Overview

URL www.nianfeng58.com/2018/1203/971976.shtml
IP172.121.11.39
ASNAS18779 EGIHosting
Location United States
Report completed2019-02-22 09:01:47 CET
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2019-02-22 2 www.nianfeng58.com/2018/1203/971976.shtml Phishing
2019-02-22 2 www.nianfeng58.com/tj.js Phishing
2019-02-22 2 www.nianfeng58.com/tz.js Phishing
2019-02-22 2 js.users.51.la/19393773.js Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 172.121.11.39

Date UQ / IDS / BL URL IP
2019-05-14 07:47:31 +0200
0 - 0 - 1 nianfeng58.com/2019/0125/980990.shtml 172.121.11.39
2019-05-10 05:03:14 +0200
0 - 0 - 1 nianfeng58.com/Content_Cter/dianbo 172.121.11.39
2019-04-26 12:19:29 +0200
0 - 0 - 4 nianfeng58.com/2019/0308/983014.shtml 172.121.11.39
2019-04-26 05:14:30 +0200
0 - 0 - 4 nianfeng58.com/special/170505 172.121.11.39
2019-04-26 03:51:43 +0200
0 - 0 - 3 www.nianfeng58.com/2019/0226/982380.shtml 172.121.11.39
2019-04-25 19:10:32 +0200
0 - 0 - 5 nianfeng58.com/Content_Cter/h/1437468571116.shtml 172.121.11.39
2019-04-25 16:27:35 +0200
0 - 0 - 4 nianfeng58.com/news_/2013/1225/123968.shtml 172.121.11.39
2019-04-25 12:11:06 +0200
0 - 0 - 5 nianfeng58.com/Content_Cter/h/1533614669558.shtml 172.121.11.39
2019-04-25 11:49:19 +0200
0 - 0 - 4 nianfeng58.com/2019/0301/982586.shtml 172.121.11.39
2019-04-25 04:05:28 +0200
0 - 0 - 5 nianfeng58.com/365_/job 172.121.11.39

Last 10 reports on ASN: AS18779 EGIHosting

Date UQ / IDS / BL URL IP
2019-05-22 01:07:14 +0200
0 - 0 - 2 vod.godyq.com/QvodSetuPuls11.exe 104.165.98.174
2019-05-22 01:03:50 +0200
0 - 0 - 2 www.godyq.com/PlayeQvod.exe 104.165.98.174
2019-05-22 01:03:26 +0200
0 - 0 - 2 test.godyq.com/PlayeQvod.exe 104.165.98.174
2019-05-22 01:03:18 +0200
0 - 0 - 2 www.godyq.com/QvodSetuPuls11.exe 104.165.98.174
2019-05-21 23:10:19 +0200
0 - 0 - 2 www.godyq.com/qvodsetupuls11.exe 104.165.98.174
2019-05-21 23:09:58 +0200
0 - 0 - 2 vod.godyq.com/qvodsetupuls11.exe 104.165.98.174
2019-05-21 22:08:30 +0200
0 - 0 - 1 www.zjlongjin.com/news/201306/201306050754069 (...) 23.230.68.222
2019-05-21 22:02:52 +0200
0 - 0 - 2 zjlongjin.com/news/201312/2013120711474018670 (...) 23.230.68.222
2019-05-21 21:50:38 +0200
0 - 0 - 1 sdkunda.com/a/chanpinzhanshi/css/css/css/css/ (...) 23.230.175.232
2019-05-21 21:50:28 +0200
0 - 0 - 3 www.mei-zhi.com/default.php 136.0.223.132

No other reports on domain: nianfeng58.com



JavaScript

Executed Scripts (16)


Executed Evals (3)

#1 JavaScript::Eval (size: 319, repeated: 1) - SHA256: 3b47ae86368a45d5ea969afc424361f961b69e40127f191c2427c2f41532ba97

                                        ({
    "rl": "1176*885",
    "lang": "en-US",
    "ct": "unknow",
    "pf": 1,
    "ins": 1,
    "vd": 1,
    "ce": 1,
    "cd": 24,
    "ds": "����Q-�L<��V",
    "ing": 1,
    "ekc": "",
    "sid": 1550822477904,
    "tt": "BET980.����Q",
    "kw": "",
    "cu": "https://hg98089.com/cn/register",
    "pu": "http://www.nianfeng58.com/2018/1203/971976.shtml"
})
                                    

#2 JavaScript::Eval (size: 4, repeated: 2) - SHA256: 5b8d2b991d2c1f5bf78beb557d17e6650086a267e5ffd4bb6f8aaa942c570f5d

                                        ({})
                                    

#3 JavaScript::Eval (size: 5901, repeated: 1) - SHA256: 4a8cb92402bbc6839913244b730617386df4dfcb62870ad639fd485a639557c1

                                        function sdc(string) {
    function sdc_RotateLeft(lValue, iShiftBits) {
        return (lValue << iShiftBits) | (lValue >>> (32 - iShiftBits))
    }

    function sdc_AddUnsigned(lX, lY) {
        var lX4, lY4, lX8, lY8, lResult;
        lX8 = (lX & 0x80000000);
        lY8 = (lY & 0x80000000);
        lX4 = (lX & 0x40000000);
        lY4 = (lY & 0x40000000);
        lResult = (lX & 0x3FFFFFFF) + (lY & 0x3FFFFFFF);
        if (lX4 & lY4) {
            return (lResult ^ 0x80000000 ^ lX8 ^ lY8)
        }
        if (lX4 | lY4) {
            if (lResult & 0x40000000) {
                return (lResult ^ 0xC0000000 ^ lX8 ^ lY8)
            } else {
                return (lResult ^ 0x40000000 ^ lX8 ^ lY8)
            }
        } else {
            return (lResult ^ lX8 ^ lY8)
        }
    }

    function sdc_F(x, y, z) {
        return (x & y) | ((~x) & z)
    }

    function sdc_G(x, y, z) {
        return (x & z) | (y & (~z))
    }

    function sdc_H(x, y, z) {
        return (x ^ y ^ z)
    }

    function sdc_I(x, y, z) {
        return (y ^ (x | (~z)))
    }

    function sdc_FF(a, b, c, d, x, s, ac) {
        a = sdc_AddUnsigned(a, sdc_AddUnsigned(sdc_AddUnsigned(sdc_F(b, c, d), x), ac));
        return sdc_AddUnsigned(sdc_RotateLeft(a, s), b)
    };

    function sdc_GG(a, b, c, d, x, s, ac) {
        a = sdc_AddUnsigned(a, sdc_AddUnsigned(sdc_AddUnsigned(sdc_G(b, c, d), x), ac));
        return sdc_AddUnsigned(sdc_RotateLeft(a, s), b)
    };

    function sdc_HH(a, b, c, d, x, s, ac) {
        a = sdc_AddUnsigned(a, sdc_AddUnsigned(sdc_AddUnsigned(sdc_H(b, c, d), x), ac));
        return sdc_AddUnsigned(sdc_RotateLeft(a, s), b)
    };

    function sdc_II(a, b, c, d, x, s, ac) {
        a = sdc_AddUnsigned(a, sdc_AddUnsigned(sdc_AddUnsigned(sdc_I(b, c, d), x), ac));
        return sdc_AddUnsigned(sdc_RotateLeft(a, s), b)
    };

    function sdc_ConvertToWordArray(string) {
        var lWordCount;
        var lMessageLength = string.length;
        var lNumberOfWords_temp1 = lMessageLength + 8;
        var lNumberOfWords_temp2 = (lNumberOfWords_temp1 - (lNumberOfWords_temp1 % 64)) / 64;
        var lNumberOfWords = (lNumberOfWords_temp2 + 1) * 16;
        var lWordArray = Array(lNumberOfWords - 1);
        var lBytePosition = 0;
        var lByteCount = 0;
        while (lByteCount < lMessageLength) {
            lWordCount = (lByteCount - (lByteCount % 4)) / 4;
            lBytePosition = (lByteCount % 4) * 8;
            lWordArray[lWordCount] = (lWordArray[lWordCount] | (string.charCodeAt(lByteCount) << lBytePosition));
            lByteCount++
        }
        lWordCount = (lByteCount - (lByteCount % 4)) / 4;
        lBytePosition = (lByteCount % 4) * 8;
        lWordArray[lWordCount] = lWordArray[lWordCount] | (0x80 << lBytePosition);
        lWordArray[lNumberOfWords - 2] = lMessageLength << 3;
        lWordArray[lNumberOfWords - 1] = lMessageLength >>> 29;
        return lWordArray
    };

    function sdc_WordToHex(lValue) {
        var WordToHexValue = "",
            WordToHexValue_temp = "",
            lByte, lCount;
        for (lCount = 0; lCount <= 3; lCount++) {
            lByte = (lValue >>> (lCount * 8)) & 255;
            WordToHexValue_temp = "0" + lByte.toString(16);
            WordToHexValue = WordToHexValue + WordToHexValue_temp.substr(WordToHexValue_temp.length - 2, 2)
        }
        return WordToHexValue
    };

    function sdc_Utf8Encode(string) {
        string = string.replace(/\r\n/g, "\n");
        var utftext = "";
        for (var n = 0; n < string.length; n++) {
            var c = string.charCodeAt(n);
            if (c < 128) {
                utftext += String.fromCharCode(c)
            } else if ((c > 127) && (c < 2048)) {
                utftext += String.fromCharCode((c >> 6) | 192);
                utftext += String.fromCharCode((c & 63) | 128)
            } else {
                utftext += String.fromCharCode((c >> 12) | 224);
                utftext += String.fromCharCode(((c >> 6) & 63) | 128);
                utftext += String.fromCharCode((c & 63) | 128)
            }
        }
        return utftext
    };
    var x = Array();
    var k, AA, BB, CC, DD, a, b, c, d;
    var S11 = 7,
        S12 = 12,
        S13 = 17,
        S14 = 22;
    var S21 = 5,
        S22 = 9,
        S23 = 14,
        S24 = 20;
    var S31 = 4,
        S32 = 11,
        S33 = 16,
        S34 = 23;
    var S41 = 6,
        S42 = 10,
        S43 = 15,
        S44 = 21;
    string = sdc_Utf8Encode(string);
    x = sdc_ConvertToWordArray(string);
    a = 0x67452301;
    b = 0xEFCDAB89;
    c = 0x98BADCFE;
    d = 0x10325476;
    for (k = 0; k < x.length; k += 16) {
        AA = a;
        BB = b;
        CC = c;
        DD = d;
        a = sdc_FF(a, b, c, d, x[k + 0], S11, 0xD76AA478);
        d = sdc_FF(d, a, b, c, x[k + 1], S12, 0xE8C7B756);
        c = sdc_FF(c, d, a, b, x[k + 2], S13, 0x242070DB);
        b = sdc_FF(b, c, d, a, x[k + 3], S14, 0xC1BDCEEE);
        a = sdc_FF(a, b, c, d, x[k + 4], S11, 0xF57C0FAF);
        d = sdc_FF(d, a, b, c, x[k + 5], S12, 0x4787C62A);
        c = sdc_FF(c, d, a, b, x[k + 6], S13, 0xA8304613);
        b = sdc_FF(b, c, d, a, x[k + 7], S14, 0xFD469501);
        a = sdc_FF(a, b, c, d, x[k + 8], S11, 0x698098D8);
        d = sdc_FF(d, a, b, c, x[k + 9], S12, 0x8B44F7AF);
        c = sdc_FF(c, d, a, b, x[k + 10], S13, 0xFFFF5BB1);
        b = sdc_FF(b, c, d, a, x[k + 11], S14, 0x895CD7BE);
        a = sdc_FF(a, b, c, d, x[k + 12], S11, 0x6B901122);
        d = sdc_FF(d, a, b, c, x[k + 13], S12, 0xFD987193);
        c = sdc_FF(c, d, a, b, x[k + 14], S13, 0xA679438E);
        b = sdc_FF(b, c, d, a, x[k + 15], S14, 0x49B40821);
        a = sdc_GG(a, b, c, d, x[k + 1], S21, 0xF61E2562);
        d = sdc_GG(d, a, b, c, x[k + 6], S22, 0xC040B340);
        c = sdc_GG(c, d, a, b, x[k + 11], S23, 0x265E5A51);
        b = sdc_GG(b, c, d, a, x[k + 0], S24, 0xE9B6C7AA);
        a = sdc_GG(a, b, c, d, x[k + 5], S21, 0xD62F105D);
        d = sdc_GG(d, a, b, c, x[k + 10], S22, 0x2441453);
        c = sdc_GG(c, d, a, b, x[k + 15], S23, 0xD8A1E681);
        b = sdc_GG(b, c, d, a, x[k + 4], S24, 0xE7D3FBC8);
        a = sdc_GG(a, b, c, d, x[k + 9], S21, 0x21E1CDE6);
        d = sdc_GG(d, a, b, c, x[k + 14], S22, 0xC33707D6);
        c = sdc_GG(c, d, a, b, x[k + 3], S23, 0xF4D50D87);
        b = sdc_GG(b, c, d, a, x[k + 8], S24, 0x455A14ED);
        a = sdc_GG(a, b, c, d, x[k + 13], S21, 0xA9E3E905);
        d = sdc_GG(d, a, b, c, x[k + 2], S22, 0xFCEFA3F8);
        c = sdc_GG(c, d, a, b, x[k + 7], S23, 0x676F02D9);
        b = sdc_GG(b, c, d, a, x[k + 12], S24, 0x8D2A4C8A);
        a = sdc_HH(a, b, c, d, x[k + 5], S31, 0xFFFA3942);
        d = sdc_HH(d, a, b, c, x[k + 8], S32, 0x8771F681);
        c = sdc_HH(c, d, a, b, x[k + 11], S33, 0x6D9D6122);
        b = sdc_HH(b, c, d, a, x[k + 14], S34, 0xFDE5380C);
        a = sdc_HH(a, b, c, d, x[k + 1], S31, 0xA4BEEA44);
        d = sdc_HH(d, a, b, c, x[k + 4], S32, 0x4BDECFA9);
        c = sdc_HH(c, d, a, b, x[k + 7], S33, 0xF6BB4B60);
        b = sdc_HH(b, c, d, a, x[k + 10], S34, 0xBEBFBC70);
        a = sdc_HH(a, b, c, d, x[k + 13], S31, 0x289B7EC6);
        d = sdc_HH(d, a, b, c, x[k + 0], S32, 0xEAA127FA);
        c = sdc_HH(c, d, a, b, x[k + 3], S33, 0xD4EF3085);
        b = sdc_HH(b, c, d, a, x[k + 6], S34, 0x4881D05);
        a = sdc_HH(a, b, c, d, x[k + 9], S31, 0xD9D4D039);
        d = sdc_HH(d, a, b, c, x[k + 12], S32, 0xE6DB99E5);
        c = sdc_HH(c, d, a, b, x[k + 15], S33, 0x1FA27CF8);
        b = sdc_HH(b, c, d, a, x[k + 2], S34, 0xC4AC5665);
        a = sdc_II(a, b, c, d, x[k + 0], S41, 0xF4292244);
        d = sdc_II(d, a, b, c, x[k + 7], S42, 0x432AFF97);
        c = sdc_II(c, d, a, b, x[k + 14], S43, 0xAB9423A7);
        b = sdc_II(b, c, d, a, x[k + 5], S44, 0xFC93A039);
        a = sdc_II(a, b, c, d, x[k + 12], S41, 0x655B59C3);
        d = sdc_II(d, a, b, c, x[k + 3], S42, 0x8F0CCC92);
        c = sdc_II(c, d, a, b, x[k + 10], S43, 0xFFEFF47D);
        b = sdc_II(b, c, d, a, x[k + 1], S44, 0x85845DD1);
        a = sdc_II(a, b, c, d, x[k + 8], S41, 0x6FA87E4F);
        d = sdc_II(d, a, b, c, x[k + 15], S42, 0xFE2CE6E0);
        c = sdc_II(c, d, a, b, x[k + 6], S43, 0xA3014314);
        b = sdc_II(b, c, d, a, x[k + 13], S44, 0x4E0811A1);
        a = sdc_II(a, b, c, d, x[k + 4], S41, 0xF7537E82);
        d = sdc_II(d, a, b, c, x[k + 11], S42, 0xBD3AF235);
        c = sdc_II(c, d, a, b, x[k + 2], S43, 0x2AD7D2BB);
        b = sdc_II(b, c, d, a, x[k + 9], S44, 0xEB86D391);
        a = sdc_AddUnsigned(a, AA);
        b = sdc_AddUnsigned(b, BB);
        c = sdc_AddUnsigned(c, CC);
        d = sdc_AddUnsigned(d, DD)
    }
    return (sdc_WordToHex(a) + sdc_WordToHex(b) + sdc_WordToHex(c) + sdc_WordToHex(d)).toLowerCase()
}
                                    

Executed Writes (5)

#1 JavaScript::Write (size: 9, repeated: 1) - SHA256: 6c9656210a0202719c1cc3f33bba512135c26bb8d970d2350552e75d257631ca

                                        < /script>
                                    

#2 JavaScript::Write (size: 244, repeated: 1) - SHA256: 900fb2845c5eb881b29049e4cfa5026ff126625cf7dc0652cbba354f5c8ddc90

                                        < a href = "https://www.51.la/?comId=19393773"
title = "51.La Q�A�ߡ��"
target = "_blank" > < span style = "display:inline-block;background-color:#EF5350;color:#fff;padding:2px 5px;font-family:arial;font-size:12px;font-weight:bold;" > 51 La < /span></a >
                                    

#3 JavaScript::Write (size: 136, repeated: 1) - SHA256: 751b2a766a6ef7a055455da65cc7cd30e737e13f5c2661a83ec860db52dac886

                                        < div id = "loader_container" > < div id = "loader" > < span id = "close_loading"
onclick = "remove_loading();" > s� < /span><div align="center">c(:`	�
                                    

#4 JavaScript::Write (size: 426, repeated: 1) - SHA256: b18d48c24e40ee4f2f8fb4dbab3c5832118a8956678ee99d851443c5164e6ebd

                                        < script language = javascript src = http: //www.xpjxpjxpjabc.com/m.php?url=www.nianfeng58.com&title=%E5%88%A9%E8%BE%9B%E5%8E%BF%E6%9C%9B%E7%96%83%E5%AD%A6%E5%8C%BA%E4%B8%AD%E5%BF%83%E6%A0%A1%20%E4%B8%BE%E8%A1%8C%E7%AC%AC%E4%B8%89%E5%B1%8A%E6%A0%A1%E5%9B%AD%E4%BA%94%E7%A6%BD%E6%88%8F%E6%AF%94%E8%B5%9B_%E7%8E%B0%E9%87%91%E7%BD%91-%E7%8E%B0%E9%87%91%E7%BD%91%E8%B5%8C%E5%8D%9A-%E7%9A%87%E5%86%A0%E7%8E%B0%E9%87%91%E5%AE%98%E7%BD%91>
                                    

#5 JavaScript::Write (size: 527, repeated: 1) - SHA256: cbc64b8a1ed3cdc781fcaac65510a6ae81be1a7f6c8ca3791b615016f5f70a38

                                        < style type = 'text/css' > # loader_container {
    text - align: center;
    position: absolute;
    top: 40 % ;
    width: 100 % ;
    left: 0
}
# loader {
    font - family: Tahoma, Helvetica, sans;
    font - size: 11.5 px;
    color: #000;background-color:# Fff;
    padding: 0 px 0 16 px 0;
    margin: 0 auto;
    display: block;
    width: 230 px;
    border: 1 px solid #5a667b;text-align:right;z-index:2}# loader_bg {
        background - color: # e4e7eb;
        position: relative;
        top: 8 px;
        left: 8 px;
        height: 7 px;
        width: 213 px;
        font - size: 1 px
    }
    # progress {
        height: 5 px;font - size: 1 px;width: 1 px;position: relative;top: 1 px;left: 0;background - color: #77A9E0}</style>
                                    


HTTP Transactions (155)


Request Response
                                        
                                            GET /2018/1203/971976.shtml HTTP/1.1 
Host: www.nianfeng58.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         172.121.11.39
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Content-Encoding: gzip
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
X-Powered-By: PHP/5.6.22, ASP.NET
Date: Fri, 22 Feb 2019 08:01:03 GMT
Content-Length: 8857


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), max speed
Size:   8857
Md5:    0909bde93e83d8a8b02212803de2eeec
Sha1:   78c2fc426ff9921f3fcb7eaf1caaccb16d1b9727
Sha256: 9608791efb9e249494ebe9c5faf492592b71be860b67fdec355f07670a7f3a14

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /tj.js HTTP/1.1 
Host: www.nianfeng58.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         172.121.11.39
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Encoding: gzip
Last-Modified: Thu, 06 Dec 2018 03:28:57 GMT
Accept-Ranges: bytes
Etag: "841068d2138dd41:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Fri, 22 Feb 2019 08:01:03 GMT
Content-Length: 314


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), max speed
Size:   314
Md5:    166fc9777dcd77e771c37f658ece57eb
Sha1:   e3f4d5cd925b2c47f017a81a18765e02d9cf0132
Sha256: cbe04916138200cb93eaf5de3498b1562f39c4fa8c26b41a0a510676b5e1305d

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /tz.js HTTP/1.1 
Host: www.nianfeng58.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         172.121.11.39
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Encoding: gzip
Last-Modified: Wed, 01 Aug 2018 12:32:09 GMT
Accept-Ranges: bytes
Etag: "da4d4faa9329d41:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Fri, 22 Feb 2019 08:01:03 GMT
Content-Length: 266


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), max speed
Size:   266
Md5:    c042d326da4b827310ba8574e1b21970
Sha1:   6fd52b79ba3a999685e7025ded47c41168144476
Sha256: 5b41f02dbe13089d8565d05de38e3accb441b68f1d96c31377cbde4d0afb8e13

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /upload_/2018/1203/1543837888811.jpg HTTP/1.1 
Host: nianfeng58.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         172.121.11.39
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Location: http://www.nianfeng58.com/upload_/2018/1203/1543837888811.jpg
Server: Microsoft-IIS/7.5
X-Powered-By: PHP/5.6.22, ASP.NET
Date: Fri, 22 Feb 2019 08:01:03 GMT
Content-Length: 184


--- Additional Info ---
Magic:  HTML document text
Size:   184
Md5:    17a7ce5471cd53783ae619d3a61e8ca4
Sha1:   baac3380f1f72fc567684c9ad6e747baa2f43fb4
Sha256: 9b42e64768854e0d3224c3945407b826db0acbb254be22468b2d69f305507739
                                        
                                            GET /upload_/2018/1203/1543837886495.jpg HTTP/1.1 
Host: nianfeng58.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         172.121.11.39
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Location: http://www.nianfeng58.com/upload_/2018/1203/1543837886495.jpg
Server: Microsoft-IIS/7.5
X-Powered-By: PHP/5.6.22, ASP.NET
Date: Fri, 22 Feb 2019 08:01:03 GMT
Content-Length: 184


--- Additional Info ---
Magic:  HTML document text
Size:   184
Md5:    b76815b18e3e059aa9db82fc2abd8528
Sha1:   a90071ca0e14d0e77ac66a1288898b386f914587
Sha256: c8e4afec7335536cd20f5415d19e38a20966a312f8ad46b50120cd50adf668c5
                                        
                                            GET /upload_/2018/1203/1543837887432.jpg HTTP/1.1 
Host: nianfeng58.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         172.121.11.39
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Location: http://www.nianfeng58.com/upload_/2018/1203/1543837887432.jpg
Server: Microsoft-IIS/7.5
X-Powered-By: PHP/5.6.22, ASP.NET
Date: Fri, 22 Feb 2019 08:01:03 GMT
Content-Length: 184


--- Additional Info ---
Magic:  HTML document text
Size:   184
Md5:    fbffc618780903e6561c285e5ed683f2
Sha1:   47363e5ed7ef2219b0c4ffb9745e99762ac3d983
Sha256: 640e4903c71c7e48bae48ce092b709cb43284601cfdd052f6e61fcd4f2e79a62
                                        
                                            GET /img_/apps/mood/images/zhichi.gif HTTP/1.1 
Host: nianfeng58.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         172.121.11.39
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Location: http://www.nianfeng58.com/img_/apps/mood/images/zhichi.gif
Server: Microsoft-IIS/7.5
X-Powered-By: PHP/5.6.22, ASP.NET
Date: Fri, 22 Feb 2019 08:01:03 GMT
Content-Length: 181


--- Additional Info ---
Magic:  HTML document text
Size:   181
Md5:    5da1b30f28061bbefbc9249ef0c316d5
Sha1:   66c5aa4040fa252e8aadcffd4c0bc0c60ec0fd2b
Sha256: 6120f199600ce4328b8a026b880209cfa1b8219b0f11c43140bb590e601afe6f
                                        
                                            GET /img_/apps/mood/images/gaoxing.gif HTTP/1.1 
Host: nianfeng58.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         172.121.11.39
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Location: http://www.nianfeng58.com/img_/apps/mood/images/gaoxing.gif
Server: Microsoft-IIS/7.5
X-Powered-By: PHP/5.6.22, ASP.NET
Date: Fri, 22 Feb 2019 08:01:03 GMT
Content-Length: 182


--- Additional Info ---
Magic:  HTML document text
Size:   182
Md5:    2b5f949389d94c984f7cebdfdc0b7572
Sha1:   94cbd8474ab3e4a9880627dac110615467ffd8b4
Sha256: 05c8a94c221e8aef62f3a2ab3a1a9d399e702db2f204cce21e1c1d72ab427b39
                                        
                                            GET /img_/templates/bozhoucn/images/2014bozhounews.jpg HTTP/1.1 
Host: nianfeng58.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         172.121.11.39
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Location: http://www.nianfeng58.com/img_/templates/bozhoucn/images/2014bozhounews.jpg
Server: Microsoft-IIS/7.5
X-Powered-By: PHP/5.6.22, ASP.NET
Date: Fri, 22 Feb 2019 08:01:03 GMT
Content-Length: 198


--- Additional Info ---
Magic:  HTML document text
Size:   198
Md5:    b992cf04df05c3ad48e4ec5f8c7af0e1
Sha1:   d48ea9ed1fa43f8fb61f5b4f7836fb9522b37598
Sha256: 68b90a1bd07982ee1a3dbeb891374d73848f175ffb0c2965fda6110a58d3f377
                                        
                                            GET /img_/apps/mood/images/zhenjing.gif HTTP/1.1 
Host: nianfeng58.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         172.121.11.39
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Location: http://www.nianfeng58.com/img_/apps/mood/images/zhenjing.gif
Server: Microsoft-IIS/7.5
X-Powered-By: PHP/5.6.22, ASP.NET
Date: Fri, 22 Feb 2019 08:01:04 GMT
Content-Length: 183


--- Additional Info ---
Magic:  HTML document text
Size:   183
Md5:    6da41860000b41c554477ad59879094d
Sha1:   2c88a0dfd3089603d6fb20daef08042d28dc4f08
Sha256: c18d082afefbe0d47a47ae10e92c971b891faa21362f8f877eadd5de6f722bbe
                                        
                                            GET /img_/apps/mood/images/fennu.gif HTTP/1.1 
Host: nianfeng58.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         172.121.11.39
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Location: http://www.nianfeng58.com/img_/apps/mood/images/fennu.gif
Server: Microsoft-IIS/7.5
X-Powered-By: PHP/5.6.22, ASP.NET
Date: Fri, 22 Feb 2019 08:01:04 GMT
Content-Length: 180


--- Additional Info ---
Magic:  HTML document text
Size:   180
Md5:    f7e145996ee856b1a293c7eb73801cf3
Sha1:   83db1f031ac4e25f64424fda2546965b7e411c2f
Sha256: ace3a0be92a61badb944f4c536ae5e16c4bf9ae5f08f247f7f45cecdd1ad1783
                                        
                                            GET /img_/apps/mood/images/wuliao.gif HTTP/1.1 
Host: nianfeng58.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         172.121.11.39
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Location: http://www.nianfeng58.com/img_/apps/mood/images/wuliao.gif
Server: Microsoft-IIS/7.5
X-Powered-By: PHP/5.6.22, ASP.NET
Date: Fri, 22 Feb 2019 08:01:04 GMT
Content-Length: 181


--- Additional Info ---
Magic:  HTML document text
Size:   181
Md5:    1928a59df6c064b93beab11178dce6b2
Sha1:   68649f3260b3a697a444fbbbc73894034f500a7b
Sha256: 1ce42b9cfff50f0de1fa34d958c501791b2f47f5d20685d01b45aa518361a93a
                                        
                                            GET /img_/apps/mood/images/huangyan.gif HTTP/1.1 
Host: nianfeng58.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         172.121.11.39
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Location: http://www.nianfeng58.com/img_/apps/mood/images/huangyan.gif
Server: Microsoft-IIS/7.5
X-Powered-By: PHP/5.6.22, ASP.NET
Date: Fri, 22 Feb 2019 08:01:04 GMT
Content-Length: 183


--- Additional Info ---
Magic:  HTML document text
Size:   183
Md5:    34719a20006cfa5bf8aa2793034dbe93
Sha1:   dbe95351747170643162619e4fdd38d317acc56d
Sha256: c284ad14bfba277353d257c84f1d3df72456ec12ead45f9d305c69eb97302bff
                                        
                                            GET /templates/bozhoucn/css/content_bozhou.css HTTP/1.1 
Host: img.bozhou.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         61.191.131.21
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Fri, 22 Feb 2019 08:01:03 GMT
Last-Modified: Tue, 13 Oct 2015 06:04:08 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Etag: W/"561c9ed8-1355"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1091
Md5:    72988aaba1c37f71b1120321e53af67c
Sha1:   9cd35658f16b488cf6b4dc64c6ff39d4e239ee74
Sha256: 71fb70aec77325ee4966c02676ed5aa55bb270d4963ff07c6d14afa10c4caf0b
                                        
                                            GET /templates/bozhoucn/css/footer.css HTTP/1.1 
Host: img.bozhou.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         61.191.131.21
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Fri, 22 Feb 2019 08:01:03 GMT
Content-Length: 149
Last-Modified: Tue, 13 Oct 2015 06:04:08 GMT
Connection: keep-alive
Etag: "561c9ed8-95"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  UTF-8 Unicode (with BOM) text
Size:   149
Md5:    21e8ea3bb101576400b36edc80343dca
Sha1:   37d74c14e130afe43b69acee53a5a05e80912e4d
Sha256: 507266f793f0884dfa0e1eeb6ca468ef635a46f3b3ba76a2a476dda03c54f014
                                        
                                            GET /img_/apps/mood/images/wunai.gif HTTP/1.1 
Host: nianfeng58.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         172.121.11.39
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Location: http://www.nianfeng58.com/img_/apps/mood/images/wunai.gif
Server: Microsoft-IIS/7.5
X-Powered-By: PHP/5.6.22, ASP.NET
Date: Fri, 22 Feb 2019 08:01:04 GMT
Content-Length: 180


--- Additional Info ---
Magic:  HTML document text
Size:   180
Md5:    fc981672763d4cedc9f3c425b3a52451
Sha1:   95091e065e1d872a29a49e45e32bbd617069b2b9
Sha256: 43fe1a24f8a4f7107d4635fdad7c737fedb9caeed918156da0ec8dcc63231daf
                                        
                                            GET /templates/bozhoucn/css/imagesbox.css HTTP/1.1 
Host: img.bozhou.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         61.191.131.21
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Server: nginx
Date: Fri, 22 Feb 2019 08:01:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   680
Md5:    0a01110bbab4b1276e687f50283aa6fd
Sha1:   c03843d8176f591aa7c625ef0038fa32a5418c7d
Sha256: 1667204c6b83479f98d4e10a2614428adbe249aa94929732e1ccba5f30a049b3
                                        
                                            GET /img_/apps/mood/images/qianggao.gif HTTP/1.1 
Host: nianfeng58.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         172.121.11.39
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Location: http://www.nianfeng58.com/img_/apps/mood/images/qianggao.gif
Server: Microsoft-IIS/7.5
X-Powered-By: PHP/5.6.22, ASP.NET
Date: Fri, 22 Feb 2019 08:01:04 GMT
Content-Length: 183


--- Additional Info ---
Magic:  HTML document text
Size:   183
Md5:    0fd9b4d507dc1e66c4c3d286cdce2b22
Sha1:   5d70c38c67bb44248d48b8169f464b7b7e636cda
Sha256: 3362cfac99b4aa47c9cb6471650a7bf79f12b8d8da7fee3011acec12341ef5eb
                                        
                                            GET /img_/apps/mood/images/bujie.gif HTTP/1.1 
Host: nianfeng58.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         172.121.11.39
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Location: http://www.nianfeng58.com/img_/apps/mood/images/bujie.gif
Server: Microsoft-IIS/7.5
X-Powered-By: PHP/5.6.22, ASP.NET
Date: Fri, 22 Feb 2019 08:01:04 GMT
Content-Length: 180


--- Additional Info ---
Magic:  HTML document text
Size:   180
Md5:    b7f4f4bdfe9f88cdddae089a5a96a413
Sha1:   ddad9956832be992f268d4c2beaf5f7bd8e5e59d
Sha256: 46eba1ef03b3984c7e1dbf20398aaf04ce27d53dd8ea892453485ead0491cff5
                                        
                                            GET /img_/apps/mood/images/biaotidang.gif HTTP/1.1 
Host: nianfeng58.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         172.121.11.39
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Location: http://www.nianfeng58.com/img_/apps/mood/images/biaotidang.gif
Server: Microsoft-IIS/7.5
X-Powered-By: PHP/5.6.22, ASP.NET
Date: Fri, 22 Feb 2019 08:01:04 GMT
Content-Length: 185


--- Additional Info ---
Magic:  HTML document text
Size:   185
Md5:    99b68cb9591bc93441ff219b7ce5fa20
Sha1:   04980b1f0eba8f038134017b714c8db76096abcb
Sha256: a7b7d77a3676a8b85ec83fc933ca2201695761f386d54ff86bd3fbd206dfbea2
                                        
                                            GET /img_/apps/mood/images/gaoxing.gif HTTP/1.1 
Host: www.nianfeng58.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         172.121.11.39
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: Microsoft-IIS/7.5
X-Powered-By: PHP/5.6.22, ASP.NET
Date: Fri, 22 Feb 2019 08:01:04 GMT
Content-Length: 1802


--- Additional Info ---
Magic:  GIF image data, version 89a, 34 x 32
Size:   1802
Md5:    278363f3c9e736baafe0453cc802fbec
Sha1:   6d8089c71ac50cbedcc710af3b97032dbd057f69
Sha256: ca96330304222f6f1caff4e34af1fc99e61bb82ee4a7a880aae29c5ad8fad71e
                                        
                                            GET /img_/apps/mood/images/zhichi.gif HTTP/1.1 
Host: www.nianfeng58.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         172.121.11.39
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: Microsoft-IIS/7.5
X-Powered-By: PHP/5.6.22, ASP.NET
Date: Fri, 22 Feb 2019 08:01:04 GMT
Content-Length: 1820


--- Additional Info ---
Magic:  GIF image data, version 89a, 34 x 32
Size:   1820
Md5:    b186aaef2fc6e80426a7f8d43cb4dbc1
Sha1:   146e381e186e6d7ac43f72ef2fe4bce98ea956fc
Sha256: acb273f27cab9d3ea560a27af9f3415dffa947c4afe3358ae045d6e7b463d802
                                        
                                            GET /img_/templates/bozhoucn/css/2017ad/2017wdyx.jpg HTTP/1.1 
Host: nianfeng58.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         172.121.11.39
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Location: http://www.nianfeng58.com/img_/templates/bozhoucn/css/2017ad/2017wdyx.jpg
Server: Microsoft-IIS/7.5
X-Powered-By: PHP/5.6.22, ASP.NET
Date: Fri, 22 Feb 2019 08:01:04 GMT
Content-Length: 196


--- Additional Info ---
Magic:  HTML document text
Size:   196
Md5:    85acd48bb7a446464219d0fdaa82992f
Sha1:   3b1d9e237757458fcc8f59ef31f55899cb26f531
Sha256: 07f31ae971f9e33f81b5d7b61ab4141c916c15f73d7c0d5f90cffe6a39874a0f
                                        
                                            GET /img_/templates/bozhoucn/css/2019ad/haitangxi.gif HTTP/1.1 
Host: nianfeng58.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         172.121.11.39
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Location: http://www.nianfeng58.com/img_/templates/bozhoucn/css/2019ad/haitangxi.gif
Server: Microsoft-IIS/7.5
X-Powered-By: PHP/5.6.22, ASP.NET
Date: Fri, 22 Feb 2019 08:01:04 GMT
Content-Length: 197


--- Additional Info ---
Magic:  HTML document text
Size:   197
Md5:    04c0b695e58db6f0edbc0becd22bb2f7
Sha1:   ea4fa3ca62d8aa5fb7c0c0bbe545a7d3cdf2d2c1
Sha256: e8510dda2477842866581f20889ba3b67189a7b1c59b05d73b684c486d1399df
                                        
                                            GET /img_/templates/bozhoucn/css/2016ad/2016jzg.gif HTTP/1.1 
Host: nianfeng58.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         172.121.11.39
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Location: http://www.nianfeng58.com/img_/templates/bozhoucn/css/2016ad/2016jzg.gif
Server: Microsoft-IIS/7.5
X-Powered-By: PHP/5.6.22, ASP.NET
Date: Fri, 22 Feb 2019 08:01:04 GMT
Content-Length: 195


--- Additional Info ---
Magic:  HTML document text
Size:   195
Md5:    f91d48946fbb41f5271c5ad8ac0bed3a
Sha1:   1ff3c1248fec55218053958f126f24722d88c99d
Sha256: a934bd6878a0194eb72c9a74e8b83c669e194142ce19b8d10639d18ae4d8abe5
                                        
                                            GET /upload_/2019/0131/thumb_120_90_1548929639139.jpg HTTP/1.1 
Host: nianfeng58.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         172.121.11.39
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Location: http://www.nianfeng58.com/upload_/2019/0131/thumb_120_90_1548929639139.jpg
Server: Microsoft-IIS/7.5
X-Powered-By: PHP/5.6.22, ASP.NET
Date: Fri, 22 Feb 2019 08:01:04 GMT
Content-Length: 197


--- Additional Info ---
Magic:  HTML document text
Size:   197
Md5:    aa92b49eda6c650f51ad0de7f314e4c3
Sha1:   1b02f0a8efe20d04e6cdb2883b4f28d385235b3a
Sha256: 72d5d30a3c3685500f283f83e4cc988132eed9ae4f282c5a8320aa19b6ee9204
                                        
                                            GET /img_/templates/bozhoucn/css/2017ad/2017wlaq.jpg HTTP/1.1 
Host: nianfeng58.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         172.121.11.39
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Location: http://www.nianfeng58.com/img_/templates/bozhoucn/css/2017ad/2017wlaq.jpg
Server: Microsoft-IIS/7.5
X-Powered-By: PHP/5.6.22, ASP.NET
Date: Fri, 22 Feb 2019 08:01:04 GMT
Content-Length: 196


--- Additional Info ---
Magic:  HTML document text
Size:   196
Md5:    ccbf140eefafb8915cec8a54fe4eb3e9
Sha1:   4fb2a5822cda71c0d6d4120658cd5a6438853ae4
Sha256: 01ad773e00355a19b1b8c3f054bd817606d701d976b7b15d21065673ad77e09a
                                        
                                            GET /upload_/2019/0131/thumb_120_90_1548929529412.jpg HTTP/1.1 
Host: nianfeng58.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         172.121.11.39
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Location: http://www.nianfeng58.com/upload_/2019/0131/thumb_120_90_1548929529412.jpg
Server: Microsoft-IIS/7.5
X-Powered-By: PHP/5.6.22, ASP.NET
Date: Fri, 22 Feb 2019 08:01:04 GMT
Content-Length: 197


--- Additional Info ---
Magic:  HTML document text
Size:   197
Md5:    1f978b1e0f1b533c199407a331a07571
Sha1:   f18a71d3e9999d8462f23f2fdf13eb2faa547b85
Sha256: bf17bbccd8b4cb1c92ec009ec352ee087e83f6b977fb3de1e0ff8093e5f5c715
                                        
                                            GET /img_/apps/mood/images/zhenjing.gif HTTP/1.1 
Host: www.nianfeng58.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         172.121.11.39
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: Microsoft-IIS/7.5
X-Powered-By: PHP/5.6.22, ASP.NET
Date: Fri, 22 Feb 2019 08:01:04 GMT
Content-Length: 1747


--- Additional Info ---
Magic:  GIF image data, version 89a, 34 x 32
Size:   1747
Md5:    cfd25a77e145a474a16b16bf36bf8a9c
Sha1:   31e913f239768efa4919bcf9261d8178b32e538d
Sha256: 79e4bac2ad7da974ea657ea946dc5ed0a8dc2f92918fe70e523954deceb7abf9
                                        
                                            GET /upload_/2019/0131/thumb_120_90_1548929483436.jpg HTTP/1.1 
Host: nianfeng58.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         172.121.11.39
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Location: http://www.nianfeng58.com/upload_/2019/0131/thumb_120_90_1548929483436.jpg
Server: Microsoft-IIS/7.5
X-Powered-By: PHP/5.6.22, ASP.NET
Date: Fri, 22 Feb 2019 08:01:04 GMT
Content-Length: 197


--- Additional Info ---
Magic:  HTML document text
Size:   197
Md5:    3553b95f9131c7b3e25946e637ddf859
Sha1:   569bda5d7f306d12dd83d26f1497fe4f27e48a36
Sha256: 5a02b70a6e0566a2ee15e52d20807cd2b2ee9123e3b2f1159aee3c3ce4303b98
                                        
                                            GET /upload_/2019/0131/thumb_120_90_1548901122671.jpg HTTP/1.1 
Host: nianfeng58.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         172.121.11.39
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Location: http://www.nianfeng58.com/upload_/2019/0131/thumb_120_90_1548901122671.jpg
Server: Microsoft-IIS/7.5
X-Powered-By: PHP/5.6.22, ASP.NET
Date: Fri, 22 Feb 2019 08:01:04 GMT
Content-Length: 197


--- Additional Info ---
Magic:  HTML document text
Size:   197
Md5:    ce8505a6c3647eb34936ad8816fbc7e1
Sha1:   ce3d8c52304f8f632d1d89f3d36f31ab39237c49
Sha256: 3ba062a79ab311a569513ae1f853266e8cb37ff8cdd273264c080e29b306301c
                                        
                                            GET /img_/templates/bozhoucn/css/2015ad/365zhaopin.jpg HTTP/1.1 
Host: nianfeng58.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         172.121.11.39
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Location: http://www.nianfeng58.com/img_/templates/bozhoucn/css/2015ad/365zhaopin.jpg
Server: Microsoft-IIS/7.5
X-Powered-By: PHP/5.6.22, ASP.NET
Date: Fri, 22 Feb 2019 08:01:04 GMT
Content-Length: 198


--- Additional Info ---
Magic:  HTML document text
Size:   198
Md5:    de5781624c724d9b3ee67af530f44428
Sha1:   2aa4b853f3d5e03518264b3c893bf11d97acd9f3
Sha256: 9392896e59a380bde1170a9fff401af5bfaff71aab1ad71b78816e325081695e
                                        
                                            GET /mylogo.png HTTP/1.1 
Host: www.nianfeng58.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         172.121.11.39
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Fri, 04 Aug 2017 06:08:36 GMT
Accept-Ranges: bytes
Etag: "0caaa1be8cd31:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Fri, 22 Feb 2019 08:01:03 GMT
Content-Length: 26903


--- Additional Info ---
Magic:  PNG image, 500 x 200, 8-bit/color RGBA, non-interlaced
Size:   26903
Md5:    59b3587caa14dc83ec15eb8a2c32db2c
Sha1:   abd3a3d259a62a759aef2755a43a42fc1b7a5711
Sha256: 144430f835dac2328ddb634ef404a3becc45f3814536d5018906cf6b57bd2dd9
                                        
                                            GET /upload_/2018/1203/1543837886495.jpg HTTP/1.1 
Host: www.nianfeng58.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         172.121.11.39
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Microsoft-IIS/7.5
X-Powered-By: PHP/5.6.22, ASP.NET
Date: Fri, 22 Feb 2019 08:01:04 GMT
Content-Length: 31275


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   31275
Md5:    62dd2f0e819a4bc741eb979dabb04d3c
Sha1:   8865b51801df836bf3f496e2548e9fa2685d933d
Sha256: dcaa0692f65f7bc06ddc2329e7ffa0a9130b85e6255216f134fe25d0f2ec5f00
                                        
                                            GET /img_/apps/mood/images/fennu.gif HTTP/1.1 
Host: www.nianfeng58.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         172.121.11.39
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: Microsoft-IIS/7.5
X-Powered-By: PHP/5.6.22, ASP.NET
Date: Fri, 22 Feb 2019 08:01:04 GMT
Content-Length: 1803


--- Additional Info ---
Magic:  GIF image data, version 89a, 34 x 32
Size:   1803
Md5:    98130624548135d32a173acba6e1764e
Sha1:   760cc7668ff7292a8cc55b62ec4d3580800a9831
Sha256: 5798ae6137df963351964fbdf9cb5a962cea3d72c744c2b64383b950a4543d00
                                        
                                            GET /img_/apps/mood/images/wuliao.gif HTTP/1.1 
Host: www.nianfeng58.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         172.121.11.39
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: Microsoft-IIS/7.5
X-Powered-By: PHP/5.6.22, ASP.NET
Date: Fri, 22 Feb 2019 08:01:04 GMT
Content-Length: 1789


--- Additional Info ---
Magic:  GIF image data, version 89a, 34 x 32
Size:   1789
Md5:    27cda5e9cf9560862f9cb4713c99904b
Sha1:   edf624330e188a409537ae9fa19107d2587a4108
Sha256: 11b6ea78628458dd3111e28f7d3fef13854483de8f59d4a7b5450e200bc6bd9b
                                        
                                            GET /upload_/2018/1203/1543837888811.jpg HTTP/1.1 
Host: www.nianfeng58.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         172.121.11.39
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Microsoft-IIS/7.5
X-Powered-By: PHP/5.6.22, ASP.NET
Date: Fri, 22 Feb 2019 08:01:03 GMT
Content-Length: 41145


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   41145
Md5:    1dc207e95520ddf7c8ea891a0827ae0e
Sha1:   0620bde8977b1400bfa3d469482c1244c1d8f02b
Sha256: e6306f619ff7c7ac3da823be37cd57f29cc45fa0536969694297f91dfe96ba24
                                        
                                            GET /img_/apps/mood/images/huangyan.gif HTTP/1.1 
Host: www.nianfeng58.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         172.121.11.39
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: Microsoft-IIS/7.5
X-Powered-By: PHP/5.6.22, ASP.NET
Date: Fri, 22 Feb 2019 08:01:04 GMT
Content-Length: 1703


--- Additional Info ---
Magic:  GIF image data, version 89a, 34 x 32
Size:   1703
Md5:    a8692e9ae3dbe85e893090cd10c79afb
Sha1:   ca9751c25cd3ebad8abd205c132457e25f2fe83f
Sha256: 140961189fc9c2c9caf98b480dc94b5c3b539e82f1c6f9ef914b336c8aafe128
                                        
                                            GET /img_/apps/mood/images/wunai.gif HTTP/1.1 
Host: www.nianfeng58.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         172.121.11.39
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: Microsoft-IIS/7.5
X-Powered-By: PHP/5.6.22, ASP.NET
Date: Fri, 22 Feb 2019 08:01:04 GMT
Content-Length: 1834


--- Additional Info ---
Magic:  GIF image data, version 89a, 34 x 32
Size:   1834
Md5:    a0e45303a28546cc0c5c0655152e8712
Sha1:   98d7f23a3d7730d20c8a891fc10019f0cd0851ae
Sha256: 8b0da760ad7e5fdf03c88000e7c31b78870c5b902c11a1cdc051cf81f8aed82c
                                        
                                            GET /img_/templates/bozhoucn/images/2014bozhounews.jpg HTTP/1.1 
Host: www.nianfeng58.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         172.121.11.39
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Microsoft-IIS/7.5
X-Powered-By: PHP/5.6.22, ASP.NET
Date: Fri, 22 Feb 2019 08:01:04 GMT
Content-Length: 25791


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   25791
Md5:    755997e10fab3a45a317e7f37c8a7d66
Sha1:   532d5105f6ff5db2673db1bdbcbe0bd8fa3eedeb
Sha256: d06e71c75e33607464fe982ac94eebc2df38c1bf5636836d797e984870f3f2ef
                                        
                                            GET /img_/apps/mood/images/qianggao.gif HTTP/1.1 
Host: www.nianfeng58.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         172.121.11.39
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: Microsoft-IIS/7.5
X-Powered-By: PHP/5.6.22, ASP.NET
Date: Fri, 22 Feb 2019 08:01:05 GMT
Content-Length: 1709


--- Additional Info ---
Magic:  GIF image data, version 89a, 34 x 32
Size:   1709
Md5:    17ff8cd2acfa46c0c60720fea732309e
Sha1:   001c91432a498247e125244f49225215951316b3
Sha256: 8afcb44858b6102af7a6a05ce6013a2cd0503cd35e586acd292738cc52688225
                                        
                                            GET /img_/apps/mood/images/bujie.gif HTTP/1.1 
Host: www.nianfeng58.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         172.121.11.39
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: Microsoft-IIS/7.5
X-Powered-By: PHP/5.6.22, ASP.NET
Date: Fri, 22 Feb 2019 08:01:05 GMT
Content-Length: 1802


--- Additional Info ---
Magic:  GIF image data, version 89a, 34 x 32
Size:   1802
Md5:    bceb5ecc3120182cd02a9ab52283ab15
Sha1:   e6da7ff9adb7fb80fc0fe9041d1c2480395755c9
Sha256: 479c1011513a7c2a420cb08d898f2b2c3d3bc02ae8f9c33e3cf05256a53606e3
                                        
                                            GET /img_/apps/mood/images/biaotidang.gif HTTP/1.1 
Host: www.nianfeng58.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         172.121.11.39
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: Microsoft-IIS/7.5
X-Powered-By: PHP/5.6.22, ASP.NET
Date: Fri, 22 Feb 2019 08:01:05 GMT
Content-Length: 1740


--- Additional Info ---
Magic:  GIF image data, version 89a, 34 x 32
Size:   1740
Md5:    40406f632d02b701cf7c4c894a830dae
Sha1:   63e73abc596727e36fc7d254d65576b515b7b646
Sha256: 19daa87b8c040fea749ac8c43ba01a8b7e800db14098963a09abfd8c5f900cd6
                                        
                                            GET /upload_/2018/1203/1543837887432.jpg HTTP/1.1 
Host: www.nianfeng58.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         172.121.11.39
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Microsoft-IIS/7.5
X-Powered-By: PHP/5.6.22, ASP.NET
Date: Fri, 22 Feb 2019 08:01:04 GMT
Content-Length: 29783


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   29783
Md5:    e34cb773e191bfb6597926f3e7ba5ff7
Sha1:   c69c777c2e5e9f897ec1a1eef9a80ff1023d74ce
Sha256: b96a81033cdf5a90c8903091955f0c8d7eed9909d2377e155b01ba89df594d3c
                                        
                                            GET /upload_/2019/0131/thumb_120_90_1548929529412.jpg HTTP/1.1 
Host: www.nianfeng58.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         172.121.11.39
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Microsoft-IIS/7.5
X-Powered-By: PHP/5.6.22, ASP.NET
Date: Fri, 22 Feb 2019 08:01:05 GMT
Content-Length: 4344


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   4344
Md5:    6315ea23f689ba2638292a73514ea3ec
Sha1:   258602a3bd67341eb7feee955be6715a7ac6fa9c
Sha256: 495b0b9912599f148076908f931fd548e8cc92a3a6992c4da1585b5c35727a05
                                        
                                            GET /img_/templates/bozhoucn/css/2016ad/2016jzg.gif HTTP/1.1 
Host: www.nianfeng58.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         172.121.11.39
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: Microsoft-IIS/7.5
X-Powered-By: PHP/5.6.22, ASP.NET
Date: Fri, 22 Feb 2019 08:01:05 GMT
Content-Length: 35288


--- Additional Info ---
Magic:  GIF image data, version 89a, 288 x 184
Size:   35288
Md5:    3bd56cb7800ea6a082390560720cfc4a
Sha1:   de4eca01bd9d7ac67ee8369ae34c336c8dae25ff
Sha256: aaf11ec7c3705e9306ef78e9fed8efe604af36a648161ed2cbe5d4129a43db36
                                        
                                            GET /upload_/2019/0131/thumb_120_90_1548929483436.jpg HTTP/1.1 
Host: www.nianfeng58.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         172.121.11.39
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Microsoft-IIS/7.5
X-Powered-By: PHP/5.6.22, ASP.NET
Date: Fri, 22 Feb 2019 08:01:05 GMT
Content-Length: 3834


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   3834
Md5:    f61e0c4e9cc6817de705604426a509ac
Sha1:   ec7296226afd1050a0386ba9a2ca1ba5b7b107b5
Sha256: 3e0b309a231973501c4cb12d420e8302ea9e0938ccb5b6fb64b053a0884674d5
                                        
                                            GET /upload_/2019/0131/thumb_120_90_1548929639139.jpg HTTP/1.1 
Host: www.nianfeng58.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         172.121.11.39
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Microsoft-IIS/7.5
X-Powered-By: PHP/5.6.22, ASP.NET
Date: Fri, 22 Feb 2019 08:01:05 GMT
Content-Length: 3193


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   3193
Md5:    0353c00f87e5a54925d7ba3db2978a74
Sha1:   d73fddfce50b64cfd0eff0fa19be63ce6c71df0e
Sha256: 793cf287e9cc2e8859e8d87ece487d41f059cced70016b5afa8b84c2a4826c1b
                                        
                                            GET /upload_/2019/0131/thumb_120_90_1548901122671.jpg HTTP/1.1 
Host: www.nianfeng58.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         172.121.11.39
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Microsoft-IIS/7.5
X-Powered-By: PHP/5.6.22, ASP.NET
Date: Fri, 22 Feb 2019 08:01:06 GMT
Content-Length: 4348


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   4348
Md5:    6a796d95d27130861d2c7c81a9fcbbd3
Sha1:   3c9a1e8af4d00b812d3524490efb250c0b72a42c
Sha256: 5b5a10e21f1f6b20c3106ad16949b5ee26a1e218f8638887e0e495721ee9bc50
                                        
                                            GET /img_/templates/bozhoucn/css/2019ad/haitangxi.gif HTTP/1.1 
Host: www.nianfeng58.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         172.121.11.39
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: Microsoft-IIS/7.5
X-Powered-By: PHP/5.6.22, ASP.NET
Date: Fri, 22 Feb 2019 08:01:05 GMT
Content-Length: 87173


--- Additional Info ---
Magic:  GIF image data, version 89a, 288 x 296
Size:   87173
Md5:    78facff14d4367de234cdd0b4d0e984f
Sha1:   6e97a1db7db2a2de526f64d83be9114b6ac147bc
Sha256: eedf6ff7121a032734952b604f0a1e139329ca0e50eae79c9227ad1360941c0e
                                        
                                            GET /img_/templates/bozhoucn/css/2017ad/2017wlaq.jpg HTTP/1.1 
Host: www.nianfeng58.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         172.121.11.39
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Microsoft-IIS/7.5
X-Powered-By: PHP/5.6.22, ASP.NET
Date: Fri, 22 Feb 2019 08:01:05 GMT
Content-Length: 40294


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   40294
Md5:    aede394a3e5f24cacf2a44303ccebec7
Sha1:   e409a2ccfa2a063dcef904180ac45397ce8cc906
Sha256: ed62a813705b8c9b944cbee32422bf9bd2b66d8458adc0fb5b288944c5f7c25b
                                        
                                            GET /img_/templates/bozhoucn/css/2017ad/2017wdyx.jpg HTTP/1.1 
Host: www.nianfeng58.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         172.121.11.39
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Microsoft-IIS/7.5
X-Powered-By: PHP/5.6.22, ASP.NET
Date: Fri, 22 Feb 2019 08:01:05 GMT
Content-Length: 35226


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   35226
Md5:    42eaf8f88765c7f948b5b9826470975a
Sha1:   338afacaec5354f70c5c894de523ad647190d2ad
Sha256: c04c93f404a2c2f9a4dc2a1d3d5e7d6e86c0000b033536f0d00c3ed0573517c2
                                        
                                            GET /templates/bozhoucn/css/header.css HTTP/1.1 
Host: img.bozhou.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         61.191.131.21
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Fri, 22 Feb 2019 08:01:06 GMT
Last-Modified: Fri, 15 Sep 2017 03:08:39 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Etag: W/"59bb4437-536"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   471
Md5:    c7fb6071f8a01b63ae2255c582aca5bf
Sha1:   f70349803c0a34016181cb9d5f8d3de4ff168d9a
Sha256: ac7f5080fe8b0aa72ec8a2ae1a65ddaf56e0dcd5b5012a8d8a66bb59cf817e65
                                        
                                            GET /templates/bozhoucn/css/style.css HTTP/1.1 
Host: img.bozhou.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         61.191.131.21
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Fri, 22 Feb 2019 08:01:06 GMT
Last-Modified: Tue, 29 Dec 2015 03:29:37 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Etag: W/"5681fe21-6f2d"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   8792
Md5:    2eb155fe4f9e797c25282e0f6f92ddd3
Sha1:   8194b829cbd920852fe0e72389bf81476c2adda8
Sha256: 37f60c2b68f4ea53ab7ccf147886bf4a5e10f9007bdddee4917ab6ad6fcd44c9
                                        
                                            GET /img_/templates/bozhoucn/css/2015ad/365zhaopin.jpg HTTP/1.1 
Host: www.nianfeng58.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         172.121.11.39
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Microsoft-IIS/7.5
X-Powered-By: PHP/5.6.22, ASP.NET
Date: Fri, 22 Feb 2019 08:01:06 GMT
Content-Length: 48019


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   48019
Md5:    63806e79dab136bb575a6f39f359e971
Sha1:   131d94490eaafe2679d9808d7a931abf1304b2a3
Sha256: 46cfcb71a2a1880dcc905232e819ac0829cc9d4a3a608069a5e7e33bc5f08a10
                                        
                                            GET /templates/bozhoucn/css/content.css HTTP/1.1 
Host: img.bozhou.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         61.191.131.21
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Fri, 22 Feb 2019 08:01:03 GMT
Last-Modified: Tue, 13 Oct 2015 06:04:08 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Etag: W/"561c9ed8-103e2"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   18856
Md5:    40212d5764b3d363a0c67491c8b03428
Sha1:   a75a3adb870aed2ea26ee821d9f11e4840559be3
Sha256: 78201044c8284753b08e9e5ef0555697e61d0e36ac91996257eb65678f855af2
                                        
                                            POST /gsorganizationvalsha2g2 HTTP/1.1 
Host: ocsp2.globalsign.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 111
Content-Type: application/ocsp-request

                                         
                                         104.18.21.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 22 Feb 2019 08:01:10 GMT
Content-Length: 1570
Connection: keep-alive
Set-Cookie: __cfduid=d4560483d6516d09b875462a7171f1ebb1550822470; expires=Sat, 22-Feb-20 08:01:10 GMT; path=/; domain=.globalsign.com; HttpOnly
Last-Modified: Fri, 22 Feb 2019 06:52:31 GMT
Expires: Tue, 26 Feb 2019 06:52:31 GMT
Etag: "526c9061ebbbd12076d25547171da17d0dc7a153"
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4acfec574e174255-OSL


--- Additional Info ---
Magic:  data
Size:   1570
Md5:    e39dd2bf4226d513bc78df239c54ddae
Sha1:   526c9061ebbbd12076d25547171da17d0dc7a153
Sha256: af8d88a93e406ee7ffa5e80f0851c069ad7a6da432ff33502798e2397639d131
                                        
                                            GET /hm.js?44cca28b6ddea942fd72dff1f380ce59 HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 10562
Date: Fri, 22 Feb 2019 08:01:10 GMT
Etag: 22c16a1912f8706a4a92f0a956199cc1
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=9C4AA87EE866FA71; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max speed
Size:   10562
Md5:    4e023af8a5202c04b0df3395ee6a6668
Sha1:   3d8068823857cedca3d63e2d0201f7b5d8ed3cb6
Sha256: 76edab3ebebe210e4c64a3a93f929050fc79fa2c29b424f06d84b287b07ae452
                                        
                                            GET /hm.gif?cc=0&ck=1&cl=24-bit&ds=1176x885&vl=754&et=0&fl=10.0&ja=1&ln=en-us&lo=0&rnd=276551065&si=44cca28b6ddea942fd72dff1f380ce59&v=1.2.38&lv=1&ct=!!&tt=%E5%88%A9%E8%BE%9B%E5%8E%BF%E6%9C%9B%E7%96%83%E5%AD%A6%E5%8C%BA%E4%B8%AD%E5%BF%83%E6%A0%A1%20%E4%B8%BE%E8%A1%8C%E7%AC%AC%E4%B8%89%E5%B1%8A%E6%A0%A1%E5%9B%AD%E4%BA%94%E7%A6%BD%E6%88%8F%E6%AF%94%E8%B5%9B_%E7%8E%B0%E9%87%91%E7%BD%91-%E7%8E%B0%E9%87%91%E7%BD%91%E8%B5%8C%E5%8D%9A-%E7%9A%87%E5%86%A0%E7%8E%B0%E9%87%91%E5%AE%98%E7%BD%91&sn=2232 HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml
Cookie: HMACCOUNT=9C4AA87EE866FA71

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Date: Fri, 22 Feb 2019 08:01:12 GMT
Pragma: no-cache
Server: apache
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /m.php?url=www.nianfeng58.com&title=%E5%88%A9%E8%BE%9B%E5%8E%BF%E6%9C%9B%E7%96%83%E5%AD%A6%E5%8C%BA%E4%B8%AD%E5%BF%83%E6%A0%A1%20%E4%B8%BE%E8%A1%8C%E7%AC%AC%E4%B8%89%E5%B1%8A%E6%A0%A1%E5%9B%AD%E4%BA%94%E7%A6%BD%E6%88%8F%E6%AF%94%E8%B5%9B_%E7%8E%B0%E9%87%91%E7%BD%91-%E7%8E%B0%E9%87%91%E7%BD%91%E8%B5%8C%E5%8D%9A-%E7%9A%87%E5%86%A0%E7%8E%B0%E9%87%91%E5%AE%98%E7%BD%91 HTTP/1.1 
Host: www.xpjxpjxpjabc.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         104.27.179.25
HTTP/1.1 200 OK
Content-Type: text/html; Charset=utf-8;charset=UTF-8
                                        
Date: Fri, 22 Feb 2019 08:01:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=d64ebdfa498902760646350df53fc20691550822472; expires=Sat, 22-Feb-20 08:01:12 GMT; path=/; domain=.xpjxpjxpjabc.com; HttpOnly
Expires: Fri, 22 Feb 2019 09:14:33 GMT
X-Powered-By: PHP/5.6.21, ASP.NET
X-Safe-Firewall: zhuji.360.cn 1.0.9.47 F1W1
Server: cloudflare
CF-RAY: 4acfec62babbcafa-ARN
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   836
Md5:    7bac6c3d507f8f6abbcd788afc86c17d
Sha1:   9150756d152f8f88899e2c6979f64f28241d2cfe
Sha256: 951b36b767a717651daac85d401a848e9b2b74f757205f36d79475549f07e693
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.nianfeng58.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: Hm_lvt_44cca28b6ddea942fd72dff1f380ce59=1550822472; Hm_lpvt_44cca28b6ddea942fd72dff1f380ce59=1550822472

                                         
                                         172.121.11.39
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Server: Microsoft-IIS/7.5
X-Powered-By: PHP/5.6.22, ASP.NET
Date: Fri, 22 Feb 2019 08:01:13 GMT
Content-Length: 1150


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon
Size:   1150
Md5:    6a9bcec404c227523cd9935cef6c5876
Sha1:   1bddefcd41189aa455c98a0777fba1dd67abccf0
Sha256: 18dbdf6530e6853d057e8e3ebd3e6d06a6651d0b20310c1438d81c701fded356
                                        
                                            POST /gsalphasha2g2 HTTP/1.1 
Host: ocsp2.globalsign.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 111
Content-Type: application/ocsp-request
Cookie: __cfduid=d4560483d6516d09b875462a7171f1ebb1550822470

                                         
                                         104.18.21.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 22 Feb 2019 08:01:14 GMT
Content-Length: 1517
Connection: keep-alive
Last-Modified: Fri, 22 Feb 2019 08:01:13 GMT
Expires: Tue, 26 Feb 2019 08:01:13 GMT
Etag: "7e31b962e7fc45913f190807fa5363e5655414d4"
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: EXPIRED
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4acfec6d48b34255-OSL


--- Additional Info ---
Magic:  data
Size:   1517
Md5:    063ed49ab6ff21f7b413fc0cd307b400
Sha1:   7e31b962e7fc45913f190807fa5363e5655414d4
Sha256: 7b13df6262267412f84540ed75d681bcb86bce66e796c2a770d48317e2e88766
                                        
                                            GET / HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml

                                         
                                         122.10.95.221
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
Strict-Transport-Security: max-age=2592000
Server: nginx
Date: Fri, 22 Feb 2019 08:01:15 GMT
X-Powered-By: PHP/5.6.26
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: web=tbm0r48qq81acbljuu6kbb8h15; path=/
Location: /cn/register
X-Cache: MISS from hk05
Content-Length: 0
Connection: keep-alive


--- Additional Info ---
                                        
                                            GET /cn/register HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml
Cookie: web=tbm0r48qq81acbljuu6kbb8h15

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Strict-Transport-Security: max-age=2592000
Server: nginx
Date: Fri, 22 Feb 2019 08:01:15 GMT
Vary: Accept-Encoding
X-Powered-By: PHP/5.6.26
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: randomYes=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0 randomId=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0 randomYes=44052063880; path=/ firstVisit=1; Expires=Fri, 01-Mar-2019 08:01:15 GMT; Path=/
Content-Encoding: gzip
X-Cache: MISS from hk05
Transfer-Encoding: chunked
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   9023
Md5:    9845f6c769120dc9d782f6874284b1d1
Sha1:   089b369ab4ce48ce51cf501e7e7498114c617e09
Sha256: abe3dbb1806fe38a64e3e1e17a982d914e576ab8bb72353669dda819ceba8a21
                                        
                                            GET /hm.gif?cc=0&ck=1&cl=24-bit&ds=1176x885&vl=754&ep=3413%2C3413&et=3&fl=10.0&ja=1&ln=en-us&lo=0&rnd=458931300&si=44cca28b6ddea942fd72dff1f380ce59&v=1.2.38&lv=1&sn=2232 HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.nianfeng58.com/2018/1203/971976.shtml
Cookie: HMACCOUNT=9C4AA87EE866FA71

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Date: Fri, 22 Feb 2019 08:01:15 GMT
Pragma: no-cache
Server: apache
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /style/share/share.css?v=2019022204 HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/cn/register
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Strict-Transport-Security: max-age=2592000
Etag: W/"5c6bba2f-134ae"
Server: nginx
Date: Fri, 22 Feb 2019 08:01:16 GMT
Vary: Accept-Encoding, Accept-Encoding
Last-Modified: Tue, 19 Feb 2019 08:11:27 GMT
Expires: Fri, 22 Feb 2019 14:01:16 GMT
Cache-Control: max-age=21600
Cache: MISS
Content-Encoding: gzip
X-Cache: MISS from hk05
Transfer-Encoding: chunked
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   16841
Md5:    f7c0bf529857de856f36ee5396f19000
Sha1:   f021dbd353acf6891c0ce4804b059682d2d54dcb
Sha256: 3976c288c2c773528ff32a6cd36727d99d296f52592a1d297017ab0e3405ea11
                                        
                                            POST /gsdomainvalsha2g2 HTTP/1.1 
Host: ocsp2.globalsign.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 111
Content-Type: application/ocsp-request
Cookie: __cfduid=d4560483d6516d09b875462a7171f1ebb1550822470

                                         
                                         104.18.21.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 22 Feb 2019 08:01:16 GMT
Content-Length: 1558
Connection: keep-alive
Last-Modified: Fri, 22 Feb 2019 06:38:03 GMT
Expires: Tue, 26 Feb 2019 06:38:03 GMT
Etag: "620e15446f27f06667155e5bd9347f10cc468f50"
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4acfec7c3d4d4255-OSL


--- Additional Info ---
Magic:  data
Size:   1558
Md5:    c410cd2c0e7606b4033b0cb1d1806c23
Sha1:   620e15446f27f06667155e5bd9347f10cc468f50
Sha256: 2b2a78d7c8bd046851597fa2f53e7b1ca24fbf6363ef418e7e33f04f7ff865e3
                                        
                                            GET /style/share/tab.js HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/cn/register
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Strict-Transport-Security: max-age=2592000
Etag: W/"55d5a654-90f"
Server: nginx
Date: Tue, 19 Feb 2019 02:59:42 GMT
Vary: Accept-Encoding
Last-Modified: Thu, 20 Aug 2015 10:05:08 GMT
Expires: Tue, 19 Feb 2019 08:59:42 GMT
Cache-Control: max-age=21600
Cache: HIT
Content-Encoding: gzip
X-Cache: HIT from hk05
Content-Length: 988
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   988
Md5:    d2916959844cd4935cbd5b28b42c023c
Sha1:   944ca7c5213a99815d8eeb1039071fee6c714e2c
Sha256: 7cc495632bdbf0eca9919cf1a2cbf35b18a1a8404241c48fb7ede9321aaa3c79
                                        
                                            GET /images/favicon.ico HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Strict-Transport-Security: max-age=2592000
Etag: "573a9131-25be"
Server: nginx
Date: Fri, 22 Feb 2019 07:35:14 GMT
Last-Modified: Tue, 17 May 2016 03:34:09 GMT
Expires: Fri, 22 Feb 2019 13:35:14 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 9662
Connection: keep-alive


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon
Size:   9662
Md5:    7d3e5f8284893eaf8ea40ff694c381c0
Sha1:   26821469d380d0288abeb8791774f9619994b1c6
Sha256: 4902ed686f9fd75250a2206b591f1eeccbdcb12eede4ae20f7eedf388145b8af
                                        
                                            GET /js/common.js HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/cn/register
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Strict-Transport-Security: max-age=2592000
Etag: W/"56ef7c66-2090"
Server: nginx
Date: Tue, 19 Feb 2019 02:59:42 GMT
Vary: Accept-Encoding
Last-Modified: Mon, 21 Mar 2016 04:45:26 GMT
Expires: Tue, 19 Feb 2019 08:59:42 GMT
Cache-Control: max-age=21600
Cache: HIT
Content-Encoding: gzip
X-Cache: HIT from hk05
Content-Length: 3424
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3424
Md5:    1dde815a2f9f9f868602ea661181c5e8
Sha1:   e8c36c6d73653ca01f1ead8a9f2abb022f0b7372
Sha256: c2fc763aa684f9558b849a3079fb79f14ed64d9450739685c10ba2290ca9b056
                                        
                                            GET /style/hgxjwi/css.css?v=151191857 HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/cn/register
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Strict-Transport-Security: max-age=2592000
Etag: W/"5b499e15-6226"
Server: nginx
Date: Tue, 19 Feb 2019 02:59:42 GMT
Vary: Accept-Encoding, Accept-Encoding
Last-Modified: Sat, 14 Jul 2018 06:54:13 GMT
Expires: Tue, 19 Feb 2019 08:59:42 GMT
Cache-Control: max-age=21600
Cache: HIT
Content-Encoding: gzip
X-Cache: HIT from hk05
Content-Length: 6604
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   6604
Md5:    c7ff2464d6d8b630fc991312dcc0393a
Sha1:   7eedf776fb5e6cafb1db08aa9e6d2ea7ab4d7666
Sha256: 23d70868da2ed385830a9ee9ba56336f374e5862fce4a8fd577cded298ac5ad8
                                        
                                            GET /style/share/jquery.SuperSlide.2.1.1.js HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/cn/register
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Strict-Transport-Security: max-age=2592000
Etag: W/"56540bcc-2c9e"
Server: nginx
Date: Tue, 19 Feb 2019 02:59:42 GMT
Vary: Accept-Encoding
Last-Modified: Tue, 24 Nov 2015 07:03:40 GMT
Expires: Tue, 19 Feb 2019 08:59:42 GMT
Cache-Control: max-age=21600
Cache: HIT
Content-Encoding: gzip
X-Cache: HIT from hk05
Content-Length: 3946
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3946
Md5:    3430e1718dbb1a520a1a43c8d9696331
Sha1:   057519b43892064db003115f6288ebfea14c6c40
Sha256: 964c41c82ab2ed610a0d5f2eed59a7b48faf28ee788466e2ad5e1332a161ca66
                                        
                                            GET /style/share/jquery.cookies.min.js HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/cn/register
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Strict-Transport-Security: max-age=2592000
Etag: W/"55d5a654-b11"
Server: nginx
Date: Tue, 19 Feb 2019 02:59:43 GMT
Vary: Accept-Encoding
Last-Modified: Thu, 20 Aug 2015 10:05:08 GMT
Expires: Tue, 19 Feb 2019 08:59:43 GMT
Cache-Control: max-age=21600
Cache: HIT
Content-Encoding: gzip
X-Cache: HIT from hk05
Content-Length: 1030
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1030
Md5:    da93ef047124467f1f47f96b0f1c6669
Sha1:   3c2b04293ab817f71256a9d81d99adf648eafd9e
Sha256: 3621b2a0318e9167902582b9588d1a2a3cd993e26cf5b0e8148192bc6b6a69b4
                                        
                                            GET /style/hgxjwi/iconfont.css HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/cn/register
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Strict-Transport-Security: max-age=2592000
Etag: W/"571f1a7a-630"
Server: nginx
Date: Tue, 19 Feb 2019 02:59:43 GMT
Vary: Accept-Encoding, Accept-Encoding
Last-Modified: Tue, 26 Apr 2016 07:36:26 GMT
Expires: Tue, 19 Feb 2019 08:59:43 GMT
Cache-Control: max-age=21600
Cache: HIT
Content-Encoding: gzip
X-Cache: HIT from hk05
Content-Length: 536
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   536
Md5:    b93dd3d5218612e8d85fa90da98246e0
Sha1:   e509fcfdc15fc85ce3fe7625aa6ed66ebf3fc78b
Sha256: 172669fd0e3d9533994066ca435e7f0999a1855373fd767971e22fb2c1133cfc
                                        
                                            GET /js/queryrt.js?v=136723 HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/cn/register
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Strict-Transport-Security: max-age=2592000
Etag: W/"59b641b4-52c6"
Server: nginx
Date: Tue, 19 Feb 2019 02:59:43 GMT
Vary: Accept-Encoding
Last-Modified: Mon, 11 Sep 2017 07:56:36 GMT
Expires: Tue, 19 Feb 2019 08:59:43 GMT
Cache-Control: max-age=21600
Cache: HIT
Content-Encoding: gzip
X-Cache: HIT from hk05
Content-Length: 3867
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3867
Md5:    fea244e6b002421ed5b303af6bfcc03c
Sha1:   9b919f282af82be7448e3d7e1e6383c122a936c3
Sha256: bbc0812c7fcbfb035d7729f839cfe16fc098738c46db46a910de5acfee26f2a6
                                        
                                            GET /style/hgxjwi/index.js HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/cn/register
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Strict-Transport-Security: max-age=2592000
Etag: W/"571f1a7a-1774"
Server: nginx
Date: Tue, 19 Feb 2019 02:59:43 GMT
Vary: Accept-Encoding
Last-Modified: Tue, 26 Apr 2016 07:36:26 GMT
Expires: Tue, 19 Feb 2019 08:59:43 GMT
Cache-Control: max-age=21600
Cache: HIT
Content-Encoding: gzip
X-Cache: HIT from hk05
Content-Length: 1712
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1712
Md5:    3b6a6b59825fcb39d343e7c9b0475f88
Sha1:   f9e75fdfb5a644a383dc49cb9dfc831f62aa26b2
Sha256: 6e3d48cd60f144395b874b9122eb7137da099e75231f49b4827ac128ca3a00b4
                                        
                                            GET /style/share/popMiddle.css?v=1528785806960 HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/cn/register
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Strict-Transport-Security: max-age=2592000
Etag: W/"5b1f6b8a-403"
Server: nginx
Date: Tue, 19 Feb 2019 02:59:43 GMT
Vary: Accept-Encoding, Accept-Encoding
Last-Modified: Tue, 12 Jun 2018 06:43:22 GMT
Expires: Tue, 19 Feb 2019 08:59:43 GMT
Cache-Control: max-age=21600
Cache: HIT
Content-Encoding: gzip
X-Cache: HIT from hk05
Content-Length: 456
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   456
Md5:    c4310cd192274abe9f156b105c883397
Sha1:   1d7c526807b210f5aa4a379360be1313c9352290
Sha256: 34210c653d0f1480b88fd4637900955c0a39b9210cc21b087aa68a84327066fc
                                        
                                            GET /style/share/jquery.cookie.js?v=20171108001 HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/cn/register
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Strict-Transport-Security: max-age=2592000
Etag: W/"55d5a654-102e"
Server: nginx
Date: Tue, 19 Feb 2019 02:59:43 GMT
Vary: Accept-Encoding
Last-Modified: Thu, 20 Aug 2015 10:05:08 GMT
Expires: Tue, 19 Feb 2019 08:59:43 GMT
Cache-Control: max-age=21600
Cache: HIT
Content-Encoding: gzip
X-Cache: HIT from hk05
Content-Length: 1581
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1581
Md5:    778c1686ca3c178a5e18117bc053c57b
Sha1:   a6871353c9321efa3293612e1ab27508b8e37d8c
Sha256: 1c564fc09adaece4445c2700d63d8bca4d9c0b445ceb4cec3400cfb7bf265246
                                        
                                            GET /js/jquery.min.js HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/cn/register
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Strict-Transport-Security: max-age=2592000
Etag: W/"55d5766f-17278"
Server: nginx
Date: Tue, 19 Feb 2019 02:59:42 GMT
Vary: Accept-Encoding
Last-Modified: Thu, 20 Aug 2015 06:40:47 GMT
Expires: Tue, 19 Feb 2019 08:59:42 GMT
Cache-Control: max-age=21600
Cache: HIT
Content-Encoding: gzip
X-Cache: HIT from hk05
Content-Length: 37730
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   37730
Md5:    ec191a7d8c00acc3e5a6f623b7ee66cf
Sha1:   82ec937cbc22ea7e204d654dc5b5d3a270257ea1
Sha256: 60731c5d515d65f19d3c5802b46a275940e1058dcf310f75bc13c1ea79997fe6
                                        
                                            GET /19393773.js HTTP/1.1 
Host: js.users.51.la
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/cn/register

                                         
                                         120.52.140.48
HTTP/1.1 200 OK
Content-Type: application/javascript;charset=UTF-8
                                        
Date: Fri, 22 Feb 2019 08:01:16 GMT
Content-Length: 5193
Connection: keep-alive
Server: openresty
id-2: 32AAAQAAEAABAAAQAAEAABAAAQAAEAABCSJbUDJaERtljM3EYziqsbzlwVlqwsO4
Etag: "2a35bfda887412ccc9862038b3d3f59b"
version-id: G0011165420ACA0BFFFF900B0080F1FD
Last-Modified: Thu Aug 16 17:22:08 CST 2018
request-id: 000001689B446C459047953276B1B907
x-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc
Content-Disposition: inline;filename=f.txt
Via: 1.1 pop1dev2886
x-hcs-proxy-type: 1
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
nginx-hit: 1
Age: 2029297
Accept-Ranges: bytes
Strict-Transport-Security: max-age=0


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   5193
Md5:    2a35bfda887412ccc9862038b3d3f59b
Sha1:   2f77619fe3ba4d6a4aeb84a142862f3196bee51b
Sha256: 328b538293fbeaeb8a9b1172222531a76ae811d226eb7b8c21fcd414484dc7e0

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /style/hgxjwi/left_down.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/cn/register
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=utf-8
                                        
Strict-Transport-Security: max-age=2592000
Server: nginx
Date: Fri, 22 Feb 2019 08:01:17 GMT
X-Cache: MISS from hk05
Content-Length: 162
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document text
Size:   162
Md5:    70461da8b94c6ca5d2fda3260c5a8c3b
Sha1:   994bc667720c21257500e29038c1a5f61e25da1e
Sha256: f33c27745f2bd87344be790465ef984a972fd539dc83bd4f61d4242c607ef1ee
                                        
                                            GET /style/hgxjwi/fm2.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/cn/register
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "571ee219-276f"
Server: nginx
Date: Thu, 21 Feb 2019 03:40:54 GMT
Last-Modified: Tue, 26 Apr 2016 03:35:53 GMT
Expires: Thu, 21 Feb 2019 09:40:54 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 10095
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 304 x 85, 8-bit/color RGBA, non-interlaced
Size:   10095
Md5:    be8dbb280f8bd795557fb2d161c50785
Sha1:   11ab02d803f80177aa16ef127a6a50afa39223bd
Sha256: 7097a1b1c01c440b2667abe768c4e47b9311b38aac5fc9813dee2df800c7292c
                                        
                                            GET /cn/captcha HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/cn/register
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/PNG
                                        
Strict-Transport-Security: max-age=2592000
Server: nginx
Date: Fri, 22 Feb 2019 08:01:17 GMT
X-Powered-By: PHP/5.6.26
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Cache: MISS from hk05
Transfer-Encoding: chunked
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 62 x 24, 8-bit colormap, non-interlaced
Size:   769
Md5:    22b4175b0a736aa099df49296745a95e
Sha1:   65c9e2b1729990dcebb2f041049dc82731d00bc6
Sha256: 24530bf2e875edab323b34c9790d559d93d3d10b0160982495858619f129cf87
                                        
                                            GET /style/hgxjwi/fm3.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/cn/register
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "571ee219-1aa5"
Server: nginx
Date: Thu, 21 Feb 2019 03:40:54 GMT
Last-Modified: Tue, 26 Apr 2016 03:35:53 GMT
Expires: Thu, 21 Feb 2019 09:40:54 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 6821
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 270 x 85, 8-bit/color RGBA, non-interlaced
Size:   6821
Md5:    62581a01c551c77ebdcf31024ce7782a
Sha1:   ae9e0374d325f3bfcaa37a27ae2ef1fb3c8dcc20
Sha256: d0d977f0e26a50c6a616bc89f550e9bd9c500133093b1095a56d6ce0879039f6
                                        
                                            GET /style/hgxjwi/fm4.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/cn/register
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "571ee219-104e"
Server: nginx
Date: Thu, 21 Feb 2019 03:40:57 GMT
Last-Modified: Tue, 26 Apr 2016 03:35:53 GMT
Expires: Thu, 21 Feb 2019 09:40:57 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 4174
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 237 x 85, 8-bit/color RGBA, non-interlaced
Size:   4174
Md5:    d0e68b31dbf40398d46e297bdf0e361a
Sha1:   579679a9bc2de8660141e24e9025a1df172f1fd7
Sha256: 1527b770e945ba5a85d6be2fded09156f3b46e89c4ae1c40e3b2db6b4ec69500
                                        
                                            GET /style/hgxjwi/fm1.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/cn/register
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "571ee219-47a8"
Server: nginx
Date: Thu, 21 Feb 2019 03:40:54 GMT
Last-Modified: Tue, 26 Apr 2016 03:35:53 GMT
Expires: Thu, 21 Feb 2019 09:40:54 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 18344
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 189 x 85, 8-bit/color RGBA, non-interlaced
Size:   18344
Md5:    5734f0dd1ebad0a4231a7433555c639a
Sha1:   685f339a6e3207802686397a82991e8aae418d3a
Sha256: 88339324e9bbff3bfbb120cbd617902bd5205f717dda75ff3375f8f62352910b
                                        
                                            GET /style/hgxjwi/fm5.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/cn/register
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "571ee219-2e61"
Server: nginx
Date: Thu, 21 Feb 2019 03:40:58 GMT
Last-Modified: Tue, 26 Apr 2016 03:35:53 GMT
Expires: Thu, 21 Feb 2019 09:40:58 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 11873
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 1000 x 79, 8-bit/color RGBA, non-interlaced
Size:   11873
Md5:    e333a8a7940377b9af6c62eacc515c1c
Sha1:   c45b490b373087fbfb95b575bc6dd6c5e4fd09ac
Sha256: c61f74a4fcba0b0649588018f2d90b7d4fe9d19f8741f3255d90bdb6d5af82e7
                                        
                                            GET /style/hgxjwi/xm1.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/cn/register
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "571ee219-c2d"
Server: nginx
Date: Thu, 21 Feb 2019 03:40:58 GMT
Last-Modified: Tue, 26 Apr 2016 03:35:53 GMT
Expires: Thu, 21 Feb 2019 09:40:58 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 3117
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 1015 x 67, 8-bit/color RGBA, non-interlaced
Size:   3117
Md5:    a2f63582cffb296ef936eea0e80e6ac4
Sha1:   ac27c45744376c3fa10419ee2b2c9cb1ce245340
Sha256: 1859729f8819adaaee6d1018f56e9fde7c907cdada9e5c24c55c040d6f3fda0e
                                        
                                            GET /style/hgxjwi/xm2.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/cn/register
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "571ee219-177e"
Server: nginx
Date: Thu, 21 Feb 2019 03:40:59 GMT
Last-Modified: Tue, 26 Apr 2016 03:35:53 GMT
Expires: Thu, 21 Feb 2019 09:40:59 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 6014
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 1015 x 43, 8-bit/color RGBA, non-interlaced
Size:   6014
Md5:    c9c248860c04546f4ee0c2a41142c048
Sha1:   1e96ed5a0237b2428508544fedb9a90be8a481fa
Sha256: 827cf6ab9d248e581f42379661e2af7fc58222b04cb872c6d9f3a7ac87517f37
                                        
                                            GET /style/hgxjwi/iconfont.woff HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/style/hgxjwi/iconfont.css
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: application/font-woff
                                        
Strict-Transport-Security: max-age=2592000
Etag: "571f1a7a-3c28"
Server: nginx
Date: Thu, 21 Feb 2019 03:40:54 GMT
Last-Modified: Tue, 26 Apr 2016 07:36:26 GMT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 15400
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   15400
Md5:    c1e83af64105154df9519e9f1280f2cf
Sha1:   6ad8a7536f8d5d758e5861d8fd47a5825a297b30
Sha256: 5feec66adcb262d6e2971a29a1445a1e845fae9988598ec6bd5d103444600bf8
                                        
                                            GET /style/hgxjwi/xm3.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/cn/register
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "571ee219-792"
Server: nginx
Date: Thu, 21 Feb 2019 03:40:59 GMT
Last-Modified: Tue, 26 Apr 2016 03:35:53 GMT
Expires: Thu, 21 Feb 2019 09:40:59 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 1938
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 1015 x 57, 8-bit/color RGBA, non-interlaced
Size:   1938
Md5:    2be135311da4fabdd176b45063dbac25
Sha1:   21d779eb62f265086df25dc59f1d05710441c854
Sha256: 269784d789b167f5a58d2cc606850f76140d17790f1678a09b68210285d44f40
                                        
                                            GET /style/hgxjwi/xm4.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/cn/register
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "571ee219-1160"
Server: nginx
Date: Thu, 21 Feb 2019 03:41:00 GMT
Last-Modified: Tue, 26 Apr 2016 03:35:53 GMT
Expires: Thu, 21 Feb 2019 09:41:00 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 4448
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 1012 x 44, 8-bit/color RGBA, non-interlaced
Size:   4448
Md5:    b56769a8dd6491eaac53a68dfc8916d3
Sha1:   0cda4e64101ca51b097772cd3bf2386aded68ea7
Sha256: 345948defab8917f8431d8987a1677386ead23fc87271e5a5f6b0b825de4b9f5
                                        
                                            GET /style/hgxjwi/xm5.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/cn/register
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "571ee219-133b"
Server: nginx
Date: Thu, 21 Feb 2019 03:41:00 GMT
Last-Modified: Tue, 26 Apr 2016 03:35:53 GMT
Expires: Thu, 21 Feb 2019 09:41:00 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 4923
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 1012 x 52, 8-bit/color RGBA, non-interlaced
Size:   4923
Md5:    d35731ec725966d8fd969783e4839f9c
Sha1:   4266bbea7e64eca69d8cf3ef72267d4e134f68ec
Sha256: f34aa3a0e769f776728bd8da4f352e325a5f0a07b0fcbfb60d47cdca2f774095
                                        
                                            GET /style/hgxjwi/right1.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/cn/register
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "571ee219-1ca0"
Server: nginx
Date: Thu, 21 Feb 2019 03:41:00 GMT
Last-Modified: Tue, 26 Apr 2016 03:35:53 GMT
Expires: Thu, 21 Feb 2019 09:41:00 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 7328
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 179 x 73, 8-bit/color RGBA, non-interlaced
Size:   7328
Md5:    ab72e48b841ad0dc804082b2d40353d4
Sha1:   0fbbf4ae561751cc51d577db8c59ab7f5c57c3e5
Sha256: 4ba359cea431f7cf2bbfaf6340f16a7c0390fbf50b778cc1791e9b0f2137465a
                                        
                                            GET /style/hgxjwi/right3.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/cn/register
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "571ee219-3374"
Server: nginx
Date: Thu, 21 Feb 2019 03:41:00 GMT
Last-Modified: Tue, 26 Apr 2016 03:35:53 GMT
Expires: Thu, 21 Feb 2019 09:41:00 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 13172
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 179 x 87, 8-bit/color RGBA, non-interlaced
Size:   13172
Md5:    bd9de6ab1a6b71518ad8c1c2c852927d
Sha1:   e08fb545358092d133dc31c283c2b837b925eacd
Sha256: 969634f480578182e0c1e7d0bfb88c13270f438d6cb4bef746d797b89446d172
                                        
                                            GET /style/hgxjwi/rightz.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/cn/register
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "571ee219-1727"
Server: nginx
Date: Thu, 21 Feb 2019 03:41:01 GMT
Last-Modified: Tue, 26 Apr 2016 03:35:53 GMT
Expires: Thu, 21 Feb 2019 09:41:01 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 5927
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 43 x 167, 8-bit/color RGBA, non-interlaced
Size:   5927
Md5:    c96457f371b389979fe258659882bf68
Sha1:   4b34228c94deb2ad3cd0ed842c0c73aa2c9e3e1c
Sha256: f605170fa390ef8d09437d8e0fea3e60c54f3810bf2a07ce8fa4013e7b463c5a
                                        
                                            GET /style/hgxjwi/left1.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/cn/register
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "571ee219-1cb4"
Server: nginx
Date: Thu, 21 Feb 2019 03:41:01 GMT
Last-Modified: Tue, 26 Apr 2016 03:35:53 GMT
Expires: Thu, 21 Feb 2019 09:41:01 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 7348
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 197 x 76, 8-bit/color RGBA, non-interlaced
Size:   7348
Md5:    6a0e1328cf85c433f54a54c4e36e8c0e
Sha1:   88b4542abf59a8cabe47f2042ca95fb54f83cea8
Sha256: 88149cdaeb3ad115209f1199d5edf3a45f09a0bad28a6837cc641c92343ee8b3
                                        
                                            GET /style/hgxjwi/left2.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/cn/register
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "571ee219-30cf"
Server: nginx
Date: Fri, 22 Feb 2019 05:47:45 GMT
Last-Modified: Tue, 26 Apr 2016 03:35:53 GMT
Expires: Fri, 22 Feb 2019 11:47:45 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 12495
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 197 x 71, 8-bit/color RGBA, non-interlaced
Size:   12495
Md5:    0a482021012f99349d2adb7799bd840b
Sha1:   5ef1b2ebedaf0f0bb783aecf0aaecb6d47517394
Sha256: a84fda3b696946feb9c04ad1d1801b2d7d140b3180b8d81ff0e04ce05896b05c
                                        
                                            GET /style/hgxjwi/right2.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/cn/register
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "572af699-4283"
Server: nginx
Date: Thu, 21 Feb 2019 03:41:00 GMT
Last-Modified: Thu, 05 May 2016 07:30:33 GMT
Expires: Thu, 21 Feb 2019 09:41:00 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 17027
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 179 x 87, 8-bit/color RGBA, non-interlaced
Size:   17027
Md5:    94da1f67470a45867989afad1f2e1dc1
Sha1:   d01b41460603bac9c9f464f6fe34294289ea5796
Sha256: 7b6ed26606ad9dff1c1b27541e4f87ff3da8b9452c34e8b05a5a169097d0c3ec
                                        
                                            GET /style/hgxjwi/right4.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/cn/register
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "5729959d-43f7"
Server: nginx
Date: Thu, 21 Feb 2019 03:41:00 GMT
Last-Modified: Wed, 04 May 2016 06:24:29 GMT
Expires: Thu, 21 Feb 2019 09:41:00 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 17399
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 179 x 93, 8-bit/color RGBA, non-interlaced
Size:   17399
Md5:    f2c66c670a2cdc82d3bb44b085a2408b
Sha1:   3c5ee0140e4bbfc0e9356529965fefac323ca987
Sha256: 3e57bd9f2d5336e54d44f72569e4d8214c116a6c996fcd3f4b135e42f5117133
                                        
                                            GET /style/hgxjwi/left3.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/cn/register
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "571ee219-3202"
Server: nginx
Date: Fri, 22 Feb 2019 05:47:45 GMT
Last-Modified: Tue, 26 Apr 2016 03:35:53 GMT
Expires: Fri, 22 Feb 2019 11:47:45 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 12802
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 197 x 70, 8-bit/color RGBA, non-interlaced
Size:   12802
Md5:    7420fec811629a06d7e182dc0c4db57e
Sha1:   1b37957c31e106b1375bb047496ad6f4d4a9a574
Sha256: 23d05aa45a57ce4a3d3073eeeed4947f91dad721bd2a6234e5e03be97da4c24c
                                        
                                            GET /style/hgxjwi/leftz.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/cn/register
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "571ee219-1505"
Server: nginx
Date: Fri, 22 Feb 2019 05:47:45 GMT
Last-Modified: Tue, 26 Apr 2016 03:35:53 GMT
Expires: Fri, 22 Feb 2019 11:47:45 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 5381
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 43 x 166, 8-bit/color RGBA, non-interlaced
Size:   5381
Md5:    1b69c7494fd41bb52c92ddfb0794d2af
Sha1:   977dcf4de853898566aa43cf7f9f4cc1dac5e793
Sha256: 6aa481d647ca4f27e441c1e564f1f6756140fc9af928dca3c179ef125c20ed0d
                                        
                                            GET /upload/689/flash/160503060425.swf HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/cn/register
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: application/x-shockwave-flash
                                        
Strict-Transport-Security: max-age=2592000
Etag: "572877a9-89f4"
Server: nginx
Date: Fri, 22 Feb 2019 05:47:43 GMT
Last-Modified: Tue, 03 May 2016 10:04:25 GMT
Expires: Fri, 22 Feb 2019 11:47:43 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 35316
Connection: keep-alive


--- Additional Info ---
Magic:  Macromedia Flash data (compressed), version 8
Size:   35316
Md5:    07055ae9c0a2798c14ee592e5f403647
Sha1:   1e9be258f3088443b72d90c7c618cf93cda4e463
Sha256: 8ce0379e194a8e1120765718d74e49671c601ce7c1889b5cc6b1f739c40ce0a7
                                        
                                            GET /style/hgxjwi/bg_game.jpg HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/style/hgxjwi/css.css?v=151191857
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=utf-8
                                        
Strict-Transport-Security: max-age=2592000
Server: nginx
Date: Fri, 22 Feb 2019 08:01:18 GMT
X-Cache: MISS from hk05
Content-Length: 162
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document text
Size:   162
Md5:    70461da8b94c6ca5d2fda3260c5a8c3b
Sha1:   994bc667720c21257500e29038c1a5f61e25da1e
Sha256: f33c27745f2bd87344be790465ef984a972fd539dc83bd4f61d4242c607ef1ee
                                        
                                            GET /style/hgxjwi/left4.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/cn/register
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "572af699-49dd"
Server: nginx
Date: Fri, 22 Feb 2019 05:47:45 GMT
Last-Modified: Thu, 05 May 2016 07:30:33 GMT
Expires: Fri, 22 Feb 2019 11:47:45 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 18909
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 197 x 153, 8-bit/color RGBA, non-interlaced
Size:   18909
Md5:    cad1235ebd7a2d7dd9d96d390eae10df
Sha1:   bb72e2ebac415e5feb5d7b79bbe77889dfa39c91
Sha256: c9dfb13782552337492c14f5ef1492d6167076bcd38488e32b2788da5670e871
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.nianfeng58.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: Hm_lvt_44cca28b6ddea942fd72dff1f380ce59=1550822472; Hm_lpvt_44cca28b6ddea942fd72dff1f380ce59=1550822472

                                         
                                         172.121.11.39
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Server: Microsoft-IIS/7.5
X-Powered-By: PHP/5.6.22, ASP.NET
Date: Fri, 22 Feb 2019 08:01:19 GMT
Content-Length: 1150


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon
Size:   1150
Md5:    6a9bcec404c227523cd9935cef6c5876
Sha1:   1bddefcd41189aa455c98a0777fba1dd67abccf0
Sha256: 18dbdf6530e6853d057e8e3ebd3e6d06a6651d0b20310c1438d81c701fded356
                                        
                                            GET /upload/689/image/180711223709.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/cn/register
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "5b46bed5-7a53"
Server: nginx
Date: Fri, 22 Feb 2019 05:47:43 GMT
Last-Modified: Thu, 12 Jul 2018 02:37:09 GMT
Expires: Fri, 22 Feb 2019 11:47:43 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 31315
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 300 x 380, 8-bit/color RGB, non-interlaced
Size:   31315
Md5:    bb667f71a736721681781da890a34544
Sha1:   295d9d6487a239f3da025fbabb648f4c475cf392
Sha256: 2dc20a604818635ff582ff40b2d29679c273497b0b4c370ef3d3dbeef7be6b27
                                        
                                            GET /style/hgxjwi/logobg.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/style/hgxjwi/css.css?v=151191857
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "571ee219-2844"
Server: nginx
Date: Thu, 21 Feb 2019 03:40:54 GMT
Last-Modified: Tue, 26 Apr 2016 03:35:53 GMT
Expires: Thu, 21 Feb 2019 09:40:54 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 10308
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 566 x 186, 8-bit/color RGBA, non-interlaced
Size:   10308
Md5:    7d70f6b168205efca228bfdfa4dccc77
Sha1:   d12eefad575d93d6f19fb90d8d5dcb59da3d00b2
Sha256: dac05dd623da2535ff19176b74c49432a1f54dbe6691ac353e389f4005658dea
                                        
                                            GET /style/hgxjwi/gq.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/style/hgxjwi/css.css?v=151191857
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "571ee219-d29"
Server: nginx
Date: Thu, 21 Feb 2019 03:40:54 GMT
Last-Modified: Tue, 26 Apr 2016 03:35:53 GMT
Expires: Thu, 21 Feb 2019 09:40:54 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 3369
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 89 x 19, 8-bit/color RGBA, non-interlaced
Size:   3369
Md5:    c72635cfe25fb7e67940bd877e510010
Sha1:   4455022643685ad263d6c0884d369fa7d1b4633e
Sha256: cf25799613998b050ac609c9d52e76bba8a326245bdbd686964c7e367c2d4d46
                                        
                                            GET /style/hgxjwi/denglu.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/style/hgxjwi/css.css?v=151191857
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "571ee219-488"
Server: nginx
Date: Thu, 21 Feb 2019 03:40:54 GMT
Last-Modified: Tue, 26 Apr 2016 03:35:53 GMT
Expires: Thu, 21 Feb 2019 09:40:54 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 1160
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 66 x 22, 8-bit/color RGBA, non-interlaced
Size:   1160
Md5:    3fd92f619007f4aa8da94824aadb9944
Sha1:   b5f112becbb67077f43aedb1b576a6a0d1e5f338
Sha256: 0fecc106c9fef06b55fc15165c6a6720b945f5391dcfde9602d0073cdc4d683a
                                        
                                            POST /gsdomainvalsha2g2 HTTP/1.1 
Host: ocsp2.globalsign.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 111
Content-Type: application/ocsp-request
Cookie: __cfduid=d4560483d6516d09b875462a7171f1ebb1550822470

                                         
                                         104.18.21.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 22 Feb 2019 08:01:18 GMT
Content-Length: 1558
Connection: keep-alive
Last-Modified: Fri, 22 Feb 2019 06:32:57 GMT
Expires: Tue, 26 Feb 2019 06:32:57 GMT
Etag: "a3f89b4132c1437bce6e796fcfe7efc76f426d10"
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4acfec8daade4255-OSL


--- Additional Info ---
Magic:  data
Size:   1558
Md5:    10f9e69efd2a56aac01766ebbbaf0b7a
Sha1:   a3f89b4132c1437bce6e796fcfe7efc76f426d10
Sha256: 880f485aaf1baa18446b881a9e83bc87131c4168ee828f210559378de0254cdc
                                        
                                            GET /style/hgxjwi/liji.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/style/hgxjwi/css.css?v=151191857
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "571ee219-a88"
Server: nginx
Date: Thu, 21 Feb 2019 03:40:54 GMT
Last-Modified: Tue, 26 Apr 2016 03:35:53 GMT
Expires: Thu, 21 Feb 2019 09:40:54 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 2696
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 91 x 46, 8-bit/color RGBA, non-interlaced
Size:   2696
Md5:    db49f9408ae866047b86d85a4f362494
Sha1:   861c28381eb126547bae3025d80f75f84757e29a
Sha256: 060b32d3f8dd262357ebe406f2d9226a682c96201591667b32f82440f0e76095
                                        
                                            GET /style/hgxjwi/navcur.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/style/hgxjwi/css.css?v=151191857
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "571ee219-8b0"
Server: nginx
Date: Thu, 21 Feb 2019 03:40:54 GMT
Last-Modified: Tue, 26 Apr 2016 03:35:53 GMT
Expires: Thu, 21 Feb 2019 09:40:54 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 2224
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 145 x 47, 8-bit/color RGBA, non-interlaced
Size:   2224
Md5:    81fd38a302c2a9b81d8bd08145580dff
Sha1:   88a71673423d93e47969780583012c24c5d1f09b
Sha256: cc886821528c1e313963a99556223177b1ca9a619bd235c6c8c1219fbde39744
                                        
                                            GET /style/hgxjwi/hot.gif HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/style/hgxjwi/css.css?v=151191857
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Strict-Transport-Security: max-age=2592000
Etag: "571ee219-393"
Server: nginx
Date: Thu, 21 Feb 2019 03:40:54 GMT
Last-Modified: Tue, 26 Apr 2016 03:35:53 GMT
Expires: Thu, 21 Feb 2019 09:40:54 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 915
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 21 x 16
Size:   915
Md5:    5c721f98e8fd9f80e0943fe498645942
Sha1:   9181113e3025ec702ec6aea5a77cd8dc20f29519
Sha256: bcb91efb41f82ecce550236e19a254a3fd45aebd6c09cbc40efff987f7ce9e65
                                        
                                            GET /style/share/sub/nsp.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/style/share/share.css?v=2019022204
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "561c685f-2c74"
Server: nginx
Date: Thu, 21 Feb 2019 03:40:54 GMT
Last-Modified: Tue, 13 Oct 2015 02:11:43 GMT
Expires: Thu, 21 Feb 2019 09:40:54 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 11380
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 80 x 80, 8-bit/color RGBA, non-interlaced
Size:   11380
Md5:    47c708d5e0698930203aa5eb8226d6dc
Sha1:   b3d17db5c0991328b384c83a5621356bb42dd3a9
Sha256: 8fad03e7e22579b21bc0e1493c344b01c2a7862b209b3f47f7ffb18b054b4353
                                        
                                            GET /style/share/sub/nts.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/style/share/share.css?v=2019022204
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "5757d4bd-2ef5"
Server: nginx
Date: Thu, 21 Feb 2019 03:40:54 GMT
Last-Modified: Wed, 08 Jun 2016 08:18:05 GMT
Expires: Thu, 21 Feb 2019 09:40:54 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 12021
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 80 x 80, 8-bit/color RGBA, non-interlaced
Size:   12021
Md5:    637e77ac20954571d115de3c17112bd1
Sha1:   f15e6a48d01120f55d281872bc3174260505d0bd
Sha256: 2e7ec490dfa5a0a779d183c31183dc318e99ba11565ccae926f9fe79a3a57c18
                                        
                                            GET /style/hgxjwi/hbg.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/style/hgxjwi/css.css?v=151191857
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "571ee219-9f46"
Server: nginx
Date: Thu, 21 Feb 2019 03:40:54 GMT
Last-Modified: Tue, 26 Apr 2016 03:35:53 GMT
Expires: Thu, 21 Feb 2019 09:40:54 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 40774
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 1919 x 145, 8-bit/color RGB, non-interlaced
Size:   40774
Md5:    a9dcd6c581b8a56e7ca1cd74cbba8872
Sha1:   841188ae4e0c967df698b8ac9c669fa2c94eb8bc
Sha256: ab6d563d5523e0b717b4a5a4ce6ceda00e33031344d8a67e51ebec1c64272add
                                        
                                            GET /style/share/sub/nsb.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/style/share/share.css?v=2019022204
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "561c685f-2a0f"
Server: nginx
Date: Thu, 21 Feb 2019 03:40:54 GMT
Last-Modified: Tue, 13 Oct 2015 02:11:43 GMT
Expires: Thu, 21 Feb 2019 09:40:54 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 10767
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 80 x 80, 8-bit/color RGBA, non-interlaced
Size:   10767
Md5:    868302fec02f5eba932ac3f0efd22efe
Sha1:   8cdb616b771abcf343379349bf28514a6d920f75
Sha256: efce81fcfcb57b93ba7ca5077ccfce96789610fa9ee4749579d81da92be6a9bf
                                        
                                            GET /style/hgxjwi/huangguan.swf HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/cn/register
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: application/x-shockwave-flash
                                        
Strict-Transport-Security: max-age=2592000
Etag: "571ee219-fa04"
Server: nginx
Date: Fri, 22 Feb 2019 05:47:43 GMT
Last-Modified: Tue, 26 Apr 2016 03:35:53 GMT
Expires: Fri, 22 Feb 2019 11:47:43 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 64004
Connection: keep-alive


--- Additional Info ---
Magic:  Macromedia Flash data (compressed), version 15
Size:   64004
Md5:    fdab16d03452e84f818045331f967e27
Sha1:   950269924bc49ec0bd348e7ce8b8509cfa509cb8
Sha256: e300bb65391479b9c8dc6013b6fca235f6467511ba4d15892e2387b95dc93d80
                                        
                                            GET /style/share/sub/nug.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/style/share/share.css?v=2019022204
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "58733130-24b2"
Server: nginx
Date: Thu, 21 Feb 2019 03:40:54 GMT
Last-Modified: Mon, 09 Jan 2017 06:44:00 GMT
Expires: Thu, 21 Feb 2019 09:40:54 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 9394
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 80 x 80, 8-bit/color RGBA, non-interlaced
Size:   9394
Md5:    aa7c5ff838a8d0559e5deccde4275d7f
Sha1:   e9a2f0a5d8706adacdb4382a2f631d071e5ed3a0
Sha256: 54dd04e06db2feba02aebd678bcef9d3603e3e6a47f92f9fd18c881100061226
                                        
                                            GET /style/share/sub/nag.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/style/share/share.css?v=2019022204
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "561c6519-2c37"
Server: nginx
Date: Thu, 21 Feb 2019 03:40:54 GMT
Last-Modified: Tue, 13 Oct 2015 01:57:45 GMT
Expires: Thu, 21 Feb 2019 09:40:54 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 11319
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 80 x 80, 8-bit/color RGBA, non-interlaced
Size:   11319
Md5:    d625975010ad6f5005ebac039a9ef1f2
Sha1:   bb6c21d94746f1b2513ea6d4b38587456cfa2406
Sha256: 9b291951988ee986f4dfdf223b14006ad6aefa2d44518b4b8727deb48a2c604f
                                        
                                            GET /style/share/sub/nab.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/style/share/share.css?v=2019022204
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "56248cdf-35cd"
Server: nginx
Date: Thu, 21 Feb 2019 03:40:55 GMT
Last-Modified: Mon, 19 Oct 2015 06:25:35 GMT
Expires: Thu, 21 Feb 2019 09:40:55 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 13773
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 80 x 80, 8-bit/color RGBA, non-interlaced
Size:   13773
Md5:    239b5546440ec0c8874b8cdbbc9c58a6
Sha1:   b6af5815c701fbc6ef4a6f83ac87cfc0dc935fd8
Sha256: 6d1cca5b7ba764618e13877d5c4f158b64af31d1b15eb7b333c97212663c736c
                                        
                                            GET /style/share/sub/nbt.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/style/share/share.css?v=2019022204
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "5bd02819-2453"
Server: nginx
Date: Thu, 21 Feb 2019 03:40:54 GMT
Last-Modified: Wed, 24 Oct 2018 08:06:49 GMT
Expires: Thu, 21 Feb 2019 09:40:54 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 9299
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 80 x 80, 8-bit/color RGBA, non-interlaced
Size:   9299
Md5:    1c58acd7085608505ab5c0ad71e5a56f
Sha1:   e01ebc55a50cd952f2332a6bae991298e67bda48
Sha256: f63161b85f007fd84e9fee47fadf30e1232ab786aac4fcb3ee452fc944758677
                                        
                                            GET /style/share/sub/nds.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/style/share/share.css?v=2019022204
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "561c6519-352a"
Server: nginx
Date: Thu, 21 Feb 2019 03:40:55 GMT
Last-Modified: Tue, 13 Oct 2015 01:57:45 GMT
Expires: Thu, 21 Feb 2019 09:40:55 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 13610
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 80 x 80, 8-bit/color RGBA, non-interlaced
Size:   13610
Md5:    7674dfc506c397e7f46acba275215726
Sha1:   f9b2a51f650817bcb886119ec88039c5c2cdb050
Sha256: 479d156efe6e611e435bc90ced4c1599714f9f4994e8c9d7a39072810a2788c5
                                        
                                            GET /style/share/sub/nog.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/style/share/share.css?v=2019022204
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "561c6519-2fd0"
Server: nginx
Date: Thu, 21 Feb 2019 03:40:55 GMT
Last-Modified: Tue, 13 Oct 2015 01:57:45 GMT
Expires: Thu, 21 Feb 2019 09:40:55 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 12240
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 80 x 80, 8-bit/color RGBA, non-interlaced
Size:   12240
Md5:    bfa1b54bf533977b0d51c8a03a371b61
Sha1:   957cd6e36893af0a9eddad4acef95f56988dede4
Sha256: 0194eec91fcd8d8adbb6550728295e557aa52ff33d3395b023b6274f14b610b3
                                        
                                            GET /style/share/sub/nbg.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/style/share/share.css?v=2019022204
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "590fea36-283d"
Server: nginx
Date: Thu, 21 Feb 2019 03:40:54 GMT
Last-Modified: Mon, 08 May 2017 03:47:02 GMT
Expires: Thu, 21 Feb 2019 09:40:54 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 10301
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 80 x 80, 8-bit/color RGBA, non-interlaced
Size:   10301
Md5:    de227d2ec724789b88b8478029401acb
Sha1:   0755f0831c672bd7929a918e264b7e79f78fc19a
Sha256: 1eb85156247c4138fcb03707b7d412b490f3b162d33e682189a1d4a45a0d59ce
                                        
                                            GET /style/share/sub/nbbin.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/style/share/share.css?v=2019022204
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "561c6519-2ee6"
Server: nginx
Date: Thu, 21 Feb 2019 03:40:55 GMT
Last-Modified: Tue, 13 Oct 2015 01:57:45 GMT
Expires: Thu, 21 Feb 2019 09:40:55 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 12006
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 80 x 80, 8-bit/color RGBA, non-interlaced
Size:   12006
Md5:    a5e9495ca8f536692c7c2a87c2b210b2
Sha1:   bf58a7c0fefe8eba1bc5824d184c439b02a5f359
Sha256: 195623d73c1aa9e17a1674834232e0a8e63c361980e55cc6f2b6330e9a3adf38
                                        
                                            GET /style/share/sub/nsg.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/style/share/share.css?v=2019022204
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "5a77c7e0-2056"
Server: nginx
Date: Thu, 21 Feb 2019 03:40:54 GMT
Last-Modified: Mon, 05 Feb 2018 02:56:32 GMT
Expires: Thu, 21 Feb 2019 09:40:54 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 8278
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 80 x 80, 8-bit/color RGBA, non-interlaced
Size:   8278
Md5:    dbe1afeca0db87f2a26e9de98e063b46
Sha1:   56178b673131551fed78601e8fc6edc5c4c19867
Sha256: a27aba58b49eb07b9e8b24bed9766af95f7520dd4d2eeae1494ca710e0092685
                                        
                                            GET /style/share/sub/neb.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/style/share/share.css?v=2019022204
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "5b6ab6b8-2309"
Server: nginx
Date: Fri, 22 Feb 2019 07:23:58 GMT
Last-Modified: Wed, 08 Aug 2018 09:24:08 GMT
Expires: Fri, 22 Feb 2019 13:23:58 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 8969
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 80 x 80, 8-bit/color RGBA, non-interlaced
Size:   8969
Md5:    c6293ad4d4624942f5c9857ac7237f12
Sha1:   280fab9da4c7d1e8015ee58efb0c7c5a2422589d
Sha256: fe16e4540c76e2c6cccd5913d81575c8c0d11eb59cfe3f563879b4e0e37285cf
                                        
                                            GET /go1?id=19393773&rt=1550822477904&rl=1176*885&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=%25E7%259A%2587%25E5%2586%25A0%25E7%258E%25B0%25E9%2587%2591%25E7%25BD%2591-%25E8%2580%2581%25E5%2593%2581%25E7%2589%258C%25E5%2580%25BC%25E5%25BE%2597%25E4%25BF%25A1%25E8%25B5%2596&ing=1&ekc=&sid=1550822477904&tt=BET980.%25E7%259A%2587%25E5%2586%25A0%25E7%258E%25B0%25E9%2587%2591%25E7%25BD%2591&kw=&cu=https%253A%252F%252Fhg98089.com%252Fcn%252Fregister&pu=http%253A%252F%252Fwww.nianfeng58.com%252F2018%252F1203%252F971976.shtml HTTP/1.1 
Host: ia.51.la
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/cn/register

                                         
                                         183.131.207.78
HTTP/1.1 200
Content-Type: application/octet-stream
                                        
Server: HuaweiCloudWAF
Date: Fri, 22 Feb 2019 07:59:45 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: HWWAFSESID=269732b332ac17bc5a30; path=/ HWWAFSESTIME=1550822380825; path=/


--- Additional Info ---
                                        
                                            GET /style/share/sub/dzcq.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/style/share/share.css?v=2019022204
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "5c6bb9da-2c20"
Server: nginx
Date: Thu, 21 Feb 2019 08:35:45 GMT
Last-Modified: Tue, 19 Feb 2019 08:10:02 GMT
Expires: Thu, 21 Feb 2019 14:35:45 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 11296
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 80 x 80, 8-bit/color RGBA, non-interlaced
Size:   11296
Md5:    16de654b3d60cedb2bcf2766609901ec
Sha1:   9b4eb0b0bfd8dd76f021af31ff668dfb79b7f0dc
Sha256: 924f6f8999663651e370403dc47ccb356733b8f9e26ed541ed6aeb32633ba53b
                                        
                                            GET /style/share/sub/dzmg.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/style/share/share.css?v=2019022204
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "561c6519-3018"
Server: nginx
Date: Thu, 21 Feb 2019 03:40:55 GMT
Last-Modified: Tue, 13 Oct 2015 01:57:45 GMT
Expires: Thu, 21 Feb 2019 09:40:55 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 12312
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 80 x 80, 8-bit/color RGBA, non-interlaced
Size:   12312
Md5:    50ed0874fe1191c72c0645d5be06687d
Sha1:   072c9161f40713b3c1eebdef48651c3ae7b3bea9
Sha256: 58b5ac23f29c89f430c9db4fbec8c99b0deebf6248655bd327e373078c739de7
                                        
                                            GET /style/share/sub/dzpt.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/style/share/share.css?v=2019022204
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "561c6519-29d1"
Server: nginx
Date: Thu, 21 Feb 2019 03:40:55 GMT
Last-Modified: Tue, 13 Oct 2015 01:57:45 GMT
Expires: Thu, 21 Feb 2019 09:40:55 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 10705
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 80 x 80, 8-bit/color RGBA, non-interlaced
Size:   10705
Md5:    4d5e00e4a01659b48f7e996b14eda021
Sha1:   e7e270fdcd50d0ca6274c85215b35f45734e98d9
Sha256: 4c66c07e079494b9703a04135314e745a17d164fe7e2a7296c06c377735cd323
                                        
                                            GET /style/share/sub/dztbk.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/style/share/share.css?v=2019022204
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "58edfcc1-2540"
Server: nginx
Date: Fri, 22 Feb 2019 07:54:59 GMT
Last-Modified: Wed, 12 Apr 2017 10:09:05 GMT
Expires: Fri, 22 Feb 2019 13:54:59 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 9536
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 80 x 80, 8-bit/color RGBA, non-interlaced
Size:   9536
Md5:    f2c29fd44484f8a1c6713fd366b3105b
Sha1:   7783f91edbb1dbfb0c4ed6eb0ebd92580fd492bc
Sha256: 2f032cb2ded6d516275eef4beb2692f6d776b96294d56ae3949ae4df788fd242
                                        
                                            GET /style/share/sub/dzhb.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/style/share/share.css?v=2019022204
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "5653ca28-2731"
Server: nginx
Date: Fri, 22 Feb 2019 07:54:59 GMT
Last-Modified: Tue, 24 Nov 2015 02:23:36 GMT
Expires: Fri, 22 Feb 2019 13:54:59 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 10033
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 80 x 80, 8-bit/color RGBA, non-interlaced
Size:   10033
Md5:    794679ded9d525d1ec17ef563f9ea2ba
Sha1:   5e03fe87a0d03c413fe26591f3aed6624766e455
Sha256: d557c2116f3dbd2ff89c02acd3a417fb0c268337a1a4ea0368301a0922c2cb16
                                        
                                            GET /style/share/sub/dzbbin.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/style/share/share.css?v=2019022204
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "561c6519-337a"
Server: nginx
Date: Fri, 22 Feb 2019 07:54:59 GMT
Last-Modified: Tue, 13 Oct 2015 01:57:45 GMT
Expires: Fri, 22 Feb 2019 13:54:59 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 13178
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 80 x 80, 8-bit/color RGBA, non-interlaced
Size:   13178
Md5:    dcdfde83f7fd67f01dfa1c8972776178
Sha1:   7caa70ff6ff1790c37a5e811b6276c44bc73feab
Sha256: eeb2d4de409985e65dd458743e0d941d93ad457d3b12528f6ad712dda63871b1
                                        
                                            GET /style/share/sub/dzps.png?v=0713 HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/style/share/share.css?v=2019022204
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "5b480d66-1f56"
Server: nginx
Date: Thu, 21 Feb 2019 03:40:55 GMT
Last-Modified: Fri, 13 Jul 2018 02:24:38 GMT
Expires: Thu, 21 Feb 2019 09:40:55 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 8022
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 80 x 80, 8-bit/color RGBA, non-interlaced
Size:   8022
Md5:    479ddcefaa15825c7895c396bd438c01
Sha1:   142f42dfae6b5b1f5c7180641254a7f70f033dd2
Sha256: 56932442f513b4cae8e3f7432980d354d4e2e13620b37b939cf6a189a9a5b31c
                                        
                                            GET /style/share/sub/qp_ag.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/style/share/share.css?v=2019022204
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "59e9a77e-2569"
Server: nginx
Date: Thu, 21 Feb 2019 03:40:55 GMT
Last-Modified: Fri, 20 Oct 2017 07:36:30 GMT
Expires: Thu, 21 Feb 2019 09:40:55 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 9577
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 80 x 80, 8-bit/color RGBA, non-interlaced
Size:   9577
Md5:    b6bb9c44d5897c47efc5d49cb972fc46
Sha1:   d1a76eeb2076d13cfff33012c30a21496712a211
Sha256: d400717e76cb525e0fa3c2b4cab48882fe8b1b6dc7b6ff79e522ced0bed73b37
                                        
                                            GET /style/share/sub/ntt.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/style/share/share.css?v=2019022204
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "58a40f70-2c1e"
Server: nginx
Date: Thu, 21 Feb 2019 03:40:55 GMT
Last-Modified: Wed, 15 Feb 2017 08:21:04 GMT
Expires: Thu, 21 Feb 2019 09:40:55 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 11294
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 80 x 80, 8-bit/color RGBA, non-interlaced
Size:   11294
Md5:    16fc4262e6131ab773754fed5625888d
Sha1:   ac00c871d76c11e9d19e28729c4fffee8b776ff5
Sha256: 5b1397cb42b11eca87ffe366d21607e0b08af2577e87f2f7ae48607ffec6adae
                                        
                                            GET /style/share/sub/njl.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/style/share/share.css?v=2019022204
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "58a551d8-23ff"
Server: nginx
Date: Thu, 21 Feb 2019 03:40:55 GMT
Last-Modified: Thu, 16 Feb 2017 07:16:40 GMT
Expires: Thu, 21 Feb 2019 09:40:55 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 9215
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 80 x 80, 8-bit/color RGBA, non-interlaced
Size:   9215
Md5:    417b74d3c22b49de97139bbfc50741c0
Sha1:   c8f57b4521b82a0737c91a9027565290fc698567
Sha256: 168ab5a1a4717e1954e689692f978d1036d3ce46af311f8a1424c2aeb21d3d7d
                                        
                                            GET /style/hgxjwi/newbg1.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/style/hgxjwi/css.css?v=151191857
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "571f1a7a-19d0"
Server: nginx
Date: Thu, 21 Feb 2019 03:40:55 GMT
Last-Modified: Tue, 26 Apr 2016 07:36:26 GMT
Expires: Thu, 21 Feb 2019 09:40:55 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 6608
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 998 x 39, 8-bit/color RGBA, non-interlaced
Size:   6608
Md5:    b604bd65d499e4f1943323e59a031844
Sha1:   3809d472523e1f832fb8e51b4507fccb7f577b08
Sha256: 4944b5356fc4ff1fad316501a3132e6fa72e8e4070376e9910c3262f32f1a19a
                                        
                                            GET /style/hgxjwi/contbgs.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/style/hgxjwi/css.css?v=151191857
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "571f1a7a-481"
Server: nginx
Date: Thu, 21 Feb 2019 03:40:56 GMT
Last-Modified: Tue, 26 Apr 2016 07:36:26 GMT
Expires: Thu, 21 Feb 2019 09:40:56 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 1153
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 1920 x 34, 8-bit/color RGBA, non-interlaced
Size:   1153
Md5:    00e25da0f67bde19c01a9c66dedb95ba
Sha1:   41b7065c67bc42c821112aef9321eaa61182c1f5
Sha256: 2cf45b2732cfaf6032c405af7ab7748d5abf4b03ae5e0c6ac993d0694b66dc16
                                        
                                            GET /style/hgxjwi/left_down.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/cn/register
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=utf-8
                                        
Strict-Transport-Security: max-age=2592000
Server: nginx
Date: Fri, 22 Feb 2019 08:01:20 GMT
X-Cache: MISS from hk05
Content-Length: 162
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document text
Size:   162
Md5:    70461da8b94c6ca5d2fda3260c5a8c3b
Sha1:   994bc667720c21257500e29038c1a5f61e25da1e
Sha256: f33c27745f2bd87344be790465ef984a972fd539dc83bd4f61d4242c607ef1ee
                                        
                                            GET /style/share/reg_right_add.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/style/share/share.css?v=2019022204
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "55d5a654-c80"
Server: nginx
Date: Thu, 21 Feb 2019 03:40:56 GMT
Last-Modified: Thu, 20 Aug 2015 10:05:08 GMT
Expires: Thu, 21 Feb 2019 09:40:56 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 3200
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 521 x 55, 8-bit/color RGBA, non-interlaced
Size:   3200
Md5:    89df6ec1429591b1b3c485e8f5243a93
Sha1:   d11c9bb664207a06be8cfc999ab6f2b5ef1cb276
Sha256: c8cc8678b43601c426efd731c758647288e740c053f3f0901c2ff9d86b0548f6
                                        
                                            GET /style/hgxjwi/favicon.ico HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/cn/register
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Strict-Transport-Security: max-age=2592000
Etag: "571ee219-423e"
Server: nginx
Date: Thu, 21 Feb 2019 03:40:55 GMT
Last-Modified: Tue, 26 Apr 2016 03:35:53 GMT
Expires: Thu, 21 Feb 2019 09:40:55 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 16958
Connection: keep-alive


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon
Size:   16958
Md5:    dd5e43851c1c53e355b4d21cbc2f5e3e
Sha1:   1c9fdf5337516227f0fd1092a651b0a9dd9a98b1
Sha256: da97e4aaef3a5dd6649168c045577d7642e07f584d8657f82c687fdbfdc84568
                                        
                                            GET /style/hgxjwi/sidebottom.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/style/hgxjwi/css.css?v=151191857
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "571f1a7a-773f"
Server: nginx
Date: Thu, 21 Feb 2019 08:56:45 GMT
Last-Modified: Tue, 26 Apr 2016 07:36:26 GMT
Expires: Thu, 21 Feb 2019 14:56:45 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 30527
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 240 x 163, 8-bit/color RGBA, non-interlaced
Size:   30527
Md5:    3de2da977025908a00def1a4073a57e8
Sha1:   9e5a58e0fa91c419a7c7af4f246f03e1f682515e
Sha256: a3fde748ec7fe69c99e70b214e54f7e14b15dbc31afdc7296b2983b9f083a5e7
                                        
                                            GET /style/hgxjwi/sidetop.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/style/hgxjwi/css.css?v=151191857
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "571f1a7a-aca2"
Server: nginx
Date: Thu, 21 Feb 2019 03:40:56 GMT
Last-Modified: Tue, 26 Apr 2016 07:36:26 GMT
Expires: Thu, 21 Feb 2019 09:40:56 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 44194
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 240 x 211, 8-bit/color RGBA, non-interlaced
Size:   44194
Md5:    5fd5acecf3a912a84b7936b0886a895a
Sha1:   0376048979c7118017620ac23ddaef04053a438e
Sha256: 8bd9274860334c89621d581982473036df64a567b58b97b93b12ac1e93111936
                                        
                                            GET /style/share/reg_border_top.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/style/share/share.css?v=2019022204
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "55d5a654-245"
Server: nginx
Date: Thu, 21 Feb 2019 03:40:55 GMT
Last-Modified: Thu, 20 Aug 2015 10:05:08 GMT
Expires: Thu, 21 Feb 2019 09:40:55 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 581
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 735 x 15, 8-bit/color RGBA, non-interlaced
Size:   581
Md5:    aa47d81ae2883780ca07137b3c30f2c3
Sha1:   21d3f8f5139b758f7a567e917c16b00075dbd58c
Sha256: bbbc3ef337147b911ed4e24c4277ef9617fbea45fb08d5fea29b70996e3c06a3
                                        
                                            GET /style/share/reg_input.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/style/share/share.css?v=2019022204
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "55d5a654-66e"
Server: nginx
Date: Thu, 21 Feb 2019 03:40:56 GMT
Last-Modified: Thu, 20 Aug 2015 10:05:08 GMT
Expires: Thu, 21 Feb 2019 09:40:56 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 1646
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 184 x 145, 8-bit colormap, non-interlaced
Size:   1646
Md5:    3842ddf6944b4f8928ed2ccf8b2d2baf
Sha1:   400e40c59e3e8bd00fe1f6d8db5b12fd1c70e65b
Sha256: dc282103f15e935843ee694a5078b64ad96a497c2949d41df7832b707703047a
                                        
                                            GET /style/hgxjwi/sidebg.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/style/hgxjwi/css.css?v=151191857
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "571f1a7a-1731f"
Server: nginx
Date: Thu, 21 Feb 2019 03:40:55 GMT
Last-Modified: Tue, 26 Apr 2016 07:36:26 GMT
Expires: Thu, 21 Feb 2019 09:40:55 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 95007
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 240 x 360, 8-bit/color RGBA, non-interlaced
Size:   95007
Md5:    0e87c0727d685bacf2e1852949b3c479
Sha1:   2a6f23d2c25dbb052671a292aea9a69798919c53
Sha256: a0be21d80747bba8030db7b5cf029aa749d1b867b42a9e85cfdf7d38ad4548ad
                                        
                                            GET /style/share/reg_border_bottom.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/style/share/share.css?v=2019022204
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "55d5a654-216"
Server: nginx
Date: Thu, 21 Feb 2019 03:40:55 GMT
Last-Modified: Thu, 20 Aug 2015 10:05:08 GMT
Expires: Thu, 21 Feb 2019 09:40:55 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 534
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 735 x 15, 8-bit/color RGBA, non-interlaced
Size:   534
Md5:    1705a7992282f6874a1590126eab2059
Sha1:   cc8bb9e5e07077bb2e7ed76f6bc73b94d5dec45d
Sha256: d459a29e32ae414d16f8737d11fd5a61bf984a841d9351d870eb6c508a838991
                                        
                                            GET /style/hgxjwi/youxiangbg.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/style/hgxjwi/css.css?v=151191857
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "571ee219-486"
Server: nginx
Date: Fri, 22 Feb 2019 05:47:46 GMT
Last-Modified: Tue, 26 Apr 2016 03:35:53 GMT
Expires: Fri, 22 Feb 2019 11:47:46 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 1158
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 240 x 32, 8-bit/color RGB, non-interlaced
Size:   1158
Md5:    edd68ac50a6710a6a970ba2cd0c47514
Sha1:   af2606085a845b18a72b95ccbb022b8d6888d298
Sha256: 79e3e3667895c1d24c8110e733e8f5332c44c0a10ffb2b7bf5c5be1a608eed34
                                        
                                            GET /cn/images/hot.gif HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/cn/register
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1; __tins__19393773=%7B%22sid%22%3A%201550822477904%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201550824277904%7D; __51cke__=; __51laig__=1; NP_118449=Y

                                         
                                         122.10.95.221
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=utf-8
                                        
Strict-Transport-Security: max-age=2592000
Server: nginx
Date: Fri, 22 Feb 2019 08:01:22 GMT
X-Cache: MISS from hk05
Content-Length: 162
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document text
Size:   162
Md5:    70461da8b94c6ca5d2fda3260c5a8c3b
Sha1:   994bc667720c21257500e29038c1a5f61e25da1e
Sha256: f33c27745f2bd87344be790465ef984a972fd539dc83bd4f61d4242c607ef1ee
                                        
                                            GET /style/hgxjwi/contbg1.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/style/hgxjwi/css.css?v=151191857
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "571ee219-5889c"
Server: nginx
Date: Fri, 22 Feb 2019 05:47:46 GMT
Last-Modified: Tue, 26 Apr 2016 03:35:53 GMT
Expires: Fri, 22 Feb 2019 11:47:46 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 362652
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 1920 x 180, 8-bit/color RGBA, non-interlaced
Size:   362652
Md5:    9115b1840de4465fc9dca6d7720b4d34
Sha1:   e6f9f3bfbbcae6050ff0e932b984b3c04f7f4441
Sha256: 5bb0765690f123fadbd9f481da741796864f89944ea39d72f4df0b4dfd0794d2
                                        
                                            GET /upload/689/image/180613012255.png HTTP/1.1 
Host: hg98089.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hg98089.com/cn/register
Cookie: web=tbm0r48qq81acbljuu6kbb8h15; randomYes=44052063880; firstVisit=1

                                         
                                         122.10.95.221
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Strict-Transport-Security: max-age=2592000
Etag: "5b20aa2f-ceacf"
Server: nginx
Date: Thu, 21 Feb 2019 03:40:55 GMT
Last-Modified: Wed, 13 Jun 2018 05:22:55 GMT
Expires: Thu, 21 Feb 2019 09:40:55 GMT
Cache-Control: max-age=21600
Cache: HIT
Accept-Ranges: bytes
X-Cache: HIT from hk05
Content-Length: 846543
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 1920 x 281, 8-bit/color RGB, non-interlaced
Size:   846543
Md5:    331057fb97458e3729bc71b1bc3d0d90
Sha1:   b49a9e8e3e6482ca680ef0852d724a4d44c23fda
Sha256: e90f5571e33e9acf60662d0e9b441472aff6275005697cff8866dbd93d03c6cf