Overview

URL mai-te.com/
IP172.107.30.241
ASN
Location United States
Report completed2018-07-13 00:50:00 CEST
StatusLoading report..
urlQuery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2018-07-13 2 mai-te.com/ Malware
2018-07-13 2 www.mai-te.com/ Malware
2018-07-13 2 www.mai-te.com/images/menu.js Malware
2018-07-13 2 www.mai-te.com/jump/js/js/new/2017/11/t11.js Malware
2018-07-13 2 www.mai-te.com/jump/js/js/new/to.js Malware
2018-07-13 2 www.mai-te.com/jump/html/to/wanbo.html Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

No other reports on IP: 172.107.30.241


Last 10 reports on ASN:

Date UQ / IDS / BL URL IP
2018-07-21 23:15:30 +0200
0 - 0 - 31 borayplastik.com/ 185.131.50.100
2018-07-21 23:14:39 +0200
0 - 0 - 1 https://fac-ture-secure.fr/SFR/ 185.163.124.111
2018-07-21 23:06:40 +0200
0 - 0 - 8 casasbahia-megasaldao.com/ 108.179.192.93
2018-07-21 23:06:09 +0200
0 - 0 - 8 chainfeed.fr/ 162.241.230.107
2018-07-21 23:00:22 +0200
0 - 0 - 1 af0129.stream/ln/sGzY9awOXBRCNXzsglws6zg2OvBP (...) 151.106.18.213
2018-07-21 22:51:54 +0200
0 - 0 - 0 https://eazydevlin.xyz 172.64.140.2
2018-07-21 22:51:46 +0200
0 - 0 - 2 celquimia.com/ 34.253.142.53
2018-07-21 22:41:57 +0200
0 - 0 - 28 mombasaalcala.com/ 188.164.198.53
2018-07-21 22:40:56 +0200
0 - 0 - 5 www.rbttu.com/ 185.169.197.158
2018-07-21 22:40:51 +0200
2 - 0 - 24 find-roommate.net/ 139.162.170.80

No other reports on domain: mai-te.com



JavaScript

Executed Scripts (27)


Executed Evals (1)

#1 JavaScript::Eval (size: 1299, repeated: 1) - SHA256: 347c109f57c29a83fc35c8a419e72d1eb9077954ceabac247e8a724547cbfd07

                                        var base64EncodeChars = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/";
var base64DecodeChars = new Array(-1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, 62, -1, -1, -1, 63, 52, 53, 54, 55, 56, 57, 58, 59, 60, 61, -1, -1, -1, -1, -1, -1, -1, 0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, -1, -1, -1, -1, -1, -1, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41, 42, 43, 44, 45, 46, 47, 48, 49, 50, 51, -1, -1, -1, -1, -1);

function base64encode(str) {
    var out, i, len;
    var c1, c2, c3;
    len = str.length;
    i = 0;
    out = "";
    while (i < len) {
        c1 = str.charCodeAt(i++) & 0xff;
        if (i == len) {
            out += base64EncodeChars.charAt(c1 >> 2);
            out += base64EncodeChars.charAt((c1 & 0x3) << 4);
            out += "==";
            break
        }
        c2 = str.charCodeAt(i++);
        if (i == len) {
            out += base64EncodeChars.charAt(c1 >> 2);
            out += base64EncodeChars.charAt(((c1 & 0x3) << 4) | ((c2 & 0xF0) >> 4));
            out += base64EncodeChars.charAt((c2 & 0xF) << 2);
            out += "=";
            break
        }
        c3 = str.charCodeAt(i++);
        out += base64EncodeChars.charAt(c1 >> 2);
        out += base64EncodeChars.charAt(((c1 & 0x3) << 4) | ((c2 & 0xF0) >> 4));
        out += base64EncodeChars.charAt(((c2 & 0xF) << 2) | ((c3 & 0xC0) >> 6));
        out += base64EncodeChars.charAt(c3 & 0x3F)
    }
    return out
}
var title = document.title;
title = encodeURI(title);
title = base64encode(title);
title = encodeURI(title);
window.location.href = "/jump/html/js/new/to.php?url=" + title;
                                    

Executed Writes (3)

#1 JavaScript::Write (size: 156, repeated: 1) - SHA256: 34a04ac46edd993f3a99257365ac9692b555856fe1952080b2cfd1ea1d018ca0

                                        < a href = 'http://www.cnzz.com/stat/website.php?web_id=1258652040'
target = _blank title = '&#31449;&#38271;&#32479;&#35745;' > & #31449;&# 38271; & #32479;&# 35745; < /a>
                                    

#2 JavaScript::Write (size: 90, repeated: 1) - SHA256: f912480af201ed84e1663d9f677c20a67adad3f832785af3bffa153d0109132c

                                        < script language = "javascript"
type = "text/javascript"
src = "/jump/js/js/new/to.js" > < /script>
                                    

#3 JavaScript::Write (size: 112, repeated: 1) - SHA256: bb8893422ecd100394fe49de3ba059618f02a945848408ac305cfedb597833ab

                                        < script src = 'https://c.cnzz.com/core.php?web_id=1258652040&t=z'
charset = 'utf-8'
type = 'text/javascript' > < /script>
                                    


HTTP Transactions (77)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: mai-te.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         172.107.30.241
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: nginx/1.13.3
Date: Fri, 13 Jul 2018 06:51:55 GMT
Content-Length: 185
Connection: keep-alive
Location: http://www.mai-te.com/


--- Additional Info ---
Magic:  HTML document text
Size:   185
Md5:    5900b11ca9f55ed095e7bf2f47fde974
Sha1:   b280e07cabb212b25174dcba19f54d6b141be7a3
Sha256: 7e3b1b9f8da61edfa6d48c4ba3292c55c217d629a888e202c1d08e7e8fcc43f5

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET / HTTP/1.1 
Host: www.mai-te.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         172.107.30.241
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Server: nginx/1.13.3
Date: Fri, 13 Jul 2018 06:51:55 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   9941
Md5:    10d040bfb59555a9457c111bb2d34ca2
Sha1:   5eaaa7abf6be50189e8bb5eec77ebb9d42d83e52
Sha256: 042aebcdb907a111439bffc68f1c868eb34f57a4ad8ee395086251603001614b

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/menu.js HTTP/1.1 
Host: www.mai-te.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mai-te.com/

                                         
                                         172.107.30.241
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx/1.13.3
Date: Fri, 13 Jul 2018 06:51:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2225
Md5:    e11026d3ccdf56389a37dcf1a743409c
Sha1:   c036259e32427b88fe29f9fd417e460102020559
Sha256: 06fb65b7a952ad92307df25dca9a3e2f37053dabbc79cf55359a3fd880b43d7b

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/main.css HTTP/1.1 
Host: www.mai-te.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mai-te.com/

                                         
                                         172.107.30.241
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.13.3
Date: Fri, 13 Jul 2018 06:51:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   919
Md5:    67b91d655124607a7d3eaaa68f748f24
Sha1:   7bb8fa9dd31bd8b836687272ceb87b92a2aca104
Sha256: c44be2774906072ebb6c5998f5ddf0bf619daea4ecf276ed9603aab01f23d2a3
                                        
                                            GET /images/img_Main_Left__01.jpg HTTP/1.1 
Host: www.mai-te.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mai-te.com/

                                         
                                         172.107.30.241
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx/1.13.3
Date: Fri, 13 Jul 2018 06:51:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   3056
Md5:    51d4452483e2f03f2680b316c38814af
Sha1:   b02bb140b273523882fcc77a9e5890f5df186b68
Sha256: 0e96da24c19bccefcdd8cb99525f4fb3e251555d4d95debe1d12afbec1b34b9d
                                        
                                            GET /images/img_Main_Left_bbs.jpg HTTP/1.1 
Host: www.mai-te.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mai-te.com/

                                         
                                         172.107.30.241
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx/1.13.3
Date: Fri, 13 Jul 2018 06:51:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   2990
Md5:    f3fa18f67df1759e3aeb737d096c4792
Sha1:   c1a52b06eb7a805a9347e726ef8890bfccf81ff0
Sha256: 786588a695b71263c82420fba3fa823d35d9f74ff1e11c4e39943258907131b9
                                        
                                            GET /images/shixuntong.jpg HTTP/1.1 
Host: www.mai-te.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mai-te.com/

                                         
                                         172.107.30.241
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx/1.13.3
Date: Fri, 13 Jul 2018 06:51:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   16558
Md5:    204582d78a2effc23185accc39d17426
Sha1:   b1503c1481186b474fe9452dd81955e71518132f
Sha256: 671becb3f8cc68b7891dd5f13c0c63d8234be323f500b5d9cd71a164da1615ee
                                        
                                            GET /images/bian_k_01.jpg HTTP/1.1 
Host: www.mai-te.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mai-te.com/

                                         
                                         172.107.30.241
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx/1.13.3
Date: Fri, 13 Jul 2018 06:51:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   506
Md5:    b3269da8e771ab1a18693b3648b25252
Sha1:   7043bcaa9d7a6ba08cb0ad72ef9500b2cbc87812
Sha256: dc3de34d2a08b29522af7124a561f3f51651c649a52f8c6c1eef0b501b5c0b0b
                                        
                                            GET /images/bian_k_03.jpg HTTP/1.1 
Host: www.mai-te.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mai-te.com/

                                         
                                         172.107.30.241
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx/1.13.3
Date: Fri, 13 Jul 2018 06:51:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   517
Md5:    ad0ae5570a69553a337c900d5fb40a06
Sha1:   02219cb44d9286ba4cd0f41eb01ac41c2b7db8fa
Sha256: 11993a88fa3289b0dac93618969a37e6b29d42e315c75afb14f850e7fdfc7c86
                                        
                                            GET /images/lan.gif HTTP/1.1 
Host: www.mai-te.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mai-te.com/

                                         
                                         172.107.30.241
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx/1.13.3
Date: Fri, 13 Jul 2018 06:51:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 11 x 11
Size:   59
Md5:    0ebf56006ebf38edf71b41e2d9914bd4
Sha1:   c3d19a8e2d7bdb8e16cf4e916ce0c1371c78b655
Sha256: 2312e5e59031b34fcdd33a1341478eb31456ff594f94a37298c064949f51a254
                                        
                                            GET /images/tubiao.jpg HTTP/1.1 
Host: www.mai-te.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mai-te.com/

                                         
                                         172.107.30.241
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx/1.13.3
Date: Fri, 13 Jul 2018 06:51:57 GMT
Transfer-Encoding: chunked
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   424
Md5:    5788b9e2af0ac09d1225b5ea0b080f1b
Sha1:   83e31677f4063e3da24635ad017408ef0071ddc5
Sha256: d1ac94b5b5f99a1d66074570702c290b2537a02c9d4593d618d518a21cd962d8
                                        
                                            GET /images/beike.jpg HTTP/1.1 
Host: www.mai-te.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mai-te.com/

                                         
                                         172.107.30.241
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx/1.13.3
Date: Fri, 13 Jul 2018 06:51:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   17058
Md5:    83ae06a34702f7d29b25d1123b3c52f6
Sha1:   97839e5f6176c2bd67e936a7a9d5eea7d846e52c
Sha256: b6707b532f8469111b9a37b7634abe68a6b739717ffe98dbe5fb948da245cf31
                                        
                                            GET /images/shousai_b.gif HTTP/1.1 
Host: www.mai-te.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mai-te.com/

                                         
                                         172.107.30.241
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx/1.13.3
Date: Fri, 13 Jul 2018 06:51:57 GMT
Transfer-Encoding: chunked
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 31 x 13
Size:   119
Md5:    3c6e2eb29c51d38834f30935c81013b3
Sha1:   88220c6e3a798f0e0bcc8c8c348fd98695014b1c
Sha256: 7eafc339d5fd0e364c5478ed230c2dde47c90f6515843d0a32fcdb1dae1578cf
                                        
                                            GET /jump/js/js/new/2017/11/t11.js HTTP/1.1 
Host: www.mai-te.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mai-te.com/

                                         
                                         172.107.30.241
HTTP/1.1 200 OK
Content-Type: application/x-javascript;charset=utf-8
                                        
Server: nginx/1.13.3
Date: Fri, 13 Jul 2018 06:51:57 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   414
Md5:    d757030143ff0b4918da94a597952a0d
Sha1:   6eda2ffe7a1526f25fe794c2d6ee5756236e481e
Sha256: 81254ad055bfaf04744d13f2fc1e1655c0a5668a4201da10aae56a08bcd79d38

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/xinxiang.jpg HTTP/1.1 
Host: www.mai-te.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mai-te.com/

                                         
                                         172.107.30.241
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx/1.13.3
Date: Fri, 13 Jul 2018 06:51:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   17787
Md5:    1fcf0de53d5ee1564f79de2cde531efc
Sha1:   50dff7fe4f4dfa866ceee93265503d15b1154b40
Sha256: 8e39af9454849d6cd1b26c55aa36fe8d910a63b5a225dc3b56229817486dde17
                                        
                                            GET /images/jiaoyu.jpg HTTP/1.1 
Host: www.mai-te.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mai-te.com/

                                         
                                         172.107.30.241
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx/1.13.3
Date: Fri, 13 Jul 2018 06:51:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   18642
Md5:    318e09bcc809a6026873e1016d0bc5a0
Sha1:   2c0a2a7ab83f940ca131573fc97b72180a78b88b
Sha256: 8fe756711ae88a2ef04270788f7d18db9e9ad655ee4f76060bd5bd92a060baed
                                        
                                            GET /push.js HTTP/1.1 
Host: push.zhanzhang.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mai-te.com/

                                         
                                         111.206.37.189
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Content-Encoding: gzip
Content-Length: 227
Date: Thu, 12 Jul 2018 22:49:27 GMT
Etag: "4078519197"
Expires: Fri, 12 Jul 2019 22:49:27 GMT
Last-Modified: Wed, 25 Nov 2015 07:43:54 GMT
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: apache
Set-Cookie: BAIDUID=AEF162D1B0F1DEA7EBAC85AFF52AFB4F:FG=1; max-age=31536000; expires=Fri, 12-Jul-19 22:49:27 GMT; domain=.baidu.com; path=/; version=1
Vary: Accept-Encoding


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   227
Md5:    e548b6ce15bb616c2bfba36e9cfbf307
Sha1:   a348285d9928a6548a57569f1fb9d62bdd747f33
Sha256: 7be3e4c53cc47ce5cfa40a5e79b42848a90acee0d7ff71f10ac31a49c81aead5
                                        
                                            POST /gsorganizationvalsha2g2 HTTP/1.1 
Host: ocsp2.globalsign.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 111
Content-Type: application/ocsp-request

                                         
                                         104.18.20.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 12 Jul 2018 22:49:28 GMT
Content-Length: 1570
Connection: keep-alive
Set-Cookie: __cfduid=d37faeb6798ced1c4bdff646537ef7b161531435768; expires=Fri, 12-Jul-19 22:49:28 GMT; path=/; domain=.globalsign.com; HttpOnly
Last-Modified: Thu, 12 Jul 2018 20:01:37 GMT
Expires: Mon, 16 Jul 2018 20:01:37 GMT
Etag: "bad2b3e5df72e0dea44c9ad771dbbfcfdbb386a6"
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4397102ea1b042a9-OSL


--- Additional Info ---
Magic:  data
Size:   1570
Md5:    4d7f30afa62169570d3d9892e19a3d0d
Sha1:   bad2b3e5df72e0dea44c9ad771dbbfcfdbb386a6
Sha256: 17b9e847a58f70237c57682ccc315aff6db0b5c67a3a94351773eca07060f4e3
                                        
                                            GET /jump/js/js/new/to.js HTTP/1.1 
Host: www.mai-te.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mai-te.com/

                                         
                                         172.107.30.241
HTTP/1.1 200 OK
Content-Type: application/x-javascript;charset=utf-8
                                        
Server: nginx/1.13.3
Date: Fri, 13 Jul 2018 06:51:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   897
Md5:    8b253ba88e9257f145f9a229e2502071
Sha1:   a1149eea734eda08e3e2d35f3c566bda695032d3
Sha256: ed17ce8540b70370a57ac03816463fb158d8a18a3f10af2c708070a271c97552

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /s.gif?l=http://www.mai-te.com/ HTTP/1.1 
Host: api.share.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mai-te.com/
Cookie: BAIDUID=AEF162D1B0F1DEA7EBAC85AFF52AFB4F:FG=1

                                         
                                         111.206.37.189
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: no-cache, no-store, must-revalidate
Date: Thu, 12 Jul 2018 22:49:28 GMT
Expires: 0
Pragma: no-cache
Server: apache
Content-Length: 0


--- Additional Info ---
                                        
                                            GET /hm.js?cfa9a3084b1db4fc773f36af8ee5ff3f HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mai-te.com/

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 9156
Date: Thu, 12 Jul 2018 22:49:28 GMT
Etag: cf48c0ee97e4f96e312157f7b7d9cd3b
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=FB982DA77C87955D; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max speed
Size:   9156
Md5:    a4151d9adf1163e77824f82125820f2d
Sha1:   bf935dd583ba9c6cb5f48b2091df412b17256ba0
Sha256: 18679962d630fa9912d01ee87959df21bafc20a98cb99b2a0f940121f8f44aa4
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.mai-te.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: Hm_lvt_cfa9a3084b1db4fc773f36af8ee5ff3f=1531435770; Hm_lpvt_cfa9a3084b1db4fc773f36af8ee5ff3f=1531435770

                                         
                                         172.107.30.241
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx/1.13.3
Date: Fri, 13 Jul 2018 06:51:59 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1440
Md5:    c2ab5aaca66da4b935a30bd86fb137ef
Sha1:   7f5680cad30d2e9f84a5dc2610acc9c14dcf4c93
Sha256: af3d95b215df24e6776fcfc511b2f4ab1f4824da61c62c21cb7d99748636d5f8
                                        
                                            GET /jump/html/js/new/to.php?url=JUU0JUI4JTg3JUU1JThEJTlBbWFuYmV0eCVFNCVCOCU4QiVFOCVCRCVCRCVFOCU4MCU4MSVFNyU4OSU4OCVFNiU5QyVBQy0lRTQlQjglODclRTUlOEQlOUFtYW5iZXR4JUU1JUFFJTk4JUU3JUJEJTkxJUU3JTk5JUJCJUU1JUJEJTk1LSVFNCVCOCU4NyVFNSU4RCU5QWFwcCVFOCU4QiVCOSVFNiU5RSU5QyVFNyU4OSU4OA== HTTP/1.1 
Host: www.mai-te.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mai-te.com/
Cookie: Hm_lvt_cfa9a3084b1db4fc773f36af8ee5ff3f=1531435770; Hm_lpvt_cfa9a3084b1db4fc773f36af8ee5ff3f=1531435770

                                         
                                         172.107.30.241
HTTP/1.1 200 OK
Content-Type: text/html;charset=utf-8
                                        
Server: nginx/1.13.3
Date: Fri, 13 Jul 2018 06:52:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   80
Md5:    0af76265923ea738591f0528c5e13709
Sha1:   55783c884c49fa3d8fd85af95adbe61e91c99cf5
Sha256: 28c50afd376cc8b948ac027195c91ac711bd35f2322412cbffa7ade11788c75e
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.mai-te.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: Hm_lvt_cfa9a3084b1db4fc773f36af8ee5ff3f=1531435770; Hm_lpvt_cfa9a3084b1db4fc773f36af8ee5ff3f=1531435770

                                         
                                         172.107.30.241
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx/1.13.3
Date: Fri, 13 Jul 2018 06:52:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1440
Md5:    c2ab5aaca66da4b935a30bd86fb137ef
Sha1:   7f5680cad30d2e9f84a5dc2610acc9c14dcf4c93
Sha256: af3d95b215df24e6776fcfc511b2f4ab1f4824da61c62c21cb7d99748636d5f8
                                        
                                            GET /jump/html/to/wanbo.html HTTP/1.1 
Host: www.mai-te.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mai-te.com/jump/html/js/new/to.php?url=JUU0JUI4JTg3JUU1JThEJTlBbWFuYmV0eCVFNCVCOCU4QiVFOCVCRCVCRCVFOCU4MCU4MSVFNyU4OSU4OCVFNiU5QyVBQy0lRTQlQjglODclRTUlOEQlOUFtYW5iZXR4JUU1JUFFJTk4JUU3JUJEJTkxJUU3JTk5JUJCJUU1JUJEJTk1LSVFNCVCOCU4NyVFNSU4RCU5QWFwcCVFOCU4QiVCOSVFNiU5RSU5QyVFNyU4OSU4OA==
Cookie: Hm_lvt_cfa9a3084b1db4fc773f36af8ee5ff3f=1531435770; Hm_lpvt_cfa9a3084b1db4fc773f36af8ee5ff3f=1531435770

                                         
                                         172.107.30.241
HTTP/1.1 200 OK
Content-Type: text/html;charset=utf-8
                                        
Server: nginx/1.13.3
Date: Fri, 13 Jul 2018 06:52:01 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   222
Md5:    c8856564cd1eba1bba3c4ea333b48e55
Sha1:   4d3e7a16a294f7a771dc23aefbde0f33183dd9c0
Sha256: 1154e760a227c5a98200064939ebb642bd9c6e7e17fa0fee8821718fe39d3406

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /?code=21370 HTTP/1.1 
Host: cn.man595.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mai-te.com/jump/html/to/wanbo.html

                                         
                                         104.31.95.146
HTTP/1.1 301 Moved Permanently
                                        
Date: Thu, 12 Jul 2018 22:49:32 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 12 Jul 2018 23:49:32 GMT
Location: https://cn.man595.com/?code=21370
Server: cloudflare
CF-RAY: 43971048c4ee4291-OSL


--- Additional Info ---
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.25
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Wed, 11 Jul 2018 08:18:14 GMT
Etag: 2CD0B527A14C55490326411F7A62EFD2AB38C58F
X-OCSP-Responder-ID: rmdccaocsp32
Content-Length: 279
Cache-Control: public, no-transform, must-revalidate, max-age=465519
Expires: Wed, 18 Jul 2018 08:08:11 GMT
Date: Thu, 12 Jul 2018 22:49:32 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   279
Md5:    42e0e6ee11e850732a199b80d5cecd3b
Sha1:   2cd0b527a14c55490326411f7a62efd2ab38c58f
Sha256: 5d5e9d533a1ebb9b107eed7f4a269255d893d20f27823c31bfe5455e711d17dc
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.25
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Sun, 08 Jul 2018 22:51:21 GMT
Etag: 359C47A45D92FCC5113BD8BAC5FF65AAAFA4E0DD
X-OCSP-Responder-ID: rmdccaocsp32
Content-Length: 312
Cache-Control: public, no-transform, must-revalidate, max-age=258737
Expires: Sun, 15 Jul 2018 22:41:49 GMT
Date: Thu, 12 Jul 2018 22:49:32 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   312
Md5:    6dc1319a4a3886bb01137ca489903e8e
Sha1:   359c47a45d92fcc5113bd8bac5ff65aaafa4e0dd
Sha256: cda32a7478d84dbe13d6b1cc4049bced9cfcc24a58dd3e9cfb0290d6d1e1b28c
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.mai-te.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: Hm_lvt_cfa9a3084b1db4fc773f36af8ee5ff3f=1531435770; Hm_lpvt_cfa9a3084b1db4fc773f36af8ee5ff3f=1531435770

                                         
                                         172.107.30.241
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx/1.13.3
Date: Fri, 13 Jul 2018 06:52:02 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1440
Md5:    c2ab5aaca66da4b935a30bd86fb137ef
Sha1:   7f5680cad30d2e9f84a5dc2610acc9c14dcf4c93
Sha256: af3d95b215df24e6776fcfc511b2f4ab1f4824da61c62c21cb7d99748636d5f8
                                        
                                            GET /?code=21370 HTTP/1.1 
Host: cn.man595.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mai-te.com/jump/html/to/wanbo.html

                                         
                                         104.31.95.146
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html
                                        
Date: Thu, 12 Jul 2018 22:49:33 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=d6b0f24120d6a23b64d2616229e8942f51531435772; expires=Fri, 12-Jul-19 22:49:32 GMT; path=/; domain=.man595.com; HttpOnly; Secure ccd11=deleted; expires=Wed, 12-Jul-2017 22:49:32 GMT; path=/; domain=man595.com vcd11=deleted; expires=Wed, 12-Jul-2017 22:49:32 GMT; path=/; domain=man595.com PHPSESSID=kg3l3a5v37h4kgq2bvvk3ca5i0; path=/
X-Powered-By: PHP/5.3.3
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Location: https://cn.man595.com/home/register?code=21370
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4397104a0fb04255-OSL


--- Additional Info ---
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.mai-te.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: Hm_lvt_cfa9a3084b1db4fc773f36af8ee5ff3f=1531435770; Hm_lpvt_cfa9a3084b1db4fc773f36af8ee5ff3f=1531435770

                                         
                                         172.107.30.241
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx/1.13.3
Date: Fri, 13 Jul 2018 06:52:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1440
Md5:    c2ab5aaca66da4b935a30bd86fb137ef
Sha1:   7f5680cad30d2e9f84a5dc2610acc9c14dcf4c93
Sha256: af3d95b215df24e6776fcfc511b2f4ab1f4824da61c62c21cb7d99748636d5f8
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.mai-te.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: Hm_lvt_cfa9a3084b1db4fc773f36af8ee5ff3f=1531435770; Hm_lpvt_cfa9a3084b1db4fc773f36af8ee5ff3f=1531435770

                                         
                                         172.107.30.241
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx/1.13.3
Date: Fri, 13 Jul 2018 06:52:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1440
Md5:    c2ab5aaca66da4b935a30bd86fb137ef
Sha1:   7f5680cad30d2e9f84a5dc2610acc9c14dcf4c93
Sha256: af3d95b215df24e6776fcfc511b2f4ab1f4824da61c62c21cb7d99748636d5f8
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.mai-te.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: Hm_lvt_cfa9a3084b1db4fc773f36af8ee5ff3f=1531435770; Hm_lpvt_cfa9a3084b1db4fc773f36af8ee5ff3f=1531435770

                                         
                                         172.107.30.241
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx/1.13.3
Date: Fri, 13 Jul 2018 06:52:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1440
Md5:    c2ab5aaca66da4b935a30bd86fb137ef
Sha1:   7f5680cad30d2e9f84a5dc2610acc9c14dcf4c93
Sha256: af3d95b215df24e6776fcfc511b2f4ab1f4824da61c62c21cb7d99748636d5f8
                                        
                                            GET /home/register?code=21370 HTTP/1.1 
Host: cn.man595.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mai-te.com/jump/html/to/wanbo.html
Cookie: __cfduid=d6b0f24120d6a23b64d2616229e8942f51531435772; PHPSESSID=kg3l3a5v37h4kgq2bvvk3ca5i0

                                         
                                         104.31.95.146
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Date: Thu, 12 Jul 2018 22:49:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.3.3
Set-Cookie: ccd11=deleted; expires=Wed, 12-Jul-2017 22:49:33 GMT; path=/; domain=man595.com vcd11=deleted; expires=Wed, 12-Jul-2017 22:49:33 GMT; path=/; domain=man595.com _code_cookie=21370; expires=Fri, 13-Jul-2018 22:49:34 GMT; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 43971052dbea4255-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   8109
Md5:    cacb915c7506c05d4414b5662ef45bb8
Sha1:   551653ece24f16f1d05f3b03b11591005c009300
Sha256: e9d70fda53a6debcbbaec59ce5e8d4d5ff3fcdb5591391e73b9a95681f76b637
                                        
                                            GET /static/style/main.css?0617 HTTP/1.1 
Host: cn.man595.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.man595.com/home/register?code=21370
Cookie: __cfduid=d6b0f24120d6a23b64d2616229e8942f51531435772; PHPSESSID=kg3l3a5v37h4kgq2bvvk3ca5i0; _code_cookie=21370

                                         
                                         104.31.95.146
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 12 Jul 2018 22:49:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 03 Jul 2018 11:47:39 GMT
Etag: W/"5b3b625b-4647"
Content-Encoding: gzip
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Fri, 13 Jul 2018 02:49:34 GMT
Cache-Control: public, max-age=14400
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 43971057ee424255-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5077
Md5:    193769d7e8b8340a4ecfcad5ac908b15
Sha1:   11d3a4153a33644e68975b48a74ef4112cb17226
Sha256: 732ab310f09cc5fe0bb1ebca3d841a63ffe39158051dcf8c42a8a62227ff1f19
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 116
Content-Type: application/ocsp-request

                                         
                                         91.135.34.25
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Mon, 09 Jul 2018 19:51:05 GMT
Etag: BD732DE9884581FCB2CAB4D92A4755A2058ECBBB
X-OCSP-Responder-ID: rmdccaocsp10
Content-Length: 472
Cache-Control: public, no-transform, must-revalidate, max-age=334239
Expires: Mon, 16 Jul 2018 19:40:13 GMT
Date: Thu, 12 Jul 2018 22:49:34 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   472
Md5:    ae9d75f044d4b573c642ca81c97004f5
Sha1:   bd732de9884581fcb2cab4d92a4755a2058ecbbb
Sha256: fbd6e2a199d492e8e9a0f938b030ed483316455f0d8eb8df77d746f19e4e58a0
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.25
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Sun, 08 Jul 2018 22:51:21 GMT
Etag: 9D1C308215AE79C2338BC18EB5A3017CB39ABB9F
X-OCSP-Responder-ID: rmdccaocsp31
Content-Length: 727
Cache-Control: public, no-transform, must-revalidate, max-age=258660
Expires: Sun, 15 Jul 2018 22:40:34 GMT
Date: Thu, 12 Jul 2018 22:49:34 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   727
Md5:    e5bd106319bab5e83abe8dc383103c8d
Sha1:   9d1c308215ae79c2338bc18eb5a3017cb39abb9f
Sha256: 79f9c85b6d34b706b6dc84e4ec4c2fe8646e986b1042c356c9e7e576c02f3a0b
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.18
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Sun, 08 Jul 2018 22:51:21 GMT
Etag: A0D281AAC018C84B67C7DC52834E6CFE90BCF91B
X-OCSP-Responder-ID: rmdccaocsp31
Content-Length: 471
Cache-Control: public, no-transform, must-revalidate, max-age=258687
Expires: Sun, 15 Jul 2018 22:41:01 GMT
Date: Thu, 12 Jul 2018 22:49:34 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   471
Md5:    9a2663fc385d6a7750361832372ac408
Sha1:   a0d281aac018c84b67c7dc52834e6cfe90bcf91b
Sha256: 5f456e82897e2da8ae64e00ba4bf4b794b45b309857417058118d936ed5148bd
                                        
                                            GET /static/style/css.css?0702 HTTP/1.1 
Host: cn.man595.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.man595.com/home/register?code=21370
Cookie: __cfduid=d6b0f24120d6a23b64d2616229e8942f51531435772; PHPSESSID=kg3l3a5v37h4kgq2bvvk3ca5i0; _code_cookie=21370

                                         
                                         104.31.95.146
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 12 Jul 2018 22:49:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 09 Jul 2018 12:04:05 GMT
Etag: W/"5b434f35-1d02e"
Content-Encoding: gzip
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Fri, 13 Jul 2018 02:49:34 GMT
Cache-Control: public, max-age=14400
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 439710584e6c427f-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   23431
Md5:    fce25a88f8babb79beaee29651df1128
Sha1:   bdfebd7e733860e5187c59aea3552171cc1a8a59
Sha256: 5722ead9df119ddd5bd85fcf2f0fc0ad03ea1742c8d86f9c08ada10a68a86f75
                                        
                                            GET /static/images/nav/nav_pic_games_wc.png HTTP/1.1 
Host: cn.man595.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.man595.com/home/register?code=21370
Cookie: __cfduid=d6b0f24120d6a23b64d2616229e8942f51531435772; PHPSESSID=kg3l3a5v37h4kgq2bvvk3ca5i0; _code_cookie=21370

                                         
                                         104.31.95.146
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 12 Jul 2018 22:49:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 30 May 2018 07:46:20 GMT
Etag: W/"5b0e56cc-3c29"
Content-Encoding: gzip
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Fri, 13 Jul 2018 02:49:34 GMT
Cache-Control: public, max-age=14400
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 43971058dfa742bb-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   15429
Md5:    e2bbdb8b5d4c99d0f73ba58446e7e3f8
Sha1:   094f38607e857241260b90fb1f46a699ea97037a
Sha256: 6ec712618a43d9bc753586faaa25dd87ca3321a0da65d543016b41fffcd0bb9b
                                        
                                            GET /static/images/nav/nav_pic_live_casino_wc.png HTTP/1.1 
Host: cn.man595.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.man595.com/home/register?code=21370
Cookie: __cfduid=d6b0f24120d6a23b64d2616229e8942f51531435772; PHPSESSID=kg3l3a5v37h4kgq2bvvk3ca5i0; _code_cookie=21370

                                         
                                         104.31.95.146
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 12 Jul 2018 22:49:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 23 May 2018 03:35:38 GMT
Etag: W/"5b04e18a-5be4"
Content-Encoding: gzip
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Fri, 13 Jul 2018 02:49:34 GMT
Cache-Control: public, max-age=14400
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 43971059194f426d-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   23311
Md5:    2ced102f670c3919194f42d11fefb190
Sha1:   aca835efe641c2e1dc60c5a6f258919e0815ddf9
Sha256: cb7b14eb59ea4ce206869bab2e6f93f34e0ff3df76c6489180d71bcb345ed03e
                                        
                                            GET /static/images/nav/nav_pic_sports_wc.png HTTP/1.1 
Host: cn.man595.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.man595.com/home/register?code=21370
Cookie: __cfduid=d6b0f24120d6a23b64d2616229e8942f51531435772; PHPSESSID=kg3l3a5v37h4kgq2bvvk3ca5i0; _code_cookie=21370

                                         
                                         104.31.95.146
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 12 Jul 2018 22:49:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 23 May 2018 03:39:44 GMT
Etag: W/"5b04e280-5b95"
Content-Encoding: gzip
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Fri, 13 Jul 2018 02:49:34 GMT
Cache-Control: public, max-age=14400
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 439710591d854261-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   23226
Md5:    c74e99e3d9a9c30f3a7b89dac1e582c5
Sha1:   a4f2552141b4a33f3ea33bec26aae0822af19bbc
Sha256: 8c544fa74ec57f66e9a8bf3c1804866464e47ba70126b8f145eecc72ea3da999
                                        
                                            GET /static/images/nav/nav_pic_keno_wc.png HTTP/1.1 
Host: cn.man595.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.man595.com/home/register?code=21370
Cookie: __cfduid=d6b0f24120d6a23b64d2616229e8942f51531435772; PHPSESSID=kg3l3a5v37h4kgq2bvvk3ca5i0; _code_cookie=21370

                                         
                                         104.31.95.146
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 12 Jul 2018 22:49:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 30 May 2018 07:46:32 GMT
Etag: W/"5b0e56d8-75b9"
Content-Encoding: gzip
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Fri, 13 Jul 2018 02:49:34 GMT
Cache-Control: public, max-age=14400
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4397105938aa42b5-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   30165
Md5:    ec6b8d16688b918ee81617d8d33ba136
Sha1:   3e3f7afe9399898bd4c4cd62e8b6465b561f77c8
Sha256: b9090f51345ece6256eaaa8a3a7a1e635dec8234622d62ae7b3b1474a4b42b13
                                        
                                            GET /js/jquery/jquery.min.js HTTP/1.1 
Host: e92340324f2588ba.g-cdn-s.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.man595.com/home/register?code=21370

                                         
                                         104.20.15.101
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 12 Jul 2018 22:49:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=da5b2b39ecefea8bcbda41349e3adfbf91531435774; expires=Fri, 12-Jul-19 22:49:34 GMT; path=/; domain=.g-cdn-s.com; HttpOnly; Secure
Last-Modified: Thu, 26 Feb 2015 02:35:17 GMT
Etag: W/"54ee8665-176bb"
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Fri, 13 Jul 2018 06:49:34 GMT
Cache-Control: public, max-age=28800
X-Content-Type-Options: nosniff
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 439710590b4c42c1-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   33353
Md5:    681f5acb09e41b111a796c7a4eddfe73
Sha1:   8793aadb0e45567d84f2c4bd03e9ff49e615e3cc
Sha256: d9a28a18def7d05077f968ad00a30534a017a097134f6da9c924862d93aa62ca
                                        
                                            GET /css/base.css HTTP/1.1 
Host: e92340324f2588ba.g-cdn-s.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.man595.com/home/register?code=21370

                                         
                                         104.20.15.101
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 12 Jul 2018 22:49:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=d5ac9a970ebe8f754cb2ff5de8bbf70a51531435774; expires=Fri, 12-Jul-19 22:49:34 GMT; path=/; domain=.g-cdn-s.com; HttpOnly; Secure
Cf-Bgj: minify
Cf-Polished: origSize=124151
Etag: W/"5b457eb2-1e4f7"
Last-Modified: Wed, 11 Jul 2018 03:51:14 GMT
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Fri, 13 Jul 2018 06:49:34 GMT
Cache-Control: public, max-age=28800
X-Content-Type-Options: nosniff
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 43971058b9e8428b-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   19158
Md5:    83e74b97ac64569e4e7928c236577aaa
Sha1:   c345e5a1b605b1b3303534ad4e139b6abdfd145f
Sha256: 1ec91a56a3f15179e46f622c693cb9966ea9b70961cc8662b017c722fad572f8
                                        
                                            GET /static/images/header_logo_wc.png HTTP/1.1 
Host: e92340324f2588ba.g-cdn-s.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.man595.com/home/register?code=21370

                                         
                                         104.20.15.101
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 12 Jul 2018 22:49:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=df7853e0cb97f9768b805311c864143701531435775; expires=Fri, 12-Jul-19 22:49:35 GMT; path=/; domain=.g-cdn-s.com; HttpOnly; Secure
Cf-Bgj: imgq:100
Cf-Polished: pngoptimizer, origSize=11356
Etag: W/"5b04ec44-2c5c"
Last-Modified: Wed, 23 May 2018 04:21:24 GMT
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Fri, 13 Jul 2018 06:49:35 GMT
Cache-Control: public, max-age=28800
X-Content-Type-Options: nosniff
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 43971058fa17428b-OSL


--- Additional Info ---
Magic:  PNG image, 183 x 50, 8-bit/color RGBA, non-interlaced
Size:   9425
Md5:    08602efaed118c5209efa346193fd536
Sha1:   7fb6b3ca55092334ea3091bde57dc2e4bdd45eb9
Sha256: 7864d936e627ff26acafcd282d2c5fb2147ca3e76f8af355f8756e396cb7318a
                                        
                                            GET /util/messenger.css HTTP/1.1 
Host: e92340324f2588ba.g-cdn-s.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.man595.com/home/register?code=21370

                                         
                                         104.20.15.101
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 12 Jul 2018 22:49:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=d962f8b68a74153274e23682c868592841531435775; expires=Fri, 12-Jul-19 22:49:35 GMT; path=/; domain=.g-cdn-s.com; HttpOnly; Secure
Cf-Bgj: minify
Cf-Polished: origSize=8889
Etag: W/"5860edb9-22b9"
Last-Modified: Mon, 26 Dec 2016 10:15:21 GMT
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Fri, 13 Jul 2018 06:49:35 GMT
Cache-Control: public, max-age=28800
X-Content-Type-Options: nosniff
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 439710590eb5427f-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1567
Md5:    f4f114058266727e353fbc5c45ece36a
Sha1:   dd70d7cf1c7b20e1d2fcb425a1cc86a9dd43ab4e
Sha256: 5486e3f375d90fe95b6243eb642ee6054498e9fb13bd166b573a8077d2b80979
                                        
                                            GET /service/verifycode HTTP/1.1 
Host: cn.man595.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.man595.com/home/register?code=21370
Cookie: __cfduid=d6b0f24120d6a23b64d2616229e8942f51531435772; PHPSESSID=kg3l3a5v37h4kgq2bvvk3ca5i0; _code_cookie=21370

                                         
                                         104.31.95.146
HTTP/1.1 200 OK
Content-Type: image/jpeg;charset=utf-8
                                        
Date: Thu, 12 Jul 2018 22:49:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: JSESSIONID=CEB1ECB0F4DD4DDE91F5B9C736B70A93; Path=/; HttpOnly _vcid=CEB1ECB0F4DD4DDE91F5B9C736B70A93; Domain=.man595.com; Path=/; HttpOnly
Pragma: no-cache
Cache-Control: no-store
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Encoding: gzip
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 439710584e6e4255-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   973
Md5:    1c018fa2045106952bb7d22198239bfc
Sha1:   d43e4823538dee26544ed62426fb40648a91b045
Sha256: ce6e0e2a79c131a5d736bfdea97303f0b5ce0e9adb8d377c41e36efc26442ffc
                                        
                                            GET /static/images/header_bg_x.png HTTP/1.1 
Host: cn.man595.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.man595.com/static/style/main.css?0617
Cookie: __cfduid=d6b0f24120d6a23b64d2616229e8942f51531435772; PHPSESSID=kg3l3a5v37h4kgq2bvvk3ca5i0; _code_cookie=21370; JSESSIONID=CEB1ECB0F4DD4DDE91F5B9C736B70A93; _vcid=CEB1ECB0F4DD4DDE91F5B9C736B70A93

                                         
                                         104.31.95.146
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 12 Jul 2018 22:49:35 GMT
Content-Length: 164
Connection: keep-alive
Last-Modified: Mon, 18 Dec 2017 10:09:38 GMT
Etag: "5a3793e2-a4"
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Fri, 13 Jul 2018 02:49:35 GMT
Cache-Control: public, max-age=14400
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4397105aaf81427f-OSL


--- Additional Info ---
Magic:  PNG image, 2 x 70, 8-bit/color RGB, non-interlaced
Size:   164
Md5:    43af13f6484c73318bcfda590649dd42
Sha1:   211c189280a34424477a72b6cdf9a218ae1e5e3f
Sha256: 9904bee1c1b7199a3731800ac06cf6c338bc7ea2afd1d0277678ef5597db98e3
                                        
                                            GET /static/images/btn_index.png HTTP/1.1 
Host: cn.man595.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.man595.com/static/style/main.css?0617
Cookie: __cfduid=d6b0f24120d6a23b64d2616229e8942f51531435772; PHPSESSID=kg3l3a5v37h4kgq2bvvk3ca5i0; _code_cookie=21370; JSESSIONID=CEB1ECB0F4DD4DDE91F5B9C736B70A93; _vcid=CEB1ECB0F4DD4DDE91F5B9C736B70A93

                                         
                                         104.31.95.146
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 12 Jul 2018 22:49:35 GMT
Content-Length: 909
Connection: keep-alive
Last-Modified: Mon, 18 Dec 2017 10:09:37 GMT
Etag: "5a3793e1-38d"
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Fri, 13 Jul 2018 02:49:35 GMT
Cache-Control: public, max-age=14400
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4397105aa87e42bb-OSL


--- Additional Info ---
Magic:  PNG image, 66 x 86, 8-bit colormap, non-interlaced
Size:   909
Md5:    21b4b9e4613c9ef3ff45dc24ca152506
Sha1:   5db372bd0f7067719717571a0bba5551d6cf62f0
Sha256: 5ab6110e58a518683e42336383457358c87c615cc15a476dbad0b846c98d6ea6
                                        
                                            GET /static/images/icons.png HTTP/1.1 
Host: cn.man595.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.man595.com/static/style/main.css?0617
Cookie: __cfduid=d6b0f24120d6a23b64d2616229e8942f51531435772; PHPSESSID=kg3l3a5v37h4kgq2bvvk3ca5i0; _code_cookie=21370; JSESSIONID=CEB1ECB0F4DD4DDE91F5B9C736B70A93; _vcid=CEB1ECB0F4DD4DDE91F5B9C736B70A93

                                         
                                         104.31.95.146
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 12 Jul 2018 22:49:35 GMT
Content-Length: 960
Connection: keep-alive
Last-Modified: Mon, 18 Dec 2017 10:09:38 GMT
Etag: "5a3793e2-3c0"
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Fri, 13 Jul 2018 02:49:35 GMT
Cache-Control: public, max-age=14400
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4397105aaa70426d-OSL


--- Additional Info ---
Magic:  PNG image, 39 x 300, 8-bit gray+alpha, non-interlaced
Size:   960
Md5:    f2c2824287602d8d5afbed7cd3528234
Sha1:   f2e86f1af588ca460953f888946369a24c48e668
Sha256: d932445d63c658abcd16a06d0230a23cacd0667640b724fbaf14e88dbd60d715
                                        
                                            GET /static/images/nav/nav_icon_wc.png HTTP/1.1 
Host: cn.man595.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.man595.com/static/style/main.css?0617
Cookie: __cfduid=d6b0f24120d6a23b64d2616229e8942f51531435772; PHPSESSID=kg3l3a5v37h4kgq2bvvk3ca5i0; _code_cookie=21370; JSESSIONID=CEB1ECB0F4DD4DDE91F5B9C736B70A93; _vcid=CEB1ECB0F4DD4DDE91F5B9C736B70A93

                                         
                                         104.31.95.146
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 12 Jul 2018 22:49:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 14 Jun 2018 14:15:48 GMT
Etag: W/"5b227894-1377"
Content-Encoding: gzip
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Fri, 13 Jul 2018 02:49:35 GMT
Cache-Control: public, max-age=14400
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4397105abe5c4261-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4755
Md5:    0b83ae621df56b936f4008ec9db75f3a
Sha1:   0084ee2d387269f803b32ee902355de868ab5aa8
Sha256: 0560506d40e7e4346a9c7270885c65129f498b7b9fb81c19e01a129f99707a0b
                                        
                                            GET /static/images/register_logo.png?3 HTTP/1.1 
Host: cn.man595.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.man595.com/static/style/main.css?0617
Cookie: __cfduid=d6b0f24120d6a23b64d2616229e8942f51531435772; PHPSESSID=kg3l3a5v37h4kgq2bvvk3ca5i0; _code_cookie=21370; JSESSIONID=CEB1ECB0F4DD4DDE91F5B9C736B70A93; _vcid=CEB1ECB0F4DD4DDE91F5B9C736B70A93

                                         
                                         104.31.95.146
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 12 Jul 2018 22:49:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 18 Jun 2018 11:58:26 GMT
Etag: W/"5b279e62-42cb"
Content-Encoding: gzip
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Fri, 13 Jul 2018 02:49:35 GMT
Cache-Control: public, max-age=14400
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4397105acfb04255-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   17120
Md5:    8c9a310580a2db90e625c71a76e9d6c5
Sha1:   4c737767ba1b7d24170400419af1311668e7e4e3
Sha256: 54042992884cf57084c17f6a0d26d04e1fe7530ead134a41ae0b4252f2267adf
                                        
                                            GET /static/images/footer_football.png HTTP/1.1 
Host: cn.man595.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.man595.com/static/style/main.css?0617
Cookie: __cfduid=d6b0f24120d6a23b64d2616229e8942f51531435772; PHPSESSID=kg3l3a5v37h4kgq2bvvk3ca5i0; _code_cookie=21370; JSESSIONID=CEB1ECB0F4DD4DDE91F5B9C736B70A93; _vcid=CEB1ECB0F4DD4DDE91F5B9C736B70A93

                                         
                                         104.31.95.146
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 12 Jul 2018 22:49:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 15 Jun 2018 10:39:29 GMT
Etag: W/"5b239761-2a4f"
Content-Encoding: gzip
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Fri, 13 Jul 2018 02:49:35 GMT
Cache-Control: public, max-age=14400
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4397105b1e974261-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   10859
Md5:    04c41a5b1b377ec6cac714cc1274439e
Sha1:   0a4567fbe1a7951443904ab8a8dd23c082c7c9b6
Sha256: 11f668ade9d06517d91e4b7e40526508cee87a8ffad5d93245899cf112665b6c
                                        
                                            GET /static/images/footer_supports.png?8 HTTP/1.1 
Host: cn.man595.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.man595.com/static/style/main.css?0617
Cookie: __cfduid=d6b0f24120d6a23b64d2616229e8942f51531435772; PHPSESSID=kg3l3a5v37h4kgq2bvvk3ca5i0; _code_cookie=21370; JSESSIONID=CEB1ECB0F4DD4DDE91F5B9C736B70A93; _vcid=CEB1ECB0F4DD4DDE91F5B9C736B70A93

                                         
                                         104.31.95.146
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 12 Jul 2018 22:49:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 26 Jun 2018 02:52:13 GMT
Etag: W/"5b31aa5d-c06"
Content-Encoding: gzip
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Fri, 13 Jul 2018 02:49:35 GMT
Cache-Control: public, max-age=14400
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4397105b1aa1426d-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3106
Md5:    d17e2a070e6cd94aa07dbc07b5d80633
Sha1:   01568a75275a7186474740aa093f387a45bcc78e
Sha256: 3c5b8280c201b7be709f394a528bb4c2b469f65f537424ea6be4c93f764278fc
                                        
                                            GET /static/images/common_spirits.png HTTP/1.1 
Host: cn.man595.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.man595.com/static/style/main.css?0617
Cookie: __cfduid=d6b0f24120d6a23b64d2616229e8942f51531435772; PHPSESSID=kg3l3a5v37h4kgq2bvvk3ca5i0; _code_cookie=21370; JSESSIONID=CEB1ECB0F4DD4DDE91F5B9C736B70A93; _vcid=CEB1ECB0F4DD4DDE91F5B9C736B70A93

                                         
                                         104.31.95.146
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 12 Jul 2018 22:49:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 18 Dec 2017 10:09:37 GMT
Etag: W/"5a3793e1-20cf"
Content-Encoding: gzip
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Fri, 13 Jul 2018 02:49:35 GMT
Cache-Control: public, max-age=14400
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4397105b1fbd427f-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   7735
Md5:    1b6df3fc8b17f34df6dd7a92cfd9aed2
Sha1:   ae4aca2f972487985aa5f2140f304dc1aa9d4925
Sha256: 1c3aa220a54db38e22180455eb3d6b36931fd87521966fa63f5b4d5ee51321fc
                                        
                                            GET /static/images/register_bg.jpg?0612 HTTP/1.1 
Host: cn.man595.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.man595.com/static/style/main.css?0617
Cookie: __cfduid=d6b0f24120d6a23b64d2616229e8942f51531435772; PHPSESSID=kg3l3a5v37h4kgq2bvvk3ca5i0; _code_cookie=21370; JSESSIONID=CEB1ECB0F4DD4DDE91F5B9C736B70A93; _vcid=CEB1ECB0F4DD4DDE91F5B9C736B70A93

                                         
                                         104.31.95.146
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 12 Jul 2018 22:49:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 18 Jun 2018 11:58:27 GMT
Etag: W/"5b279e63-1f471"
Content-Encoding: gzip
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Fri, 13 Jul 2018 02:49:35 GMT
Cache-Control: public, max-age=14400
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4397105ac98142b5-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   122900
Md5:    810905516abd8fda56573388af1c4868
Sha1:   cedb24382036e5a682926976952f1f52a94fdfa5
Sha256: 23cf78a75f39ac0c134361b0e0872a1895854004439c0880a4537e714ccec811
                                        
                                            GET /static/images/register_sponsor.png?1 HTTP/1.1 
Host: cn.man595.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.man595.com/static/style/main.css?0617
Cookie: __cfduid=d6b0f24120d6a23b64d2616229e8942f51531435772; PHPSESSID=kg3l3a5v37h4kgq2bvvk3ca5i0; _code_cookie=21370; JSESSIONID=CEB1ECB0F4DD4DDE91F5B9C736B70A93; _vcid=CEB1ECB0F4DD4DDE91F5B9C736B70A93

                                         
                                         104.31.95.146
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 12 Jul 2018 22:49:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 18 Jun 2018 11:58:27 GMT
Etag: W/"5b279e63-1c22b"
Content-Encoding: gzip
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Fri, 13 Jul 2018 02:49:35 GMT
Cache-Control: public, max-age=14400
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4397105b18cb42bb-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   115222
Md5:    a95bbf3ffec115c705963923ca764f85
Sha1:   e5ea14fce871cfe4050d7668bd7fdc6d8d75b7b1
Sha256: a81a8cb50152785e1dc8fc2d69f7f0aef318553377a18b392b15520b38ae8136
                                        
                                            GET /static/images/favicon.ico HTTP/1.1 
Host: e92340324f2588ba.g-cdn-s.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         104.20.15.101
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Date: Thu, 12 Jul 2018 22:49:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=d9bee5fdc54e3db86d15c7f374ea1c3c61531435774; expires=Fri, 12-Jul-19 22:49:34 GMT; path=/; domain=.g-cdn-s.com; HttpOnly; Secure
Last-Modified: Mon, 18 Dec 2017 10:09:38 GMT
Etag: W/"5a3793e2-47e"
CF-Cache-Status: REVALIDATED
Vary: Accept-Encoding
Expires: Fri, 13 Jul 2018 06:49:35 GMT
Cache-Control: public, max-age=28800
X-Content-Type-Options: nosniff
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4397105908154285-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   644
Md5:    69fcd2dc696b5e52215b43caa40a95c6
Sha1:   5c191d3d1d764031658d1966fb63557e71306974
Sha256: 7bf26d037c818081b8667e80b16a17d645d67b6c0139ea4815ade0a6fae65c7f
                                        
                                            POST /gsorganizationvalsha2g2 HTTP/1.1 
Host: ocsp2.globalsign.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 111
Content-Type: application/ocsp-request
Cookie: __cfduid=d37faeb6798ced1c4bdff646537ef7b161531435768

                                         
                                         104.18.20.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 12 Jul 2018 22:49:35 GMT
Content-Length: 1570
Connection: keep-alive
Last-Modified: Thu, 12 Jul 2018 19:30:16 GMT
Expires: Mon, 16 Jul 2018 19:30:16 GMT
Etag: "96ffc313faa9ff0f24abc06f9067dcf8f6f1347a"
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4397105f91d142a9-OSL


--- Additional Info ---
Magic:  data
Size:   1570
Md5:    b97d2bc1654267215d686519b03332b0
Sha1:   96ffc313faa9ff0f24abc06f9067dcf8f6f1347a
Sha256: dfd7d1fc4db9288a1da359796454ed21d8b97c3d39afcb959d12c7a54d6513cf
                                        
                                            GET /z_stat.php?id=1258652040&web_id=1258652040 HTTP/1.1 
Host: s95.cnzz.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.man595.com/home/register?code=21370

                                         
                                         211.138.122.126
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: Tengine
Content-Length: 11265
Connection: keep-alive
Date: Thu, 12 Jul 2018 21:28:22 GMT
Last-Modified: Thu, 12 Jul 2018 21:28:22 GMT
Cache-Control: max-age=5400,s-maxage=5400
Via: cache36.l2cn170[16,200-0,M], cache20.l2cn170[17,0], kunlun5.cn3[0,200-0,H], kunlun9.cn3[1,0]
Age: 4874
X-Cache: HIT TCP_MEM_HIT dirn:11:471271301 mlen:-1
X-Swift-SaveTime: Thu, 12 Jul 2018 21:28:23 GMT
X-Swift-CacheTime: 5399
Timing-Allow-Origin: *
EagleId: d38a7a8915314357764617889e


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   11265
Md5:    417a09baaf8df654533d1ff9ad4678e2
Sha1:   dd48fd410fb80927c5aaf628b7c4016d3b548e62
Sha256: 73577edc984ee87c5fea5da13a3e7db1b5b07bed5bf5d95264019aa94befbb66
                                        
                                            GET /stat.htm?id=1258652040&r=http%3A%2F%2Fwww.mai-te.com%2Fjump%2Fhtml%2Fto%2Fwanbo.html&lg=en-us&ntime=none&cnzz_eid=164770087-1531430902-null&showp=1176x885&t=ManBetX(%E4%B8%87%E5%8D%9A%E4%BD%93%E8%82%B2)%E5%AE%98%E7%BD%91%7C2018%E4%B8%96%E7%95%8C%E6%9D%AF%E8%A5%BF%E7%8F%AD%E7%89%99%E9%98%9F%E8%B5%9E%E5%8A%A9%E4%BC%99%E4%BC%B4&umuuid=16490af7a4c17c-0f17fdcb28ca9-6c242d76-fe178-16490af7a4d120&h=1&rnd=1238321315 HTTP/1.1 
Host: z4.cnzz.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.man595.com/home/register?code=21370

                                         
                                         140.205.61.85
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Server: Tengine
Date: Thu, 12 Jul 2018 22:49:38 GMT
Transfer-Encoding: chunked
Connection: close
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   22
Md5:    8bd3e739a9ba80a435f0214811da0c2a
Sha1:   bfc17d1e04e56542eb8037f08ed142efd252ea82
Sha256: a2dd5774b01bbfc29140279e02fea087df42a4c257dce8858226737a2e521986
                                        
                                            GET /core.php?web_id=1258652040&t=z HTTP/1.1 
Host: c.cnzz.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.man595.com/home/register?code=21370

                                         
                                         211.138.122.126
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: Tengine
Content-Length: 994
Connection: keep-alive
Date: Thu, 12 Jul 2018 22:47:36 GMT
Last-Modified: Thu, 12 Jul 2018 22:47:36 GMT
Expires: Thu, 12 Jul 2018 23:02:36 GMT
Via: cache43.l2cn690[11,200-0,M], cache35.l2cn690[12,0], kunlun1.cn3[0,200-0,H], kunlun4.cn3[0,0]
Age: 122
X-Cache: HIT TCP_MEM_HIT dirn:-2:-2 mlen:-1
X-Swift-SaveTime: Thu, 12 Jul 2018 22:47:36 GMT
X-Swift-CacheTime: 900
Timing-Allow-Origin: *
EagleId: d38a7a8415314357784885859e


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   994
Md5:    3a9c8e28928e65ac8947f975e7859d62
Sha1:   df4924a26aa49d85bd2531c29d64857dc43715b0
Sha256: c29a6413b7c1bab5283c189bad8e2af9c25e2c5d4b2dea8f59514262506adea3
                                        
                                            GET /js/game/Game.js HTTP/1.1 
Host: e92340324f2588ba.g-cdn-s.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.man595.com/home/register?code=21370
Cookie: __cfduid=d9bee5fdc54e3db86d15c7f374ea1c3c61531435774

                                         
                                         104.20.15.101
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 12 Jul 2018 22:49:38 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 10 Jul 2018 06:37:53 GMT
Etag: W/"5b445441-7ff0"
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Fri, 13 Jul 2018 06:49:38 GMT
Cache-Control: public, max-age=28800
X-Content-Type-Options: nosniff
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4397107068fe42c1-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5456
Md5:    b059c75b0d98f0a9a757406ef6a396a4
Sha1:   c658751b5ce5e353feea5af9a1f890e69b39e6c6
Sha256: 6e186f5050f7836038bb47a606f51e009f613cd018f9d99e2f275d1e2a0521f5
                                        
                                            GET /util/all.js HTTP/1.1 
Host: e92340324f2588ba.g-cdn-s.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.man595.com/home/register?code=21370
Cookie: __cfduid=d9bee5fdc54e3db86d15c7f374ea1c3c61531435774

                                         
                                         104.20.15.101
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 12 Jul 2018 22:49:38 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 08 Mar 2018 08:10:56 GMT
Etag: W/"5aa0f010-12f2b"
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Fri, 13 Jul 2018 06:49:38 GMT
Cache-Control: public, max-age=28800
X-Content-Type-Options: nosniff
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 439710708f75428b-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   22909
Md5:    0030d0b4a1e41e6174ded10604a6e874
Sha1:   be76eaacca930cda5fa11fd2d185d8acb31f8c56
Sha256: c50d1bc300c27683042b82d84cfca26b7f6e66c7c92883621639e92b5efdb24a
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 12 Jul 2018 22:49:38 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    992c0f3100539dd976cadef533c02fbe
Sha1:   bee7e89aff8ca46c5cd837c9c171adc69d0a3949
Sha256: b0332c5aa95ff96c2d9a3bcad5f45a81b5048911b9ff8fb69559f4de41ef6fce
                                        
                                            POST /gsr2 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 112
Content-Type: application/ocsp-request

                                         
                                         216.58.211.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 12 Jul 2018 22:49:38 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 468
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   468
Md5:    d9d754520ae3340aa37cca6115eee05b
Sha1:   a0320372760d99c762cb2eb4b37f776625ef1b33
Sha256: 7dc8284c51c9a38dc1bf03bd28857ea5336e8f5c564eddbb1c9082ee43c93738
                                        
                                            GET /util/rsa.js HTTP/1.1 
Host: e92340324f2588ba.g-cdn-s.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.man595.com/home/register?code=21370
Cookie: __cfduid=d9bee5fdc54e3db86d15c7f374ea1c3c61531435774

                                         
                                         104.20.15.101
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 12 Jul 2018 22:49:38 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 26 Dec 2016 10:15:22 GMT
Etag: W/"5860edba-34ca"
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Fri, 13 Jul 2018 06:49:38 GMT
Cache-Control: public, max-age=28800
X-Content-Type-Options: nosniff
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 43971071c802428b-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4763
Md5:    7062a4ac9c1988158161a229bacf9ed2
Sha1:   2907bd007fef3ba51e7fd5ff8dedfddd9044a664
Sha256: d4e13e7bcf7e0b0ba22ce3a79bdda80d3eb9a4425c74f81e218bfc30903da7b8
                                        
                                            GET /util/error.js?20180628 HTTP/1.1 
Host: e92340324f2588ba.g-cdn-s.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.man595.com/home/register?code=21370
Cookie: __cfduid=d9bee5fdc54e3db86d15c7f374ea1c3c61531435774

                                         
                                         104.20.15.101
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 12 Jul 2018 22:49:38 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 14 Jun 2018 13:29:44 GMT
Etag: W/"5b226dc8-12c1"
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Fri, 13 Jul 2018 06:49:38 GMT
Cache-Control: public, max-age=28800
X-Content-Type-Options: nosniff
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 43971071ed1e427f-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2012
Md5:    9d37ac244af34be7edfc76b16b621224
Sha1:   90ade4588fdb8676eb547c175e2e02c6126e448d
Sha256: 1f7dc5807d62e3036f3651d56b384833cd455dfa5582a8cb8e2d4a5a5f226c03
                                        
                                            GET /js/kz.js?2016 HTTP/1.1 
Host: e92340324f2588ba.g-cdn-s.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.man595.com/home/register?code=21370
Cookie: __cfduid=d9bee5fdc54e3db86d15c7f374ea1c3c61531435774

                                         
                                         104.20.15.101
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 12 Jul 2018 22:49:38 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 18 Jun 2018 17:24:52 GMT
Etag: W/"5b27eae4-2795"
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Fri, 13 Jul 2018 06:49:38 GMT
Cache-Control: public, max-age=28800
X-Content-Type-Options: nosniff
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 43971071fcc94285-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3883
Md5:    d3c197fc0fb46243b3c8802df046c15a
Sha1:   5245a29430fc402f4cb5bfdea3b7073402d18d2b
Sha256: 68cac5a72f756d3ccdae21b7ec621c93008ddbbc84f1135df5aef6a4901c3630
                                        
                                            GET /js/member/reg.simple.js?20180618 HTTP/1.1 
Host: cn.man595.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.man595.com/home/register?code=21370
Cookie: __cfduid=d6b0f24120d6a23b64d2616229e8942f51531435772; PHPSESSID=kg3l3a5v37h4kgq2bvvk3ca5i0; _code_cookie=21370; JSESSIONID=CEB1ECB0F4DD4DDE91F5B9C736B70A93; _vcid=CEB1ECB0F4DD4DDE91F5B9C736B70A93; UM_distinctid=16490af7a4c17c-0f17fdcb28ca9-6c242d76-fe178-16490af7a4d120; CNZZDATA1258652040=164770087-1531430902-null%7C1531430902

                                         
                                         104.31.95.146
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 12 Jul 2018 22:49:38 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 18 Jun 2018 10:58:54 GMT
Etag: W/"5b27906e-15a7"
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Fri, 13 Jul 2018 02:49:38 GMT
Cache-Control: public, max-age=14400
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 439710720cc84255-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1736
Md5:    e82f0f635db9bc66693512ae8efa024a
Sha1:   35367b398e02f3341bdbc8dd9e89ef2be7eabd46
Sha256: b4b05e6325c4f9edff2cc653e0ac5f2eb9d858bc58c7fa8d7e231a42d3154859
                                        
                                            GET /gtag/js?id=UA-119765380-1 HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.man595.com/home/register?code=21370

                                         
                                         216.58.211.8
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
                                        
Access-Control-Allow-Origin: http://www.googletagmanager.com
Access-Control-Allow-Headers: Cache-Control
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Thu, 12 Jul 2018 22:49:38 GMT
Expires: Thu, 12 Jul 2018 22:49:38 GMT
Cache-Control: private, max-age=900
Server: Google Tag Manager (scaffolding)
X-XSS-Protection: 1; mode=block
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   25190
Md5:    89bae2e4930a990016f0dfebfcee15ea
Sha1:   34b3fff520c18c4919beeeac34d7b8c79a7129d5
Sha256: 6bd0805411e03b3e3b3dd021b38b68407e8570e22bfb0e71cd06e8df586ee1c4
                                        
                                            GET /js/jquery/jquery.validate.js?2017121201 HTTP/1.1 
Host: cn.man595.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.man595.com/home/register?code=21370
Cookie: __cfduid=d6b0f24120d6a23b64d2616229e8942f51531435772; PHPSESSID=kg3l3a5v37h4kgq2bvvk3ca5i0; _code_cookie=21370; JSESSIONID=CEB1ECB0F4DD4DDE91F5B9C736B70A93; _vcid=CEB1ECB0F4DD4DDE91F5B9C736B70A93; UM_distinctid=16490af7a4c17c-0f17fdcb28ca9-6c242d76-fe178-16490af7a4d120; CNZZDATA1258652040=164770087-1531430902-null%7C1531430902

                                         
                                         104.31.95.146
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 12 Jul 2018 22:49:38 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 06 Feb 2018 07:13:59 GMT
Etag: W/"5a7955b7-f320"
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Fri, 13 Jul 2018 02:49:38 GMT
Cache-Control: public, max-age=14400
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 439710726d504261-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   12436
Md5:    633a347307ddfead8841f25da381cd10
Sha1:   299a3154dddcb87193f81f9ecf0cc72f46bc6c15
Sha256: b2d7b8e22a1a6f0512dd7250c14fdc669bf32726e92abf441a8e0fe9144c75b1
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.man595.com/home/register?code=21370

                                         
                                         216.58.211.14
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Timing-Allow-Origin: *
Date: Thu, 12 Jul 2018 21:22:10 GMT
Expires: Thu, 12 Jul 2018 23:22:10 GMT
Last-Modified: Fri, 18 May 2018 01:10:24 GMT
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Golfe2
Content-Length: 14386
Age: 5249
Cache-Control: public, max-age=7200
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   14386
Md5:    b3de885583a477d4e31568948d6bebd7
Sha1:   2ce8d853244dde551c41d5207d6f71c567bde8c6
Sha256: e1bb5aa555a0d875e2a67884ceaa0629e08994a8aabadc2fac5b6915793dbf75
                                        
                                            POST /j/collect?v=1&_v=j68&a=2141363859&t=pageview&_s=1&dl=https%3A%2F%2Fcn.man595.com%2Fhome%2Fregister%3Fcode%3D21370&dr=http%3A%2F%2Fwww.mai-te.com%2Fjump%2Fhtml%2Fto%2Fwanbo.html&ul=en-us&de=UTF-8&dt=ManBetX(%E4%B8%87%E5%8D%9A%E4%BD%93%E8%82%B2)%E5%AE%98%E7%BD%91%7C2018%E4%B8%96%E7%95%8C%E6%9D%AF%E8%A5%BF%E7%8F%AD%E7%89%99%E9%98%9F%E8%B5%9E%E5%8A%A9%E4%BC%99%E4%BC%B4&sd=24-bit&sr=1176x885&vp=1159x737&je=1&fl=10.0%20r45&_u=IEBAAcQAAAAAAC~&jid=1817724583&gjid=1073080575&cid=846798139.1531435779&tid=UA-119765380-1&_gid=183653823.1531435779&_r=1&gtm=u6t&z=1776393837 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Type: text/plain; charset=UTF-8
Referer: https://cn.man595.com/home/register?code=21370
Content-Length: 0
Origin: https://cn.man595.com
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         216.58.211.14
HTTP/1.1 200 OK
Content-Type: text/plain
                                        
Access-Control-Allow-Origin: https://cn.man595.com
Date: Thu, 12 Jul 2018 22:49:39 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
Server: Golfe2
Content-Length: 1
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  very short file (no magic)
Size:   1
Md5:    c4ca4238a0b923820dcc509a6f75849b
Sha1:   356a192b7913b04c54574d18c28d46e6395428ab
Sha256: 6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
                                        
                                            POST /home/getGeo HTTP/1.1 
Host: cn.man595.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
X-Requested-With: XMLHttpRequest
Referer: https://cn.man595.com/home/register?code=21370
Cookie: __cfduid=d6b0f24120d6a23b64d2616229e8942f51531435772; PHPSESSID=kg3l3a5v37h4kgq2bvvk3ca5i0; _code_cookie=21370; JSESSIONID=CEB1ECB0F4DD4DDE91F5B9C736B70A93; _vcid=CEB1ECB0F4DD4DDE91F5B9C736B70A93; UM_distinctid=16490af7a4c17c-0f17fdcb28ca9-6c242d76-fe178-16490af7a4d120; CNZZDATA1258652040=164770087-1531430902-null%7C1531430902
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0

                                         
                                         104.31.95.146
HTTP/1.1 200 OK
Content-Type: application/json;charset=utf-8
                                        
Date: Thu, 12 Jul 2018 22:49:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.3.3
Set-Cookie: ccd11=deleted; expires=Wed, 12-Jul-2017 22:49:39 GMT; path=/; domain=man595.com vcd11=deleted; expires=Wed, 12-Jul-2017 22:49:39 GMT; path=/; domain=man595.com
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 439710734919426d-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   75
Md5:    76adc8163444d5bcff5e982d99da7993
Sha1:   4a6402f142a07fcee7cc4b9267bed9eaa2a40de9
Sha256: 5bd1cd52e64e9f2797c1cb7b243e1bc06041a336d8633682345c501ce5acdc56
                                        
                                            GET /hm.gif?cc=0&ck=1&cl=24-bit&ds=1176x885&vl=754&ep=1141%2C1141&et=3&fl=10.0&ja=1&ln=en-us&lo=0&rnd=1778335435&si=cfa9a3084b1db4fc773f36af8ee5ff3f&v=1.2.33&lv=1&sn=13890 HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mai-te.com/
Cookie: BAIDUID=AEF162D1B0F1DEA7EBAC85AFF52AFB4F:FG=1; HMACCOUNT=FB982DA77C87955D

                                         
                                         0.0.0.0
                                        


--- Additional Info ---