Overview

URL iaggericon.com/gaozhong/dygz/xstd/2014114
IP142.111.26.162
ASNAS18779 EGIHosting
Location United States
Report completed2019-03-21 05:20:50 CET
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2019-03-21 2 iaggericon.com/gaozhong/dygz/xstd/2014114 Phishing
2019-03-21 2 www.iaggericon.com/gaozhong/dygz/xstd/2014114 Phishing
2019-03-21 2 www.iaggericon.com/jump/js/js/new/2018/12/7/7-wanbo3.js Phishing
2019-03-21 2 www.iaggericon.com/jump/html/jump/wanbo3.html Phishing
2019-03-21 2 www.iaggericon.com/jump/tj.js Phishing
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 142.111.26.162

Date UQ / IDS / BL URL IP
2019-06-10 11:12:34 +0200
0 - 0 - 4 iaggericon.com/gaozhong/jyky/xbkc/2014618/768.htm 142.111.26.162
2019-06-10 11:12:08 +0200
0 - 0 - 3 www.iaggericon.com/gaozhong/jyky/xbkc/2014618 (...) 142.111.26.162
2019-06-09 20:20:55 +0200
0 - 0 - 4 iaggericon.com/chuzhong/jxjy/jkdt/2015112/1097.htm 142.111.26.162
2019-06-09 20:20:34 +0200
0 - 0 - 3 www.iaggericon.com/chuzhong/jxjy/jkdt/2015112 (...) 142.111.26.162
2019-06-09 20:13:49 +0200
0 - 0 - 4 iaggericon.com/chuzhong/jxjy/ktgl/2015112/1100.htm 142.111.26.162
2019-06-09 20:12:24 +0200
0 - 0 - 3 www.iaggericon.com/chuzhong/jxjy/ktgl/2015112 (...) 142.111.26.162
2019-06-09 00:59:17 +0200
0 - 0 - 4 iaggericon.com/557 142.111.26.162
2019-06-09 00:40:55 +0200
0 - 0 - 3 www.iaggericon.com/557 142.111.26.162
2019-06-07 18:02:29 +0200
0 - 0 - 8 www.iaggericon.com/show/2079.html 142.111.26.162
2019-06-01 00:31:18 +0200
0 - 0 - 4 iaggericon.com/guoji/zjhd/20141110 142.111.26.162

Last 10 reports on ASN: AS18779 EGIHosting

Date UQ / IDS / BL URL IP
2019-06-19 08:01:04 +0200
0 - 0 - 0 ameli-fr.xyz/fr 68.68.98.58
2019-06-18 12:37:38 +0200
1 - 1 - 0 quadrant-com.com//Nb/mailbox/?email=1234@loc.gov 23.27.196.35
2019-06-14 10:14:00 +0200
0 - 0 - 0 www.zenithfestival.com 107.164.128.169
2019-06-12 20:23:12 +0200
0 - 0 - 0 www.gubusoft.com/bzh.php 142.111.177.155
2019-06-11 00:54:15 +0200
0 - 0 - 7 qutmll8.com/reg.htm--view-87a00dbe1614481e.html 103.232.215.144
2019-06-11 00:52:49 +0200
0 - 0 - 6 www.chaopeng88.cc/ 103.232.215.150
2019-06-11 00:49:17 +0200
0 - 0 - 6 www.chaopeng88.cc/se_files/alog.mobile.min.js.htm 103.232.215.150
2019-06-11 00:48:19 +0200
0 - 0 - 1 chinajianzhan.cn/js/ 104.253.79.230
2019-06-11 00:48:06 +0200
0 - 0 - 2 utilbada.com/down2/file_down.php 172.120.191.23
2019-06-11 00:47:26 +0200
0 - 0 - 1 www.18zusou.com/include/8519/1951/7015 172.252.19.55

Last 10 reports on domain: iaggericon.com

Date UQ / IDS / BL URL IP
2019-06-10 11:12:34 +0200
0 - 0 - 4 iaggericon.com/gaozhong/jyky/xbkc/2014618/768.htm 142.111.26.162
2019-06-10 11:12:08 +0200
0 - 0 - 3 www.iaggericon.com/gaozhong/jyky/xbkc/2014618 (...) 142.111.26.162
2019-06-09 20:20:55 +0200
0 - 0 - 4 iaggericon.com/chuzhong/jxjy/jkdt/2015112/1097.htm 142.111.26.162
2019-06-09 20:20:34 +0200
0 - 0 - 3 www.iaggericon.com/chuzhong/jxjy/jkdt/2015112 (...) 142.111.26.162
2019-06-09 20:13:49 +0200
0 - 0 - 4 iaggericon.com/chuzhong/jxjy/ktgl/2015112/1100.htm 142.111.26.162
2019-06-09 20:12:24 +0200
0 - 0 - 3 www.iaggericon.com/chuzhong/jxjy/ktgl/2015112 (...) 142.111.26.162
2019-06-09 00:59:17 +0200
0 - 0 - 4 iaggericon.com/557 142.111.26.162
2019-06-09 00:40:55 +0200
0 - 0 - 3 www.iaggericon.com/557 142.111.26.162
2019-06-07 18:02:29 +0200
0 - 0 - 8 www.iaggericon.com/show/2079.html 142.111.26.162
2019-06-01 00:31:18 +0200
0 - 0 - 4 iaggericon.com/guoji/zjhd/20141110 142.111.26.162


JavaScript

Executed Scripts (10)


Executed Evals (0)


Executed Writes (1)

#1 JavaScript::Write (size: 112, repeated: 1) - SHA256: bb8893422ecd100394fe49de3ba059618f02a945848408ac305cfedb597833ab

                                        < script src = 'https://c.cnzz.com/core.php?web_id=1258652040&t=z'
charset = 'utf-8'
type = 'text/javascript' > < /script>
                                    


HTTP Transactions (50)


Request Response
                                        
                                            GET /gaozhong/dygz/xstd/2014114 HTTP/1.1 
Host: iaggericon.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         142.111.26.162
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: nginx/1.13.3
Date: Wed, 20 Mar 2019 20:20:44 GMT
Content-Length: 185
Connection: keep-alive
Location: http://www.iaggericon.com/gaozhong/dygz/xstd/2014114


--- Additional Info ---
Magic:  HTML document text
Size:   185
Md5:    5900b11ca9f55ed095e7bf2f47fde974
Sha1:   b280e07cabb212b25174dcba19f54d6b141be7a3
Sha256: 7e3b1b9f8da61edfa6d48c4ba3292c55c217d629a888e202c1d08e7e8fcc43f5

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /gaozhong/dygz/xstd/2014114 HTTP/1.1 
Host: www.iaggericon.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         142.111.26.162
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx/1.13.3
Date: Wed, 20 Mar 2019 20:20:44 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1054
Md5:    c40ed37815c5455f451712dfd8f600d7
Sha1:   c2ed558bd6d18316debcb1b2fcbf952696298ec0
Sha256: 8bd71163492b710337d382d938e7aad97539954134f183021121810c3fd87173

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /jump/js/js/new/2018/12/7/7-wanbo3.js HTTP/1.1 
Host: www.iaggericon.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.iaggericon.com/gaozhong/dygz/xstd/2014114

                                         
                                         142.111.26.162
HTTP/1.1 200 OK
Content-Type: application/x-javascript;charset=utf-8
                                        
Server: nginx/1.13.3
Date: Wed, 20 Mar 2019 20:20:45 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   376
Md5:    b738a51a293a10f1d355e9fe63fe98d7
Sha1:   7285bbdda3bdd7eef0ae8dc14f1c517e721f42c4
Sha256: b3e23a64551978ec80137ce83decc6a9eef622f68886e6f1ba3957674000ec0c

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.iaggericon.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         142.111.26.162
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Server: nginx/1.13.3
Date: Wed, 20 Mar 2019 20:20:45 GMT
Transfer-Encoding: chunked
Connection: keep-alive


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon
Size:   4287
Md5:    1077b4a7e5d7fabefaf48fcf9ffd270c
Sha1:   e365967d08734602d0519e7f11c39cabc910f7cc
Sha256: f0ce1be08cc1b036ade386f12973ef817a6cf08d849a377fd8fec25e0076d432
                                        
                                            GET /jump/html/jump/wanbo3.html HTTP/1.1 
Host: www.iaggericon.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.iaggericon.com/gaozhong/dygz/xstd/2014114

                                         
                                         142.111.26.162
HTTP/1.1 200 OK
Content-Type: text/html;charset=utf-8
                                        
Server: nginx/1.13.3
Date: Wed, 20 Mar 2019 20:20:45 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   256
Md5:    749e9b6780b7a7b3b2c2833310a96a3d
Sha1:   ec8f6132061bfe256013717ea0b2e876943a7fbf
Sha256: 95cb257f040322f021ffdc1be02756155785e17c89dd76709eb59d9b49e9b90d

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /jump/tj.js HTTP/1.1 
Host: www.iaggericon.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.iaggericon.com/jump/html/jump/wanbo3.html

                                         
                                         142.111.26.162
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx/1.13.3
Date: Wed, 20 Mar 2019 20:20:46 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1066
Md5:    eb38c69785f229269bc4c66a0d88e208
Sha1:   deb6920b4fba4f8c723b44744e277916571bd01a
Sha256: c34eaf7d0c3c27bab71df9f4786a9cbe5ebd316c6a525df0408ffe8817a38718

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /jump/html/jump/style.css HTTP/1.1 
Host: www.iaggericon.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.iaggericon.com/jump/html/jump/wanbo3.html

                                         
                                         142.111.26.162
HTTP/1.1 200 OK
Content-Type: text/html;charset=utf-8
                                        
Server: nginx/1.13.3
Date: Wed, 20 Mar 2019 20:20:46 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   182
Md5:    1924424220654ab9d35a17fb8d5f381c
Sha1:   64583a7067828516565058a3085e852c71aa78d6
Sha256: 81d6689feee99a8248fe0e94808193b2e79e8eaf0a7b91e840919d41e4514b10
                                        
                                            POST / HTTP/1.1 
Host: ocsp.int-x3.letsencrypt.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 117
Content-Type: application/ocsp-request

                                         
                                         91.135.34.24
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 527
Etag: "1B6922AB09424CE6BA30C0742311F4AB9E058EC6DBDAF356EA31B7E59F318E2D"
Last-Modified: Wed, 20 Mar 2019 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=43200
Expires: Thu, 21 Mar 2019 16:20:21 GMT
Date: Thu, 21 Mar 2019 04:20:21 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   527
Md5:    214cdc9ae960cf769e015d3bab3bf099
Sha1:   18d6191c97db91fd4f0678b6593b27e3e78ff00c
Sha256: 1b6922ab09424ce6ba30c0742311f4ab9e058ec6dbdaf356ea31b7e59f318e2d
                                        
                                            POST / HTTP/1.1 
Host: isrg.trustid.ocsp.identrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.25
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Transfer-Encoding: Binary
Last-Modified: Wed, 20 Mar 2019 18:00:46 GMT
Etag: "118eba860300098a953cf0b57c7f79e243dbe0b8"
Content-Length: 1398
Cache-Control: public, no-transform, must-revalidate, max-age=8000
Expires: Thu, 21 Mar 2019 06:33:41 GMT
Date: Thu, 21 Mar 2019 04:20:21 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1398
Md5:    5ce62217fdf6f310924dbcdc37d71521
Sha1:   118eba860300098a953cf0b57c7f79e243dbe0b8
Sha256: d7498510065b9c2f1fb0716a743cc739c823c2d7e1459333d61689b61cf142b9
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.iaggericon.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         142.111.26.162
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Server: nginx/1.13.3
Date: Wed, 20 Mar 2019 20:20:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon
Size:   4287
Md5:    1077b4a7e5d7fabefaf48fcf9ffd270c
Sha1:   e365967d08734602d0519e7f11c39cabc910f7cc
Sha256: f0ce1be08cc1b036ade386f12973ef817a6cf08d849a377fd8fec25e0076d432
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.iaggericon.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         142.111.26.162
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Server: nginx/1.13.3
Date: Wed, 20 Mar 2019 20:20:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon
Size:   4287
Md5:    1077b4a7e5d7fabefaf48fcf9ffd270c
Sha1:   e365967d08734602d0519e7f11c39cabc910f7cc
Sha256: f0ce1be08cc1b036ade386f12973ef817a6cf08d849a377fd8fec25e0076d432
                                        
                                            GET /home/register?code=24857 HTTP/1.1 
Host: cn.85mebtx.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.iaggericon.com/jump/html/jump/wanbo3.html

                                         
                                         205.198.12.74
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:20:22 GMT
Set-Cookie: ccd11=deleted; expires=Wed, 21-Mar-2018 04:20:20 GMT; path=/; domain=85mebtx.com vcd11=deleted; expires=Wed, 21-Mar-2018 04:20:20 GMT; path=/; domain=85mebtx.com PHPSESSID=7us4n2rla3mitgt1suap7f3861; path=/ _code_cookie=24857; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Encoding: gzip
X-Cache: MISS from Edge7C54
Transfer-Encoding: chunked
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   10722
Md5:    fd07694c455f590a720a3e1fbffc7825
Sha1:   d9f4b0493a560fb1bc91bd816e9e5c1fde77bbf9
Sha256: d2c34e4f261fdc81a15fc33ea92f1ceef3d72516644a848dfd22f52b82299393
                                        
                                            GET /css/base.css?20190312a HTTP/1.1 
Host: cn.85mebtx.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.85mebtx.com/home/register?code=24857
Cookie: PHPSESSID=7us4n2rla3mitgt1suap7f3861; _code_cookie=24857

                                         
                                         205.198.12.74
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Etag: W/"5c930ca4-226ef"
Server: nginx
Date: Thu, 21 Mar 2019 04:20:20 GMT
Last-Modified: Thu, 21 Mar 2019 04:01:40 GMT
Content-Encoding: gzip
X-Cache: HIT from Edge7C54
Content-Length: 25996
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   25996
Md5:    345520e45ba9ed8508f99ea94a1abd40
Sha1:   6f273ab29db8bb93b61e7e0e4ccccbb633c505de
Sha256: 1c1820df9065e4302a4b39249138811aaf4f844330cc7d242defba51316d29c8
                                        
                                            GET /static/images/header_logo.png HTTP/1.1 
Host: cn.85mebtx.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.85mebtx.com/home/register?code=24857
Cookie: PHPSESSID=7us4n2rla3mitgt1suap7f3861; _code_cookie=24857

                                         
                                         205.198.12.74
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Etag: W/"5c930ca6-1f95"
Server: nginx
Date: Thu, 21 Mar 2019 04:18:02 GMT
Last-Modified: Thu, 21 Mar 2019 04:01:42 GMT
Content-Encoding: gzip
X-Cache: HIT from Edge7C54
Content-Length: 8108
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   8108
Md5:    b42a54cd1bca354069750997db69ed2a
Sha1:   a0d57cf86af01914a90df7411afa91244f3582d4
Sha256: df314ab6513b84b687cf9d831eb1061333b8ae0558eea650e2cbfd6c738950bd
                                        
                                            GET /static/style/main.css?0219 HTTP/1.1 
Host: cn.85mebtx.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.85mebtx.com/home/register?code=24857
Cookie: PHPSESSID=7us4n2rla3mitgt1suap7f3861; _code_cookie=24857

                                         
                                         205.198.12.74
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Etag: W/"5c930ca6-53e9"
Server: nginx
Date: Thu, 21 Mar 2019 04:20:22 GMT
Last-Modified: Thu, 21 Mar 2019 04:01:42 GMT
Content-Encoding: gzip
X-Cache: HIT from Edge7C54
Content-Length: 6065
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   6065
Md5:    4ea71561ce786194a3b8e74d501742e0
Sha1:   deed057170c2306cfb3a588d337d01be50b600d7
Sha256: 22a3a711ee2ef002d71ee14122c68025b30533feed6cc071cbc6ae9436c4104f
                                        
                                            GET /util/messenger.css HTTP/1.1 
Host: cn.85mebtx.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.85mebtx.com/home/register?code=24857
Cookie: PHPSESSID=7us4n2rla3mitgt1suap7f3861; _code_cookie=24857

                                         
                                         205.198.12.74
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Etag: W/"5c930cab-22b9"
Server: nginx
Date: Thu, 21 Mar 2019 04:10:33 GMT
Last-Modified: Thu, 21 Mar 2019 04:01:47 GMT
Content-Encoding: gzip
X-Cache: HIT from Edge7C54
Content-Length: 1814
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1814
Md5:    1964cc0b3b9856b89e172308e1ddf0b6
Sha1:   d87c901c571dc01881dd5d7dcfa066d149867c27
Sha256: cbfc035adbc110a1bc093c2b854ee5f06652b2ac9a3242890cfcc5ba85790de8
                                        
                                            GET /static/images/nav/nav_pic_sports.png HTTP/1.1 
Host: cn.85mebtx.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.85mebtx.com/home/register?code=24857
Cookie: PHPSESSID=7us4n2rla3mitgt1suap7f3861; _code_cookie=24857

                                         
                                         205.198.12.74
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Etag: W/"5c930cab-bf6"
Server: nginx
Date: Thu, 21 Mar 2019 04:18:59 GMT
Last-Modified: Thu, 21 Mar 2019 04:01:47 GMT
Content-Encoding: gzip
X-Cache: HIT from Edge7C54
Content-Length: 3090
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3090
Md5:    edd1ee8f8a429ed2993093fc086d90d3
Sha1:   851c4a3e5bb4454f6fd03851450c17e2527dffe7
Sha256: 40ef7a4bd9fd11d784d42c3f457f2ffd8503943bbbee36adbbd15370499e905e
                                        
                                            GET /static/images/favicon.ico HTTP/1.1 
Host: cn.85mebtx.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: PHPSESSID=7us4n2rla3mitgt1suap7f3861; _code_cookie=24857

                                         
                                         205.198.12.74
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Etag: "5c930ca9-47e"
Server: nginx
Date: Thu, 21 Mar 2019 04:20:23 GMT
Last-Modified: Thu, 21 Mar 2019 04:01:45 GMT
Accept-Ranges: bytes
X-Cache: MISS from Edge7C54
Content-Length: 1150
Connection: keep-alive


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon
Size:   1150
Md5:    a970762d135e06a1d0a982e92627eea2
Sha1:   c75f6962b7e717dea8761c63a6fc7bbd47f8bd0a
Sha256: 93b5d76d0e220077f0df098dab49acd243597dc5574a22fe0a4bf0d9568202ba
                                        
                                            GET /static/images/nav/nav_pic_live_casino.png HTTP/1.1 
Host: cn.85mebtx.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.85mebtx.com/home/register?code=24857
Cookie: PHPSESSID=7us4n2rla3mitgt1suap7f3861; _code_cookie=24857

                                         
                                         205.198.12.74
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Etag: W/"5c930cb2-9c0"
Server: nginx
Date: Thu, 21 Mar 2019 04:18:02 GMT
Last-Modified: Thu, 21 Mar 2019 04:01:54 GMT
Content-Encoding: gzip
X-Cache: HIT from Edge7C54
Content-Length: 2524
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2524
Md5:    90281c71c2979c85a30d708bfcb0d83e
Sha1:   b737d97bae96c4ac287733cddc01942352906396
Sha256: 6dcda8ddfe5d6d634d16387c95055db50f34dd51c86622797201ba1836b5a687
                                        
                                            GET /static/images/nav/nav_pic_keno.png HTTP/1.1 
Host: cn.85mebtx.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.85mebtx.com/home/register?code=24857
Cookie: PHPSESSID=7us4n2rla3mitgt1suap7f3861; _code_cookie=24857

                                         
                                         205.198.12.74
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Etag: W/"5c930ca6-534a"
Server: nginx
Date: Thu, 21 Mar 2019 04:19:00 GMT
Last-Modified: Thu, 21 Mar 2019 04:01:42 GMT
Content-Encoding: gzip
X-Cache: HIT from Edge7C54
Content-Length: 21350
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   21350
Md5:    1f49de18abe83db8de9e4daa51b4091e
Sha1:   7d4a48d16bfd0e0af1fe0c43c9b5c68720a82dde
Sha256: 112d9ac31f35c81a782d9799b659734a4a8dd197e4a7222926ed387a3f7c16d6
                                        
                                            GET /static/images/nav/nav_pic_games.png HTTP/1.1 
Host: cn.85mebtx.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.85mebtx.com/home/register?code=24857
Cookie: PHPSESSID=7us4n2rla3mitgt1suap7f3861; _code_cookie=24857

                                         
                                         205.198.12.74
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Etag: W/"5c930cb2-9c0"
Server: nginx
Date: Thu, 21 Mar 2019 04:16:20 GMT
Last-Modified: Thu, 21 Mar 2019 04:01:54 GMT
Content-Encoding: gzip
X-Cache: HIT from Edge7C54
Content-Length: 2524
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2524
Md5:    90281c71c2979c85a30d708bfcb0d83e
Sha1:   b737d97bae96c4ac287733cddc01942352906396
Sha256: 6dcda8ddfe5d6d634d16387c95055db50f34dd51c86622797201ba1836b5a687
                                        
                                            GET /service/verifycode HTTP/1.1 
Host: cn.85mebtx.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.85mebtx.com/home/register?code=24857
Cookie: PHPSESSID=7us4n2rla3mitgt1suap7f3861; _code_cookie=24857

                                         
                                         205.198.12.74
HTTP/1.1 200 OK
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:20:24 GMT
Set-Cookie: JSESSIONID=C288DE757E1927264C3611854DA4203B; Path=/; HttpOnly _vcid=C288DE757E1927264C3611854DA4203B; Domain=.85mebtx.com; Path=/; HttpOnly
X-Cache: MISS from Edge7C54
Transfer-Encoding: chunked
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   1450
Md5:    77b56fc3606840e37ecd40d1894108b6
Sha1:   9964015a84f7cfb799b21398d3aeabd038f0d0c7
Sha256: 7eebd2c4146e7d347eb198fb191e14c3c11b36267bc79c803e95e58a3a4b20bb
                                        
                                            GET /static/images/nav/nav_pic_cardgame.png HTTP/1.1 
Host: cn.85mebtx.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.85mebtx.com/home/register?code=24857
Cookie: PHPSESSID=7us4n2rla3mitgt1suap7f3861; _code_cookie=24857

                                         
                                         205.198.12.74
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Etag: W/"5c930cb2-5f79"
Server: nginx
Date: Thu, 21 Mar 2019 04:16:18 GMT
Last-Modified: Thu, 21 Mar 2019 04:01:54 GMT
Content-Encoding: gzip
X-Cache: HIT from Edge7C54
Content-Length: 24469
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   24469
Md5:    f758ac8d618b45c4d6a992cd03efc979
Sha1:   4c112e976f308a68278b3d0473c43e18323db654
Sha256: 7c89985d19c568ad899b9d71a9da59accea2884a6ae09dd6d1c710af8a1c3704
                                        
                                            GET /js/jquery/jquery.min.js HTTP/1.1 
Host: cn.85mebtx.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.85mebtx.com/home/register?code=24857
Cookie: PHPSESSID=7us4n2rla3mitgt1suap7f3861; _code_cookie=24857

                                         
                                         205.198.12.74
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Etag: "5c930cae-176bb"
Server: nginx
Date: Thu, 21 Mar 2019 04:14:24 GMT
Last-Modified: Thu, 21 Mar 2019 04:01:50 GMT
Accept-Ranges: bytes
X-Cache: HIT from Edge7C54
Content-Length: 95931
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   95931
Md5:    5790ead7ad3ba27397aedfa3d263b867
Sha1:   8130544c215fe5d1ec081d83461bf4a711e74882
Sha256: 2ecd295d295bec062cedebe177e54b9d6b19fc0a841dc5c178c654c9ccff09c0
                                        
                                            GET /static/style/css.css?0211 HTTP/1.1 
Host: cn.85mebtx.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.85mebtx.com/home/register?code=24857
Cookie: PHPSESSID=7us4n2rla3mitgt1suap7f3861; _code_cookie=24857

                                         
                                         205.198.12.74
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Etag: W/"5c930caf-1ac6b"
Server: nginx
Date: Thu, 21 Mar 2019 04:20:23 GMT
Last-Modified: Thu, 21 Mar 2019 04:01:51 GMT
Content-Encoding: gzip
X-Cache: HIT from Edge7C54
Content-Length: 22590
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   22590
Md5:    c81e5876b157608d823897b65ce722ea
Sha1:   608cccabfccce791a074674d654781b3ff872657
Sha256: d02d8518958cd7edb8603436e300d39140c5da5b3ce7373881bff6292c48c319
                                        
                                            GET /static/images/header_bg_x.png HTTP/1.1 
Host: cn.85mebtx.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.85mebtx.com/static/style/main.css?0219
Cookie: PHPSESSID=7us4n2rla3mitgt1suap7f3861; _code_cookie=24857; JSESSIONID=C288DE757E1927264C3611854DA4203B; _vcid=C288DE757E1927264C3611854DA4203B

                                         
                                         205.198.12.74
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Etag: "5c930cac-a4"
Server: nginx
Date: Thu, 21 Mar 2019 04:18:01 GMT
Last-Modified: Thu, 21 Mar 2019 04:01:48 GMT
Accept-Ranges: bytes
X-Cache: HIT from Edge7C54
Content-Length: 164
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 2 x 70, 8-bit/color RGB, non-interlaced
Size:   164
Md5:    43af13f6484c73318bcfda590649dd42
Sha1:   211c189280a34424477a72b6cdf9a218ae1e5e3f
Sha256: 9904bee1c1b7199a3731800ac06cf6c338bc7ea2afd1d0277678ef5597db98e3
                                        
                                            GET /static/images/icons.png HTTP/1.1 
Host: cn.85mebtx.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.85mebtx.com/static/style/main.css?0219
Cookie: PHPSESSID=7us4n2rla3mitgt1suap7f3861; _code_cookie=24857; JSESSIONID=C288DE757E1927264C3611854DA4203B; _vcid=C288DE757E1927264C3611854DA4203B

                                         
                                         205.198.12.74
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Etag: W/"5c930ca6-40d"
Server: nginx
Date: Thu, 21 Mar 2019 04:18:01 GMT
Last-Modified: Thu, 21 Mar 2019 04:01:42 GMT
Content-Encoding: gzip
X-Cache: HIT from Edge7C54
Content-Length: 1060
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1060
Md5:    c3677fb39724a082b506b8a3232de8c5
Sha1:   1d7f22c6db258ecd766333ae7dc28a17b15d6930
Sha256: 2915b4bdd9b2f7a3d1dcd0fcd138a5bf0aa5eb1effff15b80154d01d7ff1b735
                                        
                                            GET /static/images/btn_index.png HTTP/1.1 
Host: cn.85mebtx.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.85mebtx.com/static/style/main.css?0219
Cookie: PHPSESSID=7us4n2rla3mitgt1suap7f3861; _code_cookie=24857; JSESSIONID=C288DE757E1927264C3611854DA4203B; _vcid=C288DE757E1927264C3611854DA4203B

                                         
                                         205.198.12.74
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Etag: "5c930cb4-38d"
Server: nginx
Date: Thu, 21 Mar 2019 04:18:01 GMT
Last-Modified: Thu, 21 Mar 2019 04:01:56 GMT
Accept-Ranges: bytes
X-Cache: HIT from Edge7C54
Content-Length: 909
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 66 x 86, 8-bit colormap, non-interlaced
Size:   909
Md5:    21b4b9e4613c9ef3ff45dc24ca152506
Sha1:   5db372bd0f7067719717571a0bba5551d6cf62f0
Sha256: 5ab6110e58a518683e42336383457358c87c615cc15a476dbad0b846c98d6ea6
                                        
                                            GET /images/close.png HTTP/1.1 
Host: cn.85mebtx.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.85mebtx.com/css/base.css?20190312a
Cookie: PHPSESSID=7us4n2rla3mitgt1suap7f3861; _code_cookie=24857; JSESSIONID=C288DE757E1927264C3611854DA4203B; _vcid=C288DE757E1927264C3611854DA4203B

                                         
                                         205.198.12.74
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Etag: W/"5c930cad-47c"
Server: nginx
Date: Thu, 21 Mar 2019 04:16:43 GMT
Last-Modified: Thu, 21 Mar 2019 04:01:49 GMT
Content-Encoding: gzip
X-Cache: HIT from Edge7C54
Content-Length: 882
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   882
Md5:    641bcd005f02f7e522bbd89b8c8a094d
Sha1:   bcca5f97051e22bcf76c447b745ab24bb2faf6d8
Sha256: 30d2dc6f7941974aa989c0a8ee6bed496e982c33f5ed1be00b77c28531bcb2d9
                                        
                                            POST /gsorganizationvalsha2g2 HTTP/1.1 
Host: ocsp2.globalsign.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 111
Content-Type: application/ocsp-request

                                         
                                         104.18.21.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 21 Mar 2019 04:20:26 GMT
Content-Length: 1570
Connection: keep-alive
Set-Cookie: __cfduid=d93c14ac2b80851591d4281fe6070136f1553142026; expires=Fri, 20-Mar-20 04:20:26 GMT; path=/; domain=.globalsign.com; HttpOnly
Last-Modified: Thu, 21 Mar 2019 01:11:22 GMT
Expires: Mon, 25 Mar 2019 01:11:22 GMT
Etag: "5aa2a0295542bc42cb728a450038245e424aa959"
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4bad22222cd142bb-OSL


--- Additional Info ---
Magic:  data
Size:   1570
Md5:    ae022d8a6b93c5dbd33850a00b8b1c44
Sha1:   5aa2a0295542bc42cb728a450038245e424aa959
Sha256: 92cc4ec70f19f4d48eff6f219fe786c7907d7f257e1eb2c19a47ad2bf449de22
                                        
                                            GET /static/images/common_spirits.png HTTP/1.1 
Host: cn.85mebtx.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.85mebtx.com/static/style/main.css?0219
Cookie: PHPSESSID=7us4n2rla3mitgt1suap7f3861; _code_cookie=24857; JSESSIONID=C288DE757E1927264C3611854DA4203B; _vcid=C288DE757E1927264C3611854DA4203B

                                         
                                         205.198.12.74
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Etag: W/"5c930ca9-20cf"
Server: nginx
Date: Thu, 21 Mar 2019 04:16:43 GMT
Last-Modified: Thu, 21 Mar 2019 04:01:45 GMT
Content-Encoding: gzip
X-Cache: HIT from Edge7C54
Content-Length: 7735
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   7735
Md5:    1b6df3fc8b17f34df6dd7a92cfd9aed2
Sha1:   ae4aca2f972487985aa5f2140f304dc1aa9d4925
Sha256: 1c3aa220a54db38e22180455eb3d6b36931fd87521966fa63f5b4d5ee51321fc
                                        
                                            GET /static/images/footer_supports.png?8 HTTP/1.1 
Host: cn.85mebtx.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.85mebtx.com/static/style/main.css?0219
Cookie: PHPSESSID=7us4n2rla3mitgt1suap7f3861; _code_cookie=24857; JSESSIONID=C288DE757E1927264C3611854DA4203B; _vcid=C288DE757E1927264C3611854DA4203B

                                         
                                         205.198.12.74
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Etag: W/"5c930cb4-c06"
Server: nginx
Date: Thu, 21 Mar 2019 04:16:47 GMT
Last-Modified: Thu, 21 Mar 2019 04:01:56 GMT
Content-Encoding: gzip
X-Cache: HIT from Edge7C54
Content-Length: 3106
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3106
Md5:    d17e2a070e6cd94aa07dbc07b5d80633
Sha1:   01568a75275a7186474740aa093f387a45bcc78e
Sha256: 3c5b8280c201b7be709f394a528bb4c2b469f65f537424ea6be4c93f764278fc
                                        
                                            GET /static/images/footer_football.png?3 HTTP/1.1 
Host: cn.85mebtx.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.85mebtx.com/static/style/main.css?0219
Cookie: PHPSESSID=7us4n2rla3mitgt1suap7f3861; _code_cookie=24857; JSESSIONID=C288DE757E1927264C3611854DA4203B; _vcid=C288DE757E1927264C3611854DA4203B

                                         
                                         205.198.12.74
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Etag: W/"5c930ca6-3c6d"
Server: nginx
Date: Thu, 21 Mar 2019 04:16:44 GMT
Last-Modified: Thu, 21 Mar 2019 04:01:42 GMT
Content-Encoding: gzip
X-Cache: HIT from Edge7C54
Content-Length: 15497
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   15497
Md5:    98d51584106ea6cfb7527eb404c54208
Sha1:   8dda97db509ffbea97f7f4ba5c564717bc3874ac
Sha256: bedd5d147c4bd94eefed4a6687a9d27952e519361236b5cd31177022bde19b17
                                        
                                            GET /static/images/register_left.png?1 HTTP/1.1 
Host: cn.85mebtx.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.85mebtx.com/static/style/main.css?0219
Cookie: PHPSESSID=7us4n2rla3mitgt1suap7f3861; _code_cookie=24857; JSESSIONID=C288DE757E1927264C3611854DA4203B; _vcid=C288DE757E1927264C3611854DA4203B

                                         
                                         205.198.12.74
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Etag: W/"5c930caf-3016c"
Server: nginx
Date: Thu, 21 Mar 2019 04:19:00 GMT
Last-Modified: Thu, 21 Mar 2019 04:01:51 GMT
Content-Encoding: gzip
X-Cache: HIT from Edge7C54
Content-Length: 196378
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   196378
Md5:    798da3360278b0f1909ac5ef6c40caea
Sha1:   197d0b1f9986051a2c7fcb39cc39adcd800c7217
Sha256: ccaf0b95ea90c5a1dfef933d0b4b6dba9d82d762c595a56781e90d308aa64cbe
                                        
                                            GET /static/images/register_bg.jpg HTTP/1.1 
Host: cn.85mebtx.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.85mebtx.com/static/style/main.css?0219
Cookie: PHPSESSID=7us4n2rla3mitgt1suap7f3861; _code_cookie=24857; JSESSIONID=C288DE757E1927264C3611854DA4203B; _vcid=C288DE757E1927264C3611854DA4203B

                                         
                                         205.198.12.74
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Etag: W/"5c930ca9-34768"
Server: nginx
Date: Thu, 21 Mar 2019 04:19:00 GMT
Last-Modified: Thu, 21 Mar 2019 04:01:45 GMT
Content-Encoding: gzip
X-Cache: HIT from Edge7C54
Content-Length: 209914
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   209914
Md5:    9e66b7ad37efcaad0a5ccaeb3a37b075
Sha1:   7a69668124812eda765aea7c14246783a7a151c8
Sha256: 40cbc61d356bc90a58ca78e0fa5a98d7f685cc9a278264dec557e990915caeb4
                                        
                                            GET /z_stat.php?id=1258652040&web_id=1258652040 HTTP/1.1 
Host: s95.cnzz.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.85mebtx.com/home/register?code=24857

                                         
                                         111.19.241.233
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: Tengine
Content-Length: 4025
Connection: keep-alive
Date: Thu, 21 Mar 2019 03:00:47 GMT
Vary: Accept-Encoding
X-Powered-By: PHP/5.5.25
Last-Modified: Thu, 21 Mar 2019 03:00:47 GMT
Cache-Control: max-age=5400,s-maxage=5400
Content-Encoding: gzip
Ali-Swift-Global-Savetime: 1553137247
Via: cache22.l2cn657[51,200-0,M], cache28.l2cn657[52,0], kunlun8.cn1459[0,200-0,H], kunlun6.cn1459[0,0]
Age: 4782
X-Cache: HIT TCP_MEM_HIT dirn:11:727345076
X-Swift-SaveTime: Thu, 21 Mar 2019 03:00:47 GMT
X-Swift-CacheTime: 5400
Timing-Allow-Origin: *
EagleId: 6f13f19a15531420293927866e


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4025
Md5:    af97501d9451d01832bbc1344729f5ce
Sha1:   d8016d22aa830dfccadd21f262fe90e8dd2f488b
Sha256: 3441ae85ec2f571900f5fc1d88a2757ad42694c830dd74de9176ae350b0a56c1
                                        
                                            GET /stat.htm?id=1258652040&r=http%3A%2F%2Fwww.iaggericon.com%2Fjump%2Fhtml%2Fjump%2Fwanbo3.html&lg=en-us&ntime=none&cnzz_eid=1114346091-1553137247-null&showp=1176x885&t=ManBetX%E4%B8%87%E5%8D%9A%E4%BD%93%E8%82%B2%2F%E5%AE%9E%E5%8A%9B%E6%B4%BE%20%E5%AE%89%E5%85%A8%E4%B9%B0%E7%90%83-%E5%85%A8%E7%90%83%E5%94%AF%E4%B8%80%E5%9B%9B%E5%A4%A7%E9%A1%B6%E7%BA%A7%E8%B5%9B%E4%BA%8B%E8%B5%9E%E5%8A%A9%E5%95%86&umuuid=1699e7a9cbdd8-02c760f80169f9-6c242d76-fe178-1699e7a9cbebe&h=1&rnd=1490805872 HTTP/1.1 
Host: z4.cnzz.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.85mebtx.com/home/register?code=24857

                                         
                                         203.119.129.115
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Server: Tengine
Date: Thu, 21 Mar 2019 04:20:30 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   22
Md5:    8bd3e739a9ba80a435f0214811da0c2a
Sha1:   bfc17d1e04e56542eb8037f08ed142efd252ea82
Sha256: a2dd5774b01bbfc29140279e02fea087df42a4c257dce8858226737a2e521986
                                        
                                            GET /push.js HTTP/1.1 
Host: push.zhanzhang.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.iaggericon.com/gaozhong/dygz/xstd/2014114

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /core.php?web_id=1258652040&t=z HTTP/1.1 
Host: c.cnzz.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.85mebtx.com/home/register?code=24857

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /core.php?web_id=1258652040&t=z HTTP/1.1 
Host: c.cnzz.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.85mebtx.com/home/register?code=24857

                                         
                                         111.19.241.233
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: Tengine
Content-Length: 620
Connection: keep-alive
Date: Thu, 21 Mar 2019 04:17:27 GMT
Vary: Accept-Encoding
X-Powered-By: PHP/5.5.25
Last-Modified: Thu, 21 Mar 2019 04:17:27 GMT
Expires: Thu, 21 Mar 2019 04:32:27 GMT
Content-Encoding: gzip
Ali-Swift-Global-Savetime: 1553141847
Via: cache12.l2cn657[41,200-0,M], cache32.l2cn657[42,0], kunlun8.cn1459[0,200-0,H], kunlun7.cn1459[1,0]
Age: 194
X-Cache: HIT TCP_MEM_HIT dirn:-2:-2
X-Swift-SaveTime: Thu, 21 Mar 2019 04:17:27 GMT
X-Swift-CacheTime: 900
Timing-Allow-Origin: *
EagleId: 6f13f19b15531420419812702e


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   620
Md5:    49fd8dfe085c84eb534483b1ebafc8d7
Sha1:   439288b133d9f7ee0099850d6ef86fccc6fcce7c
Sha256: ab57fc07712341d26d8e5f856804055a15f7e804ef628c38f3950efe421e343f
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 21 Mar 2019 04:20:42 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    3ec31774f9052c4dd02ddd9085ecf9d3
Sha1:   fc3add2c05442b1cb151ff2e7fe5a82c0d6d3229
Sha256: f1c203ec012e8d283692e144883bb3f0de4d71a53f8409940295286386c33886
                                        
                                            POST /gsr2 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 112
Content-Type: application/ocsp-request

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 21 Mar 2019 04:20:42 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 468
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   468
Md5:    d9d754520ae3340aa37cca6115eee05b
Sha1:   a0320372760d99c762cb2eb4b37f776625ef1b33
Sha256: 7dc8284c51c9a38dc1bf03bd28857ea5336e8f5c564eddbb1c9082ee43c93738
                                        
                                            GET /gtag/js?id=UA-119765380-1 HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.85mebtx.com/home/register?code=24857

                                         
                                         172.217.21.136
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
                                        
Access-Control-Allow-Origin: http://www.googletagmanager.com
Access-Control-Allow-Headers: Cache-Control
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Thu, 21 Mar 2019 04:20:42 GMT
Expires: Thu, 21 Mar 2019 04:20:42 GMT
Cache-Control: private, max-age=900
Last-Modified: Wed, 20 Mar 2019 21:47:39 GMT
Server: Google Tag Manager (scaffolding)
X-XSS-Protection: 1; mode=block
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   25065
Md5:    f13c9babc8b391f9b96b040812dc216c
Sha1:   b71509cfc800d2d367412ab63fd20b1970d9543d
Sha256: 696bdf30b0395af9d7d1726dbf25fa7a348f7f4eac813f476a07cf894f5a675e
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.85mebtx.com/home/register?code=24857

                                         
                                         172.217.22.174
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Timing-Allow-Origin: *
Date: Thu, 21 Mar 2019 03:27:26 GMT
Expires: Thu, 21 Mar 2019 05:27:26 GMT
Last-Modified: Wed, 16 Jan 2019 20:01:45 GMT
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Golfe2
Content-Length: 17543
Cache-Control: public, max-age=7200
Age: 3196
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   17543
Md5:    a6ce90b9145f18e7a721eb3819daaaab
Sha1:   1c422016bd20a08535d2cc37448c498cf4a0f829
Sha256: 94fe45c14a2ce4fd5f1401c835e5d63111ebf89ff58e03d6b780592f02abf778
                                        
                                            POST /gsorganizationvalsha2g2 HTTP/1.1 
Host: ocsp2.globalsign.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 111
Content-Type: application/ocsp-request
Cookie: __cfduid=d93c14ac2b80851591d4281fe6070136f1553142026

                                         
                                         104.18.21.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 21 Mar 2019 04:20:43 GMT
Content-Length: 1570
Connection: keep-alive
Last-Modified: Thu, 21 Mar 2019 02:05:38 GMT
Expires: Mon, 25 Mar 2019 02:05:38 GMT
Etag: "469be5ac069e183d478b9e3f8685d24c595c19a1"
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4bad228aeae642bb-OSL


--- Additional Info ---
Magic:  data
Size:   1570
Md5:    21f269de95b57f838bb733e2c75b4a36
Sha1:   469be5ac069e183d478b9e3f8685d24c595c19a1
Sha256: 66670f88b5e1cb439710537013d008044afd62fe7585374e1b8eae942d73bce1
                                        
                                            GET /js/game/Game.js?20190221 HTTP/1.1 
Host: cn.85mebtx.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.85mebtx.com/home/register?code=24857
Cookie: PHPSESSID=7us4n2rla3mitgt1suap7f3861; _code_cookie=24857; JSESSIONID=C288DE757E1927264C3611854DA4203B; _vcid=C288DE757E1927264C3611854DA4203B; UM_distinctid=1699e7a9cbdd8-02c760f80169f9-6c242d76-fe178-1699e7a9cbebe; CNZZDATA1258652040=1114346091-1553137247-null%7C1553137247

                                         
                                         205.198.12.74
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Etag: "5c930ca8-cd8d"
Server: nginx
Date: Thu, 21 Mar 2019 04:20:21 GMT
Last-Modified: Thu, 21 Mar 2019 04:01:44 GMT
Accept-Ranges: bytes
X-Cache: HIT from Edge7C54
Content-Length: 52621
Connection: keep-alive


--- Additional Info ---
Magic:  UTF-8 Unicode C++ program text
Size:   52621
Md5:    7a03cf5b880ad4fb0aac27bfa5151336
Sha1:   d5f8c078124e3263a6e993b9ddb23c6bac90c321
Sha256: 24a4b4ced828d75a4031d9662ead4e974a151d66f2fa079f16ee7fe254557b61
                                        
                                            GET /r/collect?v=1&_v=j73&a=1841761655&t=pageview&_s=1&dl=https%3A%2F%2Fcn.85mebtx.com%2Fhome%2Fregister%3Fcode%3D24857&dr=http%3A%2F%2Fwww.iaggericon.com%2Fjump%2Fhtml%2Fjump%2Fwanbo3.html&ul=en-us&de=UTF-8&dt=ManBetX%E4%B8%87%E5%8D%9A%E4%BD%93%E8%82%B2%2F%E5%AE%9E%E5%8A%9B%E6%B4%BE%20%E5%AE%89%E5%85%A8%E4%B9%B0%E7%90%83-%E5%85%A8%E7%90%83%E5%94%AF%E4%B8%80%E5%9B%9B%E5%A4%A7%E9%A1%B6%E7%BA%A7%E8%B5%9B%E4%BA%8B%E8%B5%9E%E5%8A%A9%E5%95%86&sd=24-bit&sr=1176x885&vp=1159x737&je=1&fl=10.0%20r45&_u=IEBAAUQ~&jid=1180060778&gjid=2067745269&cid=978238728.1553142043&tid=UA-119765380-1&_gid=720398572.1553142043&_r=1&gtm=2ou3b2&z=1145063400 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.85mebtx.com/home/register?code=24857

                                         
                                         172.217.22.174
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
Location: https://stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-119765380-1&cid=978238728.1553142043&jid=1180060778&_gid=720398572.1553142043&gjid=2067745269&_v=j73&z=1145063400
Access-Control-Allow-Origin: *
Date: Thu, 21 Mar 2019 04:20:43 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
Server: Golfe2
Content-Length: 419
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  HTML document text
Size:   419
Md5:    162c79ff2f901168ef105d770f0ba971
Sha1:   c4cd261d10953ab8ea1043ff8fdbf21219599817
Sha256: 08146df5a9beef6807082dc7da24d866a3e6c29e5eaf3457e7c9a8e6d4c2b840
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 21 Mar 2019 04:20:43 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    9950456353c7064181aa4c9fcc93ed76
Sha1:   7b89b196d9d03d830268b4da438cf39957134a17
Sha256: dff94f31d21a85ead615830d0d44741488b7b27bcd2849abf9f58dd92be5df46
                                        
                                            GET /r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-119765380-1&cid=978238728.1553142043&jid=1180060778&_gid=720398572.1553142043&gjid=2067745269&_v=j73&z=1145063400 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.85mebtx.com/home/register?code=24857

                                         
                                         64.233.162.157
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Date: Thu, 21 Mar 2019 04:20:43 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Server: Golfe2
Content-Length: 35
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            GET /9.gif?abc=1&rnd=50572674 HTTP/1.1 
Host: cnzz.mmstat.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://cn.85mebtx.com/home/register?code=24857

                                         
                                         205.204.101.182
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Thu, 21 Mar 2019 04:20:43 GMT
Content-Length: 43
Connection: close
P3P: CP="NOI DSP COR CURa ADMa DEVa PSAa PSDa OUR IND UNI PUR NAV"
Set-Cookie: cna=G/8ZFRB5Dx0CAU0ogXvyMTB7; expires=Sun, 18-Mar-29 04:20:43 GMT; path=/; domain=.mmstat.com sca=49ad239f; path=/; domain=.cnzz.mmstat.com atpsida=876d068f6f26e587a02c6a5e_1553142043_1; path=/; domain=.cnzz.mmstat.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Pragma: no-cache


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda