168f517b4b6003;path=/;HttpOnly;Max-Age=1800
Server: nginx
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Access-Control-Allow-Origin: http://binzhifuyuan.com
Access-Control-Allow-Credentials: true
collect-v6.51.la/v6/collect?dt=4
203.107.86.226403 0 B URL POST HTTP/1.1 collect-v6.51.la/v6/collect?dt=4
IP 203.107.86.226:80
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
Requested by http://binzhifuyuan.com/client/login.php
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v6/collect?dt=4 HTTP/1.1
Host: collect-v6.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Length: 265
Origin: http://binzhifuyuan.com
DNT: 1
Connection: keep-alive
Referer: http://binzhifuyuan.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403
Date: Sat, 04 May 2024 13:49:43 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: aliyungf_tc=21de12623c31f684b2b2b6597a4d4e2bd4b2bb4768b603daf0ce65fa4ba17800; Path=/; HttpOnly
acw_tc=ac11000117148305833832074ee842dfdfdbf90c4243da51f823949fb002e2;path=/;HttpOnly;Max-Age=1800
Server: nginx
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Access-Control-Allow-Origin: http://binzhifuyuan.com
Access-Control-Allow-Credentials: true
34.96.212.198:8888/
34.96.212.198403 Forbidden 150 B IP 34.96.212.198:8888
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by http://binzhifuyuan.com/client/login.php
Certificate IssuerSectigo Limited
Subject34.96.210.11
Fingerprint34:69:68:7B:6C:C1:C3:3C:EE:A4:21:54:D9:06:D3:A0:A0:4C:8C:AC
ValidityWed, 31 Jan 2024 00:00:00 GMT - Thu, 30 Jan 2025 23:59:59 GMT
File type HTML document, ASCII text, with CRLF line terminators
Hash 8b181bb6767bc5795dcf17341a387e5b
b5e2a9fb1f8a4aad3c7127c769af4c780b47bef4
32cbc376cd769a26d108ae31678f975b863b7066e110c59d9a212c7281bd8c81
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET / HTTP/1.1
Host: 34.96.212.198:8888
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://binzhifuyuan.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
server: nginx/1.16.1
date: Sat, 04 May 2024 13:49:43 GMT
content-type: text/html; charset=utf-8
content-length: 150
X-Firefox-Spdy: h2
binzhifuyuan.com/favicon.ico
156.225.151.206200 OK 34 kB URL GET HTTP/1.1 binzhifuyuan.com/favicon.ico
IP 156.225.151.206:80
ASN #142286 LUOGELANG FRANCE LIMITED
Requested by http://binzhifuyuan.com/client/login.php
File type MS Windows icon resource - 5 icons, 64x64, 32 bits/pixel, 48x48, 32 bits/pixel
Hash f64943010fe01df6b2194ca2c0f1271f
d7e2f2c13cea4554dc877261676273376c217f00
7f50d4acbf76a423ac781f90550ecf97b5a3393a735d58a6d5cb077f94b265d1
GET /favicon.ico HTTP/1.1
Host: binzhifuyuan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://binzhifuyuan.com/client/login.php
Cookie: PHPSESSID=ibr7ksg4vrl7hu8bii1nvdujr4; __vtins__3GhPmY91UODrmhby=%7B%22sid%22%3A%20%221f5e113f-9f38-5ee5-9d24-7ceab4df2be9%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201714832376073%2C%20%22ct%22%3A%201714830576073%7D; __51uvsct__3GhPmY91UODrmhby=1; __51vcke__3GhPmY91UODrmhby=561c1a4c-54d7-5a86-8fad-f91159803c48; __51vuft__3GhPmY91UODrmhby=1714830576078; Hm_lvt_017cc2d7ebce90a3248c648430f05b19=1714830580; Hm_lpvt_017cc2d7ebce90a3248c648430f05b19=1714830580
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 May 2024 13:49:42 GMT
Content-Type: image/x-icon
Content-Length: 34494
Last-Modified: Thu, 12 Oct 2023 02:53:36 GMT
Connection: keep-alive
ETag: "65275fb0-86be"
Accept-Ranges: bytes