Overview

URL www.uppeer.com/bzh.php
IP45.3.41.106
ASNAS17139 Corporate Colocation Inc.
Location Unknown
Report completed2019-02-21 00:49:04 CET
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2019-02-21 2 js.users.51.la/19300508.js Malware
2019-02-21 2 js.users.51.la/19194848.js Malware
2019-02-21 2 js.users.51.la/19300508.js Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

No other reports on IP: 45.3.41.106


Last 10 reports on ASN: AS17139 Corporate Colocation Inc.

Date UQ / IDS / BL URL IP
2019-06-10 23:09:23 +0200
0 - 0 - 2 voitureneuve.net/ 199.195.142.109
2019-06-10 16:16:40 +0200
0 - 0 - 1 webpave.com/~tierra8/spanish/wp-content/mmp 205.134.241.29
2019-06-10 16:15:50 +0200
0 - 0 - 2 central-liquor.com/~tierra8/spanish/wp-content/mmp 205.134.241.149
2019-06-10 11:49:54 +0200
0 - 0 - 4 mixsweets.ae/wp-admin/LLC/sbm4rw8zkr2t5d83loe (...) 205.134.234.46
2019-06-09 14:03:01 +0200
0 - 0 - 2 janusprogram.com/themes/defaute/sold596/Free- (...) 205.134.241.102
2019-06-09 13:52:21 +0200
0 - 0 - 1 janusprogram.com/themes/defaute/sold596/Free- (...) 205.134.241.102
2019-06-09 08:32:32 +0200
0 - 0 - 2 vancouverreversemortgage.com/~prince57/cb06/L (...) 205.134.241.46
2019-06-09 06:41:10 +0200
0 - 0 - 3 howeasycn.net/default.php 45.3.38.227
2019-06-09 06:40:35 +0200
0 - 0 - 3 www.howeasycn.net/default.php 45.3.38.227
2019-06-07 16:27:30 +0200
0 - 0 - 7 hanyueyr.com/2dYHit_426_170.exe 104.207.47.103

No other reports on domain: uppeer.com



JavaScript

Executed Scripts (6)


Executed Evals (12)

#1 JavaScript::Eval (size: 3, repeated: 1) - SHA256: fd0ad9026eee596b7072a762941f60bef57e760a230edd450b3a634825685c2a

                                        (1)
                                    

#2 JavaScript::Eval (size: 3, repeated: 1) - SHA256: 0e77e68ba5473d98840c3212f4a8cb801226494f1162c8001a9f4ed7b00cbaa8

                                        (2)
                                    

#3 JavaScript::Eval (size: 3, repeated: 1) - SHA256: 46f789d1efeefad080846917a6a4a761d0e1804bb0a4f27fa4634a887ec26265

                                        (3)
                                    

#4 JavaScript::Eval (size: 263, repeated: 1) - SHA256: 220d27e3b5e5dfdb4b1f9bd31538e414718c627214bafa735a3c1a8d4ca2c2f3

                                        ({
    "rl": "1176*885",
    "lang": "en-US",
    "ct": "unknow",
    "pf": 1,
    "ins": 0,
    "vd": 2,
    "ce": 1,
    "cd": 24,
    "ds": "",
    "ing": 3,
    "ekc": "",
    "sid": 1550706515924,
    "tt": "www.ca88.cc_ca88�2�_�2�ca881Pe�",
    "kw": "",
    "cu": "http://www.uppeer.com/bzh.php",
    "pu": ""
})
                                    

#5 JavaScript::Eval (size: 263, repeated: 1) - SHA256: f5a102155304b03f5770ed53e74daf54985bd4e57a6c79064e1f257b8dbeb4f6

                                        ({
    "rl": "1176*885",
    "lang": "en-US",
    "ct": "unknow",
    "pf": 1,
    "ins": 0,
    "vd": 2,
    "ce": 1,
    "cd": 24,
    "ds": "",
    "ing": 4,
    "ekc": "",
    "sid": 1550706519114,
    "tt": "www.ca88.cc_ca88�2�_�2�ca881Pe�",
    "kw": "",
    "cu": "http://www.uppeer.com/bzh.php",
    "pu": ""
})
                                    

#6 JavaScript::Eval (size: 348, repeated: 1) - SHA256: 7fc0b1dcec85aef104061c6002edd921ae558ab6abc80301c4287f3cc7b572d2

                                        ({
    "rl": "1176*885",
    "lang": "en-US",
    "ct": "unknow",
    "pf": 1,
    "ins": 1,
    "vd": 1,
    "ce": 1,
    "cd": 24,
    "ds": "mޢ���l���1957t���Ubwww.ca8",
    "ing": 1,
    "ekc": "",
    "sid": 1550706515924,
    "tt": "www.ca88.cc_ca88�2�_�2�ca881Pe�",
    "kw": "www.ca88.cc,ca88�2�,�2�ca881P",
    "cu": "http://www.uppeer.com/bzh.php",
    "pu": ""
})
                                    

#7 JavaScript::Eval (size: 348, repeated: 1) - SHA256: 22a5679cb74c96f70b031ecdce058d5819a706549ddb80125cdf43950bd12033

                                        ({
    "rl": "1176*885",
    "lang": "en-US",
    "ct": "unknow",
    "pf": 1,
    "ins": 1,
    "vd": 1,
    "ce": 1,
    "cd": 24,
    "ds": "mޢ���l���1957t���Ubwww.ca8",
    "ing": 2,
    "ekc": "",
    "sid": 1550706519114,
    "tt": "www.ca88.cc_ca88�2�_�2�ca881Pe�",
    "kw": "www.ca88.cc,ca88�2�,�2�ca881P",
    "cu": "http://www.uppeer.com/bzh.php",
    "pu": ""
})
                                    

#8 JavaScript::Eval (size: 59, repeated: 1) - SHA256: 944a8788efe76e130c5b24b2b3dc8f6f5963ed830369e36949fba9b8364cd4a0

                                        ({
    "sid": 1550706515924,
    "vd": 1,
    "expires": 1550708315924
})
                                    

#9 JavaScript::Eval (size: 59, repeated: 1) - SHA256: 8a855fc54903c94e5519ad52d237d010bc8d2fef031fd3a8cb2ae1fd45f1924f

                                        ({
    "sid": 1550706515924,
    "vd": 2,
    "expires": 1550708323255
})
                                    

#10 JavaScript::Eval (size: 59, repeated: 1) - SHA256: 78915228017d0536299005e1547b632ae3c6aceca6f7f06a985947251ed1c73b

                                        ({
    "sid": 1550706519114,
    "vd": 1,
    "expires": 1550708319114
})
                                    

#11 JavaScript::Eval (size: 59, repeated: 1) - SHA256: 80b081d55b6adbbede5c27f9d564aa46db90c6717127afad4bf1e425952e7d71

                                        ({
    "sid": 1550706519114,
    "vd": 2,
    "expires": 1550708323288
})
                                    

#12 JavaScript::Eval (size: 4, repeated: 3) - SHA256: 5b8d2b991d2c1f5bf78beb557d17e6650086a267e5ffd4bb6f8aaa942c570f5d

                                        ({})
                                    

Executed Writes (5)

#1 JavaScript::Write (size: 244, repeated: 2) - SHA256: 621a62de219200688daab63e905342576cad757fdfb5f0bf5934756c2fe87a02

                                        < a href = "https://www.51.la/?comId=19300508"
title = "51.La Q�A�ߡ��"
target = "_blank" > < span style = "display:inline-block;background-color:#EF5350;color:#fff;padding:2px 5px;font-family:arial;font-size:12px;font-weight:bold;" > 51 La < /span></a >
                                    

#2 JavaScript::Write (size: 137, repeated: 2) - SHA256: e3ffc4fccf41ad49cb739f0f40aed10312cc318fde0e8c124e33f84b2856a933

                                        < div style = "display:none;height:0" > < script language = "javascript"
type = "text/javascript"
src = "http://js.users.51.la/19300508.js" > < /script>
                                    

#3 JavaScript::Write (size: 5870, repeated: 1) - SHA256: c95f095ca2944011de28708b7e641e3e5cbfbf9693944998bd0b03d8b3ae34a5

                                        < div style = "width:1000px;margin:0 auto" > < a href = "https://3483.cabet343.com/Game.php"
rel = "nofollow"
target = "_blank" > < img src = "https://img.jsyihaotong.com/uploads/788b70cf0f2c5239e1e9436fcffbfe82.gif"
border = "0"
width = "100%" > < /a><a href="https:/ / 3483. cabet343.com / Game.php " rel="
nofollow " target="
_blank "><img src="
https: //img.jsyihaotong.com/uploads/919405160d17a0d2c7c7d24f1d25a08a.jpg" border="0" width="100%"></a><a href="https://www.773102.com/?a=28" rel="nofollow" target="_blank"><img src="https://img.jsyihaotong.com/uploads/c641e2bb9171cd41fb07cbfbdc46563d.gif" border="0" width="100%"></a><a href="https://www.158656.com/?a=19" rel="nofollow" target="_blank"><img src="https://img.jsyihaotong.com/uploads/cdf9d4e6f91c9c5d3bd0a56c5006ae4f.gif" border="0" width="100%"></a><a href="https://www.js66168.com/?a=19" rel="nofollow" target="_blank"><img src="https://img.jsyihaotong.com/uploads/b413c112c15900bb468f18131cea63d6.gif" border="0" width="100%"></a><a href="https://www.979290.com/?a=31" rel="nofollow" target="_blank"><img src="https://img.jsyihaotong.com/uploads/6adcb17361ab36127768143d2db0896b.gif" border="0" width="100%"></a><a href="https://www.3655003.com/?a=29" rel="nofollow" target="_blank"><img src="https://img.jsyihaotong.com/uploads/a35cc51cd830f3203c2c3810d6087db7.gif" border="0" width="100%"></a></div><div style="width:1000px;margin:0 auto"><a href="https://www.jixian678.com/" rel="nofollow" target="_blank"><img src="https://img.jsyihaotong.com/uploads/f37d901910f19b0af5166732057cb55a.gif" border="0" width="100%"></a><div style="width:1000px;margin:0 auto;"><div style="width:333px;float:left;"><a href="https://3483.cabet343.com/Game.php" rel="nofollow" target="_blank"><img src="https://img.jsyihaotong.com/uploads/3d414ea885893bf375a872f619974e59.gif" border="0" width="100%"></a><a href="https://www.773102.com/?a=28" rel="nofollow" target="_blank"><img src="https://img.jsyihaotong.com/uploads/b607f5c525da30c92fe28fb9b5a75494.gif" border="0" width="100%"></a><a href="https://www.w88u18.com/?affiliateid=2126" rel="nofollow" target="_blank"><img src="https://img.jsyihaotong.com/uploads/b76d637215dbe1935631deb860e9adcd.gif" border="0" width="100%"></a><a href="https://www.js66168.com/?a=19" rel="nofollow" target="_blank"><img src="https://img.jsyihaotong.com/uploads/fd9a878938755a852faa2dfec51a63b3.jpg" border="0" width="100%"></a><a href="https://3020.bfvip88.com" rel="nofollow" target="_blank"><img src="https://img.jsyihaotong.com/uploads/e3be46ea3f70d518d5d655316989ccf6.gif" border="0" width="100%"></a><a href="https://www.long736.com" rel="nofollow" target="_blank"><img src="https://img.jsyihaotong.com/uploads/d513716df9ee9c021a0a398c231f2dfc.jpg" border="0" width="100%"></a><a href="https://www.979290.com/?a=31" rel="nofollow" target="_blank"><img src="https://img.jsyihaotong.com/uploads/586d94a9dc228f8b846e961412601a73.gif" border="0" width="100%"></a></div><div style="width:334px;float:left;"><a href="https://www.158656.com/?a=19" rel="nofollow" target="_blank"><img src="https://img.jsyihaotong.com/uploads/bd448c08ef8544f717e6375cf153c361.gif" border="0" width="100%"></a><a href="https://www.773102.com/?a=28" rel="nofollow" target="_blank"><img src="https://img.jsyihaotong.com/uploads/5bcd8d72c7e04fed54071b9ad48ce4b9.gif" border="0" width="100%"></a><a href="https://www.js66168.com/?a=19" rel="nofollow" target="_blank"><img src="https://img.jsyihaotong.com/uploads/fd9a878938755a852faa2dfec51a63b3.jpg" border="0" width="100%"></a><a href="https://83820.lbj682.com" rel="nofollow" target="_blank"><img src="https://img.jsyihaotong.com/uploads/8dff3145eec719dab614bca26f7f5f0f.gif" border="0" width="100%"></a><a href="https://www.qian193.com" rel="nofollow" target="_blank"><img src="https://img.jsyihaotong.com/uploads/2235a4f5f5fe9c9b4bd11373cf0f8475.gif" border="0" width="100%"></a><a href="https://www.w88u18.com/?affiliateid=2126" rel="nofollow" target="_blank"><img src="https://img.jsyihaotong.com/uploads/b76d637215dbe1935631deb860e9adcd.gif" border="0" width="100%"></a><a href="https://2903.sbf369.com" rel="nofollow" target="_blank"><img src="https://img.jsyihaotong.com/uploads/dea7889453f54f7b1891e9bf689ce3f4.gif" border="0" width="100%"></a></div><div style="width:333px;float:left;"><a href="https://wlVCPLUS.adsrv.eacdn.com/C.ashx?btag=a_3281b_1727c_&affid=2002871&siteid=3281&adid=1727&c=" rel="nofollow" target="_blank"><img src="https://img.jsyihaotong.com/uploads/bf973f0a4b671ea981776a3dd9bbcd6e.gif" border="0" width="100%"></a><a href="https://www.3655003.com/?a=29" rel="nofollow" target="_blank"><img src="https://img.jsyihaotong.com/uploads/8e0051b1bf75e40819628d0075200ff2.jpg" border="0" width="100%"></a><a href="https://aff.oneeightyeightbet.com/29464/12" rel="nofollow" target="_blank"><img src="https://img.jsyihaotong.com/uploads/0321e4fdfb835b45aeed17a9f0642d11.gif" border="0" width="100%"></a><a href="https://www.979290.com/?a=31" rel="nofollow" target="_blank"><img src="https://img.jsyihaotong.com/uploads/586d94a9dc228f8b846e961412601a73.gif" border="0" width="100%"></a><a href="https://www.bw888555.com/aabkdp" rel="nofollow" target="_blank"><img src="https://img.jsyihaotong.com/uploads/60d14e326ed05fc74bce118383b41a49.gif" border="0" width="100%"></a><a href="https://3507.MS035.COM" rel="nofollow" target="_blank"><img src="https://img.jsyihaotong.com/uploads/5706072a604e53ddcbdb6b0674cf0cf7.jpg" border="0" width="100%"></a><a href="https://www.773102.com/?a=28" rel="nofollow" target="_blank"><img src="https://img.jsyihaotong.com/uploads/bc7726a08d1638c0084f38a9c1260b7c.gif" border="0" width="100%"></a></div></div><a href="https://www.jixian678.com/" rel="nofollow" target="_blank"><img src="https://img.jsyihaotong.com/uploads/8026845999d10786d33513f69af41ecd.gif" border="0" width="100%"></a></div><script src="/jquery.la.min.js"></script>
                                    

#4 JavaScript::Write (size: 108, repeated: 2) - SHA256: bc2f1bb4086c916a041aaefcc8a48d331a0af5da574cc65f1b85049a49e85fc7

                                        < script language = "javascript"
type = "text/javascript"
src = "http://js.users.51.la/19194848.js" > < /script></div >
                                    

#5 JavaScript::Write (size: 83, repeated: 1) - SHA256: 627e476f4a0525a6a108fa6a3e1b59ea05782d2d1bfe7421068ecf8770d68d06

                                        < script language = javascript src = 'https://cdn.jsyihaotong.com/ajax.min.js' > < /script>
                                    


HTTP Transactions (47)


Request Response
                                        
                                            GET /bzh.php HTTP/1.1 
Host: www.uppeer.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         45.3.41.106
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx
Date: Wed, 20 Feb 2019 16:34:21 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.3.29
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   745
Md5:    b9656efe7ab79591ddf6161d3b6c4dc9
Sha1:   2d1f6537f951d0165e07bf928cbbed86c53b10fa
Sha256: cd443d6d40599444ade6371a8acdf802057704450f1c6b5cd88a2022a6527a54
                                        
                                            GET /jquery.la.min.js HTTP/1.1 
Host: www.uppeer.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.uppeer.com/bzh.php

                                         
                                         45.3.41.106
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Wed, 20 Feb 2019 16:34:21 GMT
Content-Length: 314
Last-Modified: Thu, 28 Sep 2017 03:46:50 GMT
Connection: keep-alive
Etag: "59cc70aa-13a"
Expires: Thu, 21 Feb 2019 04:34:21 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   314
Md5:    597f4f0bd5584909f1413e4767a60979
Sha1:   1f1f4178bbfa58f87f327fa1ad41516874f6fd7c
Sha256: 987f7a0b10a67e12250ad945ea3caad7a38e40159b59fb38003106b6a22abcd7
                                        
                                            GET /jquery.cd.min.js HTTP/1.1 
Host: www.uppeer.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.uppeer.com/bzh.php

                                         
                                         45.3.41.106
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Wed, 20 Feb 2019 16:34:21 GMT
Last-Modified: Sun, 30 Dec 2018 19:07:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Etag: W/"5c291762-ab6"
Expires: Thu, 21 Feb 2019 04:34:21 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1236
Md5:    723091696e5ec8b9efe4173d3088b77e
Sha1:   59fcbbcbda6b9d5cdde371bccac504db2070e1ef
Sha256: f9a71a2964c817bc419fd478653b55307f95fe793794b333fe19dc62c713b401
                                        
                                            GET /19300508.js HTTP/1.1 
Host: js.users.51.la
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.uppeer.com/bzh.php

                                         
                                         120.52.140.31
HTTP/1.1 200 OK
Content-Type: application/javascript;charset=UTF-8
                                        
Date: Wed, 20 Feb 2019 23:48:34 GMT
Content-Length: 5193
Connection: keep-alive
Server: openresty
id-2: 32AAAQAAEAABAAAQAAEAABAAAQAAEAABCS8JGRTdD9ZjLP4vJTN5YpV7OSvvN4KJ
Etag: "e4bde6184d71578a437bc428791c5dde"
version-id: G001116541F1100EFFFF900B007ED800
Last-Modified: Thu Aug 16 16:54:01 CST 2018
request-id: 00000168A2F27FF7900B6E52E442E38D
x-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc
Content-Disposition: inline;filename=f.txt
Via: 1.0 pop1dev2879
x-hcs-proxy-type: 1
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
nginx-hit: 1
Age: 1784486
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   5193
Md5:    e4bde6184d71578a437bc428791c5dde
Sha1:   89fe7a8b87dade26bc2c734d7c959517c1325e8f
Sha256: fca9451253e4179c552eb8515c9259283691acd7851569feb25452a53ce1fc18

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /19194848.js HTTP/1.1 
Host: js.users.51.la
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.uppeer.com/bzh.php

                                         
                                         120.52.140.31
HTTP/1.1 200 OK
Content-Type: application/javascript;charset=UTF-8
                                        
Date: Wed, 20 Feb 2019 23:48:36 GMT
Content-Length: 4898
Connection: keep-alive
Server: openresty
id-2: 32AAAQAAEAABAAAQAAEAABAAAQAAEAABCSlY1soom8IJMkPGV0z1E2huS2UodiTA
Etag: "5ec5f75665e819dc5ef77f60f4cbeb59"
version-id: G001116541D649E5FFFF900B007CAF84
Last-Modified: Thu Aug 16 16:24:47 CST 2018
request-id: 00000168FC00EA199047BAFFAD51FDF1
x-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc
Content-Disposition: inline;filename=f.txt
Via: - pop1dev2886
x-hcs-proxy-type: 1
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
nginx-hit: 1
Age: 209589
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   4898
Md5:    5ec5f75665e819dc5ef77f60f4cbeb59
Sha1:   11c1c0c2f188615e1efcba5951fa6e9e494096fd
Sha256: df74f7bc68b9c88d1e862992e61e62ca5369ad2d46a17f71eb9850874e584742

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            POST / HTTP/1.1 
Host: ocsp.int-x3.letsencrypt.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 117
Content-Type: application/ocsp-request

                                         
                                         91.135.34.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 527
Etag: "82CDC135D2FB655850B7D6CFF64259C7D7FA056F729D0D98DDEDB5F1923BD611"
Last-Modified: Mon, 18 Feb 2019 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=34102
Expires: Thu, 21 Feb 2019 09:17:02 GMT
Date: Wed, 20 Feb 2019 23:48:40 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   527
Md5:    b06ba09753769ab4a04eea16ab47948f
Sha1:   f964268cfbc5869e55643bf41e682405af3f9677
Sha256: 82cdc135d2fb655850b7d6cff64259c7d7fa056f729d0d98ddedb5f1923bd611
                                        
                                            POST / HTTP/1.1 
Host: isrg.trustid.ocsp.identrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.113
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Transfer-Encoding: Binary
Last-Modified: Mon, 18 Feb 2019 11:15:13 GMT
Etag: "3181b9760fa132ea88992062f2c1560189951822"
Content-Length: 1398
Cache-Control: public, no-transform, must-revalidate, max-age=27133
Expires: Thu, 21 Feb 2019 07:20:53 GMT
Date: Wed, 20 Feb 2019 23:48:40 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1398
Md5:    5bf45efbe92bfab383f4b8f8bd00d54f
Sha1:   3181b9760fa132ea88992062f2c1560189951822
Sha256: 54fb6a87e1186f5a1775b7383f39b345df6cdadf315d86329a52d28606d72e7e
                                        
                                            GET /ajax.min.js HTTP/1.1 
Host: cdn.jsyihaotong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.uppeer.com/bzh.php

                                         
                                         103.197.68.13
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.10.2
Date: Wed, 20 Feb 2019 23:48:53 GMT
Content-Length: 7396
Last-Modified: Sat, 16 Feb 2019 09:44:02 GMT
Connection: keep-alive
Etag: "5c67db62-1ce4"
Expires: Thu, 21 Feb 2019 11:48:53 GMT
Cache-Control: max-age=43200
Strict-Transport-Security: max-age=15768000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   7396
Md5:    e033dcd3be4ec563a8b7b228e6214e6f
Sha1:   7f42891b33e4af0719b1a6158eaad201af5eb4c2
Sha256: 2ca6eb5347258a246ee28dc9090a442330066597759de918a3ebe867806ea233
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.uppeer.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __tins__19300508=%7B%22sid%22%3A%201550706515924%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201550708315924%7D; __51cke__=; __51laig__=2; __tins__19194848=%7B%22sid%22%3A%201550706519114%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201550708319114%7D

                                         
                                         45.3.41.106
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html
                                        
Server: nginx
Date: Wed, 20 Feb 2019 16:34:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.3.29
Location: http://uppeer.com/bzh.php


--- Additional Info ---
                                        
                                            GET /bzh.php HTTP/1.1 
Host: uppeer.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         45.3.41.106
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: nginx
Date: Wed, 20 Feb 2019 16:34:31 GMT
Content-Length: 178
Connection: keep-alive
Location: http://www.uppeer.com/bzh.php


--- Additional Info ---
Magic:  HTML document text
Size:   178
Md5:    cd2e0e43980a00fb6a2742d3afd803b8
Sha1:   81ffbd1712afe8cdf138b570c0fc9934742c33c1
Sha256: bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
                                        
                                            POST / HTTP/1.1 
Host: ocsp.int-x3.letsencrypt.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 117
Content-Type: application/ocsp-request

                                         
                                         91.135.34.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 527
Etag: "4CADF1383885F2EF0B90D5BD20112686834ECD434C0BC40633EC4C4547253CBD"
Last-Modified: Wed, 20 Feb 2019 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=34118
Expires: Thu, 21 Feb 2019 09:17:20 GMT
Date: Wed, 20 Feb 2019 23:48:42 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   527
Md5:    b9ef6b21266fadbc58b78511206b71a1
Sha1:   856b0a8c01c18377e52423cbae23dbca2bd10e58
Sha256: 4cadf1383885f2ef0b90d5bd20112686834ecd434c0bc40633ec4c4547253cbd
                                        
                                            GET /nlp/index.php?keyword=www.ca88.cc_ca88%E4%BA%9A%E6%B4%B2%E5%9F%8E_%E4%BA%9A%E6%B4%B2%E5%9F%8Eca88%E5%A8%B1%E4%B9%90%E5%85%A5%E5%8F%A3&from=pc&originUrl=http%3A%2F%2Fwww.uppeer.com%2Fbzh.php&referer=&userAgent=Mozilla%2F5.0%20(Windows%3B%20U%3B%20Windows%20NT%206.1%3B%20en-US%3B%20rv%3A1.9.2.13)%20Gecko%2F20101203%20Firefox%2F3.6.13&v=6627 HTTP/1.1 
Host: api.huizhongkameng.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.uppeer.com/bzh.php
Origin: http://www.uppeer.com

                                         
                                         103.97.32.58
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx/1.10.2
Date: Wed, 20 Feb 2019 23:48:55 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.6.37
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1197
Md5:    a0dbab93c284faa052a4e22901f23c27
Sha1:   7b8e16be64592c72ec13970f076cd3b8392865cb
Sha256: c07b00832f8b4802fd9e03be42c8f15d099ac88345c6c5938636060468a4dd92
                                        
                                            GET /19300508.js HTTP/1.1 
Host: js.users.51.la
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.uppeer.com/bzh.php
If-Modified-Since: Thu Aug 16 16:54:01 CST 2018
If-None-Match: "e4bde6184d71578a437bc428791c5dde"

                                         
                                         120.52.140.31
HTTP/1.1 200 OK
Content-Type: application/javascript;charset=UTF-8
                                        
Date: Wed, 20 Feb 2019 23:48:43 GMT
Content-Length: 5193
Connection: keep-alive
Server: openresty
id-2: 32AAAQAAEAABAAAQAAEAABAAAQAAEAABCS8JGRTdD9ZjLP4vJTN5YpV7OSvvN4KJ
Etag: "e4bde6184d71578a437bc428791c5dde"
version-id: G001116541F1100EFFFF900B007ED800
Last-Modified: Thu Aug 16 16:54:01 CST 2018
request-id: 00000168A2F27FF7900B6E52E442E38D
x-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc
Content-Disposition: inline;filename=f.txt
Via: 1.0 pop1dev2879
x-hcs-proxy-type: 1
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
nginx-hit: 1
Age: 1784495
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   5193
Md5:    e4bde6184d71578a437bc428791c5dde
Sha1:   89fe7a8b87dade26bc2c734d7c959517c1325e8f
Sha256: fca9451253e4179c552eb8515c9259283691acd7851569feb25452a53ce1fc18

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            POST / HTTP/1.1 
Host: ocsp2.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=115812
Date: Wed, 20 Feb 2019 23:48:44 GMT
Etag: "5c6ce83b-1d7"
Expires: Fri, 22 Feb 2019 07:58:56 GMT
Last-Modified: Wed, 20 Feb 2019 05:40:11 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    0e9e97604b83a963e9d85787446b67a2
Sha1:   fa7ea46e06260e8526b35988c05198b62ec5a924
Sha256: 5c3286e5f21e76d3a2c48469be4eb305e4db74c12e036000ca3c5f3655f191bd
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=131919
Date: Wed, 20 Feb 2019 23:48:44 GMT
Etag: "5c6d1e28-1d7"
Expires: Fri, 22 Feb 2019 12:27:23 GMT
Last-Modified: Wed, 20 Feb 2019 09:30:16 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    d13375f36778b8beecb68b89fc02adb6
Sha1:   65798a53a29880c01f383d35257ae27d462712ed
Sha256: 94cd17843de4c175a1affc1559519eeff52a0409ca6754de821b36bceebae66f
                                        
                                            GET /uploads/788b70cf0f2c5239e1e9436fcffbfe82.gif HTTP/1.1 
Host: img.jsyihaotong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.uppeer.com/bzh.php

                                         
                                         124.236.20.231
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: Tengine
Content-Length: 23822
Connection: keep-alive
Date: Wed, 20 Feb 2019 23:29:23 GMT
x-oss-request-id: 5C6DE2D331A133271252BE47
Accept-Ranges: bytes
Etag: "FB620F17D85085D9FB8DE2B234F796DD"
Last-Modified: Tue, 04 Sep 2018 11:59:24 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 14736402816669353135
x-oss-storage-class: Standard
Content-MD5: +2IPF9hQhdn7jeKyNPeW3Q==
x-oss-server-time: 50
Via: cache3.l2st3-2[68,304-0,H], cache2.l2st3-2[69,0], kunlun5.cn1550[0,200-0,H], kunlun1.cn1550[1,0]
Age: 1161
Ali-Swift-Global-Savetime: 1541820058
X-Cache: HIT TCP_MEM_HIT dirn:10:134277086
X-Swift-SaveTime: Wed, 20 Feb 2019 23:29:23 GMT
X-Swift-CacheTime: 3600
Timing-Allow-Origin: *
EagleId: 7cec149515507065244618903e


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   23822
Md5:    fb620f17d85085d9fb8de2b234f796dd
Sha1:   083df74b313558fddc034f2626d6e7e7c7f679d4
Sha256: 24af4e99cdbc49aca75bf7429fcd60081ebac154cc7a128d52447363a66c815f
                                        
                                            GET /uploads/919405160d17a0d2c7c7d24f1d25a08a.jpg HTTP/1.1 
Host: img.jsyihaotong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.uppeer.com/bzh.php

                                         
                                         124.236.20.231
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Tengine
Content-Length: 105482
Connection: keep-alive
Date: Wed, 20 Feb 2019 23:08:51 GMT
x-oss-request-id: 5C6DDE038F02BF0DB98ED55A
Accept-Ranges: bytes
Etag: "66C0AD29D27D23EA84B3C87BA7B8CDEF"
Last-Modified: Tue, 11 Sep 2018 11:33:28 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 9742252464709892692
x-oss-storage-class: Standard
Content-MD5: ZsCtKdJ9I+qEs8h7p7jN7w==
x-oss-server-time: 27
Via: cache21.l2st3-2[0,304-0,H], cache14.l2st3-2[1,0], kunlun1.cn1550[0,200-0,H], kunlun2.cn1550[1,0]
Age: 2393
Ali-Swift-Global-Savetime: 1541806540
X-Cache: HIT TCP_MEM_HIT dirn:10:368239594
X-Swift-SaveTime: Wed, 20 Feb 2019 23:29:23 GMT
X-Swift-CacheTime: 3600
Timing-Allow-Origin: *
EagleId: 7cec149615507065244761369e


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   105482
Md5:    66c0ad29d27d23ea84b3c87ba7b8cdef
Sha1:   f05977c713fcd3dab9d4890b6aad3b479390d459
Sha256: 0af11e79c6a9a78e3cf1fe00b2454a50995faebb5cbac88f504cc14d5c8691dc
                                        
                                            GET /uploads/f37d901910f19b0af5166732057cb55a.gif HTTP/1.1 
Host: img.jsyihaotong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.uppeer.com/bzh.php

                                         
                                         124.236.20.231
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: Tengine
Content-Length: 3181
Connection: keep-alive
Date: Wed, 20 Feb 2019 22:36:47 GMT
x-oss-request-id: 5C6DD67FCA5F50341D642434
Accept-Ranges: bytes
Etag: "ACD657D8DF9241A153133CDBC926F4B0"
Last-Modified: Fri, 07 Sep 2018 03:03:24 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 4294663466348140134
x-oss-storage-class: Standard
Content-MD5: rNZX2N+SQaFTEzzbySb0sA==
x-oss-server-time: 39
Via: cache29.l2et2-1[0,304-0,H], cache21.l2et2-1[1,0], kunlun2.cn1550[0,200-0,H], kunlun2.cn1550[1,0]
Age: 4318
Ali-Swift-Global-Savetime: 1541788852
X-Cache: HIT TCP_MEM_HIT dirn:10:549940435
X-Swift-SaveTime: Wed, 20 Feb 2019 23:15:05 GMT
X-Swift-CacheTime: 3600
Timing-Allow-Origin: *
EagleId: 7cec149615507065255032940e


--- Additional Info ---
Magic:  GIF image data, version 89a, 1000 x 50
Size:   3181
Md5:    acd657d8df9241a153133cdbc926f4b0
Sha1:   3510be93a9e851aa533ad47cc70e6ec91c5c8be0
Sha256: fcb2f2759f42d40e5176e005f15482e629e97a1ef6117e2bf25959440e3f7b3f
                                        
                                            GET /uploads/6adcb17361ab36127768143d2db0896b.gif HTTP/1.1 
Host: img.jsyihaotong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.uppeer.com/bzh.php

                                         
                                         124.236.20.231
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: Tengine
Content-Length: 258086
Connection: keep-alive
Date: Wed, 20 Feb 2019 23:14:24 GMT
x-oss-request-id: 5C6DDF5027D52766B3945A0F
Accept-Ranges: bytes
Etag: "545B69D349D04CEF2174E49A62F05F77"
Last-Modified: Thu, 08 Nov 2018 02:53:02 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 7944752356196288971
x-oss-storage-class: Standard
Content-MD5: VFtp00nQTO8hdOSaYvBfdw==
x-oss-server-time: 41
Via: cache9.l2et2-1[0,304-0,H], cache20.l2et2-1[13,0], kunlun8.cn1550[0,200-0,H], kunlun6.cn1550[1,0]
Age: 2060
Ali-Swift-Global-Savetime: 1541788852
X-Cache: HIT TCP_MEM_HIT dirn:11:822338935
X-Swift-SaveTime: Wed, 20 Feb 2019 23:23:18 GMT
X-Swift-CacheTime: 3600
Timing-Allow-Origin: *
EagleId: 7cec149a15507065244276660e


--- Additional Info ---
Magic:  GIF image data, version 89a, 1000 x 200
Size:   258086
Md5:    545b69d349d04cef2174e49a62f05f77
Sha1:   fb60e0b3f6f630fad004021ac0b4c0b498d542c4
Sha256: 29759cb118f0547c278d70711b28dc0e0aaf633bd2215982d6f1586946766074
                                        
                                            GET /uploads/3d414ea885893bf375a872f619974e59.gif HTTP/1.1 
Host: img.jsyihaotong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.uppeer.com/bzh.php

                                         
                                         124.236.20.231
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: Tengine
Content-Length: 7291
Connection: keep-alive
Date: Wed, 20 Feb 2019 23:12:04 GMT
x-oss-request-id: 5C6DDEC4E3DF746D481258B6
Accept-Ranges: bytes
Etag: "F1BDB76A9D3BD20B968BD8E95CE2CD52"
Last-Modified: Fri, 07 Sep 2018 03:06:23 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 9850675076093785494
x-oss-storage-class: Standard
Content-MD5: 8b23ap070guWi9jpXOLNUg==
x-oss-server-time: 51
Via: cache24.l2st3-2[0,304-0,H], cache2.l2st3-2[0,0], kunlun2.cn1550[0,200-0,H], kunlun2.cn1550[0,0]
Age: 2201
Ali-Swift-Global-Savetime: 1541788852
X-Cache: HIT TCP_MEM_HIT dirn:10:549940309
X-Swift-SaveTime: Wed, 20 Feb 2019 23:16:09 GMT
X-Swift-CacheTime: 3600
Timing-Allow-Origin: *
EagleId: 7cec149615507065257433341e


--- Additional Info ---
Magic:  GIF image data, version 89a, 333 x 81
Size:   7291
Md5:    f1bdb76a9d3bd20b968bd8e95ce2cd52
Sha1:   820240b32d30412dd85fe831ada1495d1a71d3cb
Sha256: 1709f2b77f7fc04ed2bef51f00860c2d504727e15dbcb0aa2eafae2e027f4aea
                                        
                                            GET /uploads/b607f5c525da30c92fe28fb9b5a75494.gif HTTP/1.1 
Host: img.jsyihaotong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.uppeer.com/bzh.php

                                         
                                         124.236.20.231
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: Tengine
Content-Length: 6835
Connection: keep-alive
Date: Wed, 20 Feb 2019 23:07:39 GMT
x-oss-request-id: 5C6DDDBB4B39ED72C82AA6BA
Accept-Ranges: bytes
Etag: "EFC3D4F0D0C2D35C69557E477B2E4FC6"
Last-Modified: Fri, 07 Sep 2018 12:31:28 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 8126930978737904887
x-oss-storage-class: Standard
Content-MD5: 78PU8NDC01xpVX5Hey5Pxg==
x-oss-server-time: 41
Via: cache24.l2et2-1[0,304-0,H], cache16.l2et2-1[1,0], kunlun1.cn1550[0,200-0,H], kunlun6.cn1550[1,0]
Age: 2466
Ali-Swift-Global-Savetime: 1541788853
X-Cache: HIT TCP_MEM_HIT dirn:0:82454937
X-Swift-SaveTime: Wed, 20 Feb 2019 23:15:05 GMT
X-Swift-CacheTime: 3600
Timing-Allow-Origin: *
EagleId: 7cec149a15507065258288920e


--- Additional Info ---
Magic:  GIF image data, version 89a, 333 x 81
Size:   6835
Md5:    efc3d4f0d0c2d35c69557e477b2e4fc6
Sha1:   2e00fe60321983aa9793dfbb747037ac625e15eb
Sha256: c2ef12c881a522f618cb850034fc17c2f4509ffe6a379247710777f2ada5d47d
                                        
                                            GET /uploads/a35cc51cd830f3203c2c3810d6087db7.gif HTTP/1.1 
Host: img.jsyihaotong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.uppeer.com/bzh.php

                                         
                                         124.236.20.231
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: Tengine
Content-Length: 257963
Connection: keep-alive
Date: Wed, 20 Feb 2019 22:57:05 GMT
x-oss-request-id: 5C6DDB41CA5F50341D7A2550
Accept-Ranges: bytes
Etag: "ADEECA4D1FFE447F06F06CD055D8CCEB"
Last-Modified: Tue, 04 Sep 2018 11:52:42 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 675968160702490412
x-oss-storage-class: Standard
Content-MD5: re7KTR/+RH8G8GzQVdjM6w==
x-oss-server-time: 42
Via: cache15.l2et2-1[0,304-0,H], cache24.l2et2-1[0,0], kunlun6.cn1550[0,200-0,H], kunlun1.cn1550[1,0]
Ali-Swift-Global-Savetime: 1544527788
Age: 3099
X-Cache: HIT TCP_MEM_HIT dirn:11:523040964
X-Swift-SaveTime: Wed, 20 Feb 2019 23:24:09 GMT
X-Swift-CacheTime: 3600
Timing-Allow-Origin: *
EagleId: 7cec149515507065249541689e


--- Additional Info ---
Magic:  GIF image data, version 89a, 1000 x 100
Size:   257963
Md5:    adeeca4d1ffe447f06f06cd055d8cceb
Sha1:   8435a05d64ee4a58d17801519146b0e71401d0c3
Sha256: f4d1cb6deb9a93938d0e0b62cf181dca58a0f462a7c3eb0232fbaf0dcaecae5a
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.uppeer.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __tins__19300508=%7B%22sid%22%3A%201550706515924%2C%20%22vd%22%3A%202%2C%20%22expires%22%3A%201550708323255%7D; __51cke__=; __51laig__=4; __tins__19194848=%7B%22sid%22%3A%201550706519114%2C%20%22vd%22%3A%202%2C%20%22expires%22%3A%201550708323288%7D

                                         
                                         45.3.41.106
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html
                                        
Server: nginx
Date: Wed, 20 Feb 2019 16:34:36 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.3.29
Location: http://uppeer.com/bzh.php


--- Additional Info ---
                                        
                                            GET /uploads/b76d637215dbe1935631deb860e9adcd.gif HTTP/1.1 
Host: img.jsyihaotong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.uppeer.com/bzh.php

                                         
                                         124.236.20.231
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: Tengine
Content-Length: 6529
Connection: keep-alive
Date: Wed, 20 Feb 2019 23:23:18 GMT
x-oss-request-id: 5C6DE166DA9B4644757D642D
Accept-Ranges: bytes
Etag: "4446BE8C5F8FE54AE0541FE8C9B5060A"
Last-Modified: Fri, 07 Sep 2018 03:06:23 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 11507538434270433860
x-oss-storage-class: Standard
Content-MD5: REa+jF+P5UrgVB/oybUGCg==
x-oss-server-time: 52
Via: cache25.l2st3-2[87,304-0,H], cache22.l2st3-2[88,0], kunlun2.cn1550[0,200-0,H], kunlun2.cn1550[1,0]
Age: 1527
Ali-Swift-Global-Savetime: 1541788852
X-Cache: HIT TCP_MEM_HIT dirn:0:21270159
X-Swift-SaveTime: Wed, 20 Feb 2019 23:23:18 GMT
X-Swift-CacheTime: 3600
Timing-Allow-Origin: *
EagleId: 7cec149615507065259783761e


--- Additional Info ---
Magic:  GIF image data, version 89a, 333 x 81
Size:   6529
Md5:    4446be8c5f8fe54ae0541fe8c9b5060a
Sha1:   eb4e187594203173fc7a4ed8281f228faac5b113
Sha256: d27415d507a4a1f0ef0f64df59792c37074c57c1478af438ecc68566b0c222d2
                                        
                                            GET /uploads/fd9a878938755a852faa2dfec51a63b3.jpg HTTP/1.1 
Host: img.jsyihaotong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.uppeer.com/bzh.php

                                         
                                         124.236.20.231
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Tengine
Content-Length: 14242
Connection: keep-alive
Date: Wed, 20 Feb 2019 22:57:05 GMT
x-oss-request-id: 5C6DDB4131A1332712270DD8
Accept-Ranges: bytes
Etag: "73C2658BD87F442DBE3688A4FE48352C"
Last-Modified: Fri, 07 Sep 2018 03:08:21 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 10315735259197256842
x-oss-storage-class: Standard
Content-MD5: c8Jli9h/RC2+Noik/kg1LA==
x-oss-server-time: 19
Via: cache18.l2et2-1[0,304-0,H], cache27.l2et2-1[1,0], kunlun9.cn1550[0,200-0,H], kunlun6.cn1550[1,0]
Ali-Swift-Global-Savetime: 1544531974
Age: 3101
X-Cache: HIT TCP_MEM_HIT dirn:0:44656271
X-Swift-SaveTime: Wed, 20 Feb 2019 23:15:05 GMT
X-Swift-CacheTime: 3600
Timing-Allow-Origin: *
EagleId: 7cec149a15507065260761338e


--- Additional Info ---
Magic:  PNG image, 333 x 79, 8-bit/color RGBA, non-interlaced
Size:   14242
Md5:    73c2658bd87f442dbe3688a4fe48352c
Sha1:   f5a31ed734b80202b74f6d296766ae2e8bbd7874
Sha256: 7156ba4542717f84d7acea3aef40754a8fb5d7ce99452ebf9c3a1d5b5f15e5ea
                                        
                                            GET /bzh.php HTTP/1.1 
Host: www.uppeer.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __tins__19300508=%7B%22sid%22%3A%201550706515924%2C%20%22vd%22%3A%202%2C%20%22expires%22%3A%201550708323255%7D; __51cke__=; __51laig__=4; __tins__19194848=%7B%22sid%22%3A%201550706519114%2C%20%22vd%22%3A%202%2C%20%22expires%22%3A%201550708323288%7D

                                         
                                         45.3.41.106
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx
Date: Wed, 20 Feb 2019 16:34:36 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.3.29
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   745
Md5:    b9656efe7ab79591ddf6161d3b6c4dc9
Sha1:   2d1f6537f951d0165e07bf928cbbed86c53b10fa
Sha256: cd443d6d40599444ade6371a8acdf802057704450f1c6b5cd88a2022a6527a54
                                        
                                            GET /uploads/e3be46ea3f70d518d5d655316989ccf6.gif HTTP/1.1 
Host: img.jsyihaotong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.uppeer.com/bzh.php

                                         
                                         124.236.20.231
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: Tengine
Content-Length: 7432
Connection: keep-alive
Date: Wed, 20 Feb 2019 23:03:12 GMT
x-oss-request-id: 5C6DDCB031A13327122EA67E
Accept-Ranges: bytes
Etag: "AE4822DAAD08B086FBA0B1753FE5C943"
Last-Modified: Thu, 06 Sep 2018 09:13:40 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 14407415823828087238
x-oss-storage-class: Standard
Content-MD5: rkgi2q0IsIb7oLF1P+XJQw==
x-oss-server-time: 9
Via: cache28.l2st3-2[0,304-0,H], cache26.l2st3-2[1,0], kunlun2.cn1550[0,200-0,H], kunlun1.cn1550[1,0]
Age: 2734
Ali-Swift-Global-Savetime: 1541788853
X-Cache: HIT TCP_MEM_HIT dirn:0:21270043
X-Swift-SaveTime: Wed, 20 Feb 2019 23:15:05 GMT
X-Swift-CacheTime: 3600
Timing-Allow-Origin: *
EagleId: 7cec149515507065261393738e


--- Additional Info ---
Magic:  GIF image data, version 89a, 333 x 79
Size:   7432
Md5:    ae4822daad08b086fba0b1753fe5c943
Sha1:   5840f314811733d0aa0d5a8324d2b81f419930a4
Sha256: a1a73f2f4d7ef275ee8e593c593b33f8f0872d034144f987f17f36f3894785c0
                                        
                                            GET /uploads/b413c112c15900bb468f18131cea63d6.gif HTTP/1.1 
Host: img.jsyihaotong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.uppeer.com/bzh.php

                                         
                                         124.236.20.231
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: Tengine
Content-Length: 356872
Connection: keep-alive
Date: Wed, 20 Feb 2019 23:12:30 GMT
x-oss-request-id: 5C6DDEDEB1E9EC94B304A4C4
Accept-Ranges: bytes
Etag: "738719DE14D3F1071980740FBE5159C6"
Last-Modified: Fri, 07 Sep 2018 03:28:24 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 15244365029142275949
x-oss-storage-class: Standard
Content-MD5: c4cZ3hTT8QcZgHQPvlFZxg==
x-oss-server-time: 4
Via: cache13.l2et2-1[0,304-0,H], cache16.l2et2-1[0,0], kunlun4.cn1550[0,200-0,H], kunlun8.cn1550[1,0]
Age: 2174
Ali-Swift-Global-Savetime: 1541788852
X-Cache: HIT TCP_MEM_HIT dirn:10:510850798
X-Swift-SaveTime: Wed, 20 Feb 2019 23:23:18 GMT
X-Swift-CacheTime: 3600
Timing-Allow-Origin: *
EagleId: 7cec149c15507065244126555e


--- Additional Info ---
Magic:  GIF image data, version 89a, 1000 x 200
Size:   356872
Md5:    738719de14d3f1071980740fbe5159c6
Sha1:   a9f96612e9694947c246e8371a0f699c5b2b10e7
Sha256: 2cde15791c343bb6a16042bd49bfa93c3d5f66bef3c6e0e3a160484f5be5aab2
                                        
                                            GET /uploads/d513716df9ee9c021a0a398c231f2dfc.jpg HTTP/1.1 
Host: img.jsyihaotong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.uppeer.com/bzh.php

                                         
                                         124.236.20.231
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Tengine
Content-Length: 23702
Connection: keep-alive
Date: Wed, 20 Feb 2019 23:12:34 GMT
x-oss-request-id: 5C6DDEE2737FAA226A768B68
Accept-Ranges: bytes
Etag: "82872F953D4854208F90CAF10A86CAEB"
Last-Modified: Fri, 07 Sep 2018 03:08:21 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 14478386051354111384
x-oss-storage-class: Standard
Content-MD5: gocvlT1IVCCPkMrxCobK6w==
x-oss-server-time: 50
Via: cache12.l2et2-1[0,304-0,H], cache1.l2et2-1[1,0], kunlun1.cn1550[0,200-0,H], kunlun2.cn1550[1,0]
Age: 2172
Ali-Swift-Global-Savetime: 1541788853
X-Cache: HIT TCP_MEM_HIT dirn:10:368418753
X-Swift-SaveTime: Wed, 20 Feb 2019 23:23:18 GMT
X-Swift-CacheTime: 3600
Timing-Allow-Origin: *
EagleId: 7cec149615507065262134125e


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   23702
Md5:    82872f953d4854208f90caf10a86caeb
Sha1:   642da262ac9d0448720e3356fbc777d5ecd7f273
Sha256: d23c473345e74300c03c15f53c391a5f092c502934a0b962561699f159cdb443
                                        
                                            GET /uploads/cdf9d4e6f91c9c5d3bd0a56c5006ae4f.gif HTTP/1.1 
Host: img.jsyihaotong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.uppeer.com/bzh.php

                                         
                                         124.236.20.231
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: Tengine
Content-Length: 431338
Connection: keep-alive
Date: Wed, 20 Feb 2019 22:23:49 GMT
x-oss-request-id: 5C6DD3753DD12410F509E665
Accept-Ranges: bytes
Etag: "92F6286B89C62634A07695DBD4C2D279"
Last-Modified: Fri, 09 Nov 2018 07:09:45 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 318867845547192535
x-oss-storage-class: Standard
Content-MD5: kvYoa4nGJjSgdpXb1MLSeQ==
x-oss-server-time: 38
Via: cache18.l2st3-2[0,304-0,H], cache3.l2st3-2[1,0], kunlun2.cn1550[0,200-0,H], kunlun9.cn1550[0,0]
Age: 5095
Ali-Swift-Global-Savetime: 1541788852
X-Cache: HIT TCP_MEM_HIT dirn:10:549940513
X-Swift-SaveTime: Wed, 20 Feb 2019 23:23:18 GMT
X-Swift-CacheTime: 3600
Timing-Allow-Origin: *
EagleId: 7cec149d15507065244845610e


--- Additional Info ---
Magic:  GIF image data, version 89a, 1000 x 100
Size:   431338
Md5:    92f6286b89c62634a07695dbd4c2d279
Sha1:   7919b64ec8bf5505daf67eeeedd99eb06a117255
Sha256: 5cdf0c6b146a1d0c846c00af560f33d7a8f4c5388b394c1cdc86a84209a6d21e
                                        
                                            GET /uploads/586d94a9dc228f8b846e961412601a73.gif HTTP/1.1 
Host: img.jsyihaotong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.uppeer.com/bzh.php

                                         
                                         124.236.20.231
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: Tengine
Content-Length: 6617
Connection: keep-alive
Date: Wed, 20 Feb 2019 23:03:12 GMT
x-oss-request-id: 5C6DDCB07F911B7F8B73FDA3
Accept-Ranges: bytes
Etag: "4BC77902ED47B60F5984F98B9F94B858"
Last-Modified: Thu, 08 Nov 2018 02:58:34 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 10743236587966305066
x-oss-storage-class: Standard
Content-MD5: S8d5Au1Htg9ZhPmLn5S4WA==
x-oss-server-time: 2
Via: cache29.l2st3-2[0,304-0,H], cache17.l2st3-2[0,0], kunlun5.cn1550[0,200-0,H], kunlun6.cn1550[1,0]
Age: 2734
Ali-Swift-Global-Savetime: 1541788853
X-Cache: HIT TCP_MEM_HIT dirn:10:46816497
X-Swift-SaveTime: Wed, 20 Feb 2019 23:15:05 GMT
X-Swift-CacheTime: 3600
Timing-Allow-Origin: *
EagleId: 7cec149a15507065263171735e


--- Additional Info ---
Magic:  GIF image data, version 89a, 333 x 81
Size:   6617
Md5:    4bc77902ed47b60f5984f98b9f94b858
Sha1:   7d3111fcfc339e69ca9b7e508431f10137425bab
Sha256: 9ee41cf47e85df2af618a8c9111891bc5490b2c039c36c0e6b36fd064cd77934
                                        
                                            GET /uploads/bd448c08ef8544f717e6375cf153c361.gif HTTP/1.1 
Host: img.jsyihaotong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.uppeer.com/bzh.php

                                         
                                         124.236.20.231
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: Tengine
Content-Length: 7081
Connection: keep-alive
Date: Wed, 20 Feb 2019 23:03:12 GMT
x-oss-request-id: 5C6DDCB05CC26B28EE2C53D1
Accept-Ranges: bytes
Etag: "B50A517009A7069DF753010A8E370DF0"
Last-Modified: Sat, 10 Nov 2018 01:50:53 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 1385452570929880889
x-oss-storage-class: Standard
Content-MD5: tQpRcAmnBp33UwEKjjcN8A==
x-oss-server-time: 2
Via: cache4.l2st3-2[0,304-0,H], cache22.l2st3-2[0,0], kunlun7.cn1550[0,200-0,H], kunlun1.cn1550[0,0]
Age: 2734
Ali-Swift-Global-Savetime: 1542197713
X-Cache: HIT TCP_MEM_HIT dirn:10:226616994
X-Swift-SaveTime: Wed, 20 Feb 2019 23:15:05 GMT
X-Swift-CacheTime: 3600
Timing-Allow-Origin: *
EagleId: 7cec149515507065263734134e


--- Additional Info ---
Magic:  GIF image data, version 89a, 334 x 81
Size:   7081
Md5:    b50a517009a7069df753010a8e370df0
Sha1:   d8bcc95f60cf23660e7b9262f7a15c461e8f21f4
Sha256: b63e9d54f8a411cce04a6eec650f153d569954f72fd816e421436656e3b16dfc
                                        
                                            GET /uploads/5bcd8d72c7e04fed54071b9ad48ce4b9.gif HTTP/1.1 
Host: img.jsyihaotong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.uppeer.com/bzh.php

                                         
                                         124.236.20.231
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: Tengine
Content-Length: 6877
Connection: keep-alive
Date: Wed, 20 Feb 2019 22:57:05 GMT
x-oss-request-id: 5C6DDB4127D52766B37E0218
Accept-Ranges: bytes
Etag: "5335A00A7D332D1E4DF3075BC889062F"
Last-Modified: Fri, 07 Sep 2018 12:32:43 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 16101740571007436106
x-oss-storage-class: Standard
Content-MD5: UzWgCn0zLR5N8wdbyIkGLw==
x-oss-server-time: 24
Via: cache23.l2et2-1[0,304-0,H], cache21.l2et2-1[1,0], kunlun4.cn1550[0,200-0,H], kunlun8.cn1550[2,0]
Age: 3101
Ali-Swift-Global-Savetime: 1541788853
X-Cache: HIT TCP_MEM_HIT dirn:11:502897564
X-Swift-SaveTime: Wed, 20 Feb 2019 23:16:09 GMT
X-Swift-CacheTime: 3600
Timing-Allow-Origin: *
EagleId: 7cec149c15507065264661807e


--- Additional Info ---
Magic:  GIF image data, version 89a, 334 x 81
Size:   6877
Md5:    5335a00a7d332d1e4df3075bc889062f
Sha1:   002e7d07d3dcc3563e0805a34bacece0ec3b9884
Sha256: 7f654ea8280abf720ec75248bbf90c9f5f4b750501f0800a361ded2344bd742c
                                        
                                            GET /uploads/8dff3145eec719dab614bca26f7f5f0f.gif HTTP/1.1 
Host: img.jsyihaotong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.uppeer.com/bzh.php

                                         
                                         124.236.20.231
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: Tengine
Content-Length: 7098
Connection: keep-alive
Date: Wed, 20 Feb 2019 22:47:42 GMT
x-oss-request-id: 5C6DD90EF1BF4B0DF2477E96
Accept-Ranges: bytes
Etag: "8C7F1757E238A300A0F2A3E1EC9C9E72"
Last-Modified: Fri, 07 Sep 2018 03:13:05 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 11097520384842986539
x-oss-storage-class: Standard
Content-MD5: jH8XV+I4owCg8qPh7Jyecg==
x-oss-server-time: 80
Via: cache30.l2st3-2[0,304-0,H], cache27.l2st3-2[1,0], kunlun3.cn1550[0,200-0,H], kunlun2.cn1550[0,0]
Ali-Swift-Global-Savetime: 1544531974
Age: 3664
X-Cache: HIT TCP_MEM_HIT dirn:11:264689533
X-Swift-SaveTime: Wed, 20 Feb 2019 23:23:18 GMT
X-Swift-CacheTime: 3600
Timing-Allow-Origin: *
EagleId: 7cec149615507065264754553e


--- Additional Info ---
Magic:  GIF image data, version 89a, 334 x 81
Size:   7098
Md5:    8c7f1757e238a300a0f2a3e1ec9c9e72
Sha1:   4ebd5d75c390798a0df36482f0e9e8effc205cb0
Sha256: c67f63ade8a4e2136eba9715a6d4a5d69d703367ae1617f0e3538dba99d97803
                                        
                                            GET /uploads/2235a4f5f5fe9c9b4bd11373cf0f8475.gif HTTP/1.1 
Host: img.jsyihaotong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.uppeer.com/bzh.php

                                         
                                         124.236.20.231
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: Tengine
Content-Length: 6595
Connection: keep-alive
Date: Wed, 20 Feb 2019 23:20:59 GMT
x-oss-request-id: 5C6DE0DBBE768FD0F9414230
Accept-Ranges: bytes
Etag: "8B999CBA36C4F3980B2AF1826F1975C5"
Last-Modified: Fri, 07 Sep 2018 03:13:34 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 9653090712213416743
x-oss-storage-class: Standard
Content-MD5: i5mcujbE85gLKvGCbxl1xQ==
x-oss-server-time: 48
Via: cache22.l2st3-2[0,304-0,H], cache20.l2st3-2[1,0], kunlun7.cn1550[0,200-0,H], kunlun9.cn1550[1,0]
Age: 1667
Ali-Swift-Global-Savetime: 1541788853
X-Cache: HIT TCP_MEM_HIT dirn:0:327500548
X-Swift-SaveTime: Wed, 20 Feb 2019 23:23:18 GMT
X-Swift-CacheTime: 3600
Timing-Allow-Origin: *
EagleId: 7cec149d15507065265918916e


--- Additional Info ---
Magic:  GIF image data, version 89a, 333 x 81
Size:   6595
Md5:    8b999cba36c4f3980b2af1826f1975c5
Sha1:   5ec88fb78472a6eb49f63ba39a3f84a2479428df
Sha256: 457c4944dae013bee89c23fdee35aeba1a2ea3bf828e427a80de5bfe0adecd18
                                        
                                            GET /uploads/dea7889453f54f7b1891e9bf689ce3f4.gif HTTP/1.1 
Host: img.jsyihaotong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.uppeer.com/bzh.php

                                         
                                         124.236.20.231
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: Tengine
Content-Length: 11695
Connection: keep-alive
Date: Wed, 20 Feb 2019 23:23:18 GMT
x-oss-request-id: 5C6DE16627D52766B3A0E5E0
Accept-Ranges: bytes
Etag: "A5F38E9F948E8A131A8E0C526375B41E"
Last-Modified: Fri, 07 Sep 2018 03:06:24 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 11636942741079933086
x-oss-storage-class: Standard
Content-MD5: pfOOn5SOihMajgxSY3W0Hg==
x-oss-server-time: 108
Via: cache24.l2st3-2[90,304-0,H], cache26.l2st3-2[91,0], kunlun6.cn1550[0,200-0,H], kunlun6.cn1550[1,0]
Ali-Swift-Global-Savetime: 1544146693
Age: 1528
X-Cache: HIT TCP_MEM_HIT dirn:0:367512325
X-Swift-SaveTime: Wed, 20 Feb 2019 23:23:18 GMT
X-Swift-CacheTime: 3600
Timing-Allow-Origin: *
EagleId: 7cec149a15507065265942160e


--- Additional Info ---
Magic:  GIF image data, version 89a, 333 x 81
Size:   11695
Md5:    a5f38e9f948e8a131a8e0c526375b41e
Sha1:   7888cd6e68511fe348956fd0b7223d461c0b29c1
Sha256: d84cc8306f8dfd9a840efedabb1fb9624bf27078338efcff9ea61948f3ad5c23
                                        
                                            GET /uploads/bf973f0a4b671ea981776a3dd9bbcd6e.gif HTTP/1.1 
Host: img.jsyihaotong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.uppeer.com/bzh.php

                                         
                                         124.236.20.231
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: Tengine
Content-Length: 6907
Connection: keep-alive
Date: Wed, 20 Feb 2019 23:20:59 GMT
x-oss-request-id: 5C6DE0DB08F4BE0588DF2FAB
Accept-Ranges: bytes
Etag: "8A7C6035BD7BED078E07B640CC70BEED"
Last-Modified: Fri, 07 Sep 2018 03:22:14 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 10385171018139877979
x-oss-storage-class: Standard
Content-MD5: inxgNb177QeOB7ZAzHC+7Q==
x-oss-server-time: 97
Via: cache5.l2st3-2[0,304-0,H], cache27.l2st3-2[0,0], kunlun1.cn1550[0,200-0,H], kunlun1.cn1550[1,0]
Age: 1667
Ali-Swift-Global-Savetime: 1541788853
X-Cache: HIT TCP_MEM_HIT dirn:10:368418735
X-Swift-SaveTime: Wed, 20 Feb 2019 23:23:18 GMT
X-Swift-CacheTime: 3600
Timing-Allow-Origin: *
EagleId: 7cec149515507065266044524e


--- Additional Info ---
Magic:  GIF image data, version 89a, 333 x 81
Size:   6907
Md5:    8a7c6035bd7bed078e07b640cc70beed
Sha1:   7808e2102a1acccf2b8cbf1ae5cdde2b80831f8c
Sha256: 798ced32abe364a9962d9784a6d661a8eb2414ae133dcb530f8d3aedc490afa9
                                        
                                            GET /uploads/8e0051b1bf75e40819628d0075200ff2.jpg HTTP/1.1 
Host: img.jsyihaotong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.uppeer.com/bzh.php

                                         
                                         124.236.20.231
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Tengine
Content-Length: 9891
Connection: keep-alive
Date: Wed, 20 Feb 2019 23:03:12 GMT
x-oss-request-id: 5C6DDCB0880904877D504FBA
Accept-Ranges: bytes
Etag: "657B00BA324258D9733FB707B7E05E54"
Last-Modified: Fri, 07 Sep 2018 03:24:46 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 6194287521172599493
x-oss-storage-class: Standard
Content-MD5: ZXsAujJCWNlzP7cHt+BeVA==
x-oss-server-time: 106
Via: cache15.l2st3-2[0,304-0,H], cache16.l2st3-2[0,0], kunlun8.cn1550[0,200-0,H], kunlun8.cn1550[0,0]
Ali-Swift-Global-Savetime: 1544531974
Age: 2734
X-Cache: HIT TCP_MEM_HIT dirn:0:432648001
X-Swift-SaveTime: Wed, 20 Feb 2019 23:15:05 GMT
X-Swift-CacheTime: 3600
Timing-Allow-Origin: *
EagleId: 7cec149c15507065266642134e


--- Additional Info ---
Magic:  GIF image data, version 89a, 333 x 82
Size:   9891
Md5:    657b00ba324258d9733fb707b7e05e54
Sha1:   938a86193c65ecc9bd2c23bf21abdefe43a829e6
Sha256: ca81437f9e67704918e9d9e493984c860b0627cc23f62e9dc26020d33b84d470
                                        
                                            GET /uploads/0321e4fdfb835b45aeed17a9f0642d11.gif HTTP/1.1 
Host: img.jsyihaotong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.uppeer.com/bzh.php

                                         
                                         124.236.20.231
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: Tengine
Content-Length: 6647
Connection: keep-alive
Date: Wed, 20 Feb 2019 23:06:54 GMT
x-oss-request-id: 5C6DDD8E04321E62263109C0
Accept-Ranges: bytes
Etag: "27ADDACE4133F9E9B5618A852A27571C"
Last-Modified: Fri, 07 Sep 2018 12:33:40 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 15522829769205400301
x-oss-storage-class: Standard
Content-MD5: J63azkEz+em1YYqFKidXHA==
x-oss-server-time: 17
Via: cache28.l2et2-1[0,304-0,H], cache1.l2et2-1[1,0], kunlun10.cn1550[0,200-0,H], kunlun2.cn1550[1,0]
Age: 2512
Ali-Swift-Global-Savetime: 1541788853
X-Cache: HIT TCP_MEM_HIT dirn:0:314681894
X-Swift-SaveTime: Wed, 20 Feb 2019 23:22:48 GMT
X-Swift-CacheTime: 3600
Timing-Allow-Origin: *
EagleId: 7cec149615507065267204957e


--- Additional Info ---
Magic:  GIF image data, version 89a, 333 x 81
Size:   6647
Md5:    27addace4133f9e9b5618a852a27571c
Sha1:   fe4ae7211689f351b660786671aeef76a902cdc0
Sha256: 9b3cbf86c66bbf78dc1ab24b32fd4541d19896a7fa05e6539ff0d60b571d59d6
                                        
                                            GET /uploads/5706072a604e53ddcbdb6b0674cf0cf7.jpg HTTP/1.1 
Host: img.jsyihaotong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.uppeer.com/bzh.php

                                         
                                         124.236.20.231
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Tengine
Content-Length: 18790
Connection: keep-alive
Date: Wed, 20 Feb 2019 23:20:59 GMT
x-oss-request-id: 5C6DE0DB8F02BF0DB99F97F7
Accept-Ranges: bytes
Etag: "656E642AFA091190A3797C3591C3EC91"
Last-Modified: Fri, 07 Sep 2018 03:27:03 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 9409348041359055235
x-oss-storage-class: Standard
Content-MD5: ZW5kKvoJEZCjeXw1kcPskQ==
x-oss-server-time: 14
Via: cache14.l2st3-2[0,304-0,H], cache27.l2st3-2[0,0], kunlun1.cn1550[0,200-0,H], kunlun6.cn1550[1,0]
Age: 1667
Ali-Swift-Global-Savetime: 1542210932
X-Cache: HIT TCP_MEM_HIT dirn:0:130953526
X-Swift-SaveTime: Wed, 20 Feb 2019 23:23:18 GMT
X-Swift-CacheTime: 3600
Timing-Allow-Origin: *
EagleId: 7cec149a15507065268362549e


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   18790
Md5:    656e642afa091190a3797c3591c3ec91
Sha1:   35f57db4673a7bae797748100137224e47ad4982
Sha256: 0a412950046ef8a12c053f22bc2036697c8ef5024ff0a0807a9b06264af0d5d4
                                        
                                            GET /uploads/8026845999d10786d33513f69af41ecd.gif HTTP/1.1 
Host: img.jsyihaotong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.uppeer.com/bzh.php

                                         
                                         124.236.20.231
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: Tengine
Content-Length: 22666
Connection: keep-alive
Date: Wed, 20 Feb 2019 22:56:34 GMT
x-oss-request-id: 5C6DDB22F1BF4B0DF2518F7C
Accept-Ranges: bytes
Etag: "33EE66317D5A944237E884122DC44631"
Last-Modified: Fri, 07 Sep 2018 03:03:24 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 15613856957751770328
x-oss-storage-class: Standard
Content-MD5: M+5mMX1alEI36IQSLcRGMQ==
x-oss-server-time: 14
Via: cache23.l2et2-1[0,304-0,H], cache12.l2et2-1[0,0], kunlun2.cn1550[0,200-0,H], kunlun8.cn1550[1,0]
Age: 3132
Ali-Swift-Global-Savetime: 1541788853
X-Cache: HIT TCP_MEM_HIT dirn:0:21269807
X-Swift-SaveTime: Wed, 20 Feb 2019 23:23:18 GMT
X-Swift-CacheTime: 3600
Timing-Allow-Origin: *
EagleId: 7cec149c15507065268622461e


--- Additional Info ---
Magic:  GIF image data, version 89a, 1000 x 47
Size:   22666
Md5:    33ee66317d5a944237e884122dc44631
Sha1:   da722875dcead33a812ad8b6fb51df7a7192a0bf
Sha256: cbb4f0be5c542f3f4adb6688149190501fefb611fe39a6bb32959a7b770b1e3e
                                        
                                            GET /uploads/60d14e326ed05fc74bce118383b41a49.gif HTTP/1.1 
Host: img.jsyihaotong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.uppeer.com/bzh.php

                                         
                                         124.236.20.231
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: Tengine
Content-Length: 6772
Connection: keep-alive
Date: Wed, 20 Feb 2019 22:36:47 GMT
x-oss-request-id: 5C6DD67F31A133271210FB26
Accept-Ranges: bytes
Etag: "A10FB34C3D19D2CA419E60C5BC112F5D"
Last-Modified: Fri, 07 Sep 2018 12:31:43 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 3351735236571350584
x-oss-storage-class: Standard
Content-MD5: oQ+zTD0Z0spBnmDFvBEvXQ==
x-oss-server-time: 25
Via: cache23.l2et2-1[0,304-0,H], cache8.l2et2-1[1,0], kunlun6.cn1550[0,200-0,H], kunlun9.cn1550[1,0]
Ali-Swift-Global-Savetime: 1544531974
Age: 4319
X-Cache: HIT TCP_MEM_HIT dirn:0:367512307
X-Swift-SaveTime: Wed, 20 Feb 2019 23:15:05 GMT
X-Swift-CacheTime: 3600
Timing-Allow-Origin: *
EagleId: 7cec149d15507065268401316e


--- Additional Info ---
Magic:  GIF image data, version 89a, 333 x 81
Size:   6772
Md5:    a10fb34c3d19d2ca419e60c5bc112f5d
Sha1:   5e400853c57c1cebc23c553ade70225eed26b7b9
Sha256: 9f6d461b6a2ae58fe02f812f0ec511633d33c91d03158d0438cb86e5b744db74
                                        
                                            GET /uploads/bc7726a08d1638c0084f38a9c1260b7c.gif HTTP/1.1 
Host: img.jsyihaotong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.uppeer.com/bzh.php

                                         
                                         124.236.20.231
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: Tengine
Content-Length: 6820
Connection: keep-alive
Date: Wed, 20 Feb 2019 22:32:56 GMT
x-oss-request-id: 5C6DD5987A8262F1FED4592D
Accept-Ranges: bytes
Etag: "43848834C091DE064E0D81AD25A9B83F"
Last-Modified: Fri, 07 Sep 2018 12:42:45 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 14893995334942815339
x-oss-storage-class: Standard
Content-MD5: Q4SINMCR3gZODYGtJam4Pw==
x-oss-server-time: 31
Via: cache9.l2et2-1[0,304-0,H], cache12.l2et2-1[0,0], kunlun5.cn1550[0,200-0,H], kunlun1.cn1550[1,0]
Age: 4550
Ali-Swift-Global-Savetime: 1541788853
X-Cache: HIT TCP_MEM_HIT dirn:10:83745781
X-Swift-SaveTime: Wed, 20 Feb 2019 23:15:05 GMT
X-Swift-CacheTime: 3600
Timing-Allow-Origin: *
EagleId: 7cec149515507065268454882e


--- Additional Info ---
Magic:  GIF image data, version 89a, 333 x 81
Size:   6820
Md5:    43848834c091de064e0d81ad25a9b83f
Sha1:   f5d043f5065ba893adbd091752e42f99e2c4c00f
Sha256: be549cd9c0d16327a144767ee66ae16b1b457627ba0fd5d6fe11f51d45db19b1
                                        
                                            GET /uploads/c641e2bb9171cd41fb07cbfbdc46563d.gif HTTP/1.1 
Host: img.jsyihaotong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.uppeer.com/bzh.php

                                         
                                         124.236.20.231
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: Tengine
Content-Length: 1747896
Connection: keep-alive
Date: Wed, 20 Feb 2019 22:53:13 GMT
x-oss-request-id: 5C6DDA592327B507BE006CA2
Accept-Ranges: bytes
Etag: "C918685ECA63325C8926C1D460CBD618"
Last-Modified: Tue, 04 Sep 2018 11:49:56 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 10458178434129618827
x-oss-storage-class: Standard
Content-MD5: yRhoXspjMlyJJsHUYMvWGA==
x-oss-server-time: 20
Via: cache3.l2et2-1[0,304-0,H], cache15.l2et2-1[0,0], kunlun9.cn1550[0,200-0,H], kunlun10.cn1550[1,0]
Ali-Swift-Global-Savetime: 1545292868
Age: 3331
X-Cache: HIT TCP_MEM_HIT dirn:11:28459200
X-Swift-SaveTime: Wed, 20 Feb 2019 23:15:05 GMT
X-Swift-CacheTime: 3600
Timing-Allow-Origin: *
EagleId: 7cec149e15507065243788812e


--- Additional Info ---
Magic:  GIF image data, version 89a, 1000 x 200
Size:   1747896
Md5:    c918685eca63325c8926c1d460cbd618
Sha1:   60d7e8387f48a828f1d61e786355344fffa5f14a
Sha256: 92e4464b433add71c0cac1423e07b3f0b1052dcf9162d723d2e7b173c3ba0c3c
                                        
                                            GET /go1?id=19300508&rt=1550706515924&rl=1176*885&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=%25E6%259D%25AD%25E5%25B7%259E%25E9%2592%25A2%25E9%2593%2581%25E9%259B%2586%25E5%259B%25A2%25E5%2585%25AC%25E5%258F%25B8%25E5%2588%259B%25E5%25BB%25BA%25E4%25BA%258E1957%25E5%25B9%25B4%25EF%25BC%258C%25E7%258E%25B0%25E5%25B7%25B2%25E5%258F%2591%25E5%25B1%2595%25E5%25BD%25A2%25E6%2588%2590www.ca8&ing=1&ekc=&sid=1550706515924&tt=www.ca88.cc_ca88%25E4%25BA%259A%25E6%25B4%25B2%25E5%259F%258E_%25E4%25BA%259A%25E6%25B4%25B2%25E5%259F%258Eca88%25E5%25A8%25B1%25E4%25B9%2590%25E5%2585%25A5%25E5%258F%25A3&kw=www.ca88.cc%252Cca88%25E4%25BA%259A%25E6%25B4%25B2%25E5%259F%258E%252C%25E4%25BA%259A%25E6%25B4%25B2%25E5%259F%258Eca88%25E5%25A8%25B1%25E4%25B9%2590&cu=http%253A%252F%252Fwww.uppeer.com%252Fbzh.php&pu= HTTP/1.1 
Host: ia.51.la
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.uppeer.com/bzh.php

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /go1?id=19194848&rt=1550706519114&rl=1176*885&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=%25E6%259D%25AD%25E5%25B7%259E%25E9%2592%25A2%25E9%2593%2581%25E9%259B%2586%25E5%259B%25A2%25E5%2585%25AC%25E5%258F%25B8%25E5%2588%259B%25E5%25BB%25BA%25E4%25BA%258E1957%25E5%25B9%25B4%25EF%25BC%258C%25E7%258E%25B0%25E5%25B7%25B2%25E5%258F%2591%25E5%25B1%2595%25E5%25BD%25A2%25E6%2588%2590www.ca8&ing=2&ekc=&sid=1550706519114&tt=www.ca88.cc_ca88%25E4%25BA%259A%25E6%25B4%25B2%25E5%259F%258E_%25E4%25BA%259A%25E6%25B4%25B2%25E5%259F%258Eca88%25E5%25A8%25B1%25E4%25B9%2590%25E5%2585%25A5%25E5%258F%25A3&kw=www.ca88.cc%252Cca88%25E4%25BA%259A%25E6%25B4%25B2%25E5%259F%258E%252C%25E4%25BA%259A%25E6%25B4%25B2%25E5%259F%258Eca88%25E5%25A8%25B1%25E4%25B9%2590&cu=http%253A%252F%252Fwww.uppeer.com%252Fbzh.php&pu= HTTP/1.1 
Host: ia.51.la
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.uppeer.com/bzh.php

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /go1?id=19194848&rt=1550706523288&rl=1176*885&lang=en-US&ct=unknow&pf=1&ins=0&vd=2&ce=1&cd=24&ds=&ing=4&ekc=&sid=1550706519114&tt=www.ca88.cc_ca88%25E4%25BA%259A%25E6%25B4%25B2%25E5%259F%258E_%25E4%25BA%259A%25E6%25B4%25B2%25E5%259F%258Eca88%25E5%25A8%25B1%25E4%25B9%2590%25E5%2585%25A5%25E5%258F%25A3&kw=&cu=http%253A%252F%252Fwww.uppeer.com%252Fbzh.php&pu= HTTP/1.1 
Host: ia.51.la
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.uppeer.com/bzh.php

                                         
                                         0.0.0.0
                                        


--- Additional Info ---