Report - gmnvxhs.cn/login.php

Report Overview

Submitted URL
gmnvxhs.cn/login.php
IP
114.134.189.160
ASN
#142032 High Family Technology Co., Limited
Submitted
2024-04-19 10:39:39
Access
public
Website Title
我这一生会有多少财富？-国学网
Final URL
pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
3
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
ziyuan.baidu.com	279679	1999-10-11	2017-12-29	2020-01-10	419 B	1.4 kB	182.61.201.91
pp.sm688802.com	unknown	2019-10-31	2023-11-05	2024-03-03	4.5 kB	18 kB	121.199.78.118
analysis.tianxiang.com	unknown	2001-07-11	2020-05-15	2024-03-03	485 B	0 B	0.0.0.0
www.gmnvxhs.cn	unknown	unknown	No data	No data	2.7 kB	15 kB	114.134.189.160
api.tongjiniao.com	unknown	2022-12-22	2023-02-01	2024-04-17	779 B	4.7 kB	43.248.140.176
p.tx9968.com	unknown	2019-06-10	2022-08-20	2024-03-03	9.7 kB	427 kB	138.113.100.16
hm.baidu.com	8254	1999-10-11	2012-05-26	2024-04-19	4.7 kB	71 kB	14.215.182.140
fxgate.baidu.com	58694	1999-10-11	2017-12-20	2024-04-15	447 B	0 B	0.0.0.0
gmnvxhs.cn	unknown	2023-07-04	2023-10-05	2023-11-28	390 B	219 B	114.134.189.160
bdimg.share.baidu.com	67969	1999-10-11	2012-07-23	2024-04-13	2.3 kB	30 kB	112.34.113.148

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2024-04-19 10:39:29	low	114.134.189.160	Client IP	ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M1
2024-04-19 10:39:29	low	114.134.189.160	Client IP	ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M2
2024-04-19 10:39:29	low	114.134.189.160	Client IP	ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M3

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-19	medium	tongjiniao.com	Sinkholed
2024-04-19	medium	tongjiniao.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (20)

	URL	Size	First Seen	Last Seen
	pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755	565 B	2024-03-20	2024-04-19
Pretty URL pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755 IP 121.199.78.118 ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2024-03-20 09:42:57 Last Seen2024-04-19 12:39:47 Times Seen2 Hash c2f6d52b981bf60b6a540e9207d17e06 03087e5236a334a33b177060e936a547a83a4203 0af4ee77edaa51d1499eff6f7814055b69f5a3267f60aabdf4f1aa9adff3047f Loading...

	pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755	322 B	2024-02-22	2024-04-19
Pretty URL pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755 IP 121.199.78.118 ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2024-02-22 00:44:01 Last Seen2024-04-19 12:39:47 Times Seen5 Hash 20bd6bfda88907c2b6c49b378adcc06a e661a7c9fb09275231062949a499c0974aa76aef 065756377dcd5e936f50ffe472bec1cbb2d7a4878dd3e74331d93cc9ec9d4b41 Loading...

	pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755	425 B	2024-03-20	2024-04-19
Pretty URL pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755 IP 121.199.78.118 ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2024-03-20 09:42:58 Last Seen2024-04-19 12:39:47 Times Seen2 Hash 1a933105527f4bc2b3fcd598f63d88f1 57bb5338df20fa8ceae5d064dab54747b6768eee dce1dd0bc8de11efa8182c4d8f3ed9002e0dbbdcebfcb7848ff44d009ade3a8c Loading...

	pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755	182 B	2024-02-22	2024-04-19
Pretty URL pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755 IP 121.199.78.118 ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2024-02-22 00:44:01 Last Seen2024-04-19 12:39:47 Times Seen5 Hash 406c41a98482968c0d8e77a85743092f b7b18360f84e7bffa9e347b7146962fc2a347e41 8248a42a2056f6c1ff18ac4837f033e6e773e37d92125006c3a749b65b48a3c2 Loading...

	p.tx9968.com/statics/ffsm/app/bazijingpi/11/app.min.js?v=0a0e8e4	2.6 kB	2024-03-03	2024-04-19
Pretty URL p.tx9968.com/statics/ffsm/app/bazijingpi/11/app.min.js?v=0a0e8e4 IP 138.113.100.16 ASN #54994 ML-1432-54994 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-03 07:57:18 Last Seen2024-04-19 12:39:47 Times Seen4 Hash 0a0e8e44be7015716ca8933162f7586f 38c36b14da7588651918000a7c950e4a7effbeba f331495022a4d8ace156dc74642b744b95e2eff5126cfe4b222668f8f6d1b87a Loading...

	p.tx9968.com/statics/ffsm/public/wap/js/common.min.js?v=f56f5eb	23 kB	2024-02-22	2024-04-19
Pretty URL p.tx9968.com/statics/ffsm/public/wap/js/common.min.js?v=f56f5eb IP 138.113.100.16 ASN #54994 ML-1432-54994 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-22 00:44:01 Last Seen2024-04-19 12:39:48 Times Seen10 Hash 4cca5a914cc79c32f99c38c60c96d3df a874e9f97480bee1ec0dcaa9d0df8a9703eb1e1b ed67c01217c878e35ed38e6dbea0ef523e5292966e7545d230490001df6d392a Loading...

	pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755	254 B	2024-02-22	2024-04-19
Pretty URL pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755 IP 121.199.78.118 ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2024-02-22 00:44:01 Last Seen2024-04-19 12:39:47 Times Seen5 Hash a3831c9610b9eb927463298913644426 3a621b681f42911044c972b416343c9eecde9676 c7141e7c300d33dc62b64ec1c10f60a469e758c64abbb254e2e2d1a210460b5f Loading...

	pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755	254 B	2024-02-22	2024-04-19
Pretty URL pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755 IP 121.199.78.118 ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2024-02-22 00:44:01 Last Seen2024-04-19 12:39:47 Times Seen5 Hash 779b27ae4bb76172cf63f1b9404fed07 4c5b8625b353962109554171579a4b356105b1ff 1b6cdd822230ca2dc85d761b35076306ce9e9f9d9c4c1ec6e59f3b75b45c8b12 Loading...

	pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755	254 B	2024-03-20	2024-04-19
Pretty URL pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755 IP 121.199.78.118 ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2024-03-20 09:42:58 Last Seen2024-04-19 12:39:47 Times Seen2 Hash cdb4702e0e5c42b6b6a0c308027631a0 76c63fc30516776f23f7b61aa507bbe079ec9962 c778cbbe3a9ae34cf647dfb46da1d342897302684c2904a9b349ec3b3e4fcbee Loading...

	pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755	254 B	2024-03-20	2024-04-19
Pretty URL pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755 IP 121.199.78.118 ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2024-03-20 09:42:58 Last Seen2024-04-19 12:39:47 Times Seen2 Hash ca1860d077a41aa8b18156d4f7dc8884 c7760e500e31236cdf123787b5392701bbeeac83 f75deb498482047952548796d1b37a55e21a4618753017c17e407a37a9411c7e Loading...

	pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755	254 B	2024-03-20	2024-04-19
Pretty URL pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755 IP 121.199.78.118 ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2024-03-20 09:42:58 Last Seen2024-04-19 12:39:47 Times Seen2 Hash 4e0401e9d40faf5a7e5ee7f46b751a94 feef9010660db16e8543f6bea49a3ab79a6cc87f d1bd8557526ce03e195d9d97d6efc3551c79affdec6d636b4aca441cf1b3ca9b Loading...

	pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755	254 B	2024-03-20	2024-04-19
Pretty URL pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755 IP 121.199.78.118 ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2024-03-20 09:42:58 Last Seen2024-04-19 12:39:47 Times Seen2 Hash 8bcc56365a846870d8a72adb8d4a3f20 90c11abf384c51e23994c729642a6530f4a5561b d6b3b691e13e60728d2a8adf3e3e503af7dcae0cb85f223109c8bdaa7048684f Loading...

	p.tx9968.com/statics/ffsm/public/wap/js/libs/jquery-3.4.1.min.js?v=748b731	88 kB	2023-03-07	2024-05-02
Pretty URL p.tx9968.com/statics/ffsm/public/wap/js/libs/jquery-3.4.1.min.js?v=748b731 IP 138.113.100.16 ASN #54994 ML-1432-54994 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:34 Last Seen2024-05-02 02:02:56 Times Seen96413 Hash 220afd743d9e9643852e31a135a9f3ae 88523924351bac0b5d560fe0c5781e2556e7693d 0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a Loading...

	pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755	254 B	2024-03-20	2024-04-19
Pretty URL pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755 IP 121.199.78.118 ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2024-03-20 09:42:58 Last Seen2024-04-19 12:39:47 Times Seen2 Hash c19d5fc61317887c2326c7a3b55c6c1d cd8636e38ad175a75d934d239ded673b41024115 ff2ab0daa61b28178429ed99f89646082b7e7d70ca1496836468fa7679d013b7 Loading...

	pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755	254 B	2024-03-20	2024-04-19
Pretty URL pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755 IP 121.199.78.118 ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2024-03-20 09:42:59 Last Seen2024-04-19 12:39:47 Times Seen2 Hash 05a6a86e2d5239a7950536bd105b0e0c 9b54909cb0f51dafeaf30b9038ccdd2daec9de89 a538a60f5e5dd977e7414b4a2f130fbdb798a324ab8f7b5e449bb61ce91ba3c0 Loading...

	pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755	254 B	2024-03-20	2024-04-19
Pretty URL pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755 IP 121.199.78.118 ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2024-03-20 09:42:59 Last Seen2024-04-19 12:39:47 Times Seen2 Hash ab848939d4ce992edb4b1d6f4f28da5c 165ab26ab168845aeeebf29f409dda69506e429f 5cc05528786ddd377ead128072c3a971c592610e793a691c5045bcd10b40cd5b Loading...

	p.tx9968.com/statics/ffsm/public/wap/js/libs/require-2.3.6.min.js?v=59da35f	18 kB	2023-03-07	2024-05-01
Pretty URL p.tx9968.com/statics/ffsm/public/wap/js/libs/require-2.3.6.min.js?v=59da35f IP 138.113.100.16 ASN #54994 ML-1432-54994 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:23 Last Seen2024-05-01 08:52:11 Times Seen1839 Hash 1565af44b896bc4c641f238fd800fc83 cc1460eda8305a15fb88eb1d49d67b0d35d9ad04 4948c3fe4b57cd92118ec7b89deb99ff0eb2586a02c5f454df21c1ecfc144c81 Loading...

	pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755	254 B	2024-03-20	2024-04-19
Pretty URL pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755 IP 121.199.78.118 ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2024-03-20 09:42:59 Last Seen2024-04-19 12:39:47 Times Seen2 Hash bc96e4311a1db20c8b12b5e9d5cd1c4a 6bd935848d5c979fc3d33a1f0d7a8e08b072d736 013918d4b2317a0f45158f157b384eecece1a168f2104e071ad86bbe0012e89e Loading...

	pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755	952 B	2024-03-20	2024-04-19
Pretty URL pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755 IP 121.199.78.118 ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2024-03-20 09:42:59 Last Seen2024-04-19 12:39:47 Times Seen2 Hash 14be25169ca413844d7a45630b05291d 519a35bb074c8f17b7c16797e8ccba959cab9562 87a2fd1c8b10f60304564e6e0a715fe1088ea6f67bf94b902ed56c57d6c0b2d4 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 3988c4dc046a03f5a1cc22eff17840eb	76 B	2024-03-03	2024-04-19
Pretty Observations First Seen2024-03-03 07:57:18 Last Seen2024-04-19 12:39:47 Times Seen4 Hash 3988c4dc046a03f5a1cc22eff17840eb 2fe1d47c732ce88ab1874b1b021428dd08715fc3 8b8e7d6008c4956a486c9942a1a891b621f0eb04b74c0f0b92be34719fa91994 Loading...

HTTP Transactions (59)

URL IP Response Size

gmnvxhs.cn/login.php

114.134.189.160

0 B

URL
gmnvxhs.cn/login.php
IP
114.134.189.160:0
ASN
#142032 High Family Technology Co., Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /login.php HTTP/1.1
Host: gmnvxhs.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Fri, 19 Apr 2024 10:39:16 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://www.gmnvxhs.cn/login.php

www.gmnvxhs.cn/login.php

114.134.189.160

0 B

URL
www.gmnvxhs.cn/login.php
IP
114.134.189.160:0
ASN
#142032 High Family Technology Co., Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /login.php HTTP/1.1
Host: www.gmnvxhs.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Fri, 19 Apr 2024 10:39:20 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://www.gmnvxhs.cn/news/345d499328.html

www.gmnvxhs.cn/news/345d499328.html

114.134.189.160

7.6 kB

URL
www.gmnvxhs.cn/news/345d499328.html
IP
114.134.189.160:0
ASN
#142032 High Family Technology Co., Limited

File type
HTML document, Unicode text, UTF-8 text, with very long lines (8960), with CRLF, CR line terminators
Size
7.6 kB (7641 bytes)
Hash
983dd68449ea2f96f6a7ce54faecaa2f
b805f0acf1f4c3123e0ece4947a2798d7bfe549c
279bec9d6e8feb04cf48c2527fa59666ed508d78dbbfee015608fb648da719da

Detections

NIDS	Severity	Alert
suricata	low	ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M1
suricata	low	ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M2
suricata	low	ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M3

HTTP Headers

GET /news/345d499328.html HTTP/1.1
Host: www.gmnvxhs.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 19 Apr 2024 10:39:28 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

www.gmnvxhs.cn/template/news/news09/style/ningmp.css

114.134.189.160

4.5 kB

URL
www.gmnvxhs.cn/template/news/news09/style/ningmp.css
IP
114.134.189.160:0
ASN
#142032 High Family Technology Co., Limited

File type
troff or preprocessor input, ISO-8859 text, with CRLF line terminators
Size
4.5 kB (4454 bytes)
Hash
2258ac4c00383593912de165167d2570
efea32296699bc6e2ef5093929b77fbcbb278a59
fa69ae88fb13aa9305579e21e5a7b464c1d948fd9e81dc6374e38a94a17ae1d4

HTTP Headers

GET /template/news/news09/style/ningmp.css HTTP/1.1
Host: www.gmnvxhs.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.gmnvxhs.cn/news/345d499328.html
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 19 Apr 2024 10:39:29 GMT
Content-Type: text/css
Last-Modified: Thu, 01 Feb 2024 07:44:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"65bb4bfa-4a7e"
Expires: Fri, 19 Apr 2024 22:39:29 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip

www.gmnvxhs.cn/template/news/news09/images/xd.gif

114.134.189.160

99 B

URL
www.gmnvxhs.cn/template/news/news09/images/xd.gif
IP
114.134.189.160:0
ASN
#142032 High Family Technology Co., Limited

File type
GIF image data, version 89a, 10 x 20
Size
99 B (99 bytes)
Hash
e5f445552abe6bc0602a781e95f32928
e670f7651c3ead05409eb403474cb67de03f0297
79d199d8bc1a342e3d9f9e6239fc2748b86a075254acc9b068b2c5b51ea47601

HTTP Headers

GET /template/news/news09/images/xd.gif HTTP/1.1
Host: www.gmnvxhs.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.gmnvxhs.cn/template/news/news09/style/ningmp.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 19 Apr 2024 10:39:29 GMT
Content-Type: image/gif
Content-Length: 99
Last-Modified: Thu, 01 Feb 2024 07:44:58 GMT
Connection: keep-alive
ETag: "65bb4bfa-63"
Expires: Sun, 19 May 2024 10:39:29 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes

www.gmnvxhs.cn/template/news/news09/images/so.gif

114.134.189.160

316 B

URL
www.gmnvxhs.cn/template/news/news09/images/so.gif
IP
114.134.189.160:0
ASN
#142032 High Family Technology Co., Limited

File type
GIF image data, version 89a, 33 x 24
Size
316 B (316 bytes)
Hash
bab480ec636967e1613727ba529c4ea8
83150724663681eacee29e219ce29894e8420220
d7cdad285ebc82c4456dfd5bb5c4dc2365addcdfc8c88b737fe3e59bcb5c28cb

HTTP Headers

GET /template/news/news09/images/so.gif HTTP/1.1
Host: www.gmnvxhs.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.gmnvxhs.cn/news/345d499328.html
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 19 Apr 2024 10:39:29 GMT
Content-Type: image/gif
Content-Length: 316
Last-Modified: Thu, 01 Feb 2024 07:44:58 GMT
Connection: keep-alive
ETag: "65bb4bfa-13c"
Expires: Sun, 19 May 2024 10:39:29 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes

www.gmnvxhs.cn/template/news/news09/images/ph.gif

114.134.189.160

627 B

URL
www.gmnvxhs.cn/template/news/news09/images/ph.gif
IP
114.134.189.160:0
ASN
#142032 High Family Technology Co., Limited

File type
GIF image data, version 89a, 18 x 290
Size
627 B (627 bytes)
Hash
da372ec3116207e27606284768f4e16c
319278c39d142cec6b761a9f3d14750c5125a46f
7f03353a2f62d019eafd027358f11cb187cbdd8e1a547833756514a2bd205b6a

HTTP Headers

GET /template/news/news09/images/ph.gif HTTP/1.1
Host: www.gmnvxhs.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.gmnvxhs.cn/template/news/news09/style/ningmp.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 19 Apr 2024 10:39:29 GMT
Content-Type: image/gif
Content-Length: 627
Last-Modified: Thu, 01 Feb 2024 07:44:58 GMT
Connection: keep-alive
ETag: "65bb4bfa-273"
Expires: Sun, 19 May 2024 10:39:29 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes

api.tongjiniao.com/c?_=604355038016991232

43.248.140.176

3.9 kB

URL
api.tongjiniao.com/c?_=604355038016991232
IP
43.248.140.176:0
ASN
#23650 AS Number for CHINANET jiangsu province backbone

File type
JavaScript source, ASCII text, with CRLF line terminators
Size
3.9 kB (3887 bytes)
Hash
19110e6eac471ffdc0726a8d018b74a5
545c63e34048b1505228a42e170ea7c9c4b6f5dc
3c8be5989250b5aae85813b74285318ea0c7f5c32697c890bbfa68cd57c4b2c5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /c?_=604355038016991232 HTTP/1.1
Host: api.tongjiniao.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.gmnvxhs.cn/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 19 Apr 2024 10:39:29 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 3887
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: DNT,Keep-Alive,User-Agent,Cache-Control,Content-Type,Authorization
Content-Encoding: gzip
Cache-Control: no-cache,no-store, no-cache

bdimg.share.baidu.com/static/js/shell_v2.js?cdnversion=475979

112.34.113.148

571 B

URL
bdimg.share.baidu.com/static/js/shell_v2.js?cdnversion=475979
IP
112.34.113.148:0
ASN
#9808 China Mobile Communications Group Co., Ltd.

File type
JavaScript source, ASCII text, with very long lines (1135), with no line terminators
Size
571 B (571 bytes)
Hash
22589e4e13247c72d03abfcf26321152
54add8ab3c97313ed67cca6db4284f36db5507c0
96e94fab37c4307d249cf2582540f86e433162b2e537cd54c7e888ca8d93c214

HTTP Headers

GET /static/js/shell_v2.js?cdnversion=475979 HTTP/1.1
Host: bdimg.share.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.gmnvxhs.cn/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 571
Content-Type: text/javascript
Date: Fri, 19 Apr 2024 10:39:30 GMT
Etag: "2176374695"
Expires: Fri, 19 Apr 2024 11:09:30 GMT
Last-Modified: Fri, 05 Jun 2015 08:50:12 GMT
Server: BWS/1.0
Vary: Accept-Encoding

api.tongjiniao.com/r?t=1713523169&p=639896313109979136

43.248.140.176

58 B

URL
api.tongjiniao.com/r?t=1713523169&p=639896313109979136
IP
43.248.140.176:0
ASN
#23650 AS Number for CHINANET jiangsu province backbone

File type
JSON text data
Size
58 B (58 bytes)
Hash
f6f0534758356f644786f03d9912b271
de49a584515e2637c727595652f99c78386ff7d4
7ee2a3a5e4b1e50bb31b22d8399f9917073e0421d56c5da3699371ec79af2082

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /r?t=1713523169&p=639896313109979136 HTTP/1.1
Host: api.tongjiniao.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded
Content-Length: 847
Origin: http://www.gmnvxhs.cn
DNT: 1
Connection: keep-alive
Referer: http://www.gmnvxhs.cn/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 19 Apr 2024 10:39:30 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 58
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: DNT,Keep-Alive,User-Agent,Cache-Control,Content-Type,Authorization
Content-Encoding: gzip
Cache-Control: no-cache,no-store, no-cache

ziyuan.baidu.com/image.gif

182.61.201.91

648 B

URL
ziyuan.baidu.com/image.gif
IP
182.61.201.91:0
ASN
#38365 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
HTML document, ASCII text
Size
648 B (648 bytes)
Hash
1208c7caa6e48f662ce5d0ad377206c5
112ab78515a9903983db92abebf07926612fc63c
f8e2041ec44576bce8756cc9601b76c9fff9d2947dc1bcf9d65f5b09e44b2ba9

HTTP Headers

GET /image.gif HTTP/1.1
Host: ziyuan.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.gmnvxhs.cn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Cache-Control: no-store, no-cache, must-revalidate
Content-Encoding: gzip
Content-Type: text/html; charset=UTF-8
Date: Fri, 19 Apr 2024 10:39:30 GMT
Expires: Thu, 19 Nov 1981 08:52:00 GMT
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Pragma: no-cache
Server: nginx/1.8.0
Set-Cookie: PHPSESSID=s5gjff58g3igh6elduaqfljjp6; path=/
BAIDUID=135880CF4ECF9EFC26DC5FE6BC5F3147:FG=1; expires=Sat, 19-Apr-25 10:39:30 GMT; max-age=31536000; path=/; domain=.baidu.com; version=1
Strict-Transport-Security: max-age=2592000
Tracecode: 23706536130674161418041918
Vary: Accept-Encoding
X-Protected-By: OpenRASP1.0
X-Request-Id: 801ae0935b841cf50231135387d5d7c4
Transfer-Encoding: chunked

www.gmnvxhs.cn/favicon.ico

114.134.189.160

0 B

URL
www.gmnvxhs.cn/favicon.ico
IP
114.134.189.160:0
ASN
#142032 High Family Technology Co., Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.gmnvxhs.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.gmnvxhs.cn/news/345d499328.html
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 19 Apr 2024 10:39:30 GMT
Content-Type: image/x-icon
Content-Length: 0
Last-Modified: Thu, 01 Feb 2024 07:44:56 GMT
Connection: keep-alive
ETag: "65bb4bf8-0"
Accept-Ranges: bytes

bdimg.share.baidu.com/static/js/logger.js?cdnversion=475979

112.34.113.148

2.4 kB

URL
bdimg.share.baidu.com/static/js/logger.js?cdnversion=475979
IP
112.34.113.148:0
ASN
#9808 China Mobile Communications Group Co., Ltd.

File type
JavaScript source, ASCII text, with very long lines (5881), with no line terminators
Size
2.4 kB (2404 bytes)
Hash
6145620717ddbcb0ff067548919c5104
117809d3a976ac3681f49f7984bd209eb1c4ade6
6f1c9b5885df8bec5df7e730b10304c252e18804462c14fd0724e865ef25c654

HTTP Headers

GET /static/js/logger.js?cdnversion=475979 HTTP/1.1
Host: bdimg.share.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.gmnvxhs.cn/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 2404
Content-Type: text/javascript
Date: Fri, 19 Apr 2024 10:39:30 GMT
Etag: "867751605"
Expires: Fri, 19 Apr 2024 11:09:30 GMT
Last-Modified: Fri, 05 Jun 2015 08:50:12 GMT
Server: BWS/1.0
Vary: Accept-Encoding

bdimg.share.baidu.com/static/js/bds_s_v2.js?cdnversion=475979

112.34.113.148

10 kB

URL
bdimg.share.baidu.com/static/js/bds_s_v2.js?cdnversion=475979
IP
112.34.113.148:0
ASN
#9808 China Mobile Communications Group Co., Ltd.

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (26168), with no line terminators
Size
10 kB (9992 bytes)
Hash
16b162cb4acf16c0a203e80d8e76ef07
5f9cc1a30e2e31b99e5505e57da91ca9506fdb9b
6840e2b956675f9c0863baaa15d0522ae893dd60482b4af91a46083020578b5b

HTTP Headers

GET /static/js/bds_s_v2.js?cdnversion=475979 HTTP/1.1
Host: bdimg.share.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.gmnvxhs.cn/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 9992
Content-Type: text/javascript
Date: Fri, 19 Apr 2024 10:39:30 GMT
Etag: "859391591"
Expires: Fri, 19 Apr 2024 11:09:30 GMT
Last-Modified: Fri, 05 Jun 2015 08:50:12 GMT
Server: BWS/1.0
Vary: Accept-Encoding

bdimg.share.baidu.com/static/css/bdsstyle.css?cdnversion=20131219

112.34.113.148

2.0 kB

URL
bdimg.share.baidu.com/static/css/bdsstyle.css?cdnversion=20131219
IP
112.34.113.148:0
ASN
#9808 China Mobile Communications Group Co., Ltd.

File type
Unicode text, UTF-8 text, with very long lines (9747), with no line terminators
Size
2.0 kB (2021 bytes)
Hash
75059014a29a3c9a4b71e6fb3d59a747
6e8cb5ffcdae6148974a0aa87ddfc973737b2660
4067e0bd861b026d7bda9b5b7dfb7d0bd2af96616aeb4313244d47be73c2c7d4

HTTP Headers

GET /static/css/bdsstyle.css?cdnversion=20131219 HTTP/1.1
Host: bdimg.share.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.gmnvxhs.cn/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 2021
Content-Type: text/css
Date: Fri, 19 Apr 2024 10:39:31 GMT
Etag: "3350779264"
Expires: Fri, 19 Apr 2024 11:09:31 GMT
Last-Modified: Fri, 05 Jun 2015 08:50:09 GMT
Server: BWS/1.0
Vary: Accept-Encoding

bdimg.share.baidu.com/static/images/sc.png?cdnversion=20120720

112.34.113.148

579 B

URL
bdimg.share.baidu.com/static/images/sc.png?cdnversion=20120720
IP
112.34.113.148:0
ASN
#9808 China Mobile Communications Group Co., Ltd.

File type
PNG image data, 96 x 92, 8-bit colormap, non-interlaced
Size
579 B (579 bytes)
Hash
8fd98fddd3cfac30ba71cdd3a970ff04
e5a2ca56973a3d6608e7e3a48ebd9fa5ebda9991
e7604f6e940013c082b193cca272bfc9add968dec4ef12f4f7b22f4d7496a314

HTTP Headers

GET /static/images/sc.png?cdnversion=20120720 HTTP/1.1
Host: bdimg.share.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://bdimg.share.baidu.com/static/css/bdsstyle.css?cdnversion=20131219
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=604800
Content-Length: 579
Content-Type: image/png
Date: Fri, 19 Apr 2024 10:39:31 GMT
Etag: "3350780909"
Expires: Fri, 26 Apr 2024 10:39:31 GMT
Last-Modified: Fri, 05 Jun 2015 08:50:10 GMT
Server: BWS/1.0

bdimg.share.baidu.com/static/images/is.png?cdnversion=20131219

112.34.113.148

12 kB

URL
bdimg.share.baidu.com/static/images/is.png?cdnversion=20131219
IP
112.34.113.148:0
ASN
#9808 China Mobile Communications Group Co., Ltd.

File type
PNG image data, 20 x 2620, 8-bit colormap, non-interlaced
Size
12 kB (12294 bytes)
Hash
fee619fb8de49c08487681bd0119fa5c
9c7231237e5e5f4e8408623b401dece33f6563ce
dc274420601f10bec22ea0dc7e9a1a1425ba67d4a40153d30c864752c09901d2

HTTP Headers

GET /static/images/is.png?cdnversion=20131219 HTTP/1.1
Host: bdimg.share.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://bdimg.share.baidu.com/static/css/bdsstyle.css?cdnversion=20131219
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=604800
Content-Length: 12294
Content-Type: image/png
Date: Fri, 19 Apr 2024 10:39:31 GMT
Etag: "557408074"
Expires: Fri, 26 Apr 2024 10:39:31 GMT
Last-Modified: Fri, 05 Jun 2015 08:50:09 GMT
Server: BWS/1.0

p.tx9968.com/statics/ffsm/public/wap/js/libs/require-2.3.6.min.js?v=59da35f

138.113.100.16

200 OK

7.1 kB

URL GET HTTP/1.1
p.tx9968.com/statics/ffsm/public/wap/js/libs/require-2.3.6.min.js?v=59da35f
IP
138.113.100.16:443
ASN
#54994 ML-1432-54994

Requested by
https://pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755
Certificate
IssuerDigiCert Inc
Subject*.tx9968.com
Fingerprint39:79:16:A2:A6:28:72:6D:5D:CB:2E:4D:CA:91:E3:29:00:B7:19:94
ValidityMon, 07 Aug 2023 00:00:00 GMT - Wed, 07 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (17493)
Size
7.1 kB (7112 bytes)
Hash
1565af44b896bc4c641f238fd800fc83
cc1460eda8305a15fb88eb1d49d67b0d35d9ad04
4948c3fe4b57cd92118ec7b89deb99ff0eb2586a02c5f454df21c1ecfc144c81

HTTP Headers

GET /statics/ffsm/public/wap/js/libs/require-2.3.6.min.js?v=59da35f HTTP/1.1
Host: p.tx9968.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pp.sm688802.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 19 Apr 2024 10:39:35 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Fri, 19 Apr 2024 22:39:35 GMT
Server: nginx
Last-Modified: Thu, 20 Oct 2022 10:24:39 GMT
ETag: W/"635121e7-451f"
Cache-Control: max-age=43200
Content-Encoding: gzip
X-Via: 1.1 PS-HKG-04JlJ51:0 (Cdn Cache Server V2.0), 1.1 PSfgblPAR2cm80:19 (Cdn Cache Server V2.0)
X-Ws-Request-Id: 662249e6_PSfgblPAR2cm80_29948-7367
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS

p.tx9968.com/statics/ffsm/public/wap/js/common.min.js?v=f56f5eb

138.113.100.16

200 OK

7.2 kB

URL GET HTTP/1.1
p.tx9968.com/statics/ffsm/public/wap/js/common.min.js?v=f56f5eb
IP
138.113.100.16:443
ASN
#54994 ML-1432-54994

Requested by
https://pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755
Certificate
IssuerDigiCert Inc
Subject*.tx9968.com
Fingerprint39:79:16:A2:A6:28:72:6D:5D:CB:2E:4D:CA:91:E3:29:00:B7:19:94
ValidityMon, 07 Aug 2023 00:00:00 GMT - Wed, 07 Aug 2024 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (22136), with no line terminators
Size
7.2 kB (7154 bytes)
Hash
4cca5a914cc79c32f99c38c60c96d3df
a874e9f97480bee1ec0dcaa9d0df8a9703eb1e1b
ed67c01217c878e35ed38e6dbea0ef523e5292966e7545d230490001df6d392a

HTTP Headers

GET /statics/ffsm/public/wap/js/common.min.js?v=f56f5eb HTTP/1.1
Host: p.tx9968.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pp.sm688802.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 19 Apr 2024 10:39:35 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Fri, 19 Apr 2024 22:39:35 GMT
Server: nginx
Last-Modified: Mon, 21 Aug 2023 08:28:43 GMT
ETag: W/"64e3203b-581c"
Cache-Control: max-age=43200
Content-Encoding: gzip
X-Via: 1.1 PS-HKG-04JlJ51:0 (Cdn Cache Server V2.0), 1.1 PS-CDG-01orF60:16 (Cdn Cache Server V2.0)
X-Ws-Request-Id: 662249e6_PSfgblPAR2cm80_30068-62035
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS

p.tx9968.com/statics/ffsm/app/bazijingpi/11/style.min.css?v=e4efc9c

138.113.100.16

200 OK

6.4 kB

URL GET HTTP/1.1
p.tx9968.com/statics/ffsm/app/bazijingpi/11/style.min.css?v=e4efc9c
IP
138.113.100.16:443
ASN
#54994 ML-1432-54994

Requested by
https://pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755
Certificate
IssuerDigiCert Inc
Subject*.tx9968.com
Fingerprint39:79:16:A2:A6:28:72:6D:5D:CB:2E:4D:CA:91:E3:29:00:B7:19:94
ValidityMon, 07 Aug 2023 00:00:00 GMT - Wed, 07 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (25525), with no line terminators
Size
6.4 kB (6359 bytes)
Hash
3ac88ffb61e74f6b5532c8e39c130b63
5bb7c3b442e5a51d7295ec544cfc620b8802a692
665f5f891841ae310929b30f4ac78c51a093cf535b4f898d02e9a9490279c2a8

HTTP Headers

GET /statics/ffsm/app/bazijingpi/11/style.min.css?v=e4efc9c HTTP/1.1
Host: p.tx9968.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pp.sm688802.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 19 Apr 2024 10:39:35 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Last-Modified: Tue, 29 Aug 2023 09:20:33 GMT
ETag: W/"64edb861-63b5"
Expires: Fri, 19 Apr 2024 22:39:35 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
X-Via: 1.1 PSfgblPAR2au188:8 (Cdn Cache Server V2.0), 1.1 PSfgblPAR2dz77:6 (Cdn Cache Server V2.0)
X-Ws-Request-Id: 662249e6_PSfgblPAR2cm80_30686-23638
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS

p.tx9968.com/statics/ffsm/public/wap/base.min.css?v=a923080

138.113.100.16

200 OK

26 kB

URL GET HTTP/1.1
p.tx9968.com/statics/ffsm/public/wap/base.min.css?v=a923080
IP
138.113.100.16:443
ASN
#54994 ML-1432-54994

Requested by
https://pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755
Certificate
IssuerDigiCert Inc
Subject*.tx9968.com
Fingerprint39:79:16:A2:A6:28:72:6D:5D:CB:2E:4D:CA:91:E3:29:00:B7:19:94
ValidityMon, 07 Aug 2023 00:00:00 GMT - Wed, 07 Aug 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Size
26 kB (25999 bytes)
Hash
1ea21decb6d3a35427ff9c8dc72f7e11
0243248c3b71362003640ef10a4c382f3054b711
0a8f26d2609e5bc643d63860db25db469ed03d0dfc843ea1ce6f0a2c4364b454

HTTP Headers

GET /statics/ffsm/public/wap/base.min.css?v=a923080 HTTP/1.1
Host: p.tx9968.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pp.sm688802.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 19 Apr 2024 10:39:35 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Fri, 19 Apr 2024 22:39:35 GMT
Server: nginx
Last-Modified: Wed, 16 Aug 2023 09:35:15 GMT
ETag: W/"64dc9853-14e4e"
Cache-Control: max-age=43200
Content-Encoding: gzip
X-Via: 1.1 PS-HKG-04JlJ51:0 (Cdn Cache Server V2.0), 1.1 PS-CDG-01tVU61:1 (Cdn Cache Server V2.0)
X-Ws-Request-Id: 662249e6_PSfgblPAR2cm80_26994-8761
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS

pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755

121.199.78.118

200 OK

14 kB

URL User Request GET HTTP/2
pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755
IP
121.199.78.118:443
ASN
#37963 Hangzhou Alibaba Advertising Co.,Ltd.

Certificate
IssuerDigiCert, Inc.
Subject*.sm688802.com
FingerprintBC:DE:D0:A0:1B:08:52:41:F4:AE:2E:97:40:B7:54:CD:B3:B0:E0:EE
ValidityMon, 29 May 2023 00:00:00 GMT - Wed, 29 May 2024 23:59:59 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (12000)
Size
14 kB (14315 bytes)
Hash
f209d26641d8b8bf5c997afbe872251f
f7094f33a82ba6bc7b03d66946ba98154a2d48f9
14af692eef5bce0c69c159aca7792ce2ffa665c0e7c1f6a470c69ec1e314f90c

HTTP Headers

GET /bazijingpi/?spread=tui&dhid=4755 HTTP/1.1
Host: pp.sm688802.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.gmnvxhs.cn/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Authorization, Content-Type, If-Match, If-Modified-Since, If-None-Match, If-Unmodified-Since, X-CSRF-TOKEN, X-Requested-With
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1800
content-encoding: gzip
content-type: text/html; charset=utf-8
date: Fri, 19 Apr 2024 10:39:33 GMT
set-cookie: spread=tui; expires=Fri, 19-Apr-2024 16:00:00 GMT; path=/
get_parameter=spread%3Dtui%26dhid%3D4755; expires=Fri, 19-Apr-2024 16:00:00 GMT; path=/
vary: Accept-Encoding
x-cache: BYPASS
X-Firefox-Spdy: h2

p.tx9968.com/statics/ffsm/public/wap/js/libs/jquery-3.4.1.min.js?v=748b731

138.113.100.16

200 OK

34 kB

URL GET HTTP/1.1
p.tx9968.com/statics/ffsm/public/wap/js/libs/jquery-3.4.1.min.js?v=748b731
IP
138.113.100.16:443
ASN
#54994 ML-1432-54994

Requested by
https://pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755
Certificate
IssuerDigiCert Inc
Subject*.tx9968.com
Fingerprint39:79:16:A2:A6:28:72:6D:5D:CB:2E:4D:CA:91:E3:29:00:B7:19:94
ValidityMon, 07 Aug 2023 00:00:00 GMT - Wed, 07 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
34 kB (34489 bytes)
Hash
220afd743d9e9643852e31a135a9f3ae
88523924351bac0b5d560fe0c5781e2556e7693d
0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a

HTTP Headers

GET /statics/ffsm/public/wap/js/libs/jquery-3.4.1.min.js?v=748b731 HTTP/1.1
Host: p.tx9968.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pp.sm688802.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 19 Apr 2024 10:39:35 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Fri, 19 Apr 2024 22:39:35 GMT
Server: nginx
Last-Modified: Thu, 20 Oct 2022 10:24:39 GMT
ETag: W/"635121e7-15851"
Cache-Control: max-age=43200
Content-Encoding: gzip
X-Via: 1.1 PS-HKG-04JlJ51:0 (Cdn Cache Server V2.0), 1.1 PS-CDG-01orF60:17 (Cdn Cache Server V2.0)
X-Ws-Request-Id: 662249e6_PSfgblPAR2cm80_27439-20500
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS

p.tx9968.com/statics/ffsm/app/bazijingpi/11/images/0_in0.png?v=0b95250

138.113.100.16

200 OK

20 kB

URL GET HTTP/1.1
p.tx9968.com/statics/ffsm/app/bazijingpi/11/images/0_in0.png?v=0b95250
IP
138.113.100.16:443
ASN
#54994 ML-1432-54994

Requested by
https://pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755
Certificate
IssuerDigiCert Inc
Subject*.tx9968.com
Fingerprint39:79:16:A2:A6:28:72:6D:5D:CB:2E:4D:CA:91:E3:29:00:B7:19:94
ValidityMon, 07 Aug 2023 00:00:00 GMT - Wed, 07 Aug 2024 23:59:59 GMT

File type
PNG image data, 200 x 200, 8-bit colormap, non-interlaced
Size
20 kB (20266 bytes)
Hash
0b95250db095697892db9cebad620ed3
a51826048a4dfe77e52353d105bf4ef74f0a8c09
dfe32ebb65702210a1a196a258f7f17ca93320647a4a932ba665de038f279abc

HTTP Headers

GET /statics/ffsm/app/bazijingpi/11/images/0_in0.png?v=0b95250 HTTP/1.1
Host: p.tx9968.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pp.sm688802.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 19 Apr 2024 10:39:36 GMT
Content-Type: image/png
Content-Length: 20266
Connection: keep-alive
Server: nginx
Last-Modified: Thu, 20 Oct 2022 10:24:36 GMT
ETag: "635121e4-4f2a"
Expires: Sun, 19 May 2024 10:39:36 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
X-Via: 1.1 PSjshasx3dq34:0 (Cdn Cache Server V2.0), 1.1 PSfgblPAR2cm80:1 (Cdn Cache Server V2.0)
X-Ws-Request-Id: 662249e8_PSfgblPAR2cm80_30068-62104
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS

pp.sm688802.com/statics/ffsm/public/wap/js/rui-datepicker-1.6.0/rui-datepicker.min.js

121.199.78.118

169 B

URL GET
pp.sm688802.com/statics/ffsm/public/wap/js/rui-datepicker-1.6.0/rui-datepicker.min.js
IP
121.199.78.118:0
ASN
#37963 Hangzhou Alibaba Advertising Co.,Ltd.

Requested by
https://pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755
Certificate
IssuerDigiCert, Inc.
Subject*.sm688802.com
FingerprintBC:DE:D0:A0:1B:08:52:41:F4:AE:2E:97:40:B7:54:CD:B3:B0:E0:EE
ValidityMon, 29 May 2023 00:00:00 GMT - Wed, 29 May 2024 23:59:59 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
169 B (169 bytes)
Hash
5584cd241a762d7a7488f14d5409293c
a88c6560e46f39dca33a1bbbc74c319e89adfe2a
56fd937f2948b7fc1b223fc1da61e781a93f6b4c74cfd88e1115bb74418c7dff

HTTP Headers

GET /statics/ffsm/public/wap/js/rui-datepicker-1.6.0/rui-datepicker.min.js HTTP/1.1
Host: pp.sm688802.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755
Cookie: spread=tui; get_parameter=spread%3Dtui%26dhid%3D4755
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 301 Moved Permanently
content-type: text/html
date: Fri, 19 Apr 2024 10:39:36 GMT
location: https://p.tx9968.com/statics/ffsm/public/wap/js/rui-datepicker-1.6.0/rui-datepicker.min.js
x-cache: BYPASS, Status: 301
content-length: 169
X-Firefox-Spdy: h2

pp.sm688802.com/statics/ffsm/public/wap/js/libs/require-css-0.1.10.min.js

121.199.78.118

169 B

URL GET
pp.sm688802.com/statics/ffsm/public/wap/js/libs/require-css-0.1.10.min.js
IP
121.199.78.118:0
ASN
#37963 Hangzhou Alibaba Advertising Co.,Ltd.

Requested by
https://pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755
Certificate
IssuerDigiCert, Inc.
Subject*.sm688802.com
FingerprintBC:DE:D0:A0:1B:08:52:41:F4:AE:2E:97:40:B7:54:CD:B3:B0:E0:EE
ValidityMon, 29 May 2023 00:00:00 GMT - Wed, 29 May 2024 23:59:59 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
169 B (169 bytes)
Hash
5584cd241a762d7a7488f14d5409293c
a88c6560e46f39dca33a1bbbc74c319e89adfe2a
56fd937f2948b7fc1b223fc1da61e781a93f6b4c74cfd88e1115bb74418c7dff

HTTP Headers

GET /statics/ffsm/public/wap/js/libs/require-css-0.1.10.min.js HTTP/1.1
Host: pp.sm688802.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755
Cookie: spread=tui; get_parameter=spread%3Dtui%26dhid%3D4755
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 301 Moved Permanently
content-type: text/html
date: Fri, 19 Apr 2024 10:39:36 GMT
location: https://p.tx9968.com/statics/ffsm/public/wap/js/libs/require-css-0.1.10.min.js
x-cache: BYPASS, Status: 301
content-length: 169
X-Firefox-Spdy: h2

pp.sm688802.com/statics/ffsm/public/wap/js/layer-3.1.0/layer.js

121.199.78.118

169 B

URL GET
pp.sm688802.com/statics/ffsm/public/wap/js/layer-3.1.0/layer.js
IP
121.199.78.118:0
ASN
#37963 Hangzhou Alibaba Advertising Co.,Ltd.

Requested by
https://pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755
Certificate
IssuerDigiCert, Inc.
Subject*.sm688802.com
FingerprintBC:DE:D0:A0:1B:08:52:41:F4:AE:2E:97:40:B7:54:CD:B3:B0:E0:EE
ValidityMon, 29 May 2023 00:00:00 GMT - Wed, 29 May 2024 23:59:59 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
169 B (169 bytes)
Hash
5584cd241a762d7a7488f14d5409293c
a88c6560e46f39dca33a1bbbc74c319e89adfe2a
56fd937f2948b7fc1b223fc1da61e781a93f6b4c74cfd88e1115bb74418c7dff

HTTP Headers

GET /statics/ffsm/public/wap/js/layer-3.1.0/layer.js HTTP/1.1
Host: pp.sm688802.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755
Cookie: spread=tui; get_parameter=spread%3Dtui%26dhid%3D4755
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 301 Moved Permanently
content-type: text/html
date: Fri, 19 Apr 2024 10:39:36 GMT
location: https://p.tx9968.com/statics/ffsm/public/wap/js/layer-3.1.0/layer.js
x-cache: BYPASS, Status: 301
content-length: 169
X-Firefox-Spdy: h2

pp.sm688802.com/statics/ffsm/public/wap/js/swiper-4.5.0/swiper.min.js

121.199.78.118

169 B

URL GET
pp.sm688802.com/statics/ffsm/public/wap/js/swiper-4.5.0/swiper.min.js
IP
121.199.78.118:0
ASN
#37963 Hangzhou Alibaba Advertising Co.,Ltd.

Requested by
https://pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755
Certificate
IssuerDigiCert, Inc.
Subject*.sm688802.com
FingerprintBC:DE:D0:A0:1B:08:52:41:F4:AE:2E:97:40:B7:54:CD:B3:B0:E0:EE
ValidityMon, 29 May 2023 00:00:00 GMT - Wed, 29 May 2024 23:59:59 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
169 B (169 bytes)
Hash
5584cd241a762d7a7488f14d5409293c
a88c6560e46f39dca33a1bbbc74c319e89adfe2a
56fd937f2948b7fc1b223fc1da61e781a93f6b4c74cfd88e1115bb74418c7dff

HTTP Headers

GET /statics/ffsm/public/wap/js/swiper-4.5.0/swiper.min.js HTTP/1.1
Host: pp.sm688802.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755
Cookie: spread=tui; get_parameter=spread%3Dtui%26dhid%3D4755
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 301 Moved Permanently
content-type: text/html
date: Fri, 19 Apr 2024 10:39:36 GMT
location: https://p.tx9968.com/statics/ffsm/public/wap/js/swiper-4.5.0/swiper.min.js
x-cache: BYPASS, Status: 301
content-length: 169
X-Firefox-Spdy: h2

p.tx9968.com/statics/ffsm/app/bazijingpi/11/images/0_swiper2.jpg?v=5019d5a

138.113.100.16

46 kB

URL GET
p.tx9968.com/statics/ffsm/app/bazijingpi/11/images/0_swiper2.jpg?v=5019d5a
IP
138.113.100.16:0
ASN
#54994 ML-1432-54994

Requested by
https://pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755
Certificate
IssuerDigiCert Inc
Subject*.tx9968.com
Fingerprint39:79:16:A2:A6:28:72:6D:5D:CB:2E:4D:CA:91:E3:29:00:B7:19:94
ValidityMon, 07 Aug 2023 00:00:00 GMT - Wed, 07 Aug 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 700x735, components 3
Size
46 kB (46372 bytes)
Hash
5019d5a922e5b72ed46344fe6feffe8e
f1bf03ce36b54f0399bf703a834d0bbbe18c56ee
74b75f21de2714d1cda4be1a02fda5d0578770021f40a7878f51e7cdcb90d0c8

HTTP Headers

GET /statics/ffsm/app/bazijingpi/11/images/0_swiper2.jpg?v=5019d5a HTTP/1.1
Host: p.tx9968.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pp.sm688802.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 19 Apr 2024 10:39:36 GMT
Content-Type: image/jpeg
Content-Length: 46372
Connection: keep-alive
Server: nginx
Last-Modified: Thu, 20 Oct 2022 10:24:36 GMT
ETag: "635121e4-b524"
Expires: Sun, 19 May 2024 10:39:36 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
X-Via: 1.1 PSjshasx3dq34:0 (Cdn Cache Server V2.0), 1.1 PS-CDG-01tVU61:0 (Cdn Cache Server V2.0)
X-Ws-Request-Id: 662249e8_PSfgblPAR2cm80_27307-60799
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS

p.tx9968.com/statics/ffsm/app/bazijingpi/11/images/0_in2.png?v=006ea64

138.113.100.16

23 kB

URL GET
p.tx9968.com/statics/ffsm/app/bazijingpi/11/images/0_in2.png?v=006ea64
IP
138.113.100.16:0
ASN
#54994 ML-1432-54994

Requested by
https://pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755
Certificate
IssuerDigiCert Inc
Subject*.tx9968.com
Fingerprint39:79:16:A2:A6:28:72:6D:5D:CB:2E:4D:CA:91:E3:29:00:B7:19:94
ValidityMon, 07 Aug 2023 00:00:00 GMT - Wed, 07 Aug 2024 23:59:59 GMT

File type
PNG image data, 480 x 480, 8-bit colormap, non-interlaced
Size
23 kB (23098 bytes)
Hash
006ea64b32585331c7893c6e4e787189
7b225833f80a9e000fa9f3b3c4505f4d7f75320f
d36bbd68ea7a8654a749e73bed5fc0db6f6a5a3f99b4507396e2bce290afb51d

HTTP Headers

GET /statics/ffsm/app/bazijingpi/11/images/0_in2.png?v=006ea64 HTTP/1.1
Host: p.tx9968.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pp.sm688802.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 19 Apr 2024 10:39:36 GMT
Content-Type: image/png
Content-Length: 23098
Connection: keep-alive
Server: nginx
Last-Modified: Thu, 20 Oct 2022 10:24:36 GMT
ETag: "635121e4-5a3a"
Expires: Sun, 19 May 2024 10:39:36 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
X-Via: 1.1 PSjshasx3dq34:0 (Cdn Cache Server V2.0), 1.1 PSfgblPAR2cm80:3 (Cdn Cache Server V2.0)
X-Ws-Request-Id: 662249e8_PSfgblPAR2cm80_27439-20612
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS

p.tx9968.com/statics/ffsm/app/bazijingpi/11/images/0_swiper4.jpg?v=66d7b7b

138.113.100.16

37 kB

URL GET
p.tx9968.com/statics/ffsm/app/bazijingpi/11/images/0_swiper4.jpg?v=66d7b7b
IP
138.113.100.16:0
ASN
#54994 ML-1432-54994

Requested by
https://pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755
Certificate
IssuerDigiCert Inc
Subject*.tx9968.com
Fingerprint39:79:16:A2:A6:28:72:6D:5D:CB:2E:4D:CA:91:E3:29:00:B7:19:94
ValidityMon, 07 Aug 2023 00:00:00 GMT - Wed, 07 Aug 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 700x735, components 3
Size
37 kB (37375 bytes)
Hash
66d7b7b8fe54bd6cdd495df2882a46ef
07c2fd37e7797f7f383183e5898817bb39c251da
ee13f62d46737d73980490f03c7497ea6f3406d9dc27b87494c1897a6cf3d0f9

HTTP Headers

GET /statics/ffsm/app/bazijingpi/11/images/0_swiper4.jpg?v=66d7b7b HTTP/1.1
Host: p.tx9968.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pp.sm688802.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 19 Apr 2024 10:39:36 GMT
Content-Type: image/jpeg
Content-Length: 37375
Connection: keep-alive
Server: nginx
Last-Modified: Thu, 20 Oct 2022 10:24:36 GMT
ETag: "635121e4-91ff"
Expires: Sun, 19 May 2024 10:39:36 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
X-Via: 1.1 PSjshasx3dq34:0 (Cdn Cache Server V2.0), 1.1 PS-CDG-01tVU61:10 (Cdn Cache Server V2.0)
X-Ws-Request-Id: 662249e8_PSfgblPAR2cm80_29948-7455
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS

p.tx9968.com/statics/ffsm/app/bazijingpi/11/images/0_swiper5.jpg?v=5889fff

138.113.100.16

200 OK

40 kB

URL GET HTTP/1.1
p.tx9968.com/statics/ffsm/app/bazijingpi/11/images/0_swiper5.jpg?v=5889fff
IP
138.113.100.16:443
ASN
#54994 ML-1432-54994

Requested by
https://pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755
Certificate
IssuerDigiCert Inc
Subject*.tx9968.com
Fingerprint39:79:16:A2:A6:28:72:6D:5D:CB:2E:4D:CA:91:E3:29:00:B7:19:94
ValidityMon, 07 Aug 2023 00:00:00 GMT - Wed, 07 Aug 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 700x735, components 3
Size
40 kB (39510 bytes)
Hash
5889fffd0f7d8bdec1fabde383cbdbb1
c0f25e767ad89576a3b70c7717d7e1c13ef2ecf7
56d45a51b9ccc0e182961dd27c5bae214e6ec72f09230d1b929a12287fb60072

HTTP Headers

GET /statics/ffsm/app/bazijingpi/11/images/0_swiper5.jpg?v=5889fff HTTP/1.1
Host: p.tx9968.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pp.sm688802.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 19 Apr 2024 10:39:36 GMT
Content-Type: image/jpeg
Content-Length: 39510
Connection: keep-alive
Server: nginx
Last-Modified: Thu, 20 Oct 2022 10:24:36 GMT
ETag: "635121e4-9a56"
Expires: Sun, 19 May 2024 10:39:36 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
X-Via: 1.1 PSjshasx3dq34:0 (Cdn Cache Server V2.0), 1.1 PS-CDG-01orF60:15 (Cdn Cache Server V2.0)
X-Ws-Request-Id: 662249e8_PSfgblPAR2cm80_30686-23777
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS

p.tx9968.com/statics/ffsm/app/bazijingpi/11/images/0_in1.png?v=16b7ef8

138.113.100.16

200 OK

13 kB

URL GET HTTP/1.1
p.tx9968.com/statics/ffsm/app/bazijingpi/11/images/0_in1.png?v=16b7ef8
IP
138.113.100.16:443
ASN
#54994 ML-1432-54994

Requested by
https://pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755
Certificate
IssuerDigiCert Inc
Subject*.tx9968.com
Fingerprint39:79:16:A2:A6:28:72:6D:5D:CB:2E:4D:CA:91:E3:29:00:B7:19:94
ValidityMon, 07 Aug 2023 00:00:00 GMT - Wed, 07 Aug 2024 23:59:59 GMT

File type
PNG image data, 300 x 300, 8-bit colormap, non-interlaced
Size
13 kB (12711 bytes)
Hash
16b7ef8c24e5befb27894a393ff22f28
83ce7859e8cfcd82fa0dee96bebf5d65945c99db
be1fc5bd67e41de43b24406f1f827882119f9b0f95f7aa9f7bfa2accbaaaa4a0

HTTP Headers

GET /statics/ffsm/app/bazijingpi/11/images/0_in1.png?v=16b7ef8 HTTP/1.1
Host: p.tx9968.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pp.sm688802.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 19 Apr 2024 10:39:36 GMT
Content-Type: image/png
Content-Length: 12711
Connection: keep-alive
Server: nginx
Last-Modified: Thu, 20 Oct 2022 10:24:36 GMT
ETag: "635121e4-31a7"
Expires: Sun, 19 May 2024 10:39:36 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
X-Via: 1.1 PSjshasx3dq34:0 (Cdn Cache Server V2.0), 1.1 PSfgblPAR2dz77:18 (Cdn Cache Server V2.0)
X-Ws-Request-Id: 662249e8_PSfgblPAR2cm80_26994-8856
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS

p.tx9968.com/statics/ffsm/public/wap/js/rui-datepicker-1.6.0/rui-datepicker.min.js

138.113.100.16

7.8 kB

URL GET
p.tx9968.com/statics/ffsm/public/wap/js/rui-datepicker-1.6.0/rui-datepicker.min.js
IP
138.113.100.16:0
ASN
#54994 ML-1432-54994

Requested by
https://pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755
Certificate
IssuerDigiCert Inc
Subject*.tx9968.com
Fingerprint39:79:16:A2:A6:28:72:6D:5D:CB:2E:4D:CA:91:E3:29:00:B7:19:94
ValidityMon, 07 Aug 2023 00:00:00 GMT - Wed, 07 Aug 2024 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (27422), with no line terminators
Size
7.8 kB (7828 bytes)
Hash
30b07d6145094c0654c859b4e184be2c
08d3cb9f0315ae3571d072c98bb7520d4caffff1
949d3cdd153ade97eca76d3fd350d2855933fd0fa594215caf2388175c8a10b7

HTTP Headers

GET /statics/ffsm/public/wap/js/rui-datepicker-1.6.0/rui-datepicker.min.js HTTP/1.1
Host: p.tx9968.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pp.sm688802.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 19 Apr 2024 10:39:37 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Fri, 19 Apr 2024 22:39:37 GMT
Server: nginx
Last-Modified: Sat, 03 Jun 2023 05:59:15 GMT
ETag: W/"647ad6b3-6d7a"
Cache-Control: max-age=43200
Content-Encoding: gzip
X-Via: 1.1 PSfgblPAR2dz77:9 (Cdn Cache Server V2.0)
X-Ws-Request-Id: 662249e8_PSfgblPAR2cm80_27307-60874
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS

p.tx9968.com/statics/ffsm/public/wap/js/libs/require-css-0.1.10.min.js

138.113.100.16

783 B

URL GET
p.tx9968.com/statics/ffsm/public/wap/js/libs/require-css-0.1.10.min.js
IP
138.113.100.16:0
ASN
#54994 ML-1432-54994

Requested by
https://pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755
Certificate
IssuerDigiCert Inc
Subject*.tx9968.com
Fingerprint39:79:16:A2:A6:28:72:6D:5D:CB:2E:4D:CA:91:E3:29:00:B7:19:94
ValidityMon, 07 Aug 2023 00:00:00 GMT - Wed, 07 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (1419), with no line terminators
Size
783 B (783 bytes)
Hash
5bea7d748bd7cc0ffadd553cfb7d7df0
628a8d3053813e46bbeca61e25bed20b6e9beb85
7a1ca83969fdffd1e2f6793767b34c226b02a85e860f5609c1f0dd15c3f48363

HTTP Headers

GET /statics/ffsm/public/wap/js/libs/require-css-0.1.10.min.js HTTP/1.1
Host: p.tx9968.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pp.sm688802.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 19 Apr 2024 10:39:37 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Fri, 19 Apr 2024 22:39:37 GMT
Server: nginx
Last-Modified: Thu, 20 Oct 2022 10:24:39 GMT
ETag: W/"635121e7-58b"
Cache-Control: max-age=43200
Content-Encoding: gzip
X-Via: 1.1 PS-HKG-04JlJ51:0 (Cdn Cache Server V2.0), 1.1 PS-CDG-01tVU61:5 (Cdn Cache Server V2.0)
X-Ws-Request-Id: 662249e8_PSfgblPAR2cm80_27439-20686
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS

p.tx9968.com/statics/ffsm/public/wap/js/layer-3.1.0/layer.js

138.113.100.16

8.4 kB

URL GET
p.tx9968.com/statics/ffsm/public/wap/js/layer-3.1.0/layer.js
IP
138.113.100.16:0
ASN
#54994 ML-1432-54994

Requested by
https://pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755
Certificate
IssuerDigiCert Inc
Subject*.tx9968.com
Fingerprint39:79:16:A2:A6:28:72:6D:5D:CB:2E:4D:CA:91:E3:29:00:B7:19:94
ValidityMon, 07 Aug 2023 00:00:00 GMT - Wed, 07 Aug 2024 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (22032)
Size
8.4 kB (8414 bytes)
Hash
6e80f0cff749c82653b9cdde9eeab937
7034e797787919a6742525a69723bf9dfda13790
1ce6649d82d2db0f8e4823f701ddfcfd9c7f107cb446c907e46ec7e57171a2a3

HTTP Headers

GET /statics/ffsm/public/wap/js/layer-3.1.0/layer.js HTTP/1.1
Host: p.tx9968.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pp.sm688802.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 19 Apr 2024 10:39:37 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Fri, 19 Apr 2024 22:39:37 GMT
Server: nginx
Last-Modified: Thu, 20 Oct 2022 10:24:39 GMT
ETag: W/"635121e7-5664"
Cache-Control: max-age=43200
Content-Encoding: gzip
X-Via: 1.1 PSfgblPAR2cm80:22 (Cdn Cache Server V2.0)
X-Ws-Request-Id: 662249e8_PSfgblPAR2cm80_29948-7514
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS

p.tx9968.com/statics/ffsm/app/bazijingpi/11/images/m_btn.png?v=1693218378014

138.113.100.16

19 kB

URL GET
p.tx9968.com/statics/ffsm/app/bazijingpi/11/images/m_btn.png?v=1693218378014
IP
138.113.100.16:0
ASN
#54994 ML-1432-54994

Requested by
https://pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755
Certificate
IssuerDigiCert Inc
Subject*.tx9968.com
Fingerprint39:79:16:A2:A6:28:72:6D:5D:CB:2E:4D:CA:91:E3:29:00:B7:19:94
ValidityMon, 07 Aug 2023 00:00:00 GMT - Wed, 07 Aug 2024 23:59:59 GMT

File type
PNG image data, 540 x 100, 8-bit colormap, non-interlaced
Size
19 kB (18892 bytes)
Hash
34c7cdf4965668c4840caf6c6bd49926
d12915e1195f6cb9875493cf293b2114bfbc88f3
991212dbf0e4a9f59814a2a386d340b108122c0b10af621d74c138769e543f3b

HTTP Headers

GET /statics/ffsm/app/bazijingpi/11/images/m_btn.png?v=1693218378014 HTTP/1.1
Host: p.tx9968.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://p.tx9968.com/statics/ffsm/app/bazijingpi/11/style.min.css?v=e4efc9c
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 19 Apr 2024 10:39:37 GMT
Content-Type: image/png
Content-Length: 18892
Connection: keep-alive
Server: nginx
Last-Modified: Thu, 20 Oct 2022 10:24:36 GMT
ETag: "635121e4-49cc"
Expires: Sun, 19 May 2024 10:39:36 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
X-Via: 1.1 PSjshasx3dq34:0 (Cdn Cache Server V2.0), 1.1 PSfgblPAR2dz77:14 (Cdn Cache Server V2.0)
X-Ws-Request-Id: 662249e8_PSfgblPAR2cm80_30068-62158
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS

hm.baidu.com/hm.js?4819762d419a9297f5b23550f5c2733c

14.215.182.140

11 kB

URL GET
hm.baidu.com/hm.js?4819762d419a9297f5b23550f5c2733c
IP
14.215.182.140:0
ASN
#4134 Chinanet

Requested by
https://pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755

File type
JavaScript source, ASCII text, with very long lines (617)
Size
11 kB (11255 bytes)
Hash
760fa023026c850c9e9aa9bafc664eb5
7749806ab14fcaa1b47ba0d63ad86bf551fb603e
1344470a3e10d9e2ea5b78f0540dda2122600341de48ee0bef7a65b357145a34

HTTP Headers

GET /hm.js?4819762d419a9297f5b23550f5c2733c HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pp.sm688802.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11255
Content-Type: application/javascript
Date: Fri, 19 Apr 2024 10:39:37 GMT
Etag: b8e30403bc041811f8af7100617c10e6
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=DAC7CE7BFAAE3155; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800

hm.baidu.com/hm.js?b3ff1072ca97c6597fb44e15e6b47de3

14.215.182.140

12 kB

URL GET
hm.baidu.com/hm.js?b3ff1072ca97c6597fb44e15e6b47de3
IP
14.215.182.140:0
ASN
#4134 Chinanet

Requested by
https://pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755

File type
JavaScript source, ASCII text, with very long lines (847)
Size
12 kB (11485 bytes)
Hash
e037f4ca8c2666bcf0c8b6178aaef439
10064f91534396b11f7d967e5659faa8452f6d9e
2124caed9ed5bf53399b9f685a156660ba941e073fb5eb62113e6ae58153e7f6

HTTP Headers

GET /hm.js?b3ff1072ca97c6597fb44e15e6b47de3 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pp.sm688802.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11485
Content-Type: application/javascript
Date: Fri, 19 Apr 2024 10:39:37 GMT
Etag: 4290b9a7dbaf641ded89249be2151612
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=42D9768ADB0E8700; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800

hm.baidu.com/hm.js?fb13b34f65f58c630f4485815beb722c

14.215.182.140

11 kB

URL GET
hm.baidu.com/hm.js?fb13b34f65f58c630f4485815beb722c
IP
14.215.182.140:0
ASN
#4134 Chinanet

Requested by
https://pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755

File type
JavaScript source, ASCII text, with very long lines (617)
Size
11 kB (11255 bytes)
Hash
523cfce3e548348166eaf454498ec7e0
5f37c12b7e8ab1e4cb6df56a9cc968e5f5f7fa01
78763981df5b583eaa9671ae8cf5a8fba6a0cee19a0d2892f79df8d272d417a5

HTTP Headers

GET /hm.js?fb13b34f65f58c630f4485815beb722c HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pp.sm688802.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11255
Content-Type: application/javascript
Date: Fri, 19 Apr 2024 10:39:37 GMT
Etag: 5ef555dac778c100aee99cfad4db0f15
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=FE86B64388E97FDF; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800

hm.baidu.com/hm.js?b3ff1072ca97c6597fb44e15e6b47de3

14.215.182.140

12 kB

URL GET
hm.baidu.com/hm.js?b3ff1072ca97c6597fb44e15e6b47de3
IP
14.215.182.140:0
ASN
#4134 Chinanet

Requested by
https://pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755

File type
JavaScript source, ASCII text, with very long lines (847)
Size
12 kB (11485 bytes)
Hash
23610626ca057e54b19ae756d5ea1ab8
200bf668e231dec33324b24208e68d936f37b074
cf518cdc3cd34259cda01235f736a6a1a2fe9c15f021cbf2ba12092da1d94ecc

HTTP Headers

GET /hm.js?b3ff1072ca97c6597fb44e15e6b47de3 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pp.sm688802.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11485
Content-Type: application/javascript
Date: Fri, 19 Apr 2024 10:39:37 GMT
Etag: 49e700b84338fcb8a80612140102431a
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=1D567D70713F5272; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800

hm.baidu.com/hm.js?88f752b6790743d0ec7ec87fd94faaaa

14.215.182.140

11 kB

URL GET
hm.baidu.com/hm.js?88f752b6790743d0ec7ec87fd94faaaa
IP
14.215.182.140:0
ASN
#4134 Chinanet

Requested by
https://pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755

File type
JavaScript source, ASCII text, with very long lines (624)
Size
11 kB (11262 bytes)
Hash
c11df9ac2253657df35dd3d7d1c91551
69652eb09eb1676cbdd487d4f731ff99c1216f18
421de9d9f0f11e92a378083a25822d6aabb5e4d2175e14d9a1bdc0478eb29660

HTTP Headers

GET /hm.js?88f752b6790743d0ec7ec87fd94faaaa HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pp.sm688802.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11262
Content-Type: application/javascript
Date: Fri, 19 Apr 2024 10:39:37 GMT
Etag: 4b52034b208b3aac997469b24dba281b
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=43ECAA8FAB8893EF; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800

pp.sm688802.com/statics/ffsm/public/wap/js/rui-datepicker-1.6.0/rui-datepicker.min.css

121.199.78.118

169 B

URL
pp.sm688802.com/statics/ffsm/public/wap/js/rui-datepicker-1.6.0/rui-datepicker.min.css
IP
121.199.78.118:0
ASN
#37963 Hangzhou Alibaba Advertising Co.,Ltd.

Certificate
IssuerDigiCert, Inc.
Subject*.sm688802.com
FingerprintBC:DE:D0:A0:1B:08:52:41:F4:AE:2E:97:40:B7:54:CD:B3:B0:E0:EE
ValidityMon, 29 May 2023 00:00:00 GMT - Wed, 29 May 2024 23:59:59 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
169 B (169 bytes)
Hash
5584cd241a762d7a7488f14d5409293c
a88c6560e46f39dca33a1bbbc74c319e89adfe2a
56fd937f2948b7fc1b223fc1da61e781a93f6b4c74cfd88e1115bb74418c7dff

HTTP Headers

GET /statics/ffsm/public/wap/js/rui-datepicker-1.6.0/rui-datepicker.min.css HTTP/1.1
Host: pp.sm688802.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755
Cookie: spread=tui; get_parameter=spread%3Dtui%26dhid%3D4755
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 301 Moved Permanently
content-type: text/html
date: Fri, 19 Apr 2024 10:39:37 GMT
location: https://p.tx9968.com/statics/ffsm/public/wap/js/rui-datepicker-1.6.0/rui-datepicker.min.css
x-cache: BYPASS, Status: 301
content-length: 169
X-Firefox-Spdy: h2

pp.sm688802.com/statics/ffsm/public/wap/js/layer-3.1.0/theme/default/layer.css

121.199.78.118

169 B

URL
pp.sm688802.com/statics/ffsm/public/wap/js/layer-3.1.0/theme/default/layer.css
IP
121.199.78.118:0
ASN
#37963 Hangzhou Alibaba Advertising Co.,Ltd.

Certificate
IssuerDigiCert, Inc.
Subject*.sm688802.com
FingerprintBC:DE:D0:A0:1B:08:52:41:F4:AE:2E:97:40:B7:54:CD:B3:B0:E0:EE
ValidityMon, 29 May 2023 00:00:00 GMT - Wed, 29 May 2024 23:59:59 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
169 B (169 bytes)
Hash
5584cd241a762d7a7488f14d5409293c
a88c6560e46f39dca33a1bbbc74c319e89adfe2a
56fd937f2948b7fc1b223fc1da61e781a93f6b4c74cfd88e1115bb74418c7dff

HTTP Headers

GET /statics/ffsm/public/wap/js/layer-3.1.0/theme/default/layer.css HTTP/1.1
Host: pp.sm688802.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755
Cookie: spread=tui; get_parameter=spread%3Dtui%26dhid%3D4755
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 301 Moved Permanently
content-type: text/html
date: Fri, 19 Apr 2024 10:39:37 GMT
location: https://p.tx9968.com/statics/ffsm/public/wap/js/layer-3.1.0/theme/default/layer.css
x-cache: BYPASS, Status: 301
content-length: 169
X-Firefox-Spdy: h2

pp.sm688802.com/statics/ffsm/public/wap/js/swiper-4.5.0/swiper.min.css

121.199.78.118

169 B

URL
pp.sm688802.com/statics/ffsm/public/wap/js/swiper-4.5.0/swiper.min.css
IP
121.199.78.118:0
ASN
#37963 Hangzhou Alibaba Advertising Co.,Ltd.

Certificate
IssuerDigiCert, Inc.
Subject*.sm688802.com
FingerprintBC:DE:D0:A0:1B:08:52:41:F4:AE:2E:97:40:B7:54:CD:B3:B0:E0:EE
ValidityMon, 29 May 2023 00:00:00 GMT - Wed, 29 May 2024 23:59:59 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
169 B (169 bytes)
Hash
5584cd241a762d7a7488f14d5409293c
a88c6560e46f39dca33a1bbbc74c319e89adfe2a
56fd937f2948b7fc1b223fc1da61e781a93f6b4c74cfd88e1115bb74418c7dff

HTTP Headers

GET /statics/ffsm/public/wap/js/swiper-4.5.0/swiper.min.css HTTP/1.1
Host: pp.sm688802.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755
Cookie: spread=tui; get_parameter=spread%3Dtui%26dhid%3D4755
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 301 Moved Permanently
content-type: text/html
date: Fri, 19 Apr 2024 10:39:37 GMT
location: https://p.tx9968.com/statics/ffsm/public/wap/js/swiper-4.5.0/swiper.min.css
x-cache: BYPASS, Status: 301
content-length: 169
X-Firefox-Spdy: h2

p.tx9968.com/statics/ffsm/app/bazijingpi/11/images/0_swiper1.jpg?v=026ed3e

138.113.100.16

35 kB

URL GET
p.tx9968.com/statics/ffsm/app/bazijingpi/11/images/0_swiper1.jpg?v=026ed3e
IP
138.113.100.16:0
ASN
#54994 ML-1432-54994

Requested by
https://pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755
Certificate
IssuerDigiCert Inc
Subject*.tx9968.com
Fingerprint39:79:16:A2:A6:28:72:6D:5D:CB:2E:4D:CA:91:E3:29:00:B7:19:94
ValidityMon, 07 Aug 2023 00:00:00 GMT - Wed, 07 Aug 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 700x735, components 3
Size
35 kB (35100 bytes)
Hash
026ed3ed9d6a94dc59d1c563b548dbe3
7e185fbe1fde7aab284509f55ff896a5935cd4d5
621f4434ce8fe0c9662bbb94b105d4282486dc0886566425724966b784ad03ce

HTTP Headers

GET /statics/ffsm/app/bazijingpi/11/images/0_swiper1.jpg?v=026ed3e HTTP/1.1
Host: p.tx9968.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pp.sm688802.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 19 Apr 2024 10:39:37 GMT
Content-Type: image/jpeg
Content-Length: 35100
Connection: keep-alive
Server: nginx
Last-Modified: Fri, 10 Nov 2023 08:03:29 GMT
ETag: "654de3d1-891c"
Expires: Sun, 19 May 2024 10:39:37 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
X-Via: 1.1 PSjshasx3dq34:0 (Cdn Cache Server V2.0), 1.1 PS-CDG-01orF60:9 (Cdn Cache Server V2.0)
X-Ws-Request-Id: 662249e9_PSfgblPAR2cm80_27307-60920
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS

p.tx9968.com/statics/ffsm/app/bazijingpi/11/images/0_user.png?v=1693218378014

138.113.100.16

1.2 kB

URL GET
p.tx9968.com/statics/ffsm/app/bazijingpi/11/images/0_user.png?v=1693218378014
IP
138.113.100.16:0
ASN
#54994 ML-1432-54994

Requested by
https://pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755
Certificate
IssuerDigiCert Inc
Subject*.tx9968.com
Fingerprint39:79:16:A2:A6:28:72:6D:5D:CB:2E:4D:CA:91:E3:29:00:B7:19:94
ValidityMon, 07 Aug 2023 00:00:00 GMT - Wed, 07 Aug 2024 23:59:59 GMT

File type
PNG image data, 144 x 144, 4-bit colormap, non-interlaced
Size
1.2 kB (1162 bytes)
Hash
0681a052dc7dc498608592509f4a75c5
6c2bc853f8db7dddc8f85620f6eba63aa595fde9
17a86245e93ceb91c703519f83cb75fbfeabd1f0937883657bd3dd477f9f8ddc

HTTP Headers

GET /statics/ffsm/app/bazijingpi/11/images/0_user.png?v=1693218378014 HTTP/1.1
Host: p.tx9968.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://p.tx9968.com/statics/ffsm/app/bazijingpi/11/style.min.css?v=e4efc9c
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 19 Apr 2024 10:39:37 GMT
Content-Type: image/png
Content-Length: 1162
Connection: keep-alive
Server: nginx
Last-Modified: Thu, 20 Oct 2022 10:24:36 GMT
ETag: "635121e4-48a"
Expires: Sun, 19 May 2024 10:39:37 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
X-Via: 1.1 PSjshasx3dq34:0 (Cdn Cache Server V2.0), 1.1 PSfgblPAR2dz77:0 (Cdn Cache Server V2.0)
X-Ws-Request-Id: 662249e8_PSfgblPAR2cm80_26994-8928
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS

p.tx9968.com/statics/ffsm/app/bazijingpi/11/images/0_swiper6.jpg?v=04aa182

138.113.100.16

42 kB

URL GET
p.tx9968.com/statics/ffsm/app/bazijingpi/11/images/0_swiper6.jpg?v=04aa182
IP
138.113.100.16:0
ASN
#54994 ML-1432-54994

Requested by
https://pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755
Certificate
IssuerDigiCert Inc
Subject*.tx9968.com
Fingerprint39:79:16:A2:A6:28:72:6D:5D:CB:2E:4D:CA:91:E3:29:00:B7:19:94
ValidityMon, 07 Aug 2023 00:00:00 GMT - Wed, 07 Aug 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 700x735, components 3
Size
42 kB (42542 bytes)
Hash
04aa1821def6c1904176c47507748a17
5caf72e4b92dbd5dfc1b6d248fb94c6dd9f0af8e
4920269c7e4af6e5b503083cce25071e4acb1b6c0ab8df88377028b98984aae6

HTTP Headers

GET /statics/ffsm/app/bazijingpi/11/images/0_swiper6.jpg?v=04aa182 HTTP/1.1
Host: p.tx9968.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pp.sm688802.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 19 Apr 2024 10:39:37 GMT
Content-Type: image/jpeg
Content-Length: 42542
Connection: keep-alive
Server: nginx
Last-Modified: Thu, 20 Oct 2022 10:24:36 GMT
ETag: "635121e4-a62e"
Expires: Sun, 19 May 2024 10:39:37 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
X-Via: 1.1 PSjshasx3dq34:0 (Cdn Cache Server V2.0), 1.1 PS-CDG-01orF60:22 (Cdn Cache Server V2.0)
X-Ws-Request-Id: 662249e9_PSfgblPAR2cm80_29948-7555
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS

p.tx9968.com/statics/ffsm/public/wap/js/swiper-4.5.0/swiper.min.js

138.113.100.16

39 kB

URL GET
p.tx9968.com/statics/ffsm/public/wap/js/swiper-4.5.0/swiper.min.js
IP
138.113.100.16:0
ASN
#54994 ML-1432-54994

Requested by
https://pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755
Certificate
IssuerDigiCert Inc
Subject*.tx9968.com
Fingerprint39:79:16:A2:A6:28:72:6D:5D:CB:2E:4D:CA:91:E3:29:00:B7:19:94
ValidityMon, 07 Aug 2023 00:00:00 GMT - Wed, 07 Aug 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65270)
Size
39 kB (38711 bytes)
Hash
d69491e8f15952a9c3230563ace8f89c
a22dee484ba887cc74c977b9e0b2fdc8a53411e8
60ea65c5df7567e92d3045440207c416bbf29a32a4274bcc38003f74ee18ba4e

HTTP Headers

GET /statics/ffsm/public/wap/js/swiper-4.5.0/swiper.min.js HTTP/1.1
Host: p.tx9968.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pp.sm688802.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 19 Apr 2024 10:39:37 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Fri, 19 Apr 2024 22:39:37 GMT
Server: nginx
Last-Modified: Thu, 20 Oct 2022 10:24:39 GMT
ETag: W/"635121e7-1f397"
Cache-Control: max-age=43200
Content-Encoding: gzip
X-Via: 1.1 PS-HKG-04JlJ51:0 (Cdn Cache Server V2.0), 1.1 PSfgblPAR2cm80:16 (Cdn Cache Server V2.0)
X-Ws-Request-Id: 662249e8_PSfgblPAR2cm80_30686-23882
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS

hm.baidu.com/hm.js?1828b73b533daa11a4b896dac6bd5a88

14.215.182.140

11 kB

URL GET
hm.baidu.com/hm.js?1828b73b533daa11a4b896dac6bd5a88
IP
14.215.182.140:0
ASN
#4134 Chinanet

Requested by
https://pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755

File type
JavaScript source, ASCII text, with very long lines (767)
Size
11 kB (11405 bytes)
Hash
1c4e5bffe64c4ef11a88622efc2a0973
a5c79f025fad9dffca76c9e1ac6b1b8ba61cd4a8
448171fd7098604f4d54c78103889e167081a7c04c198d46736255b01633c192

HTTP Headers

GET /hm.js?1828b73b533daa11a4b896dac6bd5a88 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pp.sm688802.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11405
Content-Type: application/javascript
Date: Fri, 19 Apr 2024 10:39:37 GMT
Etag: 1678de2158896c3d98fcfbcb7c1b1275
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=9EF1A905A0B92ECF; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800

hm.baidu.com/hm.js?f7120ce059021c8040de183a6563fcf7

0.0.0.0

0 B

URL GET
hm.baidu.com/hm.js?f7120ce059021c8040de183a6563fcf7
IP
0.0.0.0:0
ASN
#0

Requested by
https://pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /hm.js?f7120ce059021c8040de183a6563fcf7 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pp.sm688802.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

hm.baidu.com/hm.js?f36b28bbe231b4a4ad43c562d96e060e

0.0.0.0

0 B

URL GET
hm.baidu.com/hm.js?f36b28bbe231b4a4ad43c562d96e060e
IP
0.0.0.0:0
ASN
#0

Requested by
https://pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /hm.js?f36b28bbe231b4a4ad43c562d96e060e HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pp.sm688802.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

fxgate.baidu.com/angelia/fcagl.js?production=_f7L2XwGXjyszb4d1e2oxPybgD

0.0.0.0

0 B

URL GET
fxgate.baidu.com/angelia/fcagl.js?production=_f7L2XwGXjyszb4d1e2oxPybgD
IP
0.0.0.0:0
ASN
#0

Requested by
https://pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /angelia/fcagl.js?production=_f7L2XwGXjyszb4d1e2oxPybgD HTTP/1.1
Host: fxgate.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pp.sm688802.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

analysis.tianxiang.com/txsc.js?si=1&puid=0&ed=union_uid%3D684%26server_id%3D11%26theme_id%3D11%26spread%3Dtui

0.0.0.0

0 B

URL GET
analysis.tianxiang.com/txsc.js?si=1&puid=0&ed=union_uid%3D684%26server_id%3D11%26theme_id%3D11%26spread%3Dtui
IP
0.0.0.0:0
ASN
#0

Requested by
https://pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /txsc.js?si=1&puid=0&ed=union_uid%3D684%26server_id%3D11%26theme_id%3D11%26spread%3Dtui HTTP/1.1
Host: analysis.tianxiang.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pp.sm688802.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

hm.baidu.com/hm.js?949516e3d636f6bc547254e11bad9fb1

0.0.0.0

0 B

URL GET
hm.baidu.com/hm.js?949516e3d636f6bc547254e11bad9fb1
IP
0.0.0.0:0
ASN
#0

Requested by
https://pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /hm.js?949516e3d636f6bc547254e11bad9fb1 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pp.sm688802.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

p.tx9968.com/statics/ffsm/app/bazijingpi/11/app.min.js?v=0a0e8e4

138.113.100.16

200 OK

2.6 kB

URL GET HTTP/1.1
p.tx9968.com/statics/ffsm/app/bazijingpi/11/app.min.js?v=0a0e8e4
IP
138.113.100.16:443
ASN
#54994 ML-1432-54994

Requested by
https://pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755
Certificate
IssuerDigiCert Inc
Subject*.tx9968.com
Fingerprint39:79:16:A2:A6:28:72:6D:5D:CB:2E:4D:CA:91:E3:29:00:B7:19:94
ValidityMon, 07 Aug 2023 00:00:00 GMT - Wed, 07 Aug 2024 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (2605), with no line terminators
Size
2.6 kB (2621 bytes)
Hash
81048a443f741466de161cf6f9ea48cf
566f9fb652584ce6953b016f12136dbc74e41a5e
a44fe90492cd388770968d1380575ccacd40a38e851a7875845d696555a0cd1f

HTTP Headers

GET /statics/ffsm/app/bazijingpi/11/app.min.js?v=0a0e8e4 HTTP/1.1
Host: p.tx9968.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pp.sm688802.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 19 Apr 2024 10:39:35 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Last-Modified: Tue, 29 Aug 2023 09:20:33 GMT
ETag: W/"64edb861-a3d"
Expires: Fri, 19 Apr 2024 22:39:35 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
X-Via: 1.1 PSfgblPAR2au188:8 (Cdn Cache Server V2.0), 1.1 PSfgblPAR2dz77:17 (Cdn Cache Server V2.0)
X-Ws-Request-Id: 662249e6_PSfgblPAR2cm80_27307-60677
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS

p.tx9968.com/statics/ffsm/app/bazijingpi/11/images/0_swiper3.jpg?v=e33fd12

0.0.0.0

0 B

URL GET
p.tx9968.com/statics/ffsm/app/bazijingpi/11/images/0_swiper3.jpg?v=e33fd12
IP
0.0.0.0:0
ASN
#0

Requested by
https://pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755
Certificate
IssuerDigiCert Inc
Subject*.tx9968.com
Fingerprint39:79:16:A2:A6:28:72:6D:5D:CB:2E:4D:CA:91:E3:29:00:B7:19:94
ValidityMon, 07 Aug 2023 00:00:00 GMT - Wed, 07 Aug 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /statics/ffsm/app/bazijingpi/11/images/0_swiper3.jpg?v=e33fd12 HTTP/1.1
Host: p.tx9968.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pp.sm688802.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

hm.baidu.com/hm.js?5098bd98db89ba25637ce7fafc468c63

0.0.0.0

0 B

URL GET
hm.baidu.com/hm.js?5098bd98db89ba25637ce7fafc468c63
IP
0.0.0.0:0
ASN
#0

Requested by
https://pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /hm.js?5098bd98db89ba25637ce7fafc468c63 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pp.sm688802.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

hm.baidu.com/hm.js?babc6231bb2227a4b28f3195f113249e

0.0.0.0

0 B

URL GET
hm.baidu.com/hm.js?babc6231bb2227a4b28f3195f113249e
IP
0.0.0.0:0
ASN
#0

Requested by
https://pp.sm688802.com/bazijingpi/?spread=tui&dhid=4755

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /hm.js?babc6231bb2227a4b28f3195f113249e HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pp.sm688802.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (20)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML