38.48.229.153 0 B IP 38.48.229.153:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET / HTTP/1.1
Host: dmartbd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 04 May 2024 06:08:10 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
Location: http://www.dmartbd.com/
38.48.229.153 561 B IP 38.48.229.153:0
File type HTML document, ISO-8859 text, with very long lines (970), with CRLF line terminators
Hash 18456f87ababe20ff3a8eed5f885c7a6
60fda8fa04a68465ce07ee29e24291242f192b71
aa784f540de206391b9345f6c70710c288b6d277805fedfe3b9c819098646140
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET / HTTP/1.1
Host: www.dmartbd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 May 2024 06:08:11 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.dmartbd.com/common.js
38.48.229.153200 OK 859 B URL GET HTTP/1.1 www.dmartbd.com/common.js
IP 38.48.229.153:80
File type JavaScript source, ASCII text, with very long lines (443), with CRLF line terminators
Hash 4b43ae8043efee02c6f7706d3b380453
fb4fafecbb66ac2fc20b1133c0f02808b863d6aa
2c563e3354f25f5385ad5cde9f7d6cc832d2fa261d7f95b989f0cdecb7ee49ff
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /common.js HTTP/1.1
Host: www.dmartbd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dmartbd.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 May 2024 06:08:11 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.dmartbd.com/tj.js
38.48.229.153200 OK 102 B IP 38.48.229.153:80
File type HTML document, ASCII text, with no line terminators
Hash 4d3310cfabf76c0dd91f0982e93782b4
f0206be4292544c08740025e138e7f38332e91a4
2c04d869f75e225655d62dd477455a9649909b21d476ed515cf164ffcbd62708
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /tj.js HTTP/1.1
Host: www.dmartbd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dmartbd.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 May 2024 06:08:12 GMT
Content-Type: application/x-javascript
Content-Length: 102
Connection: keep-alive
66.232.12.200/sj2efaxch.html
66.232.12.200200 OK 739 B URL GET HTTP/1.1 66.232.12.200/sj2efaxch.html
IP 66.232.12.200:80
ASN #59371 Dimension Network & Communication Limited
File type HTML document, Unicode text, UTF-8 text
Hash faa68dff8a021d1e26ae519dd8426ed5
9a5dc0badf635d2ef193fc9223217629b0a2a3d7
f9efae013101ebf7ec3acaf16ee00f3c5a652a121e362a3289a787b1644f9b64
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /sj2efaxch.html HTTP/1.1
Host: 66.232.12.200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dmartbd.com/
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 May 2024 06:08:09 GMT
Content-Type: text/html
Last-Modified: Fri, 03 May 2024 14:59:10 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6634fbbe-5ec"
Content-Encoding: gzip
js.users.51.la/21720573.js
47.246.44.202200 OK 4.9 kB URL GET HTTP/1.1 js.users.51.la/21720573.js
IP 47.246.44.202:443
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Certificate IssuerGlobalSign nv-sa
Subject*.users.51.la
Fingerprint8E:9F:59:98:28:F2:49:A9:E1:19:45:C2:49:ED:B2:F6:B8:E1:C6:39
ValidityFri, 14 Apr 2023 03:17:41 GMT - Wed, 15 May 2024 03:17:40 GMT
File type JavaScript source, ASCII text, with very long lines (4898), with no line terminators
Hash d8287685ea3418e2eca23436995ebd0b
b34c8fbc023906ae55441156ac7e3c997b341fc2
0cfec1e9210c9cf81ab38abed5488abd045aabc50d09fccf62b117154d6b8fd4
GET /21720573.js HTTP/1.1
Host: js.users.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.dmartbd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Date: Sat, 04 May 2024 06:08:09 GMT
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: *
Cache-Control: no-store
Access-Control-Allow-Credentials: true
Ali-Swift-Global-Savetime: 1714802889
Via: cache10.l2de2[330,330,200-0,M], cache8.l2de2[331,0], ens-cache11.se2[352,351,200-0,M], ens-cache2.se2[353,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Sat, 04 May 2024 06:08:09 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9617148028891376907e
www.dmartbd.com/favicon.ico
38.48.229.153200 OK 1.2 kB URL GET HTTP/1.1 www.dmartbd.com/favicon.ico
IP 38.48.229.153:80
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
Hash 7ef1f0a0093460fe46bb691578c07c95
2da3ffbbf4737ce4dae9488359de34034d1ebfbd
4c62eef22174220b8655590a77b27957f3518b4c3b7352d0b64263b80e728f2c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /favicon.ico HTTP/1.1
Host: www.dmartbd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dmartbd.com/
Cookie: __tins__21720573=%7B%22sid%22%3A%201714802889721%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201714804689721%7D; __51cke__=; __51laig__=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 May 2024 06:08:13 GMT
Content-Type: image/x-icon
Content-Length: 1150
Last-Modified: Fri, 01 Jul 2011 08:14:23 GMT
Connection: keep-alive
ETag: "4e0d81df-47e"
Expires: Thu, 09 May 2024 06:08:13 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
hm.baidu.com/hm.js?42309b95b3b1dda63dff5dd18795a816
111.45.11.83200 OK 11 kB URL GET HTTP/1.1 hm.baidu.com/hm.js?42309b95b3b1dda63dff5dd18795a816
IP 111.45.11.83:443
ASN #56040 China Mobile communications corporation
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type JavaScript source, ASCII text, with very long lines (615)
Hash a287bafedd926587a84ad26841d1527b
755a74ffa25be94fe5b109a2f14c4f79f2e95dbb
c010676f381f6bab0f9f07401bcf04ac8f917390fd4b647b88ad88f41548fda7
GET /hm.js?42309b95b3b1dda63dff5dd18795a816 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.dmartbd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11253
Content-Type: application/javascript
Date: Sat, 04 May 2024 06:08:10 GMT
Etag: e1575bac7d98d131ad9f5d961bf054f6
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=73B14FB96DC6D407; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
ia.51.la/go1?id=21720573&rt=1714802889721&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=%25E4%25BA%259A%25E6%25B4%25B2av%25E7%25BE%258E%25E5%259B%25BDav%25E4%25BA%25A7%25E4%25BA%259A%25E6%25B4%25B2av%25E5%259B%25BE%25E7%2589%2587_%25E5%2585%258D%25E8%25B4%25B9%25E6%2597%25A0%25E7%25A0%2581%25E4%25B8%2580%25E5%258C%25BA%25E4%25BA%258C%25E5%258C%25BA%25E4%25B8%2589%25E5%258C%25BA%25E8%259C%259C%25E6%25A1%2583%25E5%25A4%25A7_&ing=1&ekc=&sid=1714802889721&tt=%25E5%25AE%259C%25E6%2598%258C%25E7%2598%25B4%25E6%2580%25A5%25E7%2594%25B5%25E5%25AD%2590%25E6%2594%25AF%25E4%25BB%2598%25E8%25AE%25BE%25E5%25A4%2587%25E6%259C%2589%25E9%2599%2590%25E5%2585%25AC%25E5%258F%25B8&kw=%25E4%25BA%259A%25E6%25B4%25B2av%25E7%25BE%258E%25E5%259B%25BDav%25E4%25BA%25A7%25E4%25BA%259A%25E6%25B4%25B2av%25E5%259B%25BE%25E7%2589%2587_%25E5%2585%258D%25E8%25B4%25B9%25E6%2597%25A0%25E7%25A0%2581%25E4%25B8%2580%25E5%258C%25BA%25E4%25BA%258C%25E5%258C%25BA%25E4%25B8%2589%25E5%258C%25BA%25E8%259C%259C%25E6%25A1%2583%25E5%25A4%25A7_%25E4%25B9%2585%25E4%25B9%2585%25E5%258F%25AA%25E7%25B2%25BE%25E5%2593%258199%25E5%2593%2581%25E5%2585%258D%25E8%25B4%25B9%25E4%25B9%258523%252C%25E4%25BA%259A%25E6%25B4%25B2av%25E7%25BE%258E%25E5%259B%25BDav%25E4%25BA%25A7%25E4%25BA%259A%25E6%25B4%25B2av%25E5%259B%25BE%25E7%2589%2587_%25E5%2585%258D%25E8%25B4%25B9%25E6%2597%25A0%25E7%25A0%2581%25E4%25B8%2580%25E5%258C%25BA%25E4%25BA%258C%25E5%258C%25BA%25E4%25B8%2589%25E5%258C%25BA%25E8%259C%259C%25E6%25A1%2583%25E5%25A4%25A7_%25E4%25B9%2585%25E4%25B9%2585%25E5%258F%25AA%25E7%25B2%25BE%25E5%2593%258199%25E5%2593%2581%25E5%2585%258D%25E8%25B4%25B9%25E4%25B9%258523%252C%25E4%25BA%259A%25E6%25B4%25B2av%25E7%25BE%258E%25E5%259B%25BDav%25E4%25BA%25A7%25E4%25BA%259A%25E6%25B4%25B2a&cu=http%253A%252F%252Fwww.dmartbd.com%252F&pu=
203.107.86.226200 0 B URL GET HTTP/1.1 ia.51.la/go1?id=21720573&rt=1714802889721&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=%25E4%25BA%259A%25E6%25B4%25B2av%25E7%25BE%258E%25E5%259B%25BDav%25E4%25BA%25A7%25E4%25BA%259A%25E6%25B4%25B2av%25E5%259B%25BE%25E7%2589%2587_%25E5%2585%258D%25E8%25B4%25B9%25E6%2597%25A0%25E7%25A0%2581%25E4%25B8%2580%25E5%258C%25BA%25E4%25BA%258C%25E5%258C%25BA%25E4%25B8%2589%25E5%258C%25BA%25E8%259C%259C%25E6%25A1%2583%25E5%25A4%25A7_&ing=1&ekc=&sid=1714802889721&tt=%25E5%25AE%259C%25E6%2598%258C%25E7%2598%25B4%25E6%2580%25A5%25E7%2594%25B5%25E5%25AD%2590%25E6%2594%25AF%25E4%25BB%2598%25E8%25AE%25BE%25E5%25A4%2587%25E6%259C%2589%25E9%2599%2590%25E5%2585%25AC%25E5%258F%25B8&kw=%25E4%25BA%259A%25E6%25B4%25B2av%25E7%25BE%258E%25E5%259B%25BDav%25E4%25BA%25A7%25E4%25BA%259A%25E6%25B4%25B2av%25E5%259B%25BE%25E7%2589%2587_%25E5%2585%258D%25E8%25B4%25B9%25E6%2597%25A0%25E7%25A0%2581%25E4%25B8%2580%25E5%258C%25BA%25E4%25BA%258C%25E5%258C%25BA%25E4%25B8%2589%25E5%258C%25BA%25E8%259C%259C%25E6%25A1%2583%25E5%25A4%25A7_%25E4%25B9%2585%25E4%25B9%2585%25E5%258F%25AA%25E7%25B2%25BE%25E5%2593%258199%25E5%2593%2581%25E5%2585%258D%25E8%25B4%25B9%25E4%25B9%258523%252C%25E4%25BA%259A%25E6%25B4%25B2av%25E7%25BE%258E%25E5%259B%25BDav%25E4%25BA%25A7%25E4%25BA%259A%25E6%25B4%25B2av%25E5%259B%25BE%25E7%2589%2587_%25E5%2585%258D%25E8%25B4%25B9%25E6%2597%25A0%25E7%25A0%2581%25E4%25B8%2580%25E5%258C%25BA%25E4%25BA%258C%25E5%258C%25BA%25E4%25B8%2589%25E5%258C%25BA%25E8%259C%259C%25E6%25A1%2583%25E5%25A4%25A7_%25E4%25B9%2585%25E4%25B9%2585%25E5%258F%25AA%25E7%25B2%25BE%25E5%2593%258199%25E5%2593%2581%25E5%2585%258D%25E8%25B4%25B9%25E4%25B9%258523%252C%25E4%25BA%259A%25E6%25B4%25B2av%25E7%25BE%258E%25E5%259B%25BDav%25E4%25BA%25A7%25E4%25BA%259A%25E6%25B4%25B2a&cu=http%253A%252F%252Fwww.dmartbd.com%252F&pu=
IP 203.107.86.226:80
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go1?id=21720573&rt=1714802889721&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=%25E4%25BA%259A%25E6%25B4%25B2av%25E7%25BE%258E%25E5%259B%25BDav%25E4%25BA%25A7%25E4%25BA%259A%25E6%25B4%25B2av%25E5%259B%25BE%25E7%2589%2587_%25E5%2585%258D%25E8%25B4%25B9%25E6%2597%25A0%25E7%25A0%2581%25E4%25B8%2580%25E5%258C%25BA%25E4%25BA%258C%25E5%258C%25BA%25E4%25B8%2589%25E5%258C%25BA%25E8%259C%259C%25E6%25A1%2583%25E5%25A4%25A7_&ing=1&ekc=&sid=1714802889721&tt=%25E5%25AE%259C%25E6%2598%258C%25E7%2598%25B4%25E6%2580%25A5%25E7%2594%25B5%25E5%25AD%2590%25E6%2594%25AF%25E4%25BB%2598%25E8%25AE%25BE%25E5%25A4%2587%25E6%259C%2589%25E9%2599%2590%25E5%2585%25AC%25E5%258F%25B8&kw=%25E4%25BA%259A%25E6%25B4%25B2av%25E7%25BE%258E%25E5%259B%25BDav%25E4%25BA%25A7%25E4%25BA%259A%25E6%25B4%25B2av%25E5%259B%25BE%25E7%2589%2587_%25E5%2585%258D%25E8%25B4%25B9%25E6%2597%25A0%25E7%25A0%2581%25E4%25B8%2580%25E5%258C%25BA%25E4%25BA%258C%25E5%258C%25BA%25E4%25B8%2589%25E5%258C%25BA%25E8%259C%259C%25E6%25A1%2583%25E5%25A4%25A7_%25E4%25B9%2585%25E4%25B9%2585%25E5%258F%25AA%25E7%25B2%25BE%25E5%2593%258199%25E5%2593%2581%25E5%2585%258D%25E8%25B4%25B9%25E4%25B9%258523%252C%25E4%25BA%259A%25E6%25B4%25B2av%25E7%25BE%258E%25E5%259B%25BDav%25E4%25BA%25A7%25E4%25BA%259A%25E6%25B4%25B2av%25E5%259B%25BE%25E7%2589%2587_%25E5%2585%258D%25E8%25B4%25B9%25E6%2597%25A0%25E7%25A0%2581%25E4%25B8%2580%25E5%258C%25BA%25E4%25BA%258C%25E5%258C%25BA%25E4%25B8%2589%25E5%258C%25BA%25E8%259C%259C%25E6%25A1%2583%25E5%25A4%25A7_%25E4%25B9%2585%25E4%25B9%2585%25E5%258F%25AA%25E7%25B2%25BE%25E5%2593%258199%25E5%2593%2581%25E5%2585%258D%25E8%25B4%25B9%25E4%25B9%258523%252C%25E4%25BA%259A%25E6%25B4%25B2av%25E7%25BE%258E%25E5%259B%25BDav%25E4%25BA%25A7%25E4%25BA%259A%25E6%25B4%25B2a&cu=http%253A%252F%252Fwww.dmartbd.com%252F&pu= HTTP/1.1
Host: ia.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dmartbd.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Sat, 04 May 2024 06:08:10 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: aliyungf_tc=6df2eeba442038a4bf55f07d11dac9542b7f0ba4b41f054f1208117097c065b8; Path=/; HttpOnly
acw_tc=ac11000117148028902745443ec5d6c5ab4f0f548262826dc23ddd618709df;path=/;HttpOnly;Max-Age=1800
zerossl.ocsp.sectigo.com/
172.64.149.23 317 B URL zerossl.ocsp.sectigo.com/
IP 172.64.149.23:0
Hash 9ec0d2a98cab1a5b68093e9905512c21
cad93ac872b05035de478e25e57d93b52a3dc33c
a54c500e40af79a7d9f757ac1eb319bad4f65371fea1ac6cbf2cef7f2e1965fe
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 06:08:10 GMT
Content-Type: application/ocsp-response
Content-Length: 317
Connection: keep-alive
Last-Modified: Sat, 04 May 2024 04:06:23 GMT
Expires: Sat, 11 May 2024 04:06:22 GMT
Etag: "cad93ac872b05035de478e25e57d93b52a3dc33c"
Cache-Control: max-age=596891,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 87e65091fbde0b61-OSL
hm.baidu.com/hm.js?16a77922e641cead7ddb890b8b81a0ef
14.215.183.79200 OK 11 kB URL GET HTTP/1.1 hm.baidu.com/hm.js?16a77922e641cead7ddb890b8b81a0ef
IP 14.215.183.79:443
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type JavaScript source, ASCII text, with very long lines (615)
Hash abb442e88d6447d605c8bea151533e36
e239a59b6325561258a89510077627a279b5191e
03539c3f24dcf4cad9716d099a7ebdae15cfce24d776ff125a5f5b9556ebc4cb
GET /hm.js?16a77922e641cead7ddb890b8b81a0ef HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.dmartbd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11253
Content-Type: application/javascript
Date: Sat, 04 May 2024 06:08:10 GMT
Etag: 2bdfe5aebe7ee2a11bdc36b6a4939cd7
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=407D38C73A698014; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1655272553&si=42309b95b3b1dda63dff5dd18795a816&v=1.3.0&lv=1&sn=14080&r=0&ww=1280&u=http%3A%2F%2Fwww.dmartbd.com%2F&tt=%E5%AE%9C%E6%98%8C%E7%98%B4%E6%80%A5%E7%94%B5%E5%AD%90%E6%94%AF%E4%BB%98%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
111.45.11.83200 OK 43 B URL GET HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1655272553&si=42309b95b3b1dda63dff5dd18795a816&v=1.3.0&lv=1&sn=14080&r=0&ww=1280&u=http%3A%2F%2Fwww.dmartbd.com%2F&tt=%E5%AE%9C%E6%98%8C%E7%98%B4%E6%80%A5%E7%94%B5%E5%AD%90%E6%94%AF%E4%BB%98%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
IP 111.45.11.83:443
ASN #56040 China Mobile communications corporation
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1655272553&si=42309b95b3b1dda63dff5dd18795a816&v=1.3.0&lv=1&sn=14080&r=0&ww=1280&u=http%3A%2F%2Fwww.dmartbd.com%2F&tt=%E5%AE%9C%E6%98%8C%E7%98%B4%E6%80%A5%E7%94%B5%E5%AD%90%E6%94%AF%E4%BB%98%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.dmartbd.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 04 May 2024 06:08:10 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=20B5A38EBFEF9BC2; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
hm.baidu.com/hm.js?1f380f4623f66f2eb4df6b1b98c3d159
14.215.183.79200 OK 11 kB URL GET HTTP/1.1 hm.baidu.com/hm.js?1f380f4623f66f2eb4df6b1b98c3d159
IP 14.215.183.79:443
Requested by http://66.232.12.200/sj2efaxch.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type JavaScript source, ASCII text, with very long lines (621)
Hash 26c4b41bf6bb365794596ad7f2447b98
7b5cccb43ee972ff31d37024f6dc4ed0f09454d6
3b30301fbc50f5eafa30ec06cc1b410d010e9a7d4ae4e131579724a8221e37e7
GET /hm.js?1f380f4623f66f2eb4df6b1b98c3d159 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://66.232.12.200/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11259
Content-Type: application/javascript
Date: Sat, 04 May 2024 06:08:11 GMT
Etag: 09a3a715685f464c873885499ce7cba8
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=6CF585FEB32563EA; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
zerossl.ocsp.sectigo.com/
172.64.149.23 317 B URL zerossl.ocsp.sectigo.com/
IP 172.64.149.23:0
Hash 6ef6a9536bf6b15e6890182c82a90e19
50e57838cd5cff757afe6d29b7885651bb8915e4
7924115e925699f69ed8e73d11d4310be6f680846a88dbf3aa6b12f72140cfb7
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 06:08:11 GMT
Content-Type: application/ocsp-response
Content-Length: 317
Connection: keep-alive
Last-Modified: Fri, 03 May 2024 10:29:28 GMT
Expires: Fri, 10 May 2024 10:29:27 GMT
Etag: "50e57838cd5cff757afe6d29b7885651bb8915e4"
Cache-Control: max-age=533475,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 87e650985eec0b61-OSL
hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=917847981&si=1f380f4623f66f2eb4df6b1b98c3d159&su=http%3A%2F%2Fwww.dmartbd.com%2F&v=1.3.0&lv=1&sn=14081&r=0&ww=1280&u=http%3A%2F%2F66.232.12.200%2Fsj2efaxch.html&tt=xxsp14.com
14.215.183.79200 OK 43 B URL GET HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=917847981&si=1f380f4623f66f2eb4df6b1b98c3d159&su=http%3A%2F%2Fwww.dmartbd.com%2F&v=1.3.0&lv=1&sn=14081&r=0&ww=1280&u=http%3A%2F%2F66.232.12.200%2Fsj2efaxch.html&tt=xxsp14.com
IP 14.215.183.79:443
Requested by http://66.232.12.200/sj2efaxch.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=917847981&si=1f380f4623f66f2eb4df6b1b98c3d159&su=http%3A%2F%2Fwww.dmartbd.com%2F&v=1.3.0&lv=1&sn=14081&r=0&ww=1280&u=http%3A%2F%2F66.232.12.200%2Fsj2efaxch.html&tt=xxsp14.com HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://66.232.12.200/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 04 May 2024 06:08:11 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=E9C3A704221124F8; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
hm.baidu.com/hm.js?05cce4bd149e2a1ab85aec5dd5a29822
111.45.11.83200 OK 11 kB URL GET HTTP/1.1 hm.baidu.com/hm.js?05cce4bd149e2a1ab85aec5dd5a29822
IP 111.45.11.83:443
ASN #56040 China Mobile communications corporation
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type JavaScript source, ASCII text, with very long lines (621)
Hash b2cfa6d9a7883c748163306e9ac1a6dd
4db9a1dd93cfa5e14c3443f228b419811f1c1fd9
e7c9a2b1046e813a2903fac1fd35eda5e30293fc9764f7c8b6c0aff82b67be21
GET /hm.js?05cce4bd149e2a1ab85aec5dd5a29822 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11259
Content-Type: application/javascript
Date: Sat, 04 May 2024 06:08:11 GMT
Etag: 46d3d1bf26c36018a3618d6ee3e1dfa5
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=1D5B20CBC7660373; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.js?bcd1b2adea17b24830ff683f25d79008
14.215.183.79200 OK 11 kB URL GET HTTP/1.1 hm.baidu.com/hm.js?bcd1b2adea17b24830ff683f25d79008
IP 14.215.183.79:443
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type JavaScript source, ASCII text, with very long lines (621)
Hash c704799638ce5b2a258f5a4bb2a77764
75000be9eacd9e38e0cd2b20e7401397a7f7c23c
96f572bf51195f11b1caa825a94b6138ab7273e6a8dfa6baa33857925786cb76
GET /hm.js?bcd1b2adea17b24830ff683f25d79008 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11259
Content-Type: application/javascript
Date: Sat, 04 May 2024 06:08:11 GMT
Etag: 40b21f85ea6442d33a3d6a11c3ae937e
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=B16046B0C1CD8592; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.js?0202d91b2bd5ec730a60979c78185228
14.215.183.79200 OK 11 kB URL GET HTTP/1.1 hm.baidu.com/hm.js?0202d91b2bd5ec730a60979c78185228
IP 14.215.183.79:443
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type JavaScript source, ASCII text, with very long lines (621)
Hash ca0c14983c3e3df109ba398dd79402c1
886b97ff807cd015ce0765256dd93df8a276a166
c3a73c3448cf0d6eeb7a9e81824c84e8a8540514d506409dae6b81a94882ce3e
GET /hm.js?0202d91b2bd5ec730a60979c78185228 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11259
Content-Type: application/javascript
Date: Sat, 04 May 2024 06:08:11 GMT
Etag: 2d18b1ee252071a7b37fb4e2eda0dca4
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=35B65442CF92B2F6; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.js?9143a3aa7a95fed24d0ca5e46794f9d1
14.215.183.79200 OK 11 kB URL GET HTTP/1.1 hm.baidu.com/hm.js?9143a3aa7a95fed24d0ca5e46794f9d1
IP 14.215.183.79:443
Requested by http://66.232.12.200/sj2efaxch.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type JavaScript source, ASCII text, with very long lines (621)
Hash 78a03639f2a180194179c39677289be5
b307604be9022322bc630f07456a2bd7f0a2dcef
2dc95ded5a8859ab5101d5775822ebdf6a6160b50f0683c42a4c46710df0119a
GET /hm.js?9143a3aa7a95fed24d0ca5e46794f9d1 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://66.232.12.200/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11259
Content-Type: application/javascript
Date: Sat, 04 May 2024 06:08:11 GMT
Etag: d2787df7b936c341594678e8df950030
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=8D18EA617CE08F2D; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.js?78ffe9e9a178c3204c737f03fff3c3f1
14.215.183.79200 OK 11 kB URL GET HTTP/1.1 hm.baidu.com/hm.js?78ffe9e9a178c3204c737f03fff3c3f1
IP 14.215.183.79:443
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type JavaScript source, ASCII text, with very long lines (621)
Hash e20748dcfbaa4c5a458ae5d2962dff10
9fa6e98cca55b7da8c66a42b8db2b80ae38ac8ab
e8204ad6db7354285a407e7df51fc0d46905e34a93204535e88fce7d08d43010
GET /hm.js?78ffe9e9a178c3204c737f03fff3c3f1 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11259
Content-Type: application/javascript
Date: Sat, 04 May 2024 06:08:12 GMT
Etag: 91b4b6ab21c684af05b8aefa60822cce
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=674E7667D3C7FF45; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.js?86432f1310707e29f43dc39fc9ca6697
111.45.11.83200 OK 11 kB URL GET HTTP/1.1 hm.baidu.com/hm.js?86432f1310707e29f43dc39fc9ca6697
IP 111.45.11.83:443
ASN #56040 China Mobile communications corporation
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type JavaScript source, ASCII text, with very long lines (621)
Hash 0a67b91411787ddb9caeecd3bdd6361d
b30729c8c229f22ac2979952faa6ca7dc067acc3
c8c4a0dc0179f7623413772525169e966bc15da45d539e88fd87e3092d22c500
GET /hm.js?86432f1310707e29f43dc39fc9ca6697 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11259
Content-Type: application/javascript
Date: Sat, 04 May 2024 06:08:12 GMT
Etag: b635448725371bbfff19f227a00b8b4a
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=D559F184EC3A7BA7; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
c8932888tp.com/tp/bkt80.gif
198.2.203.139200 OK 141 kB URL GET HTTP/1.1 c8932888tp.com/tp/bkt80.gif
IP 198.2.203.139:443
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerLet's Encrypt
Subjectc8932888tp.com
Fingerprint13:15:2A:1A:EF:2D:B0:8A:82:72:C2:FE:64:0E:0D:F1:13:86:14:96
ValidityWed, 21 Feb 2024 15:37:04 GMT - Tue, 21 May 2024 15:37:03 GMT
File type GIF image data, version 89a, 960 x 80
Size 141 kB (141298 bytes)
Hash ec5e73665be4d9d945250d22fa3d57e6
ae1112bba2573dd801288a3a9d3c696b5a737654
accbd022f46fb570b8bed3a29c5c51aa0291fe08b2aeac0b78a25cf4ff61ec11
GET /tp/bkt80.gif HTTP/1.1
Host: c8932888tp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty
Date: Sat, 04 May 2024 06:08:11 GMT
Content-Type: image/gif
Content-Length: 141298
Connection: keep-alive
Last-Modified: Fri, 12 Apr 2024 07:06:00 GMT
ETag: "6618dd58-227f2"
Expires: Sat, 01 Jun 2024 06:08:36 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000
Via: mycdn
CDN-Cache: HIT
Accept-Ranges: bytes
tssj1cylfhmrmie.xyz/lib/js/renderAds.js
38.145.216.165200 OK 1.3 kB URL GET HTTP/2 tssj1cylfhmrmie.xyz/lib/js/renderAds.js
IP 38.145.216.165:443
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerZeroSSL
Subjecttssj1cylfhmrmie.xyz
Fingerprint36:CE:71:D5:CD:C7:A7:8F:19:D3:15:A2:67:B2:05:3D:19:C2:EF:17
ValidityMon, 29 Apr 2024 00:00:00 GMT - Sun, 28 Jul 2024 23:59:59 GMT
File type gzip compressed data, from Unix
Hash f7740d93b814c4b4d4b785cccd321520
28cc3bef07b0d29cd74febcec76060cc7830fd29
b96d607c8637bd4aa18ae135659f09da194e1c2387ce542d0a2e2b604e4a321f
GET /lib/js/renderAds.js HTTP/1.1
Host: tssj1cylfhmrmie.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/main.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:08:11 GMT
content-type: application/javascript
last-modified: Fri, 03 May 2024 16:38:20 GMT
vary: Accept-Encoding
etag: W/"663512fc-bb2"
content-encoding: gzip
X-Firefox-Spdy: h2
hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1926266784&si=9143a3aa7a95fed24d0ca5e46794f9d1&su=http%3A%2F%2Fwww.dmartbd.com%2F&v=1.3.0&lv=1&sn=14082&r=0&ww=1280&u=http%3A%2F%2F66.232.12.200%2Fsj2efaxch.html&tt=xxsp14.com
14.215.183.79200 OK 43 B URL GET HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1926266784&si=9143a3aa7a95fed24d0ca5e46794f9d1&su=http%3A%2F%2Fwww.dmartbd.com%2F&v=1.3.0&lv=1&sn=14082&r=0&ww=1280&u=http%3A%2F%2F66.232.12.200%2Fsj2efaxch.html&tt=xxsp14.com
IP 14.215.183.79:443
Requested by http://66.232.12.200/sj2efaxch.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1926266784&si=9143a3aa7a95fed24d0ca5e46794f9d1&su=http%3A%2F%2Fwww.dmartbd.com%2F&v=1.3.0&lv=1&sn=14082&r=0&ww=1280&u=http%3A%2F%2F66.232.12.200%2Fsj2efaxch.html&tt=xxsp14.com HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://66.232.12.200/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 04 May 2024 06:08:12 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=2D70EAEC91D0D353; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
img88.tuky889900.com/xm/xm80.gif
104.160.184.92200 OK 315 kB URL GET HTTP/2 img88.tuky889900.com/xm/xm80.gif
IP 104.160.184.92:443
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerLet's Encrypt
Subjectimg88.tuky889900.com
FingerprintDD:E4:80:67:4C:06:DD:DF:0B:B4:F6:D2:EC:82:04:A4:0E:C0:B3:4A
ValiditySat, 13 Apr 2024 19:14:47 GMT - Fri, 12 Jul 2024 19:14:46 GMT
File type GIF image data, version 89a, 960 x 80
Size 315 kB (314679 bytes)
Hash ba2a5375d0501709b34a5b4ca8e8a1ab
e7dab802eb99c02699b4dd12953162376a4f4aad
431c84b23775934db418accb62187cbcd20d1f62c588e797b365a152b334bd66
GET /xm/xm80.gif HTTP/1.1
Host: img88.tuky889900.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 06:08:11 GMT
content-type: image/gif
content-length: 314679
last-modified: Sun, 28 Apr 2024 14:20:11 GMT
etag: "662e5b1b-4cd37"
expires: Sun, 02 Jun 2024 15:52:39 GMT
cache-control: max-age=2592000
server: cdn
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
tssj1cylfhmrmie.xyz/static/css/style.css
38.145.216.165200 OK 12 kB URL GET HTTP/2 tssj1cylfhmrmie.xyz/static/css/style.css
IP 38.145.216.165:443
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerZeroSSL
Subjecttssj1cylfhmrmie.xyz
Fingerprint36:CE:71:D5:CD:C7:A7:8F:19:D3:15:A2:67:B2:05:3D:19:C2:EF:17
ValidityMon, 29 Apr 2024 00:00:00 GMT - Sun, 28 Jul 2024 23:59:59 GMT
File type JavaScript source, Unicode text, UTF-8 (with BOM) text, with very long lines (621)
Hash 2dbdabc39154d4df713cc6e1d7f91eaa
de8783b51b37225bcdd5fd4d14b4fa738236ab34
6c062ae27bcbf26efa955da5c97b74bae2bf21aa7584fe1db1e64e1d09531453
GET /static/css/style.css HTTP/1.1
Host: tssj1cylfhmrmie.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/main.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:08:11 GMT
content-type: text/css
last-modified: Fri, 03 May 2024 16:38:20 GMT
vary: Accept-Encoding
etag: W/"663512fc-67f"
content-encoding: gzip
X-Firefox-Spdy: h2
hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1509141056&si=86432f1310707e29f43dc39fc9ca6697&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14082&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91
111.45.11.83200 OK 43 B URL GET HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1509141056&si=86432f1310707e29f43dc39fc9ca6697&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14082&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91
IP 111.45.11.83:443
ASN #56040 China Mobile communications corporation
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1509141056&si=86432f1310707e29f43dc39fc9ca6697&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14082&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 04 May 2024 06:08:12 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=10F2CFCEC44CEC3C; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=2114965144&si=78ffe9e9a178c3204c737f03fff3c3f1&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14082&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91
14.215.183.79200 OK 43 B URL GET HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=2114965144&si=78ffe9e9a178c3204c737f03fff3c3f1&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14082&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91
IP 14.215.183.79:443
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=2114965144&si=78ffe9e9a178c3204c737f03fff3c3f1&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14082&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 04 May 2024 06:08:12 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=FF6CEE85CA55B6DF; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
imagecloub.com:1443/4890b0d9d4d6c8c9f267aa56eb27fff2.gif
5.180.146.180 310 kB URL GET imagecloub.com:1443/4890b0d9d4d6c8c9f267aa56eb27fff2.gif
IP 5.180.146.180:0
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerZeroSSL
Subjectimagecloub.com
FingerprintA1:E1:02:F5:B7:9C:25:08:17:54:06:BB:1B:5E:96:B7:E1:E8:A2:EA
ValidityFri, 23 Feb 2024 00:00:00 GMT - Thu, 23 May 2024 23:59:59 GMT
File type GIF image data, version 89a, 960 x 80
Size 310 kB (309685 bytes)
Hash 161a51aa67ddb4adb357b4e123abff73
5cdd40238374188944dbb2313b04ad8e09b26984
30a5029b5f05da6a6783897c04e77313e68dc782a0c1d23ce363fb6424317a91
GET /4890b0d9d4d6c8c9f267aa56eb27fff2.gif HTTP/1.1
Host: imagecloub.com:1443
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Sat, 04 May 2024 06:08:11 GMT
Content-Type: image/gif
Last-Modified: Thu, 25 Apr 2024 09:22:02 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"662a20ba-4c4b40"
Strict-Transport-Security: max-age=86400; includeSubdomains; always
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=2070841728&si=16a77922e641cead7ddb890b8b81a0ef&v=1.3.0&lv=1&sn=14081&r=0&ww=1280&u=http%3A%2F%2Fwww.dmartbd.com%2F&tt=%E5%AE%9C%E6%98%8C%E7%98%B4%E6%80%A5%E7%94%B5%E5%AD%90%E6%94%AF%E4%BB%98%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
14.215.183.79200 OK 43 B URL GET HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=2070841728&si=16a77922e641cead7ddb890b8b81a0ef&v=1.3.0&lv=1&sn=14081&r=0&ww=1280&u=http%3A%2F%2Fwww.dmartbd.com%2F&tt=%E5%AE%9C%E6%98%8C%E7%98%B4%E6%80%A5%E7%94%B5%E5%AD%90%E6%94%AF%E4%BB%98%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
IP 14.215.183.79:443
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=2070841728&si=16a77922e641cead7ddb890b8b81a0ef&v=1.3.0&lv=1&sn=14081&r=0&ww=1280&u=http%3A%2F%2Fwww.dmartbd.com%2F&tt=%E5%AE%9C%E6%98%8C%E7%98%B4%E6%80%A5%E7%94%B5%E5%AD%90%E6%94%AF%E4%BB%98%E8%AE%BE%E5%A4%87%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.dmartbd.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 04 May 2024 06:08:12 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=45A60C62D968678A; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
tssj1cylfhmrmie.xyz/static/css/main.css
38.145.216.165200 OK 14 kB URL GET HTTP/2 tssj1cylfhmrmie.xyz/static/css/main.css
IP 38.145.216.165:443
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerZeroSSL
Subjecttssj1cylfhmrmie.xyz
Fingerprint36:CE:71:D5:CD:C7:A7:8F:19:D3:15:A2:67:B2:05:3D:19:C2:EF:17
ValidityMon, 29 Apr 2024 00:00:00 GMT - Sun, 28 Jul 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (622)
Hash 4b34ca6f27033574158d329b85697dcf
df4f5fbaf1ec56f74ded204617d6f857a269a7a2
370b0df7352a8cb8e57a0775fc1a40f082de0274461a55e69b3e5fda725d6df7
GET /static/css/main.css HTTP/1.1
Host: tssj1cylfhmrmie.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/main.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:08:11 GMT
content-type: text/css
last-modified: Fri, 03 May 2024 16:38:20 GMT
vary: Accept-Encoding
etag: W/"663512fc-33c9"
content-encoding: gzip
X-Firefox-Spdy: h2
uuuutp.com/960x80.gif
192.74.252.238200 OK 339 kB IP 192.74.252.238:443
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerLet's Encrypt
Subjectuuuutp.com
Fingerprint13:2B:E7:E4:05:42:E9:0D:83:1E:9A:0A:F7:B0:3D:83:D5:51:58:FB
ValiditySat, 27 Apr 2024 09:04:39 GMT - Fri, 26 Jul 2024 09:04:38 GMT
File type GIF image data, version 89a, 960 x 80
Size 339 kB (338589 bytes)
Hash 5a8a558c017251d4d1941e196b6f482c
cce6ab785555cfb8df9ca05350bac5657e25057b
ef7cf54673247704b653debced362b3c9f9bbf8326eb7c0c546139fd8fd8cf3e
GET /960x80.gif HTTP/1.1
Host: uuuutp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty
Date: Sat, 04 May 2024 06:08:12 GMT
Content-Type: image/gif
Content-Length: 338589
Connection: keep-alive
Last-Modified: Sat, 27 Apr 2024 10:09:40 GMT
ETag: "662ccee4-52a9d"
Expires: Tue, 28 May 2024 08:35:59 GMT
Cache-Control: max-age=2592000
Via: mycdn
CDN-Cache: HIT
Accept-Ranges: bytes
tssj1cylfhmrmie.xyz/lib/css/ads.css
38.145.216.165200 OK 12 kB URL GET HTTP/2 tssj1cylfhmrmie.xyz/lib/css/ads.css
IP 38.145.216.165:443
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerZeroSSL
Subjecttssj1cylfhmrmie.xyz
Fingerprint36:CE:71:D5:CD:C7:A7:8F:19:D3:15:A2:67:B2:05:3D:19:C2:EF:17
ValidityMon, 29 Apr 2024 00:00:00 GMT - Sun, 28 Jul 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (622)
Hash 87e760b845179763d1c7a566a75305fc
8cb527e812930580190fecb42fcf6eee9dd2d60c
1a7f556ce59a27e4d32a704f568b835ff5edcdb6ffc70ebf87ecdaec3ff243f3
GET /lib/css/ads.css HTTP/1.1
Host: tssj1cylfhmrmie.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/main.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:08:11 GMT
content-type: text/css
last-modified: Fri, 03 May 2024 16:38:20 GMT
vary: Accept-Encoding
etag: W/"663512fc-8a5"
content-encoding: gzip
X-Firefox-Spdy: h2
hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1593592256&si=f4c9c59dc07fc895726fe660d2334daa&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14083&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91
111.45.11.83200 OK 43 B URL GET HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1593592256&si=f4c9c59dc07fc895726fe660d2334daa&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14083&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91
IP 111.45.11.83:443
ASN #56040 China Mobile communications corporation
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1593592256&si=f4c9c59dc07fc895726fe660d2334daa&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14083&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 04 May 2024 06:08:12 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=5ECD1BE6C25E2928; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
hm.baidu.com/hm.js?24b4fdc36c3f09cb986193b774376b88
14.215.183.79200 OK 11 kB URL GET HTTP/1.1 hm.baidu.com/hm.js?24b4fdc36c3f09cb986193b774376b88
IP 14.215.183.79:443
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type JavaScript source, ASCII text, with very long lines (621)
Hash c804f3d1b5a3f5a4374ac6b7bbb3b6ef
603519ca6452617ad00a177c830b13b1f3d27ffc
50175c834a940627ba9bfbc2a0938c33dc253684eb75e92674bb2e2559f83530
GET /hm.js?24b4fdc36c3f09cb986193b774376b88 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11259
Content-Type: application/javascript
Date: Sat, 04 May 2024 06:08:12 GMT
Etag: 09e54ee20e7091748b4441956d2e45c3
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=A5D8D4F43DCBAFD4; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
tssj1cylfhmrmie.xyz/lib/js/swiper.min.css
38.145.216.165200 OK 15 kB URL GET HTTP/2 tssj1cylfhmrmie.xyz/lib/js/swiper.min.css
IP 38.145.216.165:443
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerZeroSSL
Subjecttssj1cylfhmrmie.xyz
Fingerprint36:CE:71:D5:CD:C7:A7:8F:19:D3:15:A2:67:B2:05:3D:19:C2:EF:17
ValidityMon, 29 Apr 2024 00:00:00 GMT - Sun, 28 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (14046)
Hash 194c45d28edc665d99d4697080394411
a47ee82cdf4e54fe5a1a24b034673a73610196bf
6bc093bb03b678ab9e46765abbaca0dc06ad6cd8fa4901a942e22083827bdb3d
GET /lib/js/swiper.min.css HTTP/1.1
Host: tssj1cylfhmrmie.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/main.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:08:11 GMT
content-type: text/css
last-modified: Fri, 03 May 2024 16:38:20 GMT
vary: Accept-Encoding
etag: W/"663512fc-356d"
content-encoding: gzip
X-Firefox-Spdy: h2
tssj1cylfhmrmie.xyz/lib/js/swiper.min.js
38.145.216.165200 OK 47 kB URL GET HTTP/2 tssj1cylfhmrmie.xyz/lib/js/swiper.min.js
IP 38.145.216.165:443
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerZeroSSL
Subjecttssj1cylfhmrmie.xyz
Fingerprint36:CE:71:D5:CD:C7:A7:8F:19:D3:15:A2:67:B2:05:3D:19:C2:EF:17
ValidityMon, 29 Apr 2024 00:00:00 GMT - Sun, 28 Jul 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65284)
Hash 1a7c654a57e46c99aea87074fac80503
aa6c94b9a40111d7f9e95cb77203b71ec9a878e7
90859666b2561044a961e96da280660e7a8aeda9e9fe8e1650cdc4a63f6da80d
GET /lib/js/swiper.min.js HTTP/1.1
Host: tssj1cylfhmrmie.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/main.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:08:11 GMT
content-type: application/javascript
last-modified: Fri, 03 May 2024 16:38:20 GMT
vary: Accept-Encoding
etag: W/"663512fc-22681"
content-encoding: gzip
X-Firefox-Spdy: h2
tssj1cylfhmrmie.xyz/lib/js/clipboard.min.js
38.145.216.165200 OK 14 kB URL GET HTTP/2 tssj1cylfhmrmie.xyz/lib/js/clipboard.min.js
IP 38.145.216.165:443
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerZeroSSL
Subjecttssj1cylfhmrmie.xyz
Fingerprint36:CE:71:D5:CD:C7:A7:8F:19:D3:15:A2:67:B2:05:3D:19:C2:EF:17
ValidityMon, 29 Apr 2024 00:00:00 GMT - Sun, 28 Jul 2024 23:59:59 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (11174)
Hash d1676392f5ae250a7d65b85d50ab1679
9816c7ba696ea670fb6ee81b68f4f0c3b522da8d
03871dd2ab9d038bc627e7f6179cdfaadd7b60e8acce5b3f5e072b7b990c9235
GET /lib/js/clipboard.min.js HTTP/1.1
Host: tssj1cylfhmrmie.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/main.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:08:11 GMT
content-type: application/javascript
last-modified: Fri, 03 May 2024 16:38:20 GMT
vary: Accept-Encoding
etag: W/"663512fc-29a5"
content-encoding: gzip
X-Firefox-Spdy: h2
hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=510254798&si=186be70afaae1752553f537fcf57c48b&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14083&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91
14.215.183.79200 OK 43 B URL GET HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=510254798&si=186be70afaae1752553f537fcf57c48b&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14083&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91
IP 14.215.183.79:443
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=510254798&si=186be70afaae1752553f537fcf57c48b&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14083&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 04 May 2024 06:08:13 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=7AB66DC456830BB9; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
tssj1cylfhmrmie.xyz/lib/js/myjs.js
38.145.216.165200 OK 14 kB URL GET HTTP/2 tssj1cylfhmrmie.xyz/lib/js/myjs.js
IP 38.145.216.165:443
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerZeroSSL
Subjecttssj1cylfhmrmie.xyz
Fingerprint36:CE:71:D5:CD:C7:A7:8F:19:D3:15:A2:67:B2:05:3D:19:C2:EF:17
ValidityMon, 29 Apr 2024 00:00:00 GMT - Sun, 28 Jul 2024 23:59:59 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (625)
Hash be20bea28fff0538caeea7a3dee213a1
6934fe2837a944be6ccf0db8dd36544e64cf4c84
fadb1ca1dd08bc2aa7931880843b0ceea8920757148fe84bfbd0bf15604f5762
GET /lib/js/myjs.js HTTP/1.1
Host: tssj1cylfhmrmie.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/main.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:08:11 GMT
content-type: application/javascript
last-modified: Fri, 03 May 2024 16:38:20 GMT
vary: Accept-Encoding
etag: W/"663512fc-19c6"
content-encoding: gzip
X-Firefox-Spdy: h2
hm.baidu.com/hm.js?c827562b267ec0114b79385a4d55900d
111.45.11.83200 OK 11 kB URL GET HTTP/1.1 hm.baidu.com/hm.js?c827562b267ec0114b79385a4d55900d
IP 111.45.11.83:443
ASN #56040 China Mobile communications corporation
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type JavaScript source, ASCII text, with very long lines (621)
Hash a7750d95f6d387b9d15fb8849cea0364
fcf43438ed7cd6497dca03d9d54507d4139bcc0a
850a07f39dcd281538b6e5c008dc90d8a16173542bc8ea509df4a623d4648ed0
GET /hm.js?c827562b267ec0114b79385a4d55900d HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11259
Content-Type: application/javascript
Date: Sat, 04 May 2024 06:08:13 GMT
Etag: 77752729899fb1cae85e7a75cbc76952
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=7474D7266F191DA8; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=845186450&si=1c554aa6c273e2e33a57f6fb40122c08&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14084&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91
14.215.183.79200 OK 43 B URL GET HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=845186450&si=1c554aa6c273e2e33a57f6fb40122c08&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14084&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91
IP 14.215.183.79:443
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=845186450&si=1c554aa6c273e2e33a57f6fb40122c08&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14084&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 04 May 2024 06:08:13 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=4DCAF486706D32B4; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1674673550&si=f890ccb4c3b7af5c047d4c3eeb8ed777&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14084&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91
14.215.183.79200 OK 43 B URL GET HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1674673550&si=f890ccb4c3b7af5c047d4c3eeb8ed777&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14084&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91
IP 14.215.183.79:443
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1674673550&si=f890ccb4c3b7af5c047d4c3eeb8ed777&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14084&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 04 May 2024 06:08:13 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=0FDE647AC6F9DE00; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1850721238&si=fd34f4768bf01d64d13bead52d4dd3ca&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14083&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91
14.215.183.79200 OK 43 B URL GET HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1850721238&si=fd34f4768bf01d64d13bead52d4dd3ca&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14083&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91
IP 14.215.183.79:443
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1850721238&si=fd34f4768bf01d64d13bead52d4dd3ca&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14083&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 04 May 2024 06:08:13 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=E1DD9A50B2B0A77B; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=410185419&si=74f90d0629b245d95836efcac4bb28f4&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14084&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91
14.215.183.79200 OK 43 B URL GET HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=410185419&si=74f90d0629b245d95836efcac4bb28f4&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14084&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91
IP 14.215.183.79:443
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=410185419&si=74f90d0629b245d95836efcac4bb28f4&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14084&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 04 May 2024 06:08:13 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=CD4FD4DCF9253B64; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
hm.baidu.com/hm.js?40cf320aeb96a7a6d0a2c355bcdd3bbb
111.45.11.83200 OK 11 kB URL GET HTTP/1.1 hm.baidu.com/hm.js?40cf320aeb96a7a6d0a2c355bcdd3bbb
IP 111.45.11.83:443
ASN #56040 China Mobile communications corporation
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type JavaScript source, ASCII text, with very long lines (621)
Hash 9eda282dc8a0b9ebabfc6747136ff809
c31100ef98c49b0a489fd55b46bfb35d94d9e7fe
5a390c33388aed6c9965cd8888abe6063b8e62bde61772819b2a9bd6ee377790
GET /hm.js?40cf320aeb96a7a6d0a2c355bcdd3bbb HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11259
Content-Type: application/javascript
Date: Sat, 04 May 2024 06:08:14 GMT
Etag: 2a17ca194edd87a327f7f845a448cba5
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=BD3E9AE6760F6246; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.js?c24448eab399d4bcbb4b8f665fd27921
111.45.11.83200 OK 11 kB URL GET HTTP/1.1 hm.baidu.com/hm.js?c24448eab399d4bcbb4b8f665fd27921
IP 111.45.11.83:443
ASN #56040 China Mobile communications corporation
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type JavaScript source, ASCII text, with very long lines (621)
Hash a9b54623265f05a7cac01d3a62eff919
c8df3793392d22cedc8f60e664b739749a0719a5
42d8d21e1fcf687ba81e8b3666b69ee4db81aeae48a9efe4c38f347f4e50959a
GET /hm.js?c24448eab399d4bcbb4b8f665fd27921 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11259
Content-Type: application/javascript
Date: Sat, 04 May 2024 06:08:14 GMT
Etag: 162c9ff65ac52fd21b512e1a95ed544d
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=292843F3A6687229; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=776504990&si=8a2f7b8e7c52226b1c1acb8a349f9fbe&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14084&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91
14.215.183.79200 OK 43 B URL GET HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=776504990&si=8a2f7b8e7c52226b1c1acb8a349f9fbe&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14084&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91
IP 14.215.183.79:443
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=776504990&si=8a2f7b8e7c52226b1c1acb8a349f9fbe&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14084&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 04 May 2024 06:08:14 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=6938059DD60EF10F; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
hm.baidu.com/hm.js?078a0f5661f90780c90225b4aff4edee
14.215.183.79200 OK 11 kB URL GET HTTP/1.1 hm.baidu.com/hm.js?078a0f5661f90780c90225b4aff4edee
IP 14.215.183.79:443
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type JavaScript source, ASCII text, with very long lines (621)
Hash 4b546d8291ae32a4cc1b4081479025eb
a9543ebe4c71da2c0b1db5396c06f2fbd8438490
e5fd947f49e29a806d5b454f698e8f666bbbbb462a224274f423c70c0a5e441b
GET /hm.js?078a0f5661f90780c90225b4aff4edee HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11259
Content-Type: application/javascript
Date: Sat, 04 May 2024 06:08:14 GMT
Etag: 865988c8a014089839b37709b3d6facc
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=19817661EFE59857; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.js?fe06a017992d710060b87f711ebda120
14.215.183.79200 OK 11 kB URL GET HTTP/1.1 hm.baidu.com/hm.js?fe06a017992d710060b87f711ebda120
IP 14.215.183.79:443
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type JavaScript source, ASCII text, with very long lines (621)
Hash 28c4ac0cc46e4e420a71c7e9bc9598dc
7eb0b8aca9feea6fa815f9da3935a5b19092138c
e6f76c1626b3c29ebb0bf2ea1b965e6d505ff387233b2ac1acec4f028e146482
GET /hm.js?fe06a017992d710060b87f711ebda120 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11259
Content-Type: application/javascript
Date: Sat, 04 May 2024 06:08:14 GMT
Etag: 80cf23ea4dfcd7b17045e4594f857384
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=721D91AF4BE62929; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.js?b34f5f65e5853ca56c00c955c755d3aa
14.215.183.79200 OK 11 kB URL GET HTTP/1.1 hm.baidu.com/hm.js?b34f5f65e5853ca56c00c955c755d3aa
IP 14.215.183.79:443
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type JavaScript source, ASCII text, with very long lines (621)
Hash 959a3ac9ade7cce03efe4fe4b8415ba3
4003063ee265ae0f1720ae8cd78f46c85038a743
afa3aab3a3a67ba72c26fb019200fbdd106ff907784a0e44884a8c2bd98e6aa2
GET /hm.js?b34f5f65e5853ca56c00c955c755d3aa HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11259
Content-Type: application/javascript
Date: Sat, 04 May 2024 06:08:14 GMT
Etag: 0225ac856e34cd865acfc460c015b33b
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=D1827F9E5C870419; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1994516484&si=40cf320aeb96a7a6d0a2c355bcdd3bbb&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14084&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91
111.45.11.83200 OK 43 B URL GET HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1994516484&si=40cf320aeb96a7a6d0a2c355bcdd3bbb&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14084&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91
IP 111.45.11.83:443
ASN #56040 China Mobile communications corporation
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1994516484&si=40cf320aeb96a7a6d0a2c355bcdd3bbb&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14084&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 04 May 2024 06:08:14 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=4CA94B88F95EAA5B; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=247213014&si=c24448eab399d4bcbb4b8f665fd27921&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14084&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91
111.45.11.83200 OK 43 B URL GET HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=247213014&si=c24448eab399d4bcbb4b8f665fd27921&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14084&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91
IP 111.45.11.83:443
ASN #56040 China Mobile communications corporation
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=247213014&si=c24448eab399d4bcbb4b8f665fd27921&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14084&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 04 May 2024 06:08:14 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=0FFB628B5A905699; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=349542651&si=078a0f5661f90780c90225b4aff4edee&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14084&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91
14.215.183.79200 OK 43 B URL GET HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=349542651&si=078a0f5661f90780c90225b4aff4edee&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14084&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91
IP 14.215.183.79:443
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=349542651&si=078a0f5661f90780c90225b4aff4edee&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14084&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 04 May 2024 06:08:14 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=9D0764C668A4F5A4; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
hm.baidu.com/hm.js?6252c4e93b74d5e0a12a3aff9900cb9c
14.215.183.79200 OK 11 kB URL GET HTTP/1.1 hm.baidu.com/hm.js?6252c4e93b74d5e0a12a3aff9900cb9c
IP 14.215.183.79:443
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type JavaScript source, ASCII text, with very long lines (621)
Hash c87b05a0952c41f18470b4badc9b6087
4f0ad03fea3d95b6fff52cde4c170a3b18a5a8e0
51f57726cfed19cb211ef58ba821f7724f58b712a204eda7292e49e3b8a04acd
GET /hm.js?6252c4e93b74d5e0a12a3aff9900cb9c HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11259
Content-Type: application/javascript
Date: Sat, 04 May 2024 06:08:14 GMT
Etag: aaea7d73175db6edb36699feac831496
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=DE6F0E12FD3B11EB; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1298271842&si=fe06a017992d710060b87f711ebda120&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14084&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91
14.215.183.79200 OK 43 B URL GET HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1298271842&si=fe06a017992d710060b87f711ebda120&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14084&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91
IP 14.215.183.79:443
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1298271842&si=fe06a017992d710060b87f711ebda120&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14084&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 04 May 2024 06:08:14 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=0FF39722C9C65676; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1527845025&si=c827562b267ec0114b79385a4d55900d&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14084&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91
14.215.183.79200 OK 43 B URL GET HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1527845025&si=c827562b267ec0114b79385a4d55900d&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14084&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91
IP 14.215.183.79:443
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1527845025&si=c827562b267ec0114b79385a4d55900d&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14084&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 04 May 2024 06:08:14 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=1426480D682D6975; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=2003008216&si=b34f5f65e5853ca56c00c955c755d3aa&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14085&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91
111.45.11.83200 OK 43 B URL GET HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=2003008216&si=b34f5f65e5853ca56c00c955c755d3aa&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14085&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91
IP 111.45.11.83:443
ASN #56040 China Mobile communications corporation
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=2003008216&si=b34f5f65e5853ca56c00c955c755d3aa&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14085&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 04 May 2024 06:08:14 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=5A57E64E858AFCD3; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
hm.baidu.com/hm.js?f6ab703de06252d342d666b81421bab5
14.215.183.79200 OK 11 kB URL GET HTTP/1.1 hm.baidu.com/hm.js?f6ab703de06252d342d666b81421bab5
IP 14.215.183.79:443
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type JavaScript source, ASCII text, with very long lines (621)
Hash 3aa0731b8965b430e0cc7b4f14d9256c
b2995a8709fe761f4ea266a89308251bcbe4119f
64d36a13f0a4ce58297476b8a75ac924e4142bf369be63da129312198d1ba70c
GET /hm.js?f6ab703de06252d342d666b81421bab5 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11259
Content-Type: application/javascript
Date: Sat, 04 May 2024 06:08:14 GMT
Etag: f731624288479e43dea565aac7653bf7
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=AB38D112B4FFAEE1; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.js?31be798bc91692eb0c59f050cc4e3acb
111.45.11.83200 OK 11 kB URL GET HTTP/1.1 hm.baidu.com/hm.js?31be798bc91692eb0c59f050cc4e3acb
IP 111.45.11.83:443
ASN #56040 China Mobile communications corporation
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type JavaScript source, ASCII text, with very long lines (621)
Hash 85fe96c618c1d145502496a9c7ff003c
f834c7f1340244d1f470612d835bfed2f59cac2a
ae4138b3fca7aaae4390818616b64d42f3ce2bb4ac184ef7b62416ea0b2e02f3
GET /hm.js?31be798bc91692eb0c59f050cc4e3acb HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11259
Content-Type: application/javascript
Date: Sat, 04 May 2024 06:08:14 GMT
Etag: 4b31c4ae4b58a3fdffab35edf036f4cf
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=D18ACF3398CD49B9; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.js?79b9717dda4eee633e3175f3cb66896a
14.215.183.79200 OK 11 kB URL GET HTTP/1.1 hm.baidu.com/hm.js?79b9717dda4eee633e3175f3cb66896a
IP 14.215.183.79:443
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type JavaScript source, ASCII text, with very long lines (621)
Hash 960f3146543403ab5c3de075f0359d88
3f9dd3ef7965a8e6bb352bcdd1181c7ab4abf375
595298ad01a0735bb0e972ba74779b838126743456ba2ca620aafef5b06860c7
GET /hm.js?79b9717dda4eee633e3175f3cb66896a HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11259
Content-Type: application/javascript
Date: Sat, 04 May 2024 06:08:14 GMT
Etag: 8e78a20e81b0211e55842b6720d7706c
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=C5E448FE1677C57A; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=2102466530&si=6252c4e93b74d5e0a12a3aff9900cb9c&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14085&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91
14.215.183.79200 OK 43 B URL GET HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=2102466530&si=6252c4e93b74d5e0a12a3aff9900cb9c&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14085&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91
IP 14.215.183.79:443
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=2102466530&si=6252c4e93b74d5e0a12a3aff9900cb9c&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14085&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 04 May 2024 06:08:14 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=EA20962DA2999B42; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1956098924&si=0202d91b2bd5ec730a60979c78185228&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14082&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91
14.215.183.79200 OK 43 B URL GET HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1956098924&si=0202d91b2bd5ec730a60979c78185228&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14082&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91
IP 14.215.183.79:443
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1956098924&si=0202d91b2bd5ec730a60979c78185228&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14082&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 04 May 2024 06:08:15 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=43E8888CBAFC113B; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=906376802&si=24b4fdc36c3f09cb986193b774376b88&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14083&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91
111.45.11.83200 OK 43 B URL GET HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=906376802&si=24b4fdc36c3f09cb986193b774376b88&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14083&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91
IP 111.45.11.83:443
ASN #56040 China Mobile communications corporation
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=906376802&si=24b4fdc36c3f09cb986193b774376b88&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14083&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 04 May 2024 06:08:15 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=43BB0A169C8030CA; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=448150224&si=f6ab703de06252d342d666b81421bab5&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14085&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91
14.215.183.79200 OK 43 B URL GET HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=448150224&si=f6ab703de06252d342d666b81421bab5&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14085&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91
IP 14.215.183.79:443
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=448150224&si=f6ab703de06252d342d666b81421bab5&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14085&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 04 May 2024 06:08:15 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=E2DE3A09825A9430; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=658763868&si=31be798bc91692eb0c59f050cc4e3acb&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14085&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91
111.45.11.83200 OK 43 B URL GET HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=658763868&si=31be798bc91692eb0c59f050cc4e3acb&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14085&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91
IP 111.45.11.83:443
ASN #56040 China Mobile communications corporation
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=658763868&si=31be798bc91692eb0c59f050cc4e3acb&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14085&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 04 May 2024 06:08:15 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=4FDCC28F9DB307E5; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1398492520&si=79b9717dda4eee633e3175f3cb66896a&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14085&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91
14.215.183.79200 OK 43 B URL GET HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1398492520&si=79b9717dda4eee633e3175f3cb66896a&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14085&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91
IP 14.215.183.79:443
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1398492520&si=79b9717dda4eee633e3175f3cb66896a&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14085&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 04 May 2024 06:08:15 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=E1956DFFACD0E933; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1855939029&si=bcd1b2adea17b24830ff683f25d79008&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14082&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91
14.215.183.79200 OK 43 B URL GET HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1855939029&si=bcd1b2adea17b24830ff683f25d79008&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14082&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91
IP 14.215.183.79:443
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1855939029&si=bcd1b2adea17b24830ff683f25d79008&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14082&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 04 May 2024 06:08:15 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=E68578304ECD1A9B; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
imgsrc.baidu.com/forum/pic/item/cf1b9d16fdfaaf518e657983ca5494eef01f7a0c.jpg
104.193.88.109200 OK 188 kB URL GET HTTP/2 imgsrc.baidu.com/forum/pic/item/cf1b9d16fdfaaf518e657983ca5494eef01f7a0c.jpg
IP 104.193.88.109:443
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type GIF image data, version 89a, 960 x 80
Size 188 kB (188357 bytes)
Hash f0e6da4ed6ac95859fff6bb99b4cbc97
e200be06447d96f29ac73f35a90bb994fea5e9d9
2d765ba547d1fa2c93423269d88a1414ac4ce5a986e37a7d9637f4cf2a5ae10e
GET /forum/pic/item/cf1b9d16fdfaaf518e657983ca5494eef01f7a0c.jpg HTTP/1.1
Host: imgsrc.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: JSP3/2.0.14
date: Sat, 04 May 2024 06:08:14 GMT
content-type: image/gif
content-length: 188357
access-control-allow-origin: *
etag: f0e6da4ed6ac95859fff6bb99b4cbc97
expires: Mon, 03 Jun 2024 06:08:14 GMT
last-modified: Thu, 01 Jan 1970 00:00:00 GMT
X-Firefox-Spdy: h2
d1zoi2q7y0e4d.cloudfront.net/xiangfei/960X80.gif
54.230.241.30200 OK 143 kB URL GET HTTP/2 d1zoi2q7y0e4d.cloudfront.net/xiangfei/960X80.gif
IP 54.230.241.30:443
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File type GIF image data, version 89a, 960 x 80
Size 143 kB (143169 bytes)
Hash f154c58f48810d025acd9323ce098a86
4b592b15fde1ab4042cbea274f8c3c71eeade190
a0fda16df0babe6479b6ed460ff1c50335b38236934ab48e610d0952e12adef0
GET /xiangfei/960X80.gif HTTP/1.1
Host: d1zoi2q7y0e4d.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/gif
content-length: 143169
last-modified: Thu, 11 Jan 2024 08:52:41 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sat, 04 May 2024 06:08:16 GMT
etag: "f154c58f48810d025acd9323ce098a86"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: UopxAWlq6gqdvO-gPVlLx3EAPqa79RjuRMPGCoxXc8ndJBPl37ugWQ==
age: 1679
X-Firefox-Spdy: h2
hm.baidu.com/hm.js?74f90d0629b245d95836efcac4bb28f4
14.215.183.79200 OK 30 kB URL GET HTTP/1.1 hm.baidu.com/hm.js?74f90d0629b245d95836efcac4bb28f4
IP 14.215.183.79:443
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type JavaScript source, ASCII text, with very long lines (621)
Hash 48037339b3d4ab295f79524be4013917
113168c1b80af8bf548bbe505d90b800892e6a56
012cec65f61828ea26f05ecaacc5ff0a652d4a1f5bedd181f1ee5a8bfe20c3bb
GET /hm.js?74f90d0629b245d95836efcac4bb28f4 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11259
Content-Type: application/javascript
Date: Sat, 04 May 2024 06:08:13 GMT
Etag: 511c51b1eb1d2b8bd507fe4abb9da13b
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=D2645FEC215A4AF0; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
uu11001.com/bb30a2ebcffa13c61ba70adf016029a1.gif
0.0.0.0 0 B URL GET uu11001.com/bb30a2ebcffa13c61ba70adf016029a1.gif
IP 0.0.0.0:0
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerLet's Encrypt
Subjectuu11001.com
Fingerprint16:38:16:F9:4F:25:64:78:60:60:D8:67:E7:28:15:55:44:92:0B:0B
ValiditySun, 28 Apr 2024 15:52:34 GMT - Sat, 27 Jul 2024 15:52:33 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bb30a2ebcffa13c61ba70adf016029a1.gif HTTP/1.1
Host: uu11001.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: max-age=2592000
content-encoding: gzip
content-type: image/gif
date: Sat, 04 May 2024 03:52:14 GMT
etag: W/"645f45a8-60c60"
expires: Mon, 03 Jun 2024 03:52:14 GMT
last-modified: Sat, 04 May 2024 04:30:58 GMT
server: nginx
vary: Accept-Encoding
x-cache: HIT, policy, disk
X-Firefox-Spdy: h2
hm.baidu.com/hm.js?f4c9c59dc07fc895726fe660d2334daa
111.45.11.83200 OK 30 kB URL GET HTTP/1.1 hm.baidu.com/hm.js?f4c9c59dc07fc895726fe660d2334daa
IP 111.45.11.83:443
ASN #56040 China Mobile communications corporation
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type JavaScript source, ASCII text, with very long lines (621)
Hash d1ebaa168d59eae73c90883c5b7c628e
35eca62f2af7709b4088c64ee3a6fd11fc9ee837
ddfb9e181a7ffeb29e4e1a296e5214e2cf52bf730d086a85b80626b0a606f9f1
GET /hm.js?f4c9c59dc07fc895726fe660d2334daa HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11259
Content-Type: application/javascript
Date: Sat, 04 May 2024 06:08:12 GMT
Etag: 6c3dbacda56c603190591fb035230ec4
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=53126F4DC226F685; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
tssj1cylfhmrmie.xyz/lib/js/LazyLoad.js
38.145.216.165200 OK 9.5 kB URL GET HTTP/2 tssj1cylfhmrmie.xyz/lib/js/LazyLoad.js
IP 38.145.216.165:443
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerZeroSSL
Subjecttssj1cylfhmrmie.xyz
Fingerprint36:CE:71:D5:CD:C7:A7:8F:19:D3:15:A2:67:B2:05:3D:19:C2:EF:17
ValidityMon, 29 Apr 2024 00:00:00 GMT - Sun, 28 Jul 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (9845), with no line terminators
Hash 7b4204d5723ddb96562f1754fc662e98
9bef86125cb94a1ba1ece97ef9179fc18abe0e06
eced9cc48d2d75308a2d6b9271130c60970210bb06f6df0568efb313bb721f2d
GET /lib/js/LazyLoad.js HTTP/1.1
Host: tssj1cylfhmrmie.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/main.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:08:11 GMT
content-type: application/javascript
last-modified: Fri, 03 May 2024 16:38:20 GMT
vary: Accept-Encoding
etag: W/"663512fc-2519"
content-encoding: gzip
X-Firefox-Spdy: h2
tssj1cylfhmrmie.xyz/main.html
38.145.216.165200 OK 43 kB URL GET HTTP/2 tssj1cylfhmrmie.xyz/main.html
IP 38.145.216.165:443
Requested by http://66.232.12.200/sj2efaxch.html
Certificate IssuerZeroSSL
Subjecttssj1cylfhmrmie.xyz
Fingerprint36:CE:71:D5:CD:C7:A7:8F:19:D3:15:A2:67:B2:05:3D:19:C2:EF:17
ValidityMon, 29 Apr 2024 00:00:00 GMT - Sun, 28 Jul 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /main.html HTTP/1.1
Host: tssj1cylfhmrmie.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://66.232.12.200/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:08:10 GMT
content-type: text/html
last-modified: Fri, 03 May 2024 16:38:18 GMT
vary: Accept-Encoding
etag: W/"663512fa-a6aa"
content-encoding: gzip
X-Firefox-Spdy: h2
hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1157875423&si=05cce4bd149e2a1ab85aec5dd5a29822&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14082&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91
14.215.183.79200 OK 43 B URL GET HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1157875423&si=05cce4bd149e2a1ab85aec5dd5a29822&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14082&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91
IP 14.215.183.79:443
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1157875423&si=05cce4bd149e2a1ab85aec5dd5a29822&su=http%3A%2F%2F66.232.12.200%2F&v=1.3.0&lv=1&sn=14082&r=0&ww=1280&u=https%3A%2F%2Ftssj1cylfhmrmie.xyz%2Fmain.html&tt=%E6%A1%83%E8%89%B2%E8%A7%86%E9%A2%91 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 04 May 2024 06:08:12 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=7E4AACF07595AC1E; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
tssj1cylfhmrmie.xyz/lib/js/jquery-1.11.3.min.js
38.145.216.165200 OK 96 kB URL GET HTTP/2 tssj1cylfhmrmie.xyz/lib/js/jquery-1.11.3.min.js
IP 38.145.216.165:443
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerZeroSSL
Subjecttssj1cylfhmrmie.xyz
Fingerprint36:CE:71:D5:CD:C7:A7:8F:19:D3:15:A2:67:B2:05:3D:19:C2:EF:17
ValidityMon, 29 Apr 2024 00:00:00 GMT - Sun, 28 Jul 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (32038)
Hash 895323ed2f7258af4fae2c738c8aea49
276c87ff3e1e3155679c318938e74e5c1b76d809
ecb916133a9376911f10bc5c659952eb0031e457f5df367cde560edbfba38fb8
GET /lib/js/jquery-1.11.3.min.js HTTP/1.1
Host: tssj1cylfhmrmie.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/main.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:08:11 GMT
content-type: application/javascript
last-modified: Fri, 03 May 2024 16:38:20 GMT
vary: Accept-Encoding
etag: W/"663512fc-176d5"
content-encoding: gzip
X-Firefox-Spdy: h2
hb.userpicimage.com/057544bf412ev.jpg
0.0.0.0 0 B URL GET hb.userpicimage.com/057544bf412ev.jpg
IP 0.0.0.0:0
Requested by https://tssj1cylfhmrmie.xyz/main.html
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /057544bf412ev.jpg HTTP/1.1
Host: hb.userpicimage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
jgcjt.webpicimage.com/jgc/%E5%8F%A3%E4%BA%A4-%E8%82%9B%E4%BA%A4-3P-%E8%B1%AA%E5%AE%85%E6%B7%AB%E5%A5%B3.jpg
0.0.0.0 0 B URL GET jgcjt.webpicimage.com/jgc/%E5%8F%A3%E4%BA%A4-%E8%82%9B%E4%BA%A4-3P-%E8%B1%AA%E5%AE%85%E6%B7%AB%E5%A5%B3.jpg
IP 0.0.0.0:0
Requested by https://tssj1cylfhmrmie.xyz/main.html
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /jgc/%E5%8F%A3%E4%BA%A4-%E8%82%9B%E4%BA%A4-3P-%E8%B1%AA%E5%AE%85%E6%B7%AB%E5%A5%B3.jpg HTTP/1.1
Host: jgcjt.webpicimage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
hm.baidu.com/hm.js?186be70afaae1752553f537fcf57c48b
14.215.183.79200 OK 30 kB URL GET HTTP/1.1 hm.baidu.com/hm.js?186be70afaae1752553f537fcf57c48b
IP 14.215.183.79:443
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type JavaScript source, ASCII text, with very long lines (621)
Hash f2522d950a0364fee565c2c955b8cf92
a64de2578613ac02649eb0cf97a208cacf0e446e
9b5921c59fbc5dbacfaf132d07cb5fa4ac59fdec9aa656cba9b5c957f40e2edf
GET /hm.js?186be70afaae1752553f537fcf57c48b HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11259
Content-Type: application/javascript
Date: Sat, 04 May 2024 06:08:12 GMT
Etag: 249b09c573c2672b675cdfe14467cd32
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=6049D497D82CB748; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
jgcjt.webpicimage.com/jgc/%E5%8F%A3%E4%BA%A4-%E5%B7%A8%E4%B9%B3-%E5%A4%A7%E5%B1%8C-%E6%A6%86%E6%A8%B9%E8%A1%97%E6%98%A5%E5%A4%A2.jpg
0.0.0.0 0 B URL GET jgcjt.webpicimage.com/jgc/%E5%8F%A3%E4%BA%A4-%E5%B7%A8%E4%B9%B3-%E5%A4%A7%E5%B1%8C-%E6%A6%86%E6%A8%B9%E8%A1%97%E6%98%A5%E5%A4%A2.jpg
IP 0.0.0.0:0
Requested by https://tssj1cylfhmrmie.xyz/main.html
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /jgc/%E5%8F%A3%E4%BA%A4-%E5%B7%A8%E4%B9%B3-%E5%A4%A7%E5%B1%8C-%E6%A6%86%E6%A8%B9%E8%A1%97%E6%98%A5%E5%A4%A2.jpg HTTP/1.1
Host: jgcjt.webpicimage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
hb.userpicimage.com/527c83dd9637v.jpg
0.0.0.0 0 B URL GET hb.userpicimage.com/527c83dd9637v.jpg
IP 0.0.0.0:0
Requested by https://tssj1cylfhmrmie.xyz/main.html
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /527c83dd9637v.jpg HTTP/1.1
Host: hb.userpicimage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
hm.baidu.com/hm.js?f890ccb4c3b7af5c047d4c3eeb8ed777
14.215.183.79200 OK 30 kB URL GET HTTP/1.1 hm.baidu.com/hm.js?f890ccb4c3b7af5c047d4c3eeb8ed777
IP 14.215.183.79:443
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type JavaScript source, ASCII text, with very long lines (621)
Hash f9892b4fcbe76199102eb1b09e158743
64ee7aa3d7556e16310149d96867bcaf0002b2ea
fe079dfbe39f8a20a6b7e0d69470e40956ea608ea3a04e358e3c76709bb3c0c7
GET /hm.js?f890ccb4c3b7af5c047d4c3eeb8ed777 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11259
Content-Type: application/javascript
Date: Sat, 04 May 2024 06:08:13 GMT
Etag: eed26b7dae9438ed80c336b140b25389
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=C9EB1A7DAF81C102; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.js?fd34f4768bf01d64d13bead52d4dd3ca
111.45.11.83200 OK 30 kB URL GET HTTP/1.1 hm.baidu.com/hm.js?fd34f4768bf01d64d13bead52d4dd3ca
IP 111.45.11.83:443
ASN #56040 China Mobile communications corporation
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type JavaScript source, ASCII text, with very long lines (621)
Hash 602f84018112ad2a80d928bba0a7e947
a8b6c901c33f193c11a3fff1ef09a80e47c30fab
cf05d0a3012239c5c475ac1eb0ae36999ebf050c67c6879f35c425af97920511
GET /hm.js?fd34f4768bf01d64d13bead52d4dd3ca HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11259
Content-Type: application/javascript
Date: Sat, 04 May 2024 06:08:12 GMT
Etag: 2d64a125c9c62d6c6ff2359b67f59dc4
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=7AC3E3E4E41B2DF3; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
tssj1cylfhmrmie.xyz/lib/js/qrcode.min.js
38.145.216.165200 OK 20 kB URL GET HTTP/2 tssj1cylfhmrmie.xyz/lib/js/qrcode.min.js
IP 38.145.216.165:443
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerZeroSSL
Subjecttssj1cylfhmrmie.xyz
Fingerprint36:CE:71:D5:CD:C7:A7:8F:19:D3:15:A2:67:B2:05:3D:19:C2:EF:17
ValidityMon, 29 Apr 2024 00:00:00 GMT - Sun, 28 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (19927), with no line terminators
Hash 517b55d3688ce9ef1085a3d9632bcb97
2d06c1f823f34c19981c6ae0b0eb0f5861c5e14b
c541ef06327885a8415bca8df6071e14189b4855336def4f36db54bde8484f36
GET /lib/js/qrcode.min.js HTTP/1.1
Host: tssj1cylfhmrmie.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/main.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:08:11 GMT
content-type: application/javascript
last-modified: Fri, 03 May 2024 16:38:20 GMT
vary: Accept-Encoding
etag: W/"663512fc-4dd7"
content-encoding: gzip
X-Firefox-Spdy: h2
hm.baidu.com/hm.js?8a2f7b8e7c52226b1c1acb8a349f9fbe
111.45.11.83200 OK 30 kB URL GET HTTP/1.1 hm.baidu.com/hm.js?8a2f7b8e7c52226b1c1acb8a349f9fbe
IP 111.45.11.83:443
ASN #56040 China Mobile communications corporation
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type JavaScript source, ASCII text, with very long lines (621)
Hash 163a40ec1b5935cb51d95e0fe2be51ae
f3889dbb8548a0b61d9ce1104282ee89523285d6
754cb03551bf70af866eae3bfb5702d98eb49687175fab50574a1f42db1acb3c
GET /hm.js?8a2f7b8e7c52226b1c1acb8a349f9fbe HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11259
Content-Type: application/javascript
Date: Sat, 04 May 2024 06:08:13 GMT
Etag: 6746735dfbd323f46b70aace5f9f515f
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=A74C8B0A5907D79C; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.js?1c554aa6c273e2e33a57f6fb40122c08
14.215.183.79200 OK 30 kB URL GET HTTP/1.1 hm.baidu.com/hm.js?1c554aa6c273e2e33a57f6fb40122c08
IP 14.215.183.79:443
Requested by https://tssj1cylfhmrmie.xyz/main.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type JavaScript source, ASCII text, with very long lines (621)
Hash abb3102023ce593b2163f380de518ef4
d7e3c25e24ab4ecb86a5c8f20bfd20a32627a595
83fd9bb23ee2c56c5d020fb7a07de9ecd9fadc2d60252f2954cd4495dc9256f2
GET /hm.js?1c554aa6c273e2e33a57f6fb40122c08 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11259
Content-Type: application/javascript
Date: Sat, 04 May 2024 06:08:12 GMT
Etag: dcd7e1c221a881435f19413fbb6dc7e8
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=50F8A89B3D158BA4; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hb.userpicimage.com/6e89db770b08v.jpg
0.0.0.0 0 B URL GET hb.userpicimage.com/6e89db770b08v.jpg
IP 0.0.0.0:0
Requested by https://tssj1cylfhmrmie.xyz/main.html
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /6e89db770b08v.jpg HTTP/1.1
Host: hb.userpicimage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tssj1cylfhmrmie.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache