Report - www.ltjonlinefeedback.com/

Report Overview

Visited public
2025-04-04 11:36:10
Tags
Submit Tags
URL
www.ltjonlinefeedback.com/
Finishing URL
www.ltjonlinefeedback.com/
IP / ASN
38.11.99.231
#54600 PEG-SV
Title
304am.vip 永利集团 - 欢迎您

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
zz.bdstatic.com	27702	2011-12-26	2017-01-30	2025-03-29	420 B	769 B	157.255.63.48
sdk.51.la	88367	2005-01-17	2021-03-08	2025-03-28	1.7 kB	147 kB	212.247.59.123
p.ssl.qhimg.com	146684	2011-02-17	2015-05-28	2025-03-30	446 B	3.9 kB	54.240.174.108
bafydlm7hit2bt.hu3tdwnsvxjza4.com	unknown	2025-04-01	2025-04-01	2025-04-01	13 kB	1.3 MB	122.10.50.210
vkg.hpdbfezgrqwn.vip	unknown	2024-01-16	2024-01-16	2025-03-28	1.1 kB	1.9 kB	122.10.26.202
collect-v6.51.la	91421	2005-01-17	2021-03-08	2025-03-28	495 B	594 B	212.247.59.123
www.baidu.com	3121	1999-10-11	2017-01-30	2025-04-04	443 B	1.2 kB	103.235.46.102
www.ltjonlinefeedback.com	unknown	2025-03-19	2025-04-04	2025-04-04	1.9 kB	9.7 kB	38.11.99.231
www.sogou.com	39670	2001-12-19	2012-05-22	2025-04-02	458 B	3.8 kB	43.153.236.147

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2025-04-04 11:35:47	low	38.11.99.231	Client IP	ET INFO Observed ZeroSSL SSL/TLS Certificate
2025-04-04 11:35:49	low	38.11.99.231	Client IP	ET INFO Observed ZeroSSL SSL/TLS Certificate

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (21)

	URL	From	Size	First Seen	Last Seen
	zz.bdstatic.com/linksubmit/push.js	ScriptElement	308 B	2023-03-07	2025-07-21
Pretty URL zz.bdstatic.com/linksubmit/push.js IP 157.255.63.48 ASN #136958 China Unicom Guangdong IP network Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18 Last Seen2025-07-21 04:49 Times Seen8912 Hash f9fc52ab67f035b8baf5d558714cc94d 37062a6fb1ef410d496137d44275738ae743c747 c31f2003f1c93ac1e34b09f376d97a65da6e110bf451cf1e0e50a7946c5e7212 Loading...

	www.ltjonlinefeedback.com/	Eval	2.3 kB	2024-09-01	2025-07-14
Pretty URL www.ltjonlinefeedback.com/ IP 38.11.99.231 ASN #54600 PEG-SV Introduced by eval Embedded in HTML false Observations First Seen2024-09-01 01:46 Last Seen2025-07-14 14:55 Times Seen3119 Hash 85ddb566249a56a9130cd4093c09d6ef e9afdbca22a4f199b855d3a2249a07865da82bd1 72f49eca5dd7824a9834dba14c652d01a27c4a4c3700074ac354bac7aa047931 Loading...

	www.ltjonlinefeedback.com/@public/jquery.cdn.js	ScriptElement	0 B	0001-01-01	2025-07-21
Pretty URL www.ltjonlinefeedback.com/@public/jquery.cdn.js IP 38.11.99.231 ASN #54600 PEG-SV Introduced by scriptElement Embedded in HTML false Observations First Seen0001-01-01 00:00 Last Seen2025-07-21 06:32 Times Seen5474703 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	bafydlm7hit2bt.hu3tdwnsvxjza4.com/banner.js	ScriptElement	2.7 kB	2025-03-31	2025-04-04
Pretty URL bafydlm7hit2bt.hu3tdwnsvxjza4.com/banner.js IP 122.10.50.210 ASN #134548 DXTL Tseung Kwan O Service Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-31 13:02 Last Seen2025-04-04 11:42 Times Seen139 Hash 85bfec606285a18811ef49f7340a1193 03fb7c11c1f93daaf620c12e9cf4bbfd68722fd1 381aa43209515c70eb80ace2f6feba335c2751c39a4bbe0d380033b60b4380e6 Loading...

	bafydlm7hit2bt.hu3tdwnsvxjza4.com/?id=7	ScriptElement	54 B	2025-03-25	2025-07-21
Pretty URL bafydlm7hit2bt.hu3tdwnsvxjza4.com/?id=7 IP 122.10.50.210 ASN #134548 DXTL Tseung Kwan O Service Introduced by scriptElement Embedded in HTML true Observations First Seen2025-03-25 19:55 Last Seen2025-07-21 02:55 Times Seen2900 Hash f0c890a3e1e1e77e8a930e5c4436cf27 503e6a5626f826534ed47d987c09525142c86ba2 15c5f36c182e9bc94f22a707f225944cbc8739b94bbcee9aa801a8e24d4dfbbb Loading...

	www.ltjonlinefeedback.com/	ScriptElement	57 B	2023-03-07	2025-07-21
Pretty URL www.ltjonlinefeedback.com/ IP 38.11.99.231 ASN #54600 PEG-SV Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:19 Last Seen2025-07-21 04:08 Times Seen4824 Hash 2d313be4b5d93e9b681de954aaeb3006 1e0508be1026244daf1812f988033612c3945bdb 9059d0d74efaf0e229d59a9c05ace7b975b42ccacea21e01aa64c56b2157048c Loading...

	www.ltjonlinefeedback.com/	Function	39 B	2023-04-12	2025-07-21
Pretty URL www.ltjonlinefeedback.com/ IP 38.11.99.231 ASN #54600 PEG-SV Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:16 Last Seen2025-07-21 04:35 Times Seen6528 Hash 26421ac860f4dba7f27811712a149502 aaf37d59cb4b28ac48ecefa82a2824a8e6210d5b 266f482d6e5dd0302fca1871e22db5996e068d1188d1ba9cd96b892552fbcab3 Loading...

	bafydlm7hit2bt.hu3tdwnsvxjza4.com/jquery.min.js	ScriptElement	90 kB	2023-03-07	2025-07-21
Pretty URL bafydlm7hit2bt.hu3tdwnsvxjza4.com/jquery.min.js IP 122.10.50.210 ASN #134548 DXTL Tseung Kwan O Service Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-07-21 02:55 Times Seen8113 Hash 12b69d0ae6c6f0c42942ae6da2896e84 d2cc8d43ce1c854b1172e42b1209502ad563db83 6150a35c0f486c46cadf0e230e2aa159c7c23ecfbb5611b64ee3f25fcbff341f Loading...

	bafydlm7hit2bt.hu3tdwnsvxjza4.com/bootstrap.min.js	ScriptElement	60 kB	2023-03-08	2025-07-21
Pretty URL bafydlm7hit2bt.hu3tdwnsvxjza4.com/bootstrap.min.js IP 122.10.50.210 ASN #134548 DXTL Tseung Kwan O Service Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:49 Last Seen2025-07-21 02:55 Times Seen3661 Hash 77cbad27852866cec1e32648eaafd22d 3ee3e67eddf2a6a59a46ef6644f93ba97efeefd1 2ced6f997d7fce10a38ddc75c2f24c9f8945f44e746128f3dcd61d923ea3fdce Loading...

	sdk.51.la/js-sdk-pro.min.js	ScriptElement	36 kB	2025-03-10	2025-07-21
Pretty URL sdk.51.la/js-sdk-pro.min.js IP 212.247.59.123 ASN #1257 Tele2 SWIPnet Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-10 03:40 Last Seen2025-07-21 06:32 Times Seen16911 Hash b8a41c9449b73e8ba0224c6be1f0b7e8 33d79319d4110bcf5c44c36f7dd4a291972ac546 52079c09a7355f4ce3af750602ebb9aebae8238583601f8a06268eecccf13565 Loading...

	bafydlm7hit2bt.hu3tdwnsvxjza4.com/?id=7	ScriptElement	213 B	2025-03-25	2025-04-26
Pretty URL bafydlm7hit2bt.hu3tdwnsvxjza4.com/?id=7 IP 122.10.50.210 ASN #134548 DXTL Tseung Kwan O Service Introduced by scriptElement Embedded in HTML true Observations First Seen2025-03-25 19:55 Last Seen2025-04-26 13:21 Times Seen753 Hash da374a5fbc3f4dd57b6ec1011530590d bd33b80df4ae62060f8e4e1fa6ede987b89526c8 6f48751a9ad1e8b3d4b8898b498a3bf4b25cbc874f90702cfc3e29af5447df3f Loading...

	bafydlm7hit2bt.hu3tdwnsvxjza4.com/quicklink.umd.js	ScriptElement	3.7 kB	2023-03-13	2025-07-21
Pretty URL bafydlm7hit2bt.hu3tdwnsvxjza4.com/quicklink.umd.js IP 122.10.50.210 ASN #134548 DXTL Tseung Kwan O Service Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 01:20 Last Seen2025-07-21 02:55 Times Seen3509 Hash a52ee49fe4afff274f8c30fe880ddc13 6e9f90f5d82324ded047fcb1ee3a69aaed0f9c91 0eaa691f4b80b80fe92bd5dcfa943126c6bac2e4f6ac1e586de155fa1c287360 Loading...

	bafydlm7hit2bt.hu3tdwnsvxjza4.com/?id=7	ScriptElement	602 B	2024-10-08	2025-07-20
Pretty URL bafydlm7hit2bt.hu3tdwnsvxjza4.com/?id=7 IP 122.10.50.210 ASN #134548 DXTL Tseung Kwan O Service Introduced by scriptElement Embedded in HTML true Observations First Seen2024-10-08 13:57 Last Seen2025-07-20 06:13 Times Seen3350 Hash 5d521fee761d154dd90c7983722080b3 1b789883e965019e0ebf20cdf6f90a672e2a3e79 9c9ba85d4ca1fdd78cabc35e5bd261f8f812b25ea1c290da36a650982ae8c53c Loading...

	www.ltjonlinefeedback.com/	ScriptElement	206 B	2023-07-05	2025-07-21
Pretty URL www.ltjonlinefeedback.com/ IP 38.11.99.231 ASN #54600 PEG-SV Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-05 04:25 Last Seen2025-07-21 02:55 Times Seen3434 Hash 4586d6fc0daf723a04dabd67d8196248 83fe154ca56d1d5c769baf77d1820ff8aac5dd30 16835addf51de8a73efaf81b6086be272e61e669564bdb984eea54fe20802a8f Loading...

	www.ltjonlinefeedback.com/	Function	39 B	2023-04-12	2025-07-21
Pretty URL www.ltjonlinefeedback.com/ IP 38.11.99.231 ASN #54600 PEG-SV Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 04:16 Last Seen2025-07-21 04:35 Times Seen6528 Hash 26421ac860f4dba7f27811712a149502 aaf37d59cb4b28ac48ecefa82a2824a8e6210d5b 266f482d6e5dd0302fca1871e22db5996e068d1188d1ba9cd96b892552fbcab3 Loading...

	bafydlm7hit2bt.hu3tdwnsvxjza4.com/popper.min.js	ScriptElement	21 kB	2023-03-07	2025-07-21
Pretty URL bafydlm7hit2bt.hu3tdwnsvxjza4.com/popper.min.js IP 122.10.50.210 ASN #134548 DXTL Tseung Kwan O Service Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18 Last Seen2025-07-21 02:55 Times Seen4093 Hash c6946dff4854d4611da8aef36666b938 9118198bd2a853baa4644c6e819427150ca35160 7028ef6262d35db7dc22b05df3cbb3e93595ce90cd340fdc356620d961b01224 Loading...

	bafydlm7hit2bt.hu3tdwnsvxjza4.com/?id=7	ScriptElement	23 B	2024-08-30	2025-07-21
Pretty URL bafydlm7hit2bt.hu3tdwnsvxjza4.com/?id=7 IP 122.10.50.210 ASN #134548 DXTL Tseung Kwan O Service Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-30 14:30 Last Seen2025-07-21 02:55 Times Seen3378 Hash f0f1b87913b11f3a422d63e9d709db2f c329f6b620b0f0eaa7ca1bfd084f4eef45fff62f 37b5bded5f5c0153eac6cd0045904278b30466dc6750529fce5ae7728e219968 Loading...

	www.ltjonlinefeedback.com/	ScriptElement	404 B	2023-03-07	2025-07-21
Pretty URL www.ltjonlinefeedback.com/ IP 38.11.99.231 ASN #54600 PEG-SV Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-07-21 05:27 Times Seen4932 Hash 91862680df880ab56f799547b01a5900 bd184fe6e0e046873c1a606c89ce2d3eed4b689f 6520359b93c2e43efd5a58f422af308b43c718769a0989344a10f00b345ca0b2 Loading...

	www.ltjonlinefeedback.com/vue.min.js	ScriptElement	2.4 kB	2024-09-01	2025-07-14
Pretty URL www.ltjonlinefeedback.com/vue.min.js IP 38.11.99.231 ASN #54600 PEG-SV Introduced by scriptElement Embedded in HTML false Observations First Seen2024-09-01 01:46 Last Seen2025-07-14 14:55 Times Seen3138 Hash 0c00d684e824fe5dcf93a58a476c6b3c 52f3fc50aa8f49bd98c9bb8ac2d548571f4df309 611d34ed95f8a154088d4b70c5745782b343df16d08bede44bbbd6abcef59cdf Loading...

		Size	First Seen	Last Seen
	#1 Write - 2499f02dcf6c992b15a9a3a489bff884	640 B	2025-04-04 11:34	2025-04-05 12:32
Pretty Observations First Seen2025-04-04 11:34 Last Seen2025-04-05 12:32 Times Seen4 Hash 2499f02dcf6c992b15a9a3a489bff884 2f4489177f78608d7f8ec845f07e697631066f30 b64cd292e0a465219136652c08cb9abade236791d99e8fa54cfe4374091f49ed Loading...

	#2 Write - 7af71163d7bd83ee3c8d288c5b1d6bc4	108 B	2023-03-07 12:06	2025-07-21 02:55
Pretty Observations First Seen2023-03-07 12:06 Last Seen2025-07-21 02:55 Times Seen3555 Hash 7af71163d7bd83ee3c8d288c5b1d6bc4 8c229a05f51a0a0f9a8b80a0f226b82be3eb43a6 7730ce2a87575984b6266e8eb547315c26ed80fd29dacd3553ff17f4f16d7deb Loading...

HTTP Transactions (43)

	URL	IP	Response	Size
	GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/css/style.css	122.10.50.210	200 OK	332 kB
URL GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/css/style.css IP 122.10.50.210:443 ASN #134548 DXTL Tseung Kwan O Service Requested by https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/?id=7 Certificate IssuerSectigo Limited Subjectbafydlm7hit2bt.hu3tdwnsvxjza4.com FingerprintA7:8F:CE:13:EB:81:05:9B:01:78:04:85:F7:C2:25:1A:29:A6:6E:6F ValidityTue, 01 Apr 2025 00:00:00 GMT - Wed, 01 Apr 2026 23:59:59 GMT File type ASCII text, with very long lines (4600) Size 332 kB (332308 bytes) Hash 7cb1ec92fd3fa0d88e8a88988c1d8de7 3cd1ae5038ce9948d03c2cb02c7ecc960a9549a2 035860aca6ee6b812cad889fb1c2157a8ad1297761b75d6bad20abf932a0885e HTTP Headers `GET /css/style.css HTTP/1.1 Host: bafydlm7hit2bt.hu3tdwnsvxjza4.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/?id=7 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Fri, 04 Apr 2025 11:35:52 GMT content-type: text/css last-modified: Tue, 18 Mar 2025 08:47:58 GMT vary: Accept-Encoding etag: W/"67d9333e-51214" expires: Fri, 04 Apr 2025 23:35:52 GMT cache-control: max-age=43200 strict-transport-security: max-age=31536000 content-encoding: gzip X-Firefox-Spdy: h2`

	GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/imgs/gf.fc8d6758.png	122.10.50.210	200 OK	40 kB
URL GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/imgs/gf.fc8d6758.png IP 122.10.50.210:443 ASN #134548 DXTL Tseung Kwan O Service Requested by https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/?id=7 Certificate IssuerSectigo Limited Subjectbafydlm7hit2bt.hu3tdwnsvxjza4.com FingerprintA7:8F:CE:13:EB:81:05:9B:01:78:04:85:F7:C2:25:1A:29:A6:6E:6F ValidityTue, 01 Apr 2025 00:00:00 GMT - Wed, 01 Apr 2026 23:59:59 GMT File type PNG image data, 1200 x 400, 8-bit colormap, non-interlaced Size 40 kB (40362 bytes) Hash e8756f5a60a8553b7d9b26851bebfa7d 09d5262bbbdfec24e88b8faba8a00e6b80b8e831 5462953296cdf1f3ec26a1bda5e1c1212fd09a07494b61bba542100767600686 HTTP Headers `GET /imgs/gf.fc8d6758.png HTTP/1.1 Host: bafydlm7hit2bt.hu3tdwnsvxjza4.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/?id=7 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Fri, 04 Apr 2025 11:35:52 GMT content-type: image/png content-length: 40362 last-modified: Tue, 01 Oct 2024 15:31:14 GMT etag: "66fc15c2-9daa" expires: Sun, 04 May 2025 11:35:52 GMT cache-control: max-age=2592000 strict-transport-security: max-age=31536000 accept-ranges: bytes X-Firefox-Spdy: h2`

	GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/imgs/bg.lanse.jpg	122.10.50.210	200 OK	296 kB
URL GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/imgs/bg.lanse.jpg IP 122.10.50.210:443 ASN #134548 DXTL Tseung Kwan O Service Requested by https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/?id=7 Certificate IssuerSectigo Limited Subjectbafydlm7hit2bt.hu3tdwnsvxjza4.com FingerprintA7:8F:CE:13:EB:81:05:9B:01:78:04:85:F7:C2:25:1A:29:A6:6E:6F ValidityTue, 01 Apr 2025 00:00:00 GMT - Wed, 01 Apr 2026 23:59:59 GMT File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 3593x1400, components 3 Size 296 kB (296412 bytes) Hash acc29e2a810dbb1885ed42bccfcc3ddf 16175006f7ecbe64fec2bf622188680e9620e525 40a9ef15524032293e0f19486dd17456585762f1fce3ba47349cb2e79e2d56e5 HTTP Headers `GET /imgs/bg.lanse.jpg HTTP/1.1 Host: bafydlm7hit2bt.hu3tdwnsvxjza4.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/css/style.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Fri, 04 Apr 2025 11:35:53 GMT content-type: image/jpeg content-length: 296412 last-modified: Mon, 07 Oct 2024 16:04:16 GMT etag: "67040680-485dc" expires: Sun, 04 May 2025 11:35:53 GMT cache-control: max-age=2592000 strict-transport-security: max-age=31536000 accept-ranges: bytes X-Firefox-Spdy: h2`

	GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/imgs/xinpujing.png	122.10.50.210	200 OK	8.8 kB
URL GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/imgs/xinpujing.png IP 122.10.50.210:443 ASN #134548 DXTL Tseung Kwan O Service Requested by https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/?id=7 Certificate IssuerSectigo Limited Subjectbafydlm7hit2bt.hu3tdwnsvxjza4.com FingerprintA7:8F:CE:13:EB:81:05:9B:01:78:04:85:F7:C2:25:1A:29:A6:6E:6F ValidityTue, 01 Apr 2025 00:00:00 GMT - Wed, 01 Apr 2026 23:59:59 GMT File type PNG image data, 250 x 250, 8-bit colormap, non-interlaced Size 8.8 kB (8809 bytes) Hash d9f4bb7d34583c33b1fbc7f6bc82d63c 44b48b0e5649a48789ebb60b4e12e5db0d684bbc c31f6a40c5d886e499cfc2d99afe7d35cd5d71e5d960f34046aa0451c30b6c68 HTTP Headers `GET /imgs/xinpujing.png HTTP/1.1 Host: bafydlm7hit2bt.hu3tdwnsvxjza4.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/css/style.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Fri, 04 Apr 2025 11:35:53 GMT content-type: image/png content-length: 8809 last-modified: Tue, 01 Oct 2024 15:31:17 GMT etag: "66fc15c5-2269" expires: Sun, 04 May 2025 11:35:53 GMT cache-control: max-age=2592000 strict-transport-security: max-age=31536000 accept-ranges: bytes X-Firefox-Spdy: h2`

	GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/imgs/W88.png	122.10.50.210	200 OK	11 kB
URL GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/imgs/W88.png IP 122.10.50.210:443 ASN #134548 DXTL Tseung Kwan O Service Requested by https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/?id=7 Certificate IssuerSectigo Limited Subjectbafydlm7hit2bt.hu3tdwnsvxjza4.com FingerprintA7:8F:CE:13:EB:81:05:9B:01:78:04:85:F7:C2:25:1A:29:A6:6E:6F ValidityTue, 01 Apr 2025 00:00:00 GMT - Wed, 01 Apr 2026 23:59:59 GMT File type PNG image data, 250 x 250, 8-bit colormap, non-interlaced Size 11 kB (11423 bytes) Hash 36e99eab94c2c02b70c014bacf9d86ee 4ad09dd35613763520749684737d6277a94773bc b95c931f43bc4e2a23c6350717153d182d813f087fe970a4aa0e13984d190d2a HTTP Headers `GET /imgs/W88.png HTTP/1.1 Host: bafydlm7hit2bt.hu3tdwnsvxjza4.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/css/style.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Fri, 04 Apr 2025 11:35:53 GMT content-type: image/png content-length: 11423 last-modified: Tue, 18 Mar 2025 08:47:19 GMT etag: "67d93317-2c9f" expires: Sun, 04 May 2025 11:35:53 GMT cache-control: max-age=2592000 strict-transport-security: max-age=31536000 accept-ranges: bytes X-Firefox-Spdy: h2`

	GET www.ltjonlinefeedback.com/vue.min.js	38.11.99.231	200 OK	2.4 kB
URL GET www.ltjonlinefeedback.com/vue.min.js IP 38.11.99.231:443 ASN #54600 PEG-SV Requested by https://www.ltjonlinefeedback.com/ Certificate IssuerZeroSSL Subjectwww.ltjonlinefeedback.com Fingerprint38:59:1D:7F:A4:73:30:A5:30:0B:70:C7:A2:B7:66:4D:B9:F6:32:74 ValidityThu, 03 Apr 2025 00:00:00 GMT - Wed, 02 Jul 2025 23:59:59 GMT File type JavaScript source, ASCII text, with very long lines (3215), with no line terminators Size 2.4 kB (2380 bytes) Hash a2b9ce173a9fd400a319368fc7af9630 85424deedbe15d600cc59d6cdee28f37cf26896f ea19a40a6d664bb55fdc68187831760d05078f053129fff82eeddd5efa85c9b9 HTTP Headers `GET /vue.min.js HTTP/1.1 Host: www.ltjonlinefeedback.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.ltjonlinefeedback.com/ Cookie: PHPSESSID=b66rg8luvnahtuti7j54888e96 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Fri, 04 Apr 2025 11:35:48 GMT Content-Type: application/javascript; charset=utf-8 Last-Modified: Fri, 04 Apr 2025 06:46:41 GMT Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding ETag: W/"67ef8051-94c" Expires: Sun, 04 May 2025 11:35:48 GMT Cache-Control: max-age=2592000 Strict-Transport-Security: max-age=31536000; includeSubDomains Content-Encoding: gzip`

	GET www.sogou.com/web/index/images/logo_440x140.v.4.png	43.153.236.147	200 OK	3.0 kB
URL GET www.sogou.com/web/index/images/logo_440x140.v.4.png IP 43.153.236.147:443 ASN #132203 Tencent Building, Kejizhongyi Avenue Requested by https://www.ltjonlinefeedback.com/ Certificate IssuerDigiCert Inc Subject.sogou.com Fingerprint2F:2A:79:5A:24:B6:DA:7A:C3:20:C6:A1:AD:A8:F4:24:54:33:5C:6E ValidityTue, 18 Jun 2024 00:00:00 GMT - Sun, 13 Jul 2025 23:59:59 GMT File type PNG image data, 440 x 140, 8-bit colormap, non-interlaced Size 3.0 kB (2950 bytes) Hash 31de1d2fa7d918fab2f59984391db1c8 4f4b78796b3fbf19971f182175bcd92b01ee470f 29f87d6615f36a54e3edc8c7f05eb9b480d1f2989dec8da68e82747d060aea85 HTTP Headers `GET /web/index/images/logo_440x140.v.4.png HTTP/1.1 Host: www.sogou.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.ltjonlinefeedback.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: nginx Date: Fri, 04 Apr 2025 11:35:50 GMT Content-Type: image/png Content-Length: 2950 Connection: keep-alive Last-Modified: Mon, 19 Aug 2024 09:14:31 GMT Set-Cookie: ABTEST=0\|1743766549\|v17; expires=Sun, 04-May-25 11:35:49 GMT; path=/ IPLOC=NO; expires=Sat, 04-Apr-26 11:35:49 GMT; domain=.sogou.com; path=/ SUID=9A2A5A5B36A5A20B0000000067EFC415; expires=Thu, 30-Mar-2045 11:35:49 GMT; domain=.sogou.com; path=/ P3P: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR", CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR", CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" ETag: "66c30cf7-b86" Expires: Wed, 01 Oct 2025 11:35:49 GMT Cache-Control: max-age=15552000 UUID: 9c8a945c-3aa8-4a35-b059-2205eaefbb44 Accept-Ranges: bytes

	OPTIONS vkg.hpdbfezgrqwn.vip/hylfff.php	122.10.26.202	200 OK	623 B
URL OPTIONS vkg.hpdbfezgrqwn.vip/hylfff.php IP 122.10.26.202:443 ASN #134548 DXTL Tseung Kwan O Service Requested by https://www.ltjonlinefeedback.com/ Certificate IssuerLet's Encrypt Subjectvkg.hpdbfezgrqwn.vip Fingerprint6B:F6:58:38:D9:D5:45:0F:C4:B7:E2:9F:6E:72:DF:75:FF:E0:69:96 ValidityTue, 07 Jan 2025 06:28:40 GMT - Mon, 07 Apr 2025 06:28:39 GMT File type HTML document, Unicode text, UTF-8 text, with very long lines (641), with no line terminators Size 623 B (623 bytes) Hash 9d0f9561cf6768f929e741551fbd6e94 0b683118a469c655bffb21e972e0c1b7e3d3fda0 050ae5c1db343bc699dd513dc657dc224841bdadc55e3bb61f0857b8349c07fe HTTP Headers OPTIONS /hylfff.php HTTP/1.1 Host: vkg.hpdbfezgrqwn.vip User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: content-type Referer: https://www.ltjonlinefeedback.com/ Origin: https://www.ltjonlinefeedback.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Fri, 04 Apr 2025 11:35:49 GMT content-type: text/html; charset=UTF-8 vary: Accept-Encoding x-request-id: e5b3adff9796f0a7001b057c7f7fb50d access-control-allow-origin: * access-control-allow-headers: * strict-transport-security: max-age=31536000 content-encoding: gzip X-Firefox-Spdy: h2`

	GET zz.bdstatic.com/linksubmit/push.js	157.255.63.48	200 OK	308 B
URL GET zz.bdstatic.com/linksubmit/push.js IP 157.255.63.48:443 ASN #136958 China Unicom Guangdong IP network Requested by https://www.ltjonlinefeedback.com/ Certificate IssuerGlobalSign nv-sa Subjectbaidu.com FingerprintEF:0F:BE:13:02:E2:C4:D4:89:BA:8F:BA:88:EF:6F:95:DC:CF:7B:E0 ValidityMon, 08 Jul 2024 01:41:02 GMT - Sat, 09 Aug 2025 01:41:01 GMT File type ASCII text, with very long lines (322), with no line terminators Size 308 B (308 bytes) Hash a498658e3623a4285649fd750e8e7f17 03f671b76709d9ecadce4a82348c852b6a1d5149 399125132825b666ee5d39bf0849d027d2ca21783be029cb001673f86579dd8a HTTP Headers `GET /linksubmit/push.js HTTP/1.1 Host: zz.bdstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.ltjonlinefeedback.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: JSP3/2.0.14 date: Fri, 04 Apr 2025 11:35:49 GMT content-type: application/x-javascript last-modified: Tue, 01 Apr 2025 18:11:31 GMT etag: "67ec2c53-134" cache-control: max-age=86400 content-encoding: br age: 30972 accept-ranges: bytes tracecode: 35722399710190027786040410 ohc-global-saved-time: Fri, 04 Apr 2025 02:59:32 GMT ohc-cache-hit: gz5un58 [2], zhuzuncache58 [2] ohc-response-time: 1 0 0 0 0 0 X-Firefox-Spdy: h2`

	GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/imgs/banner/banner.365.png	122.10.50.210	200 OK	16 kB
URL GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/imgs/banner/banner.365.png IP 122.10.50.210:443 ASN #134548 DXTL Tseung Kwan O Service Requested by https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/?id=7 Certificate IssuerSectigo Limited Subjectbafydlm7hit2bt.hu3tdwnsvxjza4.com FingerprintA7:8F:CE:13:EB:81:05:9B:01:78:04:85:F7:C2:25:1A:29:A6:6E:6F ValidityTue, 01 Apr 2025 00:00:00 GMT - Wed, 01 Apr 2026 23:59:59 GMT File type PNG image data, 1000 x 200, 8-bit colormap, non-interlaced Size 16 kB (16171 bytes) Hash c0c473ff65d53364b57bae47c1309ddd 62117432116dc2cf7c9db76f20301d011e6c33b5 6ed60433bd74f4340f70783c9037c1614a6578188642f74aedf451101ebfb3e8 HTTP Headers `GET /imgs/banner/banner.365.png HTTP/1.1 Host: bafydlm7hit2bt.hu3tdwnsvxjza4.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/?id=7 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Fri, 04 Apr 2025 11:35:52 GMT content-type: image/png content-length: 16171 last-modified: Tue, 01 Oct 2024 15:31:18 GMT etag: "66fc15c6-3f2b" expires: Sun, 04 May 2025 11:35:52 GMT cache-control: max-age=2592000 strict-transport-security: max-age=31536000 accept-ranges: bytes X-Firefox-Spdy: h2`

	GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/imgs/188jinbaobo.png	122.10.50.210	200 OK	4.3 kB
URL GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/imgs/188jinbaobo.png IP 122.10.50.210:443 ASN #134548 DXTL Tseung Kwan O Service Requested by https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/?id=7 Certificate IssuerSectigo Limited Subjectbafydlm7hit2bt.hu3tdwnsvxjza4.com FingerprintA7:8F:CE:13:EB:81:05:9B:01:78:04:85:F7:C2:25:1A:29:A6:6E:6F ValidityTue, 01 Apr 2025 00:00:00 GMT - Wed, 01 Apr 2026 23:59:59 GMT File type PNG image data, 250 x 250, 8-bit colormap, non-interlaced Size 4.3 kB (4303 bytes) Hash eaf4080a25184f8bd3cf68c96e01f003 858ae929b632ae67ab64b4778ea0117a3d972470 c88e9278bd955a8de13590bdc476c7cd724a44a37e56681582a1c02be94708e4 HTTP Headers `GET /imgs/188jinbaobo.png HTTP/1.1 Host: bafydlm7hit2bt.hu3tdwnsvxjza4.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/css/style.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Fri, 04 Apr 2025 11:35:53 GMT content-type: image/png content-length: 4303 last-modified: Tue, 01 Oct 2024 15:31:11 GMT etag: "66fc15bf-10cf" expires: Sun, 04 May 2025 11:35:53 GMT cache-control: max-age=2592000 strict-transport-security: max-age=31536000 accept-ranges: bytes X-Firefox-Spdy: h2`

	GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/banner.js	122.10.50.210	200 OK	2.7 kB
URL GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/banner.js IP 122.10.50.210:443 ASN #134548 DXTL Tseung Kwan O Service Requested by https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/?id=7 Certificate IssuerSectigo Limited Subjectbafydlm7hit2bt.hu3tdwnsvxjza4.com FingerprintA7:8F:CE:13:EB:81:05:9B:01:78:04:85:F7:C2:25:1A:29:A6:6E:6F ValidityTue, 01 Apr 2025 00:00:00 GMT - Wed, 01 Apr 2026 23:59:59 GMT File type JavaScript source, Unicode text, UTF-8 text, with very long lines (2723), with no line terminators Size 2.7 kB (2680 bytes) Hash c104dbbc039e0f660fc669a19c3b9d1a df3e9b4b2404024419be4794f16876ab7d7baa3b 154acd656d9a7cd7cc4f30ffee9960ff9d3b8dc272b92fbd3ab0a7ade51f5610 HTTP Headers `GET /banner.js HTTP/1.1 Host: bafydlm7hit2bt.hu3tdwnsvxjza4.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/?id=7 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Fri, 04 Apr 2025 11:35:52 GMT content-type: application/javascript last-modified: Mon, 31 Mar 2025 09:16:26 GMT vary: Accept-Encoding etag: W/"67ea5d6a-a78" expires: Fri, 04 Apr 2025 23:35:52 GMT cache-control: max-age=43200 strict-transport-security: max-age=31536000 content-encoding: gzip X-Firefox-Spdy: h2`

	GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/imgs/2025shiyunhui.png	122.10.50.210	200 OK	28 kB
URL GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/imgs/2025shiyunhui.png IP 122.10.50.210:443 ASN #134548 DXTL Tseung Kwan O Service Requested by https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/?id=7 Certificate IssuerSectigo Limited Subjectbafydlm7hit2bt.hu3tdwnsvxjza4.com FingerprintA7:8F:CE:13:EB:81:05:9B:01:78:04:85:F7:C2:25:1A:29:A6:6E:6F ValidityTue, 01 Apr 2025 00:00:00 GMT - Wed, 01 Apr 2026 23:59:59 GMT File type PNG image data, 309 x 497, 8-bit colormap, non-interlaced Size 28 kB (27838 bytes) Hash 48f648a53cd03787cab32621f6088895 408fac6305133287fdf50315d8212e07f4a0c89c fa5c757347298a9b2cd0b3823d37d4c1c5a2c75520207f37b61ad9873df50557 HTTP Headers `GET /imgs/2025shiyunhui.png HTTP/1.1 Host: bafydlm7hit2bt.hu3tdwnsvxjza4.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/?id=7 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Fri, 04 Apr 2025 11:35:52 GMT content-type: image/png content-length: 27838 last-modified: Tue, 01 Oct 2024 17:57:38 GMT etag: "66fc3812-6cbe" expires: Sun, 04 May 2025 11:35:52 GMT cache-control: max-age=2592000 strict-transport-security: max-age=31536000 accept-ranges: bytes X-Firefox-Spdy: h2`

	GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/imgs/sansanqiqi.png	122.10.50.210	200 OK	9.2 kB
URL GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/imgs/sansanqiqi.png IP 122.10.50.210:443 ASN #134548 DXTL Tseung Kwan O Service Requested by https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/?id=7 Certificate IssuerSectigo Limited Subjectbafydlm7hit2bt.hu3tdwnsvxjza4.com FingerprintA7:8F:CE:13:EB:81:05:9B:01:78:04:85:F7:C2:25:1A:29:A6:6E:6F ValidityTue, 01 Apr 2025 00:00:00 GMT - Wed, 01 Apr 2026 23:59:59 GMT File type PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced Size 9.2 kB (9166 bytes) Hash 2dc231bc7104153ad42e898e7d4e6779 9abd8a5a5cf86dc95eeb72f882b40e69e2a7d23e 1a622555817668f36c77a472dace4390aa8c2160a1af60330e9dc04de9f91e4f HTTP Headers `GET /imgs/sansanqiqi.png HTTP/1.1 Host: bafydlm7hit2bt.hu3tdwnsvxjza4.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/css/style.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Fri, 04 Apr 2025 11:35:53 GMT content-type: image/png content-length: 9166 last-modified: Tue, 15 Oct 2024 17:22:51 GMT etag: "670ea4eb-23ce" expires: Sun, 04 May 2025 11:35:53 GMT cache-control: max-age=2592000 strict-transport-security: max-age=31536000 accept-ranges: bytes X-Firefox-Spdy: h2`

	GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/imgs/banner/banner.yl.png	122.10.50.210	200 OK	52 kB
URL GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/imgs/banner/banner.yl.png IP 122.10.50.210:443 ASN #134548 DXTL Tseung Kwan O Service Requested by https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/?id=7 Certificate IssuerSectigo Limited Subjectbafydlm7hit2bt.hu3tdwnsvxjza4.com FingerprintA7:8F:CE:13:EB:81:05:9B:01:78:04:85:F7:C2:25:1A:29:A6:6E:6F ValidityTue, 01 Apr 2025 00:00:00 GMT - Wed, 01 Apr 2026 23:59:59 GMT File type PNG image data, 1000 x 200, 8-bit colormap, non-interlaced Size 52 kB (52077 bytes) Hash 8124c7710f1189ef5952117f45aa74a3 010540b7b3799d5ca439637b21c55e9f29b12f02 a0a0aa40160d5de2f097b8b05e648e1cb490703d58d0ce688c34330c39fe0205 HTTP Headers `GET /imgs/banner/banner.yl.png HTTP/1.1 Host: bafydlm7hit2bt.hu3tdwnsvxjza4.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/?id=7 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Fri, 04 Apr 2025 11:35:53 GMT content-type: image/png content-length: 52077 last-modified: Tue, 01 Oct 2024 15:31:22 GMT etag: "66fc15ca-cb6d" expires: Sun, 04 May 2025 11:35:53 GMT cache-control: max-age=2592000 strict-transport-security: max-age=31536000 accept-ranges: bytes X-Firefox-Spdy: h2`

	GET www.ltjonlinefeedback.com/	38.11.99.231	200 OK	4.0 kB
URL User Request GET www.ltjonlinefeedback.com/ IP 38.11.99.231:443 ASN #54600 PEG-SV Certificate IssuerZeroSSL Subjectwww.ltjonlinefeedback.com Fingerprint38:59:1D:7F:A4:73:30:A5:30:0B:70:C7:A2:B7:66:4D:B9:F6:32:74 ValidityThu, 03 Apr 2025 00:00:00 GMT - Wed, 02 Jul 2025 23:59:59 GMT File type HTML document, Unicode text, UTF-8 text, with very long lines (3871), with no line terminators Size 4.0 kB (3970 bytes) Hash 23d7e331d2b96306fa4a7083d44f3826 b7f5e816715d5f9323e64b9d6bb37b7f3d179fcf e084dce83791c0cde6c42032ea1b3a4663eadb66347543dd1e404bd0631196cd HTTP Headers `GET / HTTP/1.1 Host: www.ltjonlinefeedback.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Fri, 04 Apr 2025 11:35:47 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding cfrom: rewrite x-powered-by: java Server: home Set-Cookie: PHPSESSID=b66rg8luvnahtuti7j54888e96; path=/ Last-Modified: Fri, 04 Apr 2025 11:35:47 GMT Pragma: cache Expires: Sun, 06 Apr 2025 11:35:47 GMT Cache-Control: max-age=172800 Strict-Transport-Security: max-age=31536000; includeSubDomains Content-Encoding: gzip`

	GET sdk.51.la/js-sdk-pro.min.js	212.247.59.123	200 OK	36 kB
URL GET sdk.51.la/js-sdk-pro.min.js IP 212.247.59.123:443 ASN #1257 Tele2 SWIPnet Requested by https://www.ltjonlinefeedback.com/ Certificate IssuerGlobalSign nv-sa Subject.51.la FingerprintAE:CB:32:71:EE:EE:E6:72:A4:88:B2:9F:4F:C4:E5:B5:A8:C2:73:6C ValidityTue, 18 Mar 2025 04:08:22 GMT - Sun, 19 Apr 2026 04:08:21 GMT File type Size 36 kB (36115 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /js-sdk-pro.min.js HTTP/1.1 Host: sdk.51.la User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.ltjonlinefeedback.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Fri, 04 Apr 2025 11:35:49 GMT content-type: text/plain; charset=utf-8 server: openresty cache-control: no-store access-control-allow-origin: * access-control-allow-credentials: true via: EU-SWE-stockholm-EDGE1-CACHE5[260],EU-SWE-stockholm-EDGE1-CACHE5[ovl,259],EU-RUS-mosco-EDGE2-CACHE7[ovl,197],CA-MNG-ulaanbaatar-EDGE1-CACHE6[ovl,87],EA-HKG-EDGE1-CACHE1[ovl,36],EA-HKG-EDGE2-CACHE5[ovl,35],EA-HKG-GLOBAL1-CACHE19[ovl,33],CHN-GDdongguan-GLOBAL1-CACHE78[ovl,28] x-ccdn-req-id-46b1: 5c42bbd99df82baa0cc1f194d189bcf8 X-Firefox-Spdy: h2

	GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/css/bootstrap.min.css	122.10.50.210	200 OK	160 kB
URL GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/css/bootstrap.min.css IP 122.10.50.210:443 ASN #134548 DXTL Tseung Kwan O Service Requested by https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/?id=7 Certificate IssuerSectigo Limited Subjectbafydlm7hit2bt.hu3tdwnsvxjza4.com FingerprintA7:8F:CE:13:EB:81:05:9B:01:78:04:85:F7:C2:25:1A:29:A6:6E:6F ValidityTue, 01 Apr 2025 00:00:00 GMT - Wed, 01 Apr 2026 23:59:59 GMT File type ASCII text, with very long lines (65326) Size 160 kB (160257 bytes) Hash 9593715f4442d1f9d4e1a79e04481212 b480b8701abf383a48c32c7535e2387a1bf04cf3 1535585d0a5316a2dd4237a2a10d314dd174701c571f244cc0c44528b8b7fb3b HTTP Headers `GET /css/bootstrap.min.css HTTP/1.1 Host: bafydlm7hit2bt.hu3tdwnsvxjza4.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/?id=7 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Fri, 04 Apr 2025 11:35:52 GMT content-type: text/css last-modified: Tue, 26 Dec 2023 13:01:53 GMT vary: Accept-Encoding etag: W/"658acec1-27201" expires: Fri, 04 Apr 2025 23:35:52 GMT cache-control: max-age=43200 strict-transport-security: max-age=31536000 content-encoding: gzip X-Firefox-Spdy: h2`

	GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/bootstrap.min.js	122.10.50.210	200 OK	60 kB
URL GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/bootstrap.min.js IP 122.10.50.210:443 ASN #134548 DXTL Tseung Kwan O Service Requested by https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/?id=7 Certificate IssuerSectigo Limited Subjectbafydlm7hit2bt.hu3tdwnsvxjza4.com FingerprintA7:8F:CE:13:EB:81:05:9B:01:78:04:85:F7:C2:25:1A:29:A6:6E:6F ValidityTue, 01 Apr 2025 00:00:00 GMT - Wed, 01 Apr 2026 23:59:59 GMT File type JavaScript source, ASCII text, with very long lines (59765) Size 60 kB (60003 bytes) Hash 77cbad27852866cec1e32648eaafd22d 3ee3e67eddf2a6a59a46ef6644f93ba97efeefd1 2ced6f997d7fce10a38ddc75c2f24c9f8945f44e746128f3dcd61d923ea3fdce HTTP Headers `GET /bootstrap.min.js HTTP/1.1 Host: bafydlm7hit2bt.hu3tdwnsvxjza4.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/?id=7 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Fri, 04 Apr 2025 11:35:52 GMT content-type: application/javascript last-modified: Tue, 26 Dec 2023 13:01:43 GMT vary: Accept-Encoding etag: W/"658aceb7-ea63" expires: Fri, 04 Apr 2025 23:35:52 GMT cache-control: max-age=43200 strict-transport-security: max-age=31536000 content-encoding: gzip X-Firefox-Spdy: h2`

	GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/imgs/weide.png	122.10.50.210	200 OK	5.3 kB
URL GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/imgs/weide.png IP 122.10.50.210:443 ASN #134548 DXTL Tseung Kwan O Service Requested by https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/?id=7 Certificate IssuerSectigo Limited Subjectbafydlm7hit2bt.hu3tdwnsvxjza4.com FingerprintA7:8F:CE:13:EB:81:05:9B:01:78:04:85:F7:C2:25:1A:29:A6:6E:6F ValidityTue, 01 Apr 2025 00:00:00 GMT - Wed, 01 Apr 2026 23:59:59 GMT File type PNG image data, 250 x 250, 8-bit colormap, non-interlaced Size 5.3 kB (5294 bytes) Hash b5f40f3c38b9464dbfaa82f5fca1921b 1f3cdc4d8cfebb93899220a15c26943e24973849 0160de7c57628afc1694999264e44c99beb18dffdb2992be7d8223ed5f3ddc94 HTTP Headers `GET /imgs/weide.png HTTP/1.1 Host: bafydlm7hit2bt.hu3tdwnsvxjza4.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/css/style.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Fri, 04 Apr 2025 11:35:53 GMT content-type: image/png content-length: 5294 last-modified: Fri, 04 Oct 2024 20:16:01 GMT etag: "67004d01-14ae" expires: Sun, 04 May 2025 11:35:53 GMT cache-control: max-age=2592000 strict-transport-security: max-age=31536000 accept-ranges: bytes X-Firefox-Spdy: h2`

	GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/imgs/betway.png	122.10.50.210	200 OK	6.9 kB
URL GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/imgs/betway.png IP 122.10.50.210:443 ASN #134548 DXTL Tseung Kwan O Service Requested by https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/?id=7 Certificate IssuerSectigo Limited Subjectbafydlm7hit2bt.hu3tdwnsvxjza4.com FingerprintA7:8F:CE:13:EB:81:05:9B:01:78:04:85:F7:C2:25:1A:29:A6:6E:6F ValidityTue, 01 Apr 2025 00:00:00 GMT - Wed, 01 Apr 2026 23:59:59 GMT File type PNG image data, 250 x 250, 8-bit colormap, non-interlaced Size 6.9 kB (6928 bytes) Hash 4f9f1c048148b5759db7c70d4427ca5b 40006416fcdc12c925f6069aba457b2b85552ae0 26b6d720a2df9da5151756fd37ec0c69651304677250be9d7246936835e5acec HTTP Headers `GET /imgs/betway.png HTTP/1.1 Host: bafydlm7hit2bt.hu3tdwnsvxjza4.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/css/style.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Fri, 04 Apr 2025 11:35:53 GMT content-type: image/png content-length: 6928 last-modified: Fri, 04 Oct 2024 20:16:00 GMT etag: "67004d00-1b10" expires: Sun, 04 May 2025 11:35:53 GMT cache-control: max-age=2592000 strict-transport-security: max-age=31536000 accept-ranges: bytes X-Firefox-Spdy: h2`

	GET p.ssl.qhimg.com/t010e288a56a0b005e9.png	54.240.174.108	200 OK	3.3 kB
URL GET p.ssl.qhimg.com/t010e288a56a0b005e9.png IP 54.240.174.108:443 ASN #16509 AMAZON-02 Requested by https://www.ltjonlinefeedback.com/ Certificate IssuerWoTrus CA Limited Subject.ssl.qhimg.com Fingerprint9F:97:DF:6D:B1:CC:B8:56:24:EB:FA:31:A3:58:CC:DE:1E:98:35:B7 ValidityMon, 17 Mar 2025 00:00:00 GMT - Fri, 17 Apr 2026 23:59:59 GMT File type PNG image data, 100 x 22, 8-bit/color RGBA, interlaced Size 3.3 kB (3294 bytes) Hash e7c1f199ef4ad1cd5e2381777f3af90f 8b06f308405eec3219587e4dc9e67bc6280fa841 a01d73b630804f843c99d70f8f64a30303a8bc1273fed46bdf9f3d190bea8a68 HTTP Headers `GET /t010e288a56a0b005e9.png HTTP/1.1 Host: p.ssl.qhimg.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.ltjonlinefeedback.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: image/png content-length: 3294 last-modified: Mon, 23 Sep 2024 11:06:46 GMT xzp: orxleiwzhoemlml access-control-allow-origin: * timing-allow-origin: * xcs: HIT kcs-via: HIT from w-fc03.lato;MISS from w-sc01.lyct accept-ranges: bytes date: Sun, 16 Mar 2025 21:16:35 GMT expires: Sat, 14 Jun 2025 21:16:35 GMT cache-control: s-maxage=7776000, max-age=7776000 x-cache: Hit from cloudfront via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: RmKvvJUBDecCTlrAexFQnxUrlhBPDjSwRMwX__sblhziFk1MjOa3Ww== age: 1606753 X-Firefox-Spdy: h2

	POST vkg.hpdbfezgrqwn.vip/hylfff.php	122.10.26.202	200 OK	650 B
URL POST vkg.hpdbfezgrqwn.vip/hylfff.php IP 122.10.26.202:443 ASN #134548 DXTL Tseung Kwan O Service Requested by https://www.ltjonlinefeedback.com/ Certificate IssuerLet's Encrypt Subjectvkg.hpdbfezgrqwn.vip Fingerprint6B:F6:58:38:D9:D5:45:0F:C4:B7:E2:9F:6E:72:DF:75:FF:E0:69:96 ValidityTue, 07 Jan 2025 06:28:40 GMT - Mon, 07 Apr 2025 06:28:39 GMT File type HTML document, Unicode text, UTF-8 text, with very long lines (662), with no line terminators Size 650 B (650 bytes) Hash a1087ba1e368549406d589b96bf843a0 ce632fa20cf79f773211a5da4246336c0a22522f b80671113a0e369e20bfd39465ae1ccc26c701db0814532a4945e444354acadf HTTP Headers POST /hylfff.php HTTP/1.1 Host: vkg.hpdbfezgrqwn.vip User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/x-www-form-urlencoded;charset=UTF-8; Content-Length: 88 Origin: https://www.ltjonlinefeedback.com DNT: 1 Connection: keep-alive Referer: https://www.ltjonlinefeedback.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Fri, 04 Apr 2025 11:35:50 GMT content-type: text/html; charset=UTF-8 vary: Accept-Encoding x-request-id: 662d2f97e5e802ed001b057c9b1bec0e access-control-allow-origin: * access-control-allow-headers: * strict-transport-security: max-age=31536000 content-encoding: gzip X-Firefox-Spdy: h2`

	GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/?id=7	122.10.50.210	200 OK	62 kB
URL GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/?id=7 IP 122.10.50.210:443 ASN #134548 DXTL Tseung Kwan O Service Requested by https://www.ltjonlinefeedback.com/ Certificate IssuerSectigo Limited Subjectbafydlm7hit2bt.hu3tdwnsvxjza4.com FingerprintA7:8F:CE:13:EB:81:05:9B:01:78:04:85:F7:C2:25:1A:29:A6:6E:6F ValidityTue, 01 Apr 2025 00:00:00 GMT - Wed, 01 Apr 2026 23:59:59 GMT File type Size 62 kB (62409 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /?id=7 HTTP/1.1 Host: bafydlm7hit2bt.hu3tdwnsvxjza4.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.ltjonlinefeedback.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Fri, 04 Apr 2025 11:35:51 GMT content-type: text/html last-modified: Thu, 03 Apr 2025 15:11:50 GMT vary: Accept-Encoding etag: W/"67eea536-f3c9" strict-transport-security: max-age=31536000 content-encoding: gzip X-Firefox-Spdy: h2`

	GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/imgs/kaiyun.png	122.10.50.210	200 OK	6.4 kB
URL GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/imgs/kaiyun.png IP 122.10.50.210:443 ASN #134548 DXTL Tseung Kwan O Service Requested by https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/?id=7 Certificate IssuerSectigo Limited Subjectbafydlm7hit2bt.hu3tdwnsvxjza4.com FingerprintA7:8F:CE:13:EB:81:05:9B:01:78:04:85:F7:C2:25:1A:29:A6:6E:6F ValidityTue, 01 Apr 2025 00:00:00 GMT - Wed, 01 Apr 2026 23:59:59 GMT File type PNG image data, 250 x 250, 8-bit colormap, non-interlaced Size 6.4 kB (6379 bytes) Hash 6498a9d97304b0b805c98abbda8ed0fc ebbc775bafbcb958b3e4111a08aa30a8ee04500c 07bf983f17c6b63c74e12bc837f87a19f4656b6d901f91aff0646a0ad1390245 HTTP Headers `GET /imgs/kaiyun.png HTTP/1.1 Host: bafydlm7hit2bt.hu3tdwnsvxjza4.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/css/style.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Fri, 04 Apr 2025 11:35:53 GMT content-type: image/png content-length: 6379 last-modified: Tue, 01 Oct 2024 15:31:15 GMT etag: "66fc15c3-18eb" expires: Sun, 04 May 2025 11:35:53 GMT cache-control: max-age=2592000 strict-transport-security: max-age=31536000 accept-ranges: bytes X-Firefox-Spdy: h2`

	POST collect-v6.51.la/v6/collect?dt=4	212.247.59.123	210 No Reason Phrase	0 B
URL POST collect-v6.51.la/v6/collect?dt=4 IP 212.247.59.123:443 ASN #1257 Tele2 SWIPnet Requested by https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/?id=7 Certificate IssuerGlobalSign nv-sa Subject.51.la FingerprintAE:CB:32:71:EE:EE:E6:72:A4:88:B2:9F:4F:C4:E5:B5:A8:C2:73:6C ValidityTue, 18 Mar 2025 04:08:22 GMT - Sun, 19 Apr 2026 04:08:21 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /v6/collect?dt=4 HTTP/1.1 Host: collect-v6.51.la User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Length: 318 Origin: https://bafydlm7hit2bt.hu3tdwnsvxjza4.com DNT: 1 Connection: keep-alive Referer: https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 210 No Reason Phrase date: Fri, 04 Apr 2025 11:35:54 GMT content-length: 0 vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers access-control-allow-origin: https://bafydlm7hit2bt.hu3tdwnsvxjza4.com access-control-allow-credentials: true via: EU-SWE-stockholm-EDGE1-CACHE5[1305],EU-SWE-stockholm-EDGE1-CACHE5[ovl,1304],EU-RUS-mosco-EDGE2-CACHE1[ovl,186],CA-MNG-ulaanbaatar-EDGE1-CACHE6[ovl,76],EA-HKG-EDGE1-CACHE1[ovl,20],EA-HKG-EDGE2-CACHE5[ovl,19],EA-HKG-GLOBAL1-CACHE39[ovl,17] x-ccdn-req-id-46b1: 330c9a8e3a8443e091bbd9dfacec65d1 X-Firefox-Spdy: h2

	GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/imgs/tychongse.png	122.10.50.210	200 OK	22 kB
URL GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/imgs/tychongse.png IP 122.10.50.210:443 ASN #134548 DXTL Tseung Kwan O Service Requested by https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/?id=7 Certificate IssuerSectigo Limited Subjectbafydlm7hit2bt.hu3tdwnsvxjza4.com FingerprintA7:8F:CE:13:EB:81:05:9B:01:78:04:85:F7:C2:25:1A:29:A6:6E:6F ValidityTue, 01 Apr 2025 00:00:00 GMT - Wed, 01 Apr 2026 23:59:59 GMT File type PNG image data, 192 x 180, 8-bit colormap, non-interlaced Size 22 kB (21808 bytes) Hash c83eed0df1357aa7a2df0686eef73598 b175dc79cab26c5616a83ca5954865b2285e9c73 f9335a2d909da756905e552dfc2ae98a06001cf6ee1548f79bcdfe6446b3ef1a HTTP Headers `GET /imgs/tychongse.png HTTP/1.1 Host: bafydlm7hit2bt.hu3tdwnsvxjza4.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/css/style.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Fri, 04 Apr 2025 11:35:53 GMT content-type: image/png content-length: 21808 last-modified: Fri, 04 Oct 2024 20:16:00 GMT etag: "67004d00-5530" expires: Sun, 04 May 2025 11:35:53 GMT cache-control: max-age=2592000 strict-transport-security: max-age=31536000 accept-ranges: bytes X-Firefox-Spdy: h2`

	GET www.ltjonlinefeedback.com/favicon.ico	38.11.99.231	200 OK	94 B
URL GET www.ltjonlinefeedback.com/favicon.ico IP 38.11.99.231:443 ASN #54600 PEG-SV Requested by https://www.ltjonlinefeedback.com/ Certificate IssuerZeroSSL Subjectwww.ltjonlinefeedback.com Fingerprint38:59:1D:7F:A4:73:30:A5:30:0B:70:C7:A2:B7:66:4D:B9:F6:32:74 ValidityThu, 03 Apr 2025 00:00:00 GMT - Wed, 02 Jul 2025 23:59:59 GMT File type HTML document, ASCII text, with no line terminators Size 94 B (94 bytes) Hash c48d26518cea9f7da55482a7f8fbe858 f1a3832b8b47004db025b6f750adc6a7563e5ec2 3e996545a33ea2f137dc6128b3bdfe00db53fe4eca124867531bb2674eec5903 HTTP Headers `GET /favicon.ico HTTP/1.1 Host: www.ltjonlinefeedback.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.ltjonlinefeedback.com/ Cookie: PHPSESSID=b66rg8luvnahtuti7j54888e96 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Fri, 04 Apr 2025 11:35:49 GMT Content-Type: image/x-icon Content-Length: 94 Last-Modified: Thu, 03 Apr 2025 11:27:48 GMT Connection: keep-alive ETag: "67ee70b4-5e" Expires: Sun, 04 May 2025 11:35:49 GMT Cache-Control: max-age=2592000 Strict-Transport-Security: max-age=31536000; includeSubDomains Accept-Ranges: bytes`

	GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/css/modalStyles.css	122.10.50.210	200 OK	9.4 kB
URL GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/css/modalStyles.css IP 122.10.50.210:443 ASN #134548 DXTL Tseung Kwan O Service Requested by https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/?id=7 Certificate IssuerSectigo Limited Subjectbafydlm7hit2bt.hu3tdwnsvxjza4.com FingerprintA7:8F:CE:13:EB:81:05:9B:01:78:04:85:F7:C2:25:1A:29:A6:6E:6F ValidityTue, 01 Apr 2025 00:00:00 GMT - Wed, 01 Apr 2026 23:59:59 GMT File type Unicode text, UTF-8 text, with very long lines (9091), with no line terminators Size 9.4 kB (9350 bytes) Hash f7f8fd26007b85b77fb26253d77ede0d ae4bc0b8c101191b4b3672158e7d969e21c43a33 fd37c16b0cfde57c172ac9598a12c4973dad0f0aead73384e1e7b225247f3622 HTTP Headers `GET /css/modalStyles.css HTTP/1.1 Host: bafydlm7hit2bt.hu3tdwnsvxjza4.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/?id=7 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Fri, 04 Apr 2025 11:35:52 GMT content-type: text/css last-modified: Tue, 18 Mar 2025 08:49:34 GMT vary: Accept-Encoding etag: W/"67d9339e-2486" expires: Fri, 04 Apr 2025 23:35:52 GMT cache-control: max-age=43200 strict-transport-security: max-age=31536000 content-encoding: gzip X-Firefox-Spdy: h2`

	GET sdk.51.la/js-sdk-pro.min.js	212.247.59.123	200 OK	36 kB
URL GET sdk.51.la/js-sdk-pro.min.js IP 212.247.59.123:443 ASN #1257 Tele2 SWIPnet Requested by https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/?id=7 Certificate IssuerGlobalSign nv-sa Subject.51.la FingerprintAE:CB:32:71:EE:EE:E6:72:A4:88:B2:9F:4F:C4:E5:B5:A8:C2:73:6C ValidityTue, 18 Mar 2025 04:08:22 GMT - Sun, 19 Apr 2026 04:08:21 GMT File type Size 36 kB (36115 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /js-sdk-pro.min.js HTTP/1.1 Host: sdk.51.la User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Fri, 04 Apr 2025 11:35:52 GMT content-type: text/plain; charset=utf-8 server: openresty cache-control: no-store access-control-allow-origin: * access-control-allow-credentials: true via: EU-SWE-stockholm-EDGE1-CACHE5[239],EU-SWE-stockholm-EDGE1-CACHE5[ovl,238],EU-RUS-mosco-EDGE2-CACHE7[ovl,217],CA-MNG-ulaanbaatar-EDGE1-CACHE6[ovl,102],EA-HKG-EDGE1-CACHE1[ovl,43],EA-HKG-EDGE2-CACHE5[ovl,42],EA-HKG-GLOBAL1-CACHE45[ovl,40],CHN-GDdongguan-GLOBAL1-CACHE23[ovl,33] x-ccdn-req-id-46b1: 94eb6c0a4c678a88217406fd31adb262 X-Firefox-Spdy: h2

	GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/quicklink.umd.js	122.10.50.210	200 OK	3.7 kB
URL GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/quicklink.umd.js IP 122.10.50.210:443 ASN #134548 DXTL Tseung Kwan O Service Requested by https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/?id=7 Certificate IssuerSectigo Limited Subjectbafydlm7hit2bt.hu3tdwnsvxjza4.com FingerprintA7:8F:CE:13:EB:81:05:9B:01:78:04:85:F7:C2:25:1A:29:A6:6E:6F ValidityTue, 01 Apr 2025 00:00:00 GMT - Wed, 01 Apr 2026 23:59:59 GMT File type JavaScript source, ASCII text, with very long lines (3773), with no line terminators Size 3.7 kB (3711 bytes) Hash 0b94281732ae70dd72accc187eaee895 57c6ff920a5f64773bdb8f918b5867367ed5bb9e 18afc4ca460c1211cddb5a71106c3d79715a148712338292188fa7060e29906f HTTP Headers `GET /quicklink.umd.js HTTP/1.1 Host: bafydlm7hit2bt.hu3tdwnsvxjza4.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/?id=7 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Fri, 04 Apr 2025 11:35:52 GMT content-type: application/javascript last-modified: Sun, 28 Jul 2024 08:53:58 GMT vary: Accept-Encoding etag: W/"66a60726-e7f" expires: Fri, 04 Apr 2025 23:35:52 GMT cache-control: max-age=43200 strict-transport-security: max-age=31536000 content-encoding: gzip X-Firefox-Spdy: h2`

	GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/popper.min.js	122.10.50.210	200 OK	21 kB
URL GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/popper.min.js IP 122.10.50.210:443 ASN #134548 DXTL Tseung Kwan O Service Requested by https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/?id=7 Certificate IssuerSectigo Limited Subjectbafydlm7hit2bt.hu3tdwnsvxjza4.com FingerprintA7:8F:CE:13:EB:81:05:9B:01:78:04:85:F7:C2:25:1A:29:A6:6E:6F ValidityTue, 01 Apr 2025 00:00:00 GMT - Wed, 01 Apr 2026 23:59:59 GMT File type JavaScript source, ASCII text, with very long lines (21084) Size 21 kB (21218 bytes) Hash c6946dff4854d4611da8aef36666b938 9118198bd2a853baa4644c6e819427150ca35160 7028ef6262d35db7dc22b05df3cbb3e93595ce90cd340fdc356620d961b01224 HTTP Headers `GET /popper.min.js HTTP/1.1 Host: bafydlm7hit2bt.hu3tdwnsvxjza4.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/?id=7 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Fri, 04 Apr 2025 11:35:52 GMT content-type: application/javascript last-modified: Tue, 26 Dec 2023 13:01:44 GMT vary: Accept-Encoding etag: W/"658aceb8-52e2" expires: Fri, 04 Apr 2025 23:35:52 GMT cache-control: max-age=43200 strict-transport-security: max-age=31536000 content-encoding: gzip X-Firefox-Spdy: h2`

	GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/imgs/2026shijiebei.png	122.10.50.210	200 OK	17 kB
URL GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/imgs/2026shijiebei.png IP 122.10.50.210:443 ASN #134548 DXTL Tseung Kwan O Service Requested by https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/?id=7 Certificate IssuerSectigo Limited Subjectbafydlm7hit2bt.hu3tdwnsvxjza4.com FingerprintA7:8F:CE:13:EB:81:05:9B:01:78:04:85:F7:C2:25:1A:29:A6:6E:6F ValidityTue, 01 Apr 2025 00:00:00 GMT - Wed, 01 Apr 2026 23:59:59 GMT File type PNG image data, 268 x 411, 8-bit colormap, non-interlaced Size 17 kB (16719 bytes) Hash 9c4488c5c4baaae0286bda2a5ca555eb 0103d52a175d0d91ed500b11f67d73457f7abc4a b7b9498d1beabae57d14a7806c87265571a0a5bbd1b5d49bc7029f1aad3959d6 HTTP Headers `GET /imgs/2026shijiebei.png HTTP/1.1 Host: bafydlm7hit2bt.hu3tdwnsvxjza4.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/?id=7 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Fri, 04 Apr 2025 11:35:52 GMT content-type: image/png content-length: 16719 last-modified: Tue, 01 Oct 2024 17:57:40 GMT etag: "66fc3814-414f" expires: Sun, 04 May 2025 11:35:52 GMT cache-control: max-age=2592000 strict-transport-security: max-age=31536000 accept-ranges: bytes X-Firefox-Spdy: h2`

	GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/imgs/bet365.png	122.10.50.210	200 OK	11 kB
URL GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/imgs/bet365.png IP 122.10.50.210:443 ASN #134548 DXTL Tseung Kwan O Service Requested by https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/?id=7 Certificate IssuerSectigo Limited Subjectbafydlm7hit2bt.hu3tdwnsvxjza4.com FingerprintA7:8F:CE:13:EB:81:05:9B:01:78:04:85:F7:C2:25:1A:29:A6:6E:6F ValidityTue, 01 Apr 2025 00:00:00 GMT - Wed, 01 Apr 2026 23:59:59 GMT File type PNG image data, 250 x 250, 8-bit colormap, non-interlaced Size 11 kB (11205 bytes) Hash 65fb72a68b9dca68ade34ada3253fc2a 5260a46f7843f885a7552940a68975abf2d62bc7 5bc5dd8a9766bb21896db9db9ea8c03e0f16098f1eb46c6bf3f8a33e57d33702 HTTP Headers `GET /imgs/bet365.png HTTP/1.1 Host: bafydlm7hit2bt.hu3tdwnsvxjza4.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/css/style.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Fri, 04 Apr 2025 11:35:53 GMT content-type: image/png content-length: 11205 last-modified: Tue, 01 Oct 2024 15:31:11 GMT etag: "66fc15bf-2bc5" expires: Sun, 04 May 2025 11:35:53 GMT cache-control: max-age=2592000 strict-transport-security: max-age=31536000 accept-ranges: bytes X-Firefox-Spdy: h2`

	GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/imgs/bwin.png	122.10.50.210	200 OK	5.4 kB
URL GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/imgs/bwin.png IP 122.10.50.210:443 ASN #134548 DXTL Tseung Kwan O Service Requested by https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/?id=7 Certificate IssuerSectigo Limited Subjectbafydlm7hit2bt.hu3tdwnsvxjza4.com FingerprintA7:8F:CE:13:EB:81:05:9B:01:78:04:85:F7:C2:25:1A:29:A6:6E:6F ValidityTue, 01 Apr 2025 00:00:00 GMT - Wed, 01 Apr 2026 23:59:59 GMT File type PNG image data, 250 x 250, 8-bit colormap, non-interlaced Size 5.4 kB (5376 bytes) Hash 2bc1bf08144630d93b1cfaa5fe79a23c 1df219cb9bc37b20e9c14203234a7353c0de2b5e 2c3818b06418db8dc6bbe87d667087bde5d151c24211e9e08911370c1174276f HTTP Headers `GET /imgs/bwin.png HTTP/1.1 Host: bafydlm7hit2bt.hu3tdwnsvxjza4.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/css/style.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Fri, 04 Apr 2025 11:35:53 GMT content-type: image/png content-length: 5376 last-modified: Fri, 04 Oct 2024 20:16:00 GMT etag: "67004d00-1500" expires: Sun, 04 May 2025 11:35:53 GMT cache-control: max-age=2592000 strict-transport-security: max-age=31536000 accept-ranges: bytes X-Firefox-Spdy: h2`

	GET www.ltjonlinefeedback.com/@public/jquery.cdn.js	38.11.99.231	200 OK	1.5 kB
URL GET www.ltjonlinefeedback.com/@public/jquery.cdn.js IP 38.11.99.231:443 ASN #54600 PEG-SV Requested by https://www.ltjonlinefeedback.com/ Certificate IssuerZeroSSL Subjectwww.ltjonlinefeedback.com Fingerprint38:59:1D:7F:A4:73:30:A5:30:0B:70:C7:A2:B7:66:4D:B9:F6:32:74 ValidityThu, 03 Apr 2025 00:00:00 GMT - Wed, 02 Jul 2025 23:59:59 GMT File type Unicode text, UTF-8 text, with very long lines (1593), with no line terminators Size 1.5 kB (1514 bytes) Hash 60d7b255113394340c35aa8d773299f8 6b48cf614d6a9178ef9924aa4067ae74545c57bc dba6f362e50415ff7bb07e6d638e591110bc26affe86c8a26c0d990ab3d297c1 HTTP Headers `GET /@public/jquery.cdn.js HTTP/1.1 Host: www.ltjonlinefeedback.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.ltjonlinefeedback.com/ Cookie: PHPSESSID=b66rg8luvnahtuti7j54888e96 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Fri, 04 Apr 2025 11:35:48 GMT Content-Type: application/javascript; charset=utf-8 Last-Modified: Thu, 20 Mar 2025 13:46:57 GMT Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding ETag: W/"67dc1c51-5ea" Expires: Sun, 04 May 2025 11:35:48 GMT Cache-Control: max-age=2592000 Strict-Transport-Security: max-age=31536000; includeSubDomains Content-Encoding: gzip`

	GET www.baidu.com/img/baidu_jgylogo3.gif	103.235.46.102	200 OK	705 B
URL GET www.baidu.com/img/baidu_jgylogo3.gif IP 103.235.46.102:443 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Requested by https://www.ltjonlinefeedback.com/ Certificate IssuerGlobalSign nv-sa Subjectbaidu.com FingerprintEF:0F:BE:13:02:E2:C4:D4:89:BA:8F:BA:88:EF:6F:95:DC:CF:7B:E0 ValidityMon, 08 Jul 2024 01:41:02 GMT - Sat, 09 Aug 2025 01:41:01 GMT File type GIF image data, version 89a, 117 x 38 Size 705 B (705 bytes) Hash 803bb46a6acef395ed9353de2dcf26f5 684764e45ebb267a15c337a6eb671047c7873ead dc506b4253e2bb145e5b370f6088842382a8c2bd0632d9b265744f706727f7f5 HTTP Headers `GET /img/baidu_jgylogo3.gif HTTP/1.1 Host: www.baidu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.ltjonlinefeedback.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Cache-Control: max-age=315360000 Content-Length: 705 Content-Type: image/gif Date: Fri, 04 Apr 2025 11:35:49 GMT Etag: "2c1-4a6473f6030c0" Expires: Mon, 02 Apr 2035 11:35:49 GMT Last-Modified: Wed, 22 Jun 2011 06:40:43 GMT P3p: CP=" OTI DSP COR IVA OUR IND COM " Server: Apache Set-Cookie: BAIDUID=49560FCD3F64858EE2D1A7E664B4A645:FG=1; expires=Sat, 04-Apr-26 11:35:49 GMT; max-age=31536000; path=/; domain=.baidu.com; version=1`

	GET sdk.51.la/js-sdk-pro.min.js	212.247.59.123	200 OK	36 kB
URL GET sdk.51.la/js-sdk-pro.min.js IP 212.247.59.123:443 ASN #1257 Tele2 SWIPnet Requested by https://www.ltjonlinefeedback.com/ Certificate IssuerGlobalSign nv-sa Subject.51.la FingerprintAE:CB:32:71:EE:EE:E6:72:A4:88:B2:9F:4F:C4:E5:B5:A8:C2:73:6C ValidityTue, 18 Mar 2025 04:08:22 GMT - Sun, 19 Apr 2026 04:08:21 GMT File type Size 36 kB (36115 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /js-sdk-pro.min.js HTTP/1.1 Host: sdk.51.la User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.ltjonlinefeedback.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Fri, 04 Apr 2025 11:35:49 GMT content-type: text/plain; charset=utf-8 server: openresty cache-control: no-store access-control-allow-origin: * access-control-allow-credentials: true via: EU-SWE-stockholm-EDGE1-CACHE5[297],EU-SWE-stockholm-EDGE1-CACHE5[ovl,294],EU-RUS-mosco-EDGE2-CACHE1[ovl,215],CA-MNG-ulaanbaatar-EDGE1-CACHE6[ovl,101],EA-HKG-EDGE1-CACHE1[ovl,44],EA-HKG-EDGE2-CACHE1[ovl,43],EA-HKG-GLOBAL1-CACHE28[ovl,41],CHN-GDdongguan-GLOBAL1-CACHE85[ovl,33] x-ccdn-req-id-46b1: 9357d816652d67217d7b1c00f55a46f9 X-Firefox-Spdy: h2

	GET sdk.51.la/js-sdk-pro.min.js	212.247.59.123	200 OK	36 kB
URL GET sdk.51.la/js-sdk-pro.min.js IP 212.247.59.123:443 ASN #1257 Tele2 SWIPnet Requested by https://www.ltjonlinefeedback.com/ Certificate IssuerGlobalSign nv-sa Subject.51.la FingerprintAE:CB:32:71:EE:EE:E6:72:A4:88:B2:9F:4F:C4:E5:B5:A8:C2:73:6C ValidityTue, 18 Mar 2025 04:08:22 GMT - Sun, 19 Apr 2026 04:08:21 GMT File type Size 36 kB (36115 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /js-sdk-pro.min.js HTTP/1.1 Host: sdk.51.la User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.ltjonlinefeedback.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Fri, 04 Apr 2025 11:35:49 GMT content-type: text/plain; charset=utf-8 server: openresty cache-control: no-store access-control-allow-origin: * access-control-allow-credentials: true via: EU-SWE-stockholm-EDGE1-CACHE5[315],EU-SWE-stockholm-EDGE1-CACHE5[ovl,315],EU-RUS-mosco-EDGE2-CACHE7[ovl,295],CA-MNG-ulaanbaatar-EDGE1-CACHE6[ovl,185],EA-HKG-EDGE1-CACHE1[ovl,34],EA-HKG-EDGE2-CACHE1[ovl,33],EA-HKG-GLOBAL1-CACHE15[ovl,31],CHN-GDdongguan-GLOBAL1-CACHE35[ovl,26] x-ccdn-req-id-46b1: 2d6b25bea1a8833c7c0db51e823bf812 X-Firefox-Spdy: h2

	GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/jquery.min.js	122.10.50.210	200 OK	90 kB
URL GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/jquery.min.js IP 122.10.50.210:443 ASN #134548 DXTL Tseung Kwan O Service Requested by https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/?id=7 Certificate IssuerSectigo Limited Subjectbafydlm7hit2bt.hu3tdwnsvxjza4.com FingerprintA7:8F:CE:13:EB:81:05:9B:01:78:04:85:F7:C2:25:1A:29:A6:6E:6F ValidityTue, 01 Apr 2025 00:00:00 GMT - Wed, 01 Apr 2026 23:59:59 GMT File type JavaScript source, ASCII text, with very long lines (65451) Size 90 kB (89475 bytes) Hash 12b69d0ae6c6f0c42942ae6da2896e84 d2cc8d43ce1c854b1172e42b1209502ad563db83 6150a35c0f486c46cadf0e230e2aa159c7c23ecfbb5611b64ee3f25fcbff341f HTTP Headers `GET /jquery.min.js HTTP/1.1 Host: bafydlm7hit2bt.hu3tdwnsvxjza4.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/?id=7 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Fri, 04 Apr 2025 11:35:52 GMT content-type: application/javascript last-modified: Tue, 26 Dec 2023 13:01:43 GMT vary: Accept-Encoding etag: W/"658aceb7-15d83" expires: Fri, 04 Apr 2025 23:35:52 GMT cache-control: max-age=43200 strict-transport-security: max-age=31536000 content-encoding: gzip X-Firefox-Spdy: h2`

	GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/imgs/2025fajia.png	122.10.50.210	200 OK	33 kB
URL GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/imgs/2025fajia.png IP 122.10.50.210:443 ASN #134548 DXTL Tseung Kwan O Service Requested by https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/?id=7 Certificate IssuerSectigo Limited Subjectbafydlm7hit2bt.hu3tdwnsvxjza4.com FingerprintA7:8F:CE:13:EB:81:05:9B:01:78:04:85:F7:C2:25:1A:29:A6:6E:6F ValidityTue, 01 Apr 2025 00:00:00 GMT - Wed, 01 Apr 2026 23:59:59 GMT File type PNG image data, 1780 x 2251, 8-bit colormap, non-interlaced Size 33 kB (32644 bytes) Hash 8f0cd5f85d6de29491700d70995017ff 91b6374b9717a6d9df3574ad1a246d7da44dbf1b eb0be5a9c93ed5ef86eda2ec2de2d8bdb24bf08e048dbdb7e8161444f46ad63a HTTP Headers `GET /imgs/2025fajia.png HTTP/1.1 Host: bafydlm7hit2bt.hu3tdwnsvxjza4.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/?id=7 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Fri, 04 Apr 2025 11:35:52 GMT content-type: image/png content-length: 32644 last-modified: Tue, 01 Oct 2024 17:57:38 GMT etag: "66fc3812-7f84" expires: Sun, 04 May 2025 11:35:52 GMT cache-control: max-age=2592000 strict-transport-security: max-age=31536000 accept-ranges: bytes X-Firefox-Spdy: h2`

	GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/imgs/wlxe.png	122.10.50.210	200 OK	5.3 kB
URL GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/imgs/wlxe.png IP 122.10.50.210:443 ASN #134548 DXTL Tseung Kwan O Service Requested by https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/?id=7 Certificate IssuerSectigo Limited Subjectbafydlm7hit2bt.hu3tdwnsvxjza4.com FingerprintA7:8F:CE:13:EB:81:05:9B:01:78:04:85:F7:C2:25:1A:29:A6:6E:6F ValidityTue, 01 Apr 2025 00:00:00 GMT - Wed, 01 Apr 2026 23:59:59 GMT File type PNG image data, 250 x 250, 8-bit colormap, non-interlaced Size 5.3 kB (5313 bytes) Hash 759534a3c80e7ad77deee14da3d94cd8 12d6fb2d8e7d74d3235e095d3c3c667e539702de 121dad2a5ca7affda231fc459b5eca6e6141e5d58061681d76679436e1dc5fc3 HTTP Headers `GET /imgs/wlxe.png HTTP/1.1 Host: bafydlm7hit2bt.hu3tdwnsvxjza4.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/css/style.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Fri, 04 Apr 2025 11:35:53 GMT content-type: image/png content-length: 5313 last-modified: Fri, 04 Oct 2024 20:16:01 GMT etag: "67004d01-14c1" expires: Sun, 04 May 2025 11:35:53 GMT cache-control: max-age=2592000 strict-transport-security: max-age=31536000 accept-ranges: bytes X-Firefox-Spdy: h2`

	GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/imgs/yongli.png	122.10.50.210	200 OK	7.1 kB
URL GET bafydlm7hit2bt.hu3tdwnsvxjza4.com/imgs/yongli.png IP 122.10.50.210:443 ASN #134548 DXTL Tseung Kwan O Service Requested by https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/?id=7 Certificate IssuerSectigo Limited Subjectbafydlm7hit2bt.hu3tdwnsvxjza4.com FingerprintA7:8F:CE:13:EB:81:05:9B:01:78:04:85:F7:C2:25:1A:29:A6:6E:6F ValidityTue, 01 Apr 2025 00:00:00 GMT - Wed, 01 Apr 2026 23:59:59 GMT File type PNG image data, 250 x 250, 8-bit colormap, non-interlaced Size 7.1 kB (7076 bytes) Hash f54529f769913035e9bc66a8b12628a4 307730ffe890fb6ccb68e0b4b3a1035cf06b5b2d eee83710de65bde638db3085f8a1418fe482523f500ac67ab4029d7d34e2f480 HTTP Headers `GET /imgs/yongli.png HTTP/1.1 Host: bafydlm7hit2bt.hu3tdwnsvxjza4.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://bafydlm7hit2bt.hu3tdwnsvxjza4.com/css/style.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Fri, 04 Apr 2025 11:35:53 GMT content-type: image/png content-length: 7076 last-modified: Tue, 01 Oct 2024 15:31:18 GMT etag: "66fc15c6-1ba4" expires: Sun, 04 May 2025 11:35:53 GMT cache-control: max-age=2592000 strict-transport-security: max-age=31536000 accept-ranges: bytes X-Firefox-Spdy: h2`

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (21)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML