www.chinadqwx.com/
200 OK 30 kB IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash c3b5f721a74020e9b12dcbd07902939b
c47919f3b724ac1f33a00db44971f889433d42b7
812bbb397d4c383b4463dfb35c76b9543139e9fc15deea6a8a8ae91fac37addc
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: www.chinadqwx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Sep 2022 12:45:16 GMT
Content-Type: text/html
Content-Length: 29738
Connection: keep-alive
Content-Encoding: gzip
Vary: Accept-Encoding
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 08 Sep 2022 11:47:38 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ZF--pIZ9UYKU3rEFw73E_Qay9fkjFG4TaLIRb7Ter8XmNlH2e67RrA==
Age: 3440
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b9adda4796e3cda8d92753c46964621c
5f1eba1f6085b23dea088a91fe6f8947172f9f62
a0577a8fcfa81b3f86d99566eb4429655b93a238ffd1a3752bc9aae3d969deea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A0577A8FCFA81B3F86D99566EB4429655B93A238FFD1A3752BC9AAE3D969DEEA"
Last-Modified: Tue, 06 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16142
Expires: Thu, 08 Sep 2022 17:14:01 GMT
Date: Thu, 08 Sep 2022 12:44:59 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Thu, 08 Sep 2022 03:46:35 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _LinobaWLBjwMFessxOnhVVg8kuzw_dgPMlvd_deI0jX83QBqofi9A==
age: 32305
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 12:44:59 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
fmtu.netfhtu.com/upload/vod/2022/04/wzzeep3ci5m.jpg
200 OK 9.1 kB URL HTTP/2 fmtu.netfhtu.com/upload/vod/2022/04/wzzeep3ci5m.jpg
IP
File type JPEG image data, baseline, precision 8, 240x320, components 3\012- data
Hash f2fbce6136292c027d27c56e16a45aa6
c11e308e20f581553ce4c3cf9ff8a33a37e9b8e3
6dce14f0cf865e73cacf9e7c3e5546bd793839b48baae5134a638a9ebcbbe057
GET /upload/vod/2022/04/wzzeep3ci5m.jpg HTTP/1.1
Host: fmtu.netfhtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:44:59 GMT
content-type: image/jpeg
content-length: 9057
cf-bgj: h2pri
etag: "626b6aea-2361"
last-modified: Fri, 29 Apr 2022 04:34:50 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 321
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tatfcL6xyIraCFiGCxQxzcNTzL%2FosaPvNVEIFLG635ZtGviacSuLG0jWakwOnpFQ9x%2BXWW0BtqInkN%2B4cUHrRXySrKPCdSNMAnEKUvb0A5vuG0lreB%2FqXF05cr%2FEj6c1WvnI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c7583ea776ab-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.chinadqwx.com/static9/js/jquery.lazyload.js
200 OK 747 B URL HTTP/1.1 www.chinadqwx.com/static9/js/jquery.lazyload.js
IP
File type ASCII text, with very long lines (2230), with CRLF line terminators
Hash 51bc439737d248eeaa9c42758e5c6b4f
a93e2cf688564063a325704c0f35a66edb0b3e20
cae2d23160e178f39804d4d3d13ce98d231a34871baf6111e4714c52653f10b1
Analyzer Verdict Alert quad9 Sinkholed
GET /static9/js/jquery.lazyload.js HTTP/1.1
Host: www.chinadqwx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Sep 2022 12:45:17 GMT
Content-Type: application/javascript
Last-Modified: Sat, 14 Aug 2021 10:32:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61179ba4-8ba"
Expires: Fri, 09 Sep 2022 00:45:17 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.chinadqwx.com/static9/js/jquery.js
200 OK 37 kB URL HTTP/1.1 www.chinadqwx.com/static9/js/jquery.js
IP
File type ASCII text, with very long lines (32089), with CRLF line terminators
Hash cb8b32d2a46a250954f981780ea7d0d3
149d7140bb977c0ea043397cd72f067e56974692
080e5c45daae1e54faf78ecb600d5bd6680e7889343ebf220f94b6b9a343beae
Analyzer Verdict Alert quad9 Sinkholed
GET /static9/js/jquery.js HTTP/1.1
Host: www.chinadqwx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Sep 2022 12:45:17 GMT
Content-Type: application/javascript
Last-Modified: Sat, 14 Aug 2021 10:32:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61179ba4-169d9"
Expires: Fri, 09 Sep 2022 00:45:17 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.chinadqwx.com/static9/css/layer.css
200 OK 1.4 kB URL HTTP/1.1 www.chinadqwx.com/static9/css/layer.css
IP
File type Unicode text, UTF-8 (with BOM) text, with very long lines (5261), with no line terminators
Hash 1ecab368d900dfeb45c936a58b1199d2
787f95478788ae15a6724648a3d6e4cdaa1822d7
d1f5386addc2e6a5b22fc448e04f81f521e89630660ec1577c63e694352a7cb2
Analyzer Verdict Alert quad9 Sinkholed
GET /static9/css/layer.css HTTP/1.1
Host: www.chinadqwx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Sep 2022 12:45:17 GMT
Content-Type: text/css
Last-Modified: Sat, 14 Aug 2021 10:31:51 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61179b97-1492"
Expires: Fri, 09 Sep 2022 00:45:17 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.chinadqwx.com/static9/css/home.css
200 OK 7.2 kB URL HTTP/1.1 www.chinadqwx.com/static9/css/home.css
IP
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 9138ef057adfdc9694c4bb594856d2f6
daf3ff19b6969cb883c630192663e080fd9bfd1c
65aafaca24946a3ad95d64ff90dc7daf352b028ee72700a7534723dd8703052c
Analyzer Verdict Alert quad9 Sinkholed
GET /static9/css/home.css HTTP/1.1
Host: www.chinadqwx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Sep 2022 12:45:17 GMT
Content-Type: text/css
Last-Modified: Fri, 25 Feb 2022 12:00:21 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6218c4d5-a391"
Expires: Fri, 09 Sep 2022 00:45:17 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.chinadqwx.com/static9/js/jquery.autocomplete.js
200 OK 6.4 kB URL HTTP/1.1 www.chinadqwx.com/static9/js/jquery.autocomplete.js
IP
File type Algol 68 source text\012- Pascal source, Unicode text, UTF-8 text, with CRLF line terminators
Hash d9f67b358ecd6dc03fc709356018ab11
11a75063c50de09d8a323dc8bb93c194729055c0
d1f6fa1324f9b17b39672b105b95aa7792ab1a5e10a5a95e625f26b0c1b0a801
Analyzer Verdict Alert quad9 Sinkholed
GET /static9/js/jquery.autocomplete.js HTTP/1.1
Host: www.chinadqwx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Sep 2022 12:45:17 GMT
Content-Type: application/javascript
Last-Modified: Sat, 14 Aug 2021 10:32:02 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61179ba2-64a8"
Expires: Fri, 09 Sep 2022 00:45:17 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.chinadqwx.com/ads/float.js
200 OK 1.1 kB URL HTTP/1.1 www.chinadqwx.com/ads/float.js
IP
File type HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (558), with CRLF line terminators
Hash 0d2da301dfe5cafed26d7358e0aff287
ccfa4e051825d8d3d6c65047bff7b7d8cd54c1f2
a80e56569865dac21f3044e071ca27dec23a7601f95244fccf5335016f628179
Analyzer Verdict Alert quad9 Sinkholed
GET /ads/float.js HTTP/1.1
Host: www.chinadqwx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Sep 2022 12:45:17 GMT
Content-Type: application/javascript
Last-Modified: Tue, 06 Sep 2022 10:11:44 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63171ce0-12de"
Expires: Fri, 09 Sep 2022 00:45:17 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 381f03e837e17e47e729e4debe1b2b0d
e6f5bacfe185feda02fab402f39558fcd7f9945a
3eb4d8a8ba39ffc272e375286082b9ab30bd3b9bb9e044b5d88ebd32e0523fc8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3EB4D8A8BA39FFC272E375286082B9AB30BD3B9BB9E044B5D88EBD32E0523FC8"
Last-Modified: Thu, 08 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11989
Expires: Thu, 08 Sep 2022 16:04:48 GMT
Date: Thu, 08 Sep 2022 12:44:59 GMT
Connection: keep-alive
fmtu.netfhtu.com/upload/vod/20210705-1/99ab9bd7acd7b0e3e0323ef37931c0b5.jpg
200 OK 50 kB URL HTTP/2 fmtu.netfhtu.com/upload/vod/20210705-1/99ab9bd7acd7b0e3e0323ef37931c0b5.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 1022x574, components 3\012- data
Hash e0b9baed38a64af3551cff15980cc5bd
2cf8d828af2cfa3c2903453da75c1bb6028fb1a8
f7b46ba2ff65cf48b2f4f5da537d104bbade043d69502519c6b2a7b37009e17b
GET /upload/vod/20210705-1/99ab9bd7acd7b0e3e0323ef37931c0b5.jpg HTTP/1.1
Host: fmtu.netfhtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:44:59 GMT
content-type: image/jpeg
content-length: 50082
cf-bgj: h2pri
etag: "60e28846-c3a2"
last-modified: Mon, 05 Jul 2021 04:19:18 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uuxR5E8InJ7nHqHhwVZj%2B6Z6LmgUBJQSMNSqKbvG7rU8dbR1xZd0KOWi%2B6Y1lXe%2BD9QiYQ6SOfunxho2Rjm%2BJe%2BAtjT%2F1GmcXqxab1j0zMJhqY4fzbUXVArgw7dTLog9Tlfp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c7583eaf76ab-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.chinadqwx.com/static9/js/home.js
200 OK 9.5 kB URL HTTP/1.1 www.chinadqwx.com/static9/js/home.js
IP
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 80f08abfbb794875177a0ae35491c20d
f7b3e1a15af111db3645bce86c18138506a63e9c
884d190f58f4bfe351627c2772d65a70321b05be345ec9ebc9aee1cb09df2648
Analyzer Verdict Alert quad9 Sinkholed
GET /static9/js/home.js HTTP/1.1
Host: www.chinadqwx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Sep 2022 12:45:17 GMT
Content-Type: application/javascript
Last-Modified: Fri, 27 May 2022 05:46:44 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"629065c4-8e22"
Expires: Fri, 09 Sep 2022 00:45:17 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.chinadqwx.com/static9/css/styles.css
200 OK 20 kB URL HTTP/1.1 www.chinadqwx.com/static9/css/styles.css
IP
File type assembler source, Unicode text, UTF-8 (with BOM) text, with very long lines (2135), with CRLF line terminators
Hash 66640af7cb26968b0144f578b88c8a89
dd98ca5be5a99f10aabbca030fba75ddf09cc0e1
02944278b97c037a55ad56b7d3014c2e35c6f289f49f7a26d87a3b7b60159224
Analyzer Verdict Alert quad9 Sinkholed
GET /static9/css/styles.css HTTP/1.1
Host: www.chinadqwx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Sep 2022 12:45:17 GMT
Content-Type: text/css
Last-Modified: Sat, 14 Aug 2021 10:31:53 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61179b99-17b03"
Expires: Fri, 09 Sep 2022 00:45:17 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
fmtu.netfhtu.com/upload/vod/20211015-1/9aec425019c1ee9089309ba591c26ebe.jpg
200 OK 54 kB URL HTTP/2 fmtu.netfhtu.com/upload/vod/20211015-1/9aec425019c1ee9089309ba591c26ebe.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 800x539, components 3\012- data
Hash 4798cfdc64e492242d1df6e4b15a9d5e
2f2e580a0e46f9ea22791575993ac14ad65028dd
3d1731a369dcf50d664ab473d94065e094d7384491f0375430647ba11ce3a376
GET /upload/vod/20211015-1/9aec425019c1ee9089309ba591c26ebe.jpg HTTP/1.1
Host: fmtu.netfhtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:44:59 GMT
content-type: image/jpeg
content-length: 54505
cf-bgj: h2pri
etag: "6168eded-d4e9"
last-modified: Fri, 15 Oct 2021 02:56:45 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=l9JxBvd2bQScTZrNM9cRfFWuNRz9ytrbSobHd%2F2jF1joRZu0NxdFALzZOb5L8o7O88E7z3NX2ZLzwdUdx4g6l7Bg5ib%2FaKIk9YQ%2FdC7pDqlBI1i%2FUgdhZ%2BoQ9DRA3CVtMb1d"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c7583ea576ab-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmtu.netfhtu.com/upload/vod/2022/05/jkc2rzuef1z.jpg
200 OK 8.6 kB URL HTTP/2 fmtu.netfhtu.com/upload/vod/2022/05/jkc2rzuef1z.jpg
IP
File type JPEG image data, baseline, precision 8, 240x320, components 3\012- data
Hash 8305041d868e7b887b18675cecd6fa47
545e333307286ed4bf2725fef658a4d5a28ef18e
8315465285f5b05f368c5ff8ea40ef998eaa2d65d80efa7437220a4f9f88aa57
GET /upload/vod/2022/05/jkc2rzuef1z.jpg HTTP/1.1
Host: fmtu.netfhtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:44:59 GMT
content-type: image/jpeg
content-length: 8594
cf-bgj: h2pri
etag: "6290db70-2192"
last-modified: Fri, 27 May 2022 14:08:48 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HCi08LMTqrooHvSvg8E0Xx1T7%2Fo%2BPY3zO%2F6uZMPwxD%2BcNIXj5BnXmSKcY4pbaCm7Z6Zs4LdyysZSMFwYgzQPJrWexx9a7fwov2GVKZWVUokucvESgu40rSV8MNOQ%2BUP%2F0AkY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c7583eb176ab-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmtu.netfhtu.com/upload/vod/20210904-1/0415bde1fe44bd0e580bf1e3b7c7617a.jpg
200 OK 70 kB URL HTTP/2 fmtu.netfhtu.com/upload/vod/20210904-1/0415bde1fe44bd0e580bf1e3b7c7617a.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 800x539, components 3\012- data
Hash f248912988080e99ce87122042dd40d5
6e2f83ddead676a748ba9bfaca0ebd4877f65d59
7a77f4cd5c995cb078345ce71f2644e979540e0a75e6b7848482ebe6d91dcc4f
GET /upload/vod/20210904-1/0415bde1fe44bd0e580bf1e3b7c7617a.jpg HTTP/1.1
Host: fmtu.netfhtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:44:59 GMT
content-type: image/jpeg
content-length: 70405
cf-bgj: h2pri
etag: "613275ca-11305"
last-modified: Fri, 03 Sep 2021 19:21:46 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=g%2Bu0smqBKejjg5QMl5KGnctBoFwXggd1syTTTIHHoeLimhx6J%2FmkNWxP7A7Ex0W8qyhbvID%2BPh60SyVsX%2FWT3eUaVTMJibw6%2BiZVf2M1szQE6tuMTtUlgEb8kKMP9wu0tryO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c7583eb076ab-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmtu.netfhtu.com/upload/vod/20211015-1/0adb70bdad40020a82fe85703cb21fca.jpg
200 OK 467 kB URL HTTP/2 fmtu.netfhtu.com/upload/vod/20211015-1/0adb70bdad40020a82fe85703cb21fca.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, xresolution=120, yresolution=120], baseline, precision 8, 1280x720, components 3\012- data
Size 467 kB (466929 bytes)
Hash 01f293a5d69d21ecad74d4eff45914a9
5fe86cba05b8a63d732e8255ddf9b8b2797a08f5
1725b9f68f876e3f46f9cce8570ed89db24d5c1df704c832a7a29df9f9d4bc2d
GET /upload/vod/20211015-1/0adb70bdad40020a82fe85703cb21fca.jpg HTTP/1.1
Host: fmtu.netfhtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:44:59 GMT
content-type: image/jpeg
content-length: 466929
cf-bgj: h2pri
etag: "6168ef71-71ff1"
last-modified: Fri, 15 Oct 2021 03:03:13 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Z4UzpJvUsht1Cr%2FNjhm23UIYHIuXVe2VrTTOjQWlVAffWn1PN836L58Q3s2EdcIZpiTY1CZJuJhYwvpve8DnLwkFXdIPpVLk%2BIDCVNn3xUEUlrwxHM581mz7Iy56pe6pV0S9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c7583ea876ab-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmtu.netfhtu.com/upload/vod/2020/07/hwoirj4oy30.jpg
200 OK 13 kB URL HTTP/2 fmtu.netfhtu.com/upload/vod/2020/07/hwoirj4oy30.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash eb560212af7dd8d1ed79bf301f676850
456f2f8f65ee77b133d744cfa3125949284f7d9a
f3b7becb5d0d71fae3c178c1ad9cebc53af14bdd67d3fe76ddf368a6289eeb45
GET /upload/vod/2020/07/hwoirj4oy30.jpg HTTP/1.1
Host: fmtu.netfhtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:44:59 GMT
content-type: image/jpeg
content-length: 13340
last-modified: Sun, 12 Jul 2020 02:52:05 GMT
etag: "5f0a7ad5-341c"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XACVlwoeCnr%2BMWd%2Fccjc8yOlGhb29TewvkFxkr50xdNOKupoDwFI5kC0UZRjLTaFxtxz%2Fbui3rM1MSqRY%2B3ozuiJmh3HDEkisCEXoYyyJvLC8Yh8Khh1cZ3ypNzNSjJYuNXQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c7583ea376ab-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmtu.netfhtu.com/upload/vod/20210904-1/8bc84d0a163bf0f7ef307a5bf9da074d.jpg
200 OK 785 kB URL HTTP/2 fmtu.netfhtu.com/upload/vod/20210904-1/8bc84d0a163bf0f7ef307a5bf9da074d.jpg
IP
File type PNG image data, 800 x 539, 8-bit/color RGBA, non-interlaced\012- data
Size 785 kB (785052 bytes)
Hash 048bc286ede67f4719a289fb1f061f9b
a72806381d5d693302d6a32dd0becc3d3e9b1863
e5a393a3ea022de62735b4dbbd4c471f718c9e8dbe6a1cf2fd7ddcb3ac4c1688
GET /upload/vod/20210904-1/8bc84d0a163bf0f7ef307a5bf9da074d.jpg HTTP/1.1
Host: fmtu.netfhtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:44:59 GMT
content-type: image/jpeg
content-length: 785052
cf-bgj: h2pri
etag: "6132769d-bfa9c"
last-modified: Fri, 03 Sep 2021 19:25:17 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RNqxc7krjnpoaghhNSkELs0ghrUGJhvWeVmQjOkNgvSIiquqpc61NaGmU9Gl77fwONwOHAZcrlR2nKd34obSCN%2Flano5%2FwbBJOn3Fq8fpRjXLnMAQX5tcIijmsHtiJ%2Bt1RiF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c7583ea676ab-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.chinadqwx.com/static9/picture/default.png
200 OK 7.1 kB URL HTTP/1.1 www.chinadqwx.com/static9/picture/default.png
IP
File type PNG image data, 90 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash 44537277b6d3e1b8aa9635e029e3af28
c5d9560cd5ac18835073565d5181f4a5afe7d41d
ffdad46d1eddb08ab07bb27e58fed19f26c3e57fea33466f2c693726bb519db6
Analyzer Verdict Alert quad9 Sinkholed
GET /static9/picture/default.png HTTP/1.1
Host: www.chinadqwx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Sep 2022 12:45:17 GMT
Content-Type: image/png
Content-Length: 7136
Last-Modified: Sat, 14 Aug 2021 10:32:08 GMT
Connection: keep-alive
ETag: "61179ba8-1be0"
Expires: Sat, 08 Oct 2022 12:45:17 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
fmtu.netfhtu.com/upload/vod/20210705-1/a7e91c8a487ecbe4722dcb80a540075c.jpg
200 OK 6.7 kB URL HTTP/2 fmtu.netfhtu.com/upload/vod/20210705-1/a7e91c8a487ecbe4722dcb80a540075c.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 298x375, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash f7c9ec290fdfc96a62e0a7703afafc62
e4f0422465fe6483ec9dbc38f29aa935d8eee070
04de636b70665604e95bbca24eb039179de1cfafbff53147984fe898210bbd70
GET /upload/vod/20210705-1/a7e91c8a487ecbe4722dcb80a540075c.jpg HTTP/1.1
Host: fmtu.netfhtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:45:00 GMT
content-type: image/jpeg
content-length: 6745
last-modified: Mon, 05 Jul 2021 04:33:07 GMT
etag: "60e28b83-1a59"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WTJzi194l47qoEsYb9g4fW5ppmX23ePV8uFHKOODd6FGbcaTRGv4BJk1AOAP9GC17VK6%2Bpf3kADBvHlhIFnWayjLlSCDoYfX7k0eyJdFAT5X5qxc07leOlcZrN5ZzQlMfE3l"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c7588f1376ab-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmtu.netfhtu.com/upload/vod/2020/07/figvethcthf.jpg
200 OK 7.0 kB URL HTTP/2 fmtu.netfhtu.com/upload/vod/2020/07/figvethcthf.jpg
IP
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash f1d37582ec25b00641ba8839065538fb
b396547f6ccf5f1d5c056d54e0d4d460bdcc7c0e
a2a62d3aa81ecb10220ca26b3d16d52d7f2ea894c37f83c069ba615a4c5103ba
GET /upload/vod/2020/07/figvethcthf.jpg HTTP/1.1
Host: fmtu.netfhtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:45:00 GMT
content-type: image/jpeg
content-length: 7034
last-modified: Sun, 12 Jul 2020 02:48:23 GMT
etag: "5f0a79f7-1b7a"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=q6ICnIfgisc3Aqup1EMk%2FjBrhVEvzmsQz%2FDUhHHovm7y3TcFHptCfaocLGUNbS1shx%2BD48LjdAcyU6lf9aEyYPzfd7VbtVCu1s0AOuwItT0g1tRCli2ecK932fWeLoFegi9a"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c7586ee676ab-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.chinadqwx.com/static9/js/tongji.js
200 OK 364 B URL HTTP/1.1 www.chinadqwx.com/static9/js/tongji.js
IP
File type HTML document, ASCII text, with CRLF line terminators
Hash 060825039a5e7954ff077da88a211f20
139b281292cfc54da7f51a4f89c2428608bbe1ab
6c042b4aea7fe253c51d7d9361daef04b96581cb53f7369dd7af0ead7fb3c1c2
Analyzer Verdict Alert quad9 Sinkholed
GET /static9/js/tongji.js HTTP/1.1
Host: www.chinadqwx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Sep 2022 12:45:17 GMT
Content-Type: application/javascript
Content-Length: 364
Last-Modified: Tue, 05 Jul 2022 10:53:33 GMT
Connection: keep-alive
ETag: "62c4182d-16c"
Expires: Fri, 09 Sep 2022 00:45:17 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes
pic1.semaobf1.com/20210916/1ECC10CBA816E185/1ECC10CBA816E185.jpg
404 Not Found 146 B URL HTTP/1.1 pic1.semaobf1.com/20210916/1ECC10CBA816E185/1ECC10CBA816E185.jpg
IP
ASN #61317 Ipxo Uk Limited
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /20210916/1ECC10CBA816E185/1ECC10CBA816E185.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:58 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 146
Connection: keep-alive
ljcdn.comtucdncom.com/upload/vod/20190526-1/c210d7f5dd7c9583305a5a6b7a38cb2b.jpg
200 OK 8.3 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20190526-1/c210d7f5dd7c9583305a5a6b7a38cb2b.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 8447435e1e01ac512b1bcb02d37e45d9
af858db913203076ab2731f75d5a7ff97b594197
047e174e7755bca174cd50ddf70337bcc986c2e9705d508513d3c4efffbff087
GET /upload/vod/20190526-1/c210d7f5dd7c9583305a5a6b7a38cb2b.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:00 GMT
Content-Type: image/jpeg
Content-Length: 8338
Last-Modified: Thu, 11 Aug 2022 12:16:13 GMT
Connection: keep-alive
ETag: "62f4f30d-2092"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20190610-1/67e797cfdce929b75b55499364541460.jpg
200 OK 11 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20190610-1/67e797cfdce929b75b55499364541460.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 47dc0b3b0a68e28637b7b9ea4b4f0ffe
5ab3e82e6e6f26d2be0e6023111b7c708ad07099
54fcf56003866b9a08d417fcdd806708a8ed744fb284860661cf400f59d4e236
GET /upload/vod/20190610-1/67e797cfdce929b75b55499364541460.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:00 GMT
Content-Type: image/jpeg
Content-Length: 11404
Last-Modified: Thu, 11 Aug 2022 12:14:26 GMT
Connection: keep-alive
ETag: "62f4f2a2-2c8c"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20190628-1/7b8db0d67f07b21bd411fda2cb784749.jpg
200 OK 7.5 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20190628-1/7b8db0d67f07b21bd411fda2cb784749.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash d17efb9a0fae10007828c732962b1729
611d333b87a1d36a82f33a7b77555d22b11ef159
5e1e5f923ee5ee9ad4881deb96f786f88b4ebaab5f00f6df49f8c9ea3697976c
GET /upload/vod/20190628-1/7b8db0d67f07b21bd411fda2cb784749.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:00 GMT
Content-Type: image/jpeg
Content-Length: 7498
Last-Modified: Thu, 11 Aug 2022 12:14:34 GMT
Connection: keep-alive
ETag: "62f4f2aa-1d4a"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20190506-1/ebb8183ebaf061f3da65b5cef67f8aec.jpg
200 OK 8.7 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20190506-1/ebb8183ebaf061f3da65b5cef67f8aec.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 405x898, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 5e6a4c8f846618658e9c76bf40b0f9c0
eee68356611d5c92409b4373bc18e26320924f5c
5376b649195636fea25f50a8c174a55a7ff76f8328bb2ed35309d43fe156c14d
GET /upload/vod/20190506-1/ebb8183ebaf061f3da65b5cef67f8aec.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:00 GMT
Content-Type: image/jpeg
Content-Length: 8693
Last-Modified: Thu, 11 Aug 2022 12:23:08 GMT
Connection: keep-alive
ETag: "62f4f4ac-21f5"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20190526-1/e5f196c782574f7a7fa7946e4335fdf9.jpg
200 OK 5.1 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20190526-1/e5f196c782574f7a7fa7946e4335fdf9.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash beffcb71a3553195029ec2543937e22d
a6ba0539fd579cd1a8b41cc215aef45a2f892a89
ebd8c7d5f373d937717c1ebeb5e7f99c529223148dfa598543f4e097f9e37ee7
GET /upload/vod/20190526-1/e5f196c782574f7a7fa7946e4335fdf9.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:00 GMT
Content-Type: image/jpeg
Content-Length: 5145
Last-Modified: Thu, 11 Aug 2022 12:15:32 GMT
Connection: keep-alive
ETag: "62f4f2e4-1419"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
fmtu.netfhtu.com/upload/vod/20210912-1/21eec55124710cfa4ce0c4a173bcd87e.jpg
200 OK 54 kB URL HTTP/2 fmtu.netfhtu.com/upload/vod/20210912-1/21eec55124710cfa4ce0c4a173bcd87e.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 795x447, components 3\012- data
Hash f971ffdf89359bba4cc726bb922f22d0
c1a888e9e6a100c5a86a8131b8a3b050c81c41b2
94ca106eaf08b1e2fbc6a2b7c8ac6af67a6af9e343df98b4f2807ec8a1cc970b
GET /upload/vod/20210912-1/21eec55124710cfa4ce0c4a173bcd87e.jpg HTTP/1.1
Host: fmtu.netfhtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:45:00 GMT
content-type: image/jpeg
content-length: 53640
last-modified: Sat, 11 Sep 2021 21:11:59 GMT
etag: "613d1b9f-d188"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vcLW%2FO5XKDnIIUXo8R5%2Bh2oLl3NA12dR7Br2AIxpxb6D2Wl18mtiSyP3WmnUDlPrhd9fGewEqd3Ajn0hLwyi0rozLnzF6X9AxGJARo0bXk%2FhUIEySsxTSA%2B2T1lmXtxtcqiX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c7585ecd76ab-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/images/2022/01/17/hey5295.jpg
200 OK 134 kB URL HTTP/1.1 fmlb.netlbtu.com/images/2022/01/17/hey5295.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 820x462, components 3\012- data
Size 134 kB (134220 bytes)
Hash 336cb24fa5f5547406f09bb94d4e5f4b
9b93ffcb1d028dfd554d92ff2b62598b4f6d1c89
6c83f3488187881bf077e68f78b8f28c20af6e1b57e53e103807304911c34bbd
GET /images/2022/01/17/hey5295.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 12:45:00 GMT
Content-Type: image/jpeg
Content-Length: 134220
Connection: keep-alive
Cf-Bgj: h2pri
ETag: "d146874de59d81:0"
Last-Modified: Sat, 15 Jan 2022 07:55:46 GMT
Cache-Control: max-age=31536000
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3UcbI4%2F8FKbFF8sVma60qTGUVvuBonopMG5hlF19wYsgHi7OnOEil6OVc%2BymojWaCbelzHQTfxPgVNZhso5ovOrKDCx%2BT%2BNvgWVEYPCbC0BwhZ%2FDnLURbABbOY%2BmaNSipffB"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7477c75a8c6276dd-LHR
alt-svc: h2=":443"; ma=60
pic1.semaobf1.com/20211016/FBAEE797F8E34CB4/FBAEE797F8E34CB4.jpg
200 OK 7.2 kB URL HTTP/1.1 pic1.semaobf1.com/20211016/FBAEE797F8E34CB4/FBAEE797F8E34CB4.jpg
IP
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 326434c1b6cd635a8f4b88469b1ccbc8
74147565e73c3c76e9aafb22f397d39e2d3f9982
86597016a5df9d8e2d1d890b678564b4ae27369f57e067f441bb8bb5dfe59917
GET /20211016/FBAEE797F8E34CB4/FBAEE797F8E34CB4.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:59 GMT
Content-Type: image/jpeg
Content-Length: 7184
Last-Modified: Tue, 06 Sep 2022 14:29:28 GMT
Connection: keep-alive
ETag: "63175948-1c10"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic.laoyapic.com/upload/vod/20220521-1/242cf967c8cfa05e6b67b764df1cbbae.jpg
200 OK 7.8 kB URL HTTP/1.1 pic.laoyapic.com/upload/vod/20220521-1/242cf967c8cfa05e6b67b764df1cbbae.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash 53a617c5c46d274c7ed5676c235a4c5e
0641b082d68866f4fcbd1900841fa16873ae982e
de20adcb45856e125dcd6bdfbf76695e367f019a25ec9d5b6852b1fc0ae61809
GET /upload/vod/20220521-1/242cf967c8cfa05e6b67b764df1cbbae.jpg HTTP/1.1
Host: pic.laoyapic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:00 GMT
Content-Type: image/jpeg
Content-Length: 7820
Last-Modified: Sun, 04 Sep 2022 18:16:51 GMT
Connection: keep-alive
ETag: "6314eb93-1e8c"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20211106/921CB135F3E3D851/921CB135F3E3D851.jpg
200 OK 12 kB URL HTTP/1.1 pic1.semaobf1.com/20211106/921CB135F3E3D851/921CB135F3E3D851.jpg
IP
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 9d9eef241dcd1ece61537915bfced5d2
50fe38c2214cf6631fbd3cca47ec16cd1a7e2a43
75b5ba17bda4afbff53c7ab8bc68400dafe12de796fec6fadf76ff80f76c932d
GET /20211106/921CB135F3E3D851/921CB135F3E3D851.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:59 GMT
Content-Type: image/jpeg
Content-Length: 12260
Last-Modified: Tue, 06 Sep 2022 14:31:06 GMT
Connection: keep-alive
ETag: "631759aa-2fe4"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20211222/A3A48421FF2FF504/A3A48421FF2FF504.jpg
200 OK 5.1 kB URL HTTP/1.1 pic1.semaobf1.com/20211222/A3A48421FF2FF504/A3A48421FF2FF504.jpg
IP
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 1805d94ee2b2c3b0c6f58c8cea391274
9dd0d89863c43bff2e723da6e01c1efdef1cf696
934ec9764fb2c9f564f7f45b865bb98222c72aaf597b988519decf7645413998
GET /20211222/A3A48421FF2FF504/A3A48421FF2FF504.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:59 GMT
Content-Type: image/jpeg
Content-Length: 5112
Last-Modified: Tue, 06 Sep 2022 14:29:36 GMT
Connection: keep-alive
ETag: "63175950-13f8"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20220426/6E87C687A589D3D4/6E87C687A589D3D4.jpg
200 OK 10 kB URL HTTP/1.1 pic1.semaobf1.com/20220426/6E87C687A589D3D4/6E87C687A589D3D4.jpg
IP
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash b6ac45182d9290e4d660b6f8a7c62bed
a05b90dc70b4a236c8e188a4a4d91c370b9703b9
65cb9012296b24e7f52204c7a5ba8a2bcae83de2593fb643eb40a7088c585701
GET /20220426/6E87C687A589D3D4/6E87C687A589D3D4.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:59 GMT
Content-Type: image/jpeg
Content-Length: 10145
Last-Modified: Tue, 06 Sep 2022 14:29:56 GMT
Connection: keep-alive
ETag: "63175964-27a1"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic.laoyapic.com/upload/vod/20220519-1/a569266e990a4d618449331afffa8160.jpg
200 OK 60 kB URL HTTP/1.1 pic.laoyapic.com/upload/vod/20220519-1/a569266e990a4d618449331afffa8160.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 980x550, components 3\012- data
Hash 25a215fc823d8c47f5f182786652b536
ec4867b2cf5d8d581b0dd8d46865a41bb04adda7
bc17a5c2139f53db980a18780485c47c74351abf89ddcbb5de394700ea74b482
GET /upload/vod/20220519-1/a569266e990a4d618449331afffa8160.jpg HTTP/1.1
Host: pic.laoyapic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:00 GMT
Content-Type: image/jpeg
Content-Length: 60241
Last-Modified: Sun, 04 Sep 2022 18:06:26 GMT
Connection: keep-alive
ETag: "6314e922-eb51"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20220525/1474478CCA4BDC0A/1474478CCA4BDC0A.jpg
200 OK 24 kB URL HTTP/1.1 pic1.semaobf1.com/20220525/1474478CCA4BDC0A/1474478CCA4BDC0A.jpg
IP
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 384x216, components 3\012- data
Hash e708fcef6c8e7eeeb5594548afa57248
5c439ebc7a2ddcc174dcbb5b39e3f1f853cca2ed
c4f8bb827351a015b6c396cf97283d0cab319cd02ec80dcf01c8ebdc947e7b87
GET /20220525/1474478CCA4BDC0A/1474478CCA4BDC0A.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:59 GMT
Content-Type: image/jpeg
Content-Length: 24120
Last-Modified: Tue, 06 Sep 2022 14:42:54 GMT
Connection: keep-alive
ETag: "63175c6e-5e38"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e789c45e4856e860d2f093c3f9c53451
8a2fa381db391bf1c8e0659a5a13afb5097bc831
5f6ebcd4c93bbbdcb6690a07a97f84431e52e11cea5e822eba757d382d5aa4e0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5F6EBCD4C93BBBDCB6690A07A97F84431E52E11CEA5E822EBA757D382D5AA4E0"
Last-Modified: Tue, 06 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17020
Expires: Thu, 08 Sep 2022 17:28:40 GMT
Date: Thu, 08 Sep 2022 12:45:00 GMT
Connection: keep-alive
pic1.semaobf1.com/20211013/3E329A7C6693E551/3E329A7C6693E551.jpg
200 OK 11 kB URL HTTP/1.1 pic1.semaobf1.com/20211013/3E329A7C6693E551/3E329A7C6693E551.jpg
IP
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 694cc57d8307b1721c457a289661bff3
111b7087ac4f9b1e65bce697af2a1ab19be598f5
9de9db96e83b2741627c86feebe839342de47ad8c042ae5e103629e925ea22a2
GET /20211013/3E329A7C6693E551/3E329A7C6693E551.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:59 GMT
Content-Type: image/jpeg
Content-Length: 11001
Last-Modified: Tue, 06 Sep 2022 14:30:03 GMT
Connection: keep-alive
ETag: "6317596b-2af9"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20210915-1/b11c5f4c7a96e79856fc341c770e93ea.jpg
200 OK 6.7 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20210915-1/b11c5f4c7a96e79856fc341c770e93ea.jpg
IP
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash 404e22c1bf286d4413d0bf594ed98153
7328a836b40b85358d33e59496d81593957c02c9
e3056ee0ccfb90e706b1710624fcfe8c65993a83c09ceac72fcac93c8354f032
GET /upload/vod/20210915-1/b11c5f4c7a96e79856fc341c770e93ea.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:01 GMT
Content-Type: image/jpeg
Content-Length: 6684
Last-Modified: Thu, 11 Aug 2022 12:18:37 GMT
Connection: keep-alive
ETag: "62f4f39d-1a1c"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20211025/55D08C3DD86A9046/55D08C3DD86A9046.jpg
404 Not Found 146 B URL HTTP/1.1 pic1.semaobf1.com/20211025/55D08C3DD86A9046/55D08C3DD86A9046.jpg
IP
ASN #61317 Ipxo Uk Limited
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /20211025/55D08C3DD86A9046/55D08C3DD86A9046.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:59 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 146
Connection: keep-alive
ljcdn.comtucdncom.com/upload/vod/20201223-1/a778877bae400f03a6754fb70d916d72.jpg
200 OK 8.7 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20201223-1/a778877bae400f03a6754fb70d916d72.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 237x178, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash d35cdd661c5ae609d6c536aa6eae6e43
bc582802eff5b93ab94ce323f8cbdc2def34d370
863103a2c2ed6215377ffaea450481e8354c71c9fabe9ec254493920ced00cc6
GET /upload/vod/20201223-1/a778877bae400f03a6754fb70d916d72.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:01 GMT
Content-Type: image/jpeg
Content-Length: 8664
Last-Modified: Thu, 11 Aug 2022 12:20:23 GMT
Connection: keep-alive
ETag: "62f4f407-21d8"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20211116-1/da3e7bca64d33f8a1962d36746f939a5.jpg
200 OK 8.4 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20211116-1/da3e7bca64d33f8a1962d36746f939a5.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash a922c6ddca1d76b2cf24ad40dccc882b
c7ee36c685e119c5f0e271b4802b34023a53ddb5
6a9c0a528b52b20f51fda587e2e6a3a0f9c02bf1107d9eb1b27de41b29e6fb89
GET /upload/vod/20211116-1/da3e7bca64d33f8a1962d36746f939a5.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:01 GMT
Content-Type: image/jpeg
Content-Length: 8361
Last-Modified: Thu, 11 Aug 2022 12:17:46 GMT
Connection: keep-alive
ETag: "62f4f36a-20a9"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20210916-1/1787f5339c97fdd26eefdb2c2df9b562.jpg
200 OK 8.8 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20210916-1/1787f5339c97fdd26eefdb2c2df9b562.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 15x11, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 1910f457ac814a1683e3d3833b01abc0
b03ac5af7bcf81ea9b6a125d7d5dba67df29ab95
50178ce54b0059194d5a09e7bd86b4633361d04cb4cf5f7fd17dae15767da830
GET /upload/vod/20210916-1/1787f5339c97fdd26eefdb2c2df9b562.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:01 GMT
Content-Type: image/jpeg
Content-Length: 8796
Last-Modified: Thu, 11 Aug 2022 12:14:13 GMT
Connection: keep-alive
ETag: "62f4f295-225c"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20211105-1/f1a2aea5e52f68a313d0607a33790504.jpg
200 OK 8.4 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20211105-1/f1a2aea5e52f68a313d0607a33790504.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 255x256, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash c7acf4525f2bc3c2a60fc86c9c220ec9
bc3fb479530ae01528c644359942670c6040c239
8ccb0f139d6d86f919ddae1f84e7846e5c895b929a2e595be9953473ceb27e1c
GET /upload/vod/20211105-1/f1a2aea5e52f68a313d0607a33790504.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:01 GMT
Content-Type: image/jpeg
Content-Length: 8361
Last-Modified: Thu, 11 Aug 2022 12:14:21 GMT
Connection: keep-alive
ETag: "62f4f29d-20a9"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
data1.huakuibf1.com/20220118/D748E407E81E2F6E/D748E407E81E2F6E.jpg
200 OK 11 kB URL HTTP/1.1 data1.huakuibf1.com/20220118/D748E407E81E2F6E/D748E407E81E2F6E.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 3x8, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 0afc9597f31521cac993bb04fd3bb36a
8984e3dd53279144a1e255aefc45999fca5a9192
4d5dacf5eec25eecec58e7374eaffce2818c584a399410159d53488f470f4b57
GET /20220118/D748E407E81E2F6E/D748E407E81E2F6E.jpg HTTP/1.1
Host: data1.huakuibf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:01 GMT
Content-Type: image/jpeg
Content-Length: 10940
Last-Modified: Mon, 28 Feb 2022 13:07:40 GMT
Connection: keep-alive
ETag: "621cc91c-2abc"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20220516/6453D10834C38639/6453D10834C38639.jpg
404 Not Found 146 B URL HTTP/1.1 pic1.semaobf1.com/20220516/6453D10834C38639/6453D10834C38639.jpg
IP
ASN #61317 Ipxo Uk Limited
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /20220516/6453D10834C38639/6453D10834C38639.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:59 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 146
Connection: keep-alive
sycdn.comtucdncom.com/18SEAV-PIC/41513.jpg
200 OK 28 kB URL HTTP/1.1 sycdn.comtucdncom.com/18SEAV-PIC/41513.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 712x400, components 3\012- data
Hash 70f9354e1d37d0d4c3d29dcd00110fe5
97b39e76775543bd0a2263e1332249ff54a3233f
43820f1c2fa1c85aee1de602fb44718a95428d580760c1c2785e1f49893e6859
GET /18SEAV-PIC/41513.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:25 GMT
Content-Type: image/jpeg
Content-Length: 28106
Last-Modified: Wed, 10 Aug 2022 12:11:28 GMT
Connection: keep-alive
ETag: "62f3a070-6dca"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/upload/vod/20201107-1/4efcfa74d697be50ce622fa67a314b50.jpg
200 OK 55 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20201107-1/4efcfa74d697be50ce622fa67a314b50.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 980x550, components 3\012- data
Hash 8ec0811a15372f2bb7c308eefeb91a34
159490cf35da5d3f2bd61e4384e24f7b8209bf13
5464eff0a56a06cd861655cb69b6de20d4dae3eb001859401d61b8960a062676
GET /upload/vod/20201107-1/4efcfa74d697be50ce622fa67a314b50.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:25 GMT
Content-Type: image/jpeg
Content-Length: 54930
Last-Modified: Wed, 10 Aug 2022 12:10:03 GMT
Connection: keep-alive
ETag: "62f3a01b-d692"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
data1.huakuibf1.com/20220526/89A93606DD9AB752/89A93606DD9AB752.jpg
200 OK 20 kB URL HTTP/1.1 data1.huakuibf1.com/20220526/89A93606DD9AB752/89A93606DD9AB752.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 3de0375fc9cedc85c94a71e689c7d79d
bd8ba30d4b9d919f76e2e7b2303dfbe8f272dafe
dfc1165fe023ba1cd5aaf6e87cd7ca287377290a5c2b94a224617ec5ede542f8
GET /20220526/89A93606DD9AB752/89A93606DD9AB752.jpg HTTP/1.1
Host: data1.huakuibf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:01 GMT
Content-Type: image/jpeg
Content-Length: 19485
Last-Modified: Mon, 23 May 2022 11:44:46 GMT
Connection: keep-alive
ETag: "628b73ae-4c1d"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/18SEAV-PIC/11466.jpg
200 OK 19 kB URL HTTP/1.1 sycdn.comtucdncom.com/18SEAV-PIC/11466.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 711x400, components 3\012- data
Hash fe1322b9aa546c2aa2cd788cca6c5773
b5a8b3f8d6a0abba5f8e410003025983ab12d986
fa6b1ead9d3d6712e26e5cb9647be7132cc30cb8dedccbeed2193226d06a5229
GET /18SEAV-PIC/11466.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:26 GMT
Content-Type: image/jpeg
Content-Length: 19008
Last-Modified: Wed, 10 Aug 2022 12:09:39 GMT
Connection: keep-alive
ETag: "62f3a003-4a40"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20211029/7DBCD5D0175DB712/7DBCD5D0175DB712.jpg
200 OK 10 kB URL HTTP/1.1 pic1.semaobf1.com/20211029/7DBCD5D0175DB712/7DBCD5D0175DB712.jpg
IP
ASN #61317 Ipxo Uk Limited
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash 2851bfb25e417ef77ebc7598b7b18ed9
caeb5605485874b7c877aaaf95ad98266200ce8c
93f4c6ff5e0f2dd424cdc297767e6cd84770fe8f855abfccdbc55c3a6af09c98
GET /20211029/7DBCD5D0175DB712/7DBCD5D0175DB712.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:00 GMT
Content-Type: image/jpeg
Content-Length: 10084
Last-Modified: Tue, 06 Sep 2022 14:28:38 GMT
Connection: keep-alive
ETag: "63175916-2764"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20220209/08024A3E86A7D7DF/08024A3E86A7D7DF.jpg
200 OK 6.3 kB URL HTTP/1.1 pic1.semaobf1.com/20220209/08024A3E86A7D7DF/08024A3E86A7D7DF.jpg
IP
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 5da92c8bb147e5ec535dd5d7a6952776
3c7deaa8e11240ab7b95fc1c5ebeaf766c2b6ce9
08c79221729b5285cf1593be937f68370ab659705c8049540f1813547a39c65e
GET /20220209/08024A3E86A7D7DF/08024A3E86A7D7DF.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:00 GMT
Content-Type: image/jpeg
Content-Length: 6284
Last-Modified: Tue, 06 Sep 2022 14:39:06 GMT
Connection: keep-alive
ETag: "63175b8a-188c"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20220421/680D92F8690DABD9/680D92F8690DABD9.jpg
200 OK 9.4 kB URL HTTP/1.1 pic1.semaobf1.com/20220421/680D92F8690DABD9/680D92F8690DABD9.jpg
IP
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 429x320, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash f85855d78254a8e3ae92a467e39be104
e9b3e8ddc51b879f24c814e7ec0ca0d43d12ac96
50d414bacc7ae12501ec9dac91404e4475b1a848ba037c1e9b574b882dcc81fa
GET /20220421/680D92F8690DABD9/680D92F8690DABD9.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:00 GMT
Content-Type: image/jpeg
Content-Length: 9418
Last-Modified: Tue, 06 Sep 2022 14:40:05 GMT
Connection: keep-alive
ETag: "63175bc5-24ca"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20211126/C23F53742B1E4CDB/C23F53742B1E4CDB.jpg
200 OK 224 kB URL HTTP/1.1 pic1.semaobf1.com/20211126/C23F53742B1E4CDB/C23F53742B1E4CDB.jpg
IP
ASN #61317 Ipxo Uk Limited
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 700x394, components 3\012- data
Size 224 kB (223808 bytes)
Hash fd02be7f8217d4fec2295fc8b246024b
f3d3d4c0be51dfcdb10b8c3e01bb0bdcba4f401f
a2ebd43b7ae66b6327bef27be041f8cf6dd5265e026d08040cc559e262f02bf4
GET /20211126/C23F53742B1E4CDB/C23F53742B1E4CDB.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:59 GMT
Content-Type: image/jpeg
Content-Length: 223808
Last-Modified: Tue, 06 Sep 2022 14:32:43 GMT
Connection: keep-alive
ETag: "63175a0b-36a40"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
data1.huakuibf1.com/20220504/7271920786BBC128/7271920786BBC128.jpg
200 OK 31 kB URL HTTP/1.1 data1.huakuibf1.com/20220504/7271920786BBC128/7271920786BBC128.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 384x216, components 3\012- data
Hash b032a1f24faa549ed603a8b994c1b380
c059cf11a80d0102626fda72254e60cd6939a650
1dd0b1823623d4b95c5b0234f22dc9ab42f3dc7deb9e63b477e85932e06a283d
GET /20220504/7271920786BBC128/7271920786BBC128.jpg HTTP/1.1
Host: data1.huakuibf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:01 GMT
Content-Type: image/jpeg
Content-Length: 31009
Last-Modified: Mon, 02 May 2022 07:50:49 GMT
Connection: keep-alive
ETag: "626f8d59-7921"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20220202/0E0CAEE73822EBD7/0E0CAEE73822EBD7.jpg
200 OK 12 kB URL HTTP/1.1 pic1.semaobf1.com/20220202/0E0CAEE73822EBD7/0E0CAEE73822EBD7.jpg
IP
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 573f19b86422b7cc92b08245a2740d58
2750c5481ee34e43c23c2f71c07052924348b324
cdd3d9626cb01da45748d4629e4e76ca9f58cdc74f6de6890415dd77e2b8bebb
GET /20220202/0E0CAEE73822EBD7/0E0CAEE73822EBD7.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:00 GMT
Content-Type: image/jpeg
Content-Length: 11726
Last-Modified: Tue, 06 Sep 2022 14:30:36 GMT
Connection: keep-alive
ETag: "6317598c-2dce"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20220502/21E9B2322171C924/21E9B2322171C924.jpg
200 OK 16 kB URL HTTP/1.1 pic1.semaobf1.com/20220502/21E9B2322171C924/21E9B2322171C924.jpg
IP
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 10943fe19038d33d04fd985ba99f8f97
ed0b67078ad4ba0855bb996119267fe82b811a75
7d8365e34d3f8d119f4717c4ea4473a1aafe0abbe984370ef649fa4cf8fbbae3
GET /20220502/21E9B2322171C924/21E9B2322171C924.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:00 GMT
Content-Type: image/jpeg
Content-Length: 15930
Last-Modified: Tue, 06 Sep 2022 14:30:23 GMT
Connection: keep-alive
ETag: "6317597f-3e3a"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20220518/5DB2FBCF4B6274E3/5DB2FBCF4B6274E3.jpg
200 OK 8.9 kB URL HTTP/1.1 pic1.semaobf1.com/20220518/5DB2FBCF4B6274E3/5DB2FBCF4B6274E3.jpg
IP
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 2142fad52eda501648ee68be695c239f
d26833d4c1a5919cd312383c7faeb5f42fad91ec
71322829a930220cae779d9213329c769698bc804b2cbd214c87e93f766fde2c
GET /20220518/5DB2FBCF4B6274E3/5DB2FBCF4B6274E3.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:00 GMT
Content-Type: image/jpeg
Content-Length: 8893
Last-Modified: Tue, 06 Sep 2022 14:29:10 GMT
Connection: keep-alive
ETag: "63175936-22bd"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20220305/3C45A4A18686A41C/3C45A4A18686A41C.jpg
200 OK 12 kB URL HTTP/1.1 pic1.semaobf1.com/20220305/3C45A4A18686A41C/3C45A4A18686A41C.jpg
IP
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 92ceebac81d0a1594ba8a722595cb9e6
96d7f264bad48552711cb28dc9cfe6dd338f82c6
5dfd6828bc367c61ae99a7ddf451da621bb9d4bf05d044c92c120e9f11116d9f
GET /20220305/3C45A4A18686A41C/3C45A4A18686A41C.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:00 GMT
Content-Type: image/jpeg
Content-Length: 11891
Last-Modified: Tue, 06 Sep 2022 14:28:25 GMT
Connection: keep-alive
ETag: "63175909-2e73"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20220531/E1693CCAC5BA1940/E1693CCAC5BA1940.jpg
200 OK 9.0 kB URL HTTP/1.1 pic1.semaobf1.com/20220531/E1693CCAC5BA1940/E1693CCAC5BA1940.jpg
IP
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 9100130ff4d82351c2bc95e14f314498
7a3c9a76b613a5d46b81500124774eb09abfbf97
97169240b8a3b34a55ae6227aacb34cd1f024792645a3d69be790d013d6d7480
GET /20220531/E1693CCAC5BA1940/E1693CCAC5BA1940.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:00 GMT
Content-Type: image/jpeg
Content-Length: 9015
Last-Modified: Tue, 06 Sep 2022 14:30:08 GMT
Connection: keep-alive
ETag: "63175970-2337"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
dvcasha2.ocsp-certum.com/
200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP
ASN #20940 Akamai International B.V.
Hash 806f4f3536539e2d64e8f424479d9638
3366f9699e74d49e81cda2dde836324863195901
87da11faee9b1d69e533b33be7bd94b0e10f5ff50c51c83e961cf11f3edfa521
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=847
Date: Thu, 08 Sep 2022 12:45:01 GMT
Connection: keep-alive
X-N: S
dvcasha2.ocsp-certum.com/
200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP
ASN #20940 Akamai International B.V.
Hash 806f4f3536539e2d64e8f424479d9638
3366f9699e74d49e81cda2dde836324863195901
87da11faee9b1d69e533b33be7bd94b0e10f5ff50c51c83e961cf11f3edfa521
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=847
Date: Thu, 08 Sep 2022 12:45:01 GMT
Connection: keep-alive
X-N: S
dvcasha2.ocsp-certum.com/
200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP
ASN #20940 Akamai International B.V.
Hash 806f4f3536539e2d64e8f424479d9638
3366f9699e74d49e81cda2dde836324863195901
87da11faee9b1d69e533b33be7bd94b0e10f5ff50c51c83e961cf11f3edfa521
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=847
Date: Thu, 08 Sep 2022 12:45:01 GMT
Connection: keep-alive
X-N: S
sycdn.comtucdncom.com/upload/vod/20210420-1/21b817c80f2346c6dae0768a154cb538.jpg
200 OK 29 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20210420-1/21b817c80f2346c6dae0768a154cb538.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.98.100", baseline, precision 8, 636x364, components 3\012- data
Hash db15d3f9376135b49a6f572ce6e7b374
ecf091fa12e33cf50c529db86331a459f081c4d5
cfda22bcb63eb3f9a21592d150eae2728ef8acc8891ebde0a3974f981e41cfcc
GET /upload/vod/20210420-1/21b817c80f2346c6dae0768a154cb538.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:26 GMT
Content-Type: image/jpeg
Content-Length: 28993
Last-Modified: Wed, 10 Aug 2022 12:13:53 GMT
Connection: keep-alive
ETag: "62f3a101-7141"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20220504/A6DF03CB3D0AEB22/A6DF03CB3D0AEB22.jpg
200 OK 13 kB URL HTTP/1.1 pic1.semaobf1.com/20220504/A6DF03CB3D0AEB22/A6DF03CB3D0AEB22.jpg
IP
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash ad67e7606edb4c62a664a4ad87921edf
4ec3a78cb5f2e4169d16ab24b1f2732b99671cb3
0d05a5802a0a74f35543893c137f15ff210b77ae1a5bca29dd58ee40c73df471
GET /20220504/A6DF03CB3D0AEB22/A6DF03CB3D0AEB22.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:00 GMT
Content-Type: image/jpeg
Content-Length: 12855
Last-Modified: Tue, 06 Sep 2022 14:28:10 GMT
Connection: keep-alive
ETag: "631758fa-3237"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20220413/530635B1D33F02C6/530635B1D33F02C6.jpg
200 OK 5.8 kB URL HTTP/1.1 pic1.semaobf1.com/20220413/530635B1D33F02C6/530635B1D33F02C6.jpg
IP
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 14257406db866c617cd87ad428dfeb7b
9668db591c9760d612a54310bed81fff31c155cf
a9e8fa9dba943dd15ca39982cc2404476f4fbac86f730d9d4cc81d1b0f1cf7b1
GET /20220413/530635B1D33F02C6/530635B1D33F02C6.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:00 GMT
Content-Type: image/jpeg
Content-Length: 5820
Last-Modified: Tue, 06 Sep 2022 14:30:48 GMT
Connection: keep-alive
ETag: "63175998-16bc"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20220103/24BE706197990279/24BE706197990279.jpg
404 Not Found 146 B URL HTTP/1.1 pic1.semaobf1.com/20220103/24BE706197990279/24BE706197990279.jpg
IP
ASN #61317 Ipxo Uk Limited
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /20220103/24BE706197990279/24BE706197990279.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:00 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 146
Connection: keep-alive
sycdn.comtucdncom.com/images/2022/03/01/wuma4315.jpg
200 OK 38 kB URL HTTP/1.1 sycdn.comtucdncom.com/images/2022/03/01/wuma4315.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 800x450, components 3\012- data
Hash 50e5101d3cca61c8eb7e04bf10f82dca
df9bebbd56133a3c0f206c443472b286219ab535
19dcc34b2fe4060718bba5717f4d1a569ab719457ba1ab6073d7730a9ec99bb7
GET /images/2022/03/01/wuma4315.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:26 GMT
Content-Type: image/jpeg
Content-Length: 37471
Last-Modified: Wed, 10 Aug 2022 12:11:42 GMT
Connection: keep-alive
ETag: "62f3a07e-925f"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20211006/5736CD10AC85BAA8/5736CD10AC85BAA8.jpg
200 OK 5.9 kB URL HTTP/1.1 pic1.semaobf1.com/20211006/5736CD10AC85BAA8/5736CD10AC85BAA8.jpg
IP
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash cc316ce0b3def4d86df1e6bf57eb1d1c
2e22e7f0c02c11a5e079085864a9ae500d177839
8e869d050a16e48735f741869ddf948b267f2ace4d3d312f96e1a8da8bff0def
GET /20211006/5736CD10AC85BAA8/5736CD10AC85BAA8.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:00 GMT
Content-Type: image/jpeg
Content-Length: 5863
Last-Modified: Tue, 06 Sep 2022 14:34:55 GMT
Connection: keep-alive
ETag: "63175a8f-16e7"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20211201/A55690D43F8E31DE/A55690D43F8E31DE.jpg
404 Not Found 146 B URL HTTP/1.1 pic1.semaobf1.com/20211201/A55690D43F8E31DE/A55690D43F8E31DE.jpg
IP
ASN #61317 Ipxo Uk Limited
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /20211201/A55690D43F8E31DE/A55690D43F8E31DE.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:00 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 146
Connection: keep-alive
pic1.semaobf1.com/20220215/FB8B3ACB4424CE97/FB8B3ACB4424CE97.jpg
200 OK 11 kB URL HTTP/1.1 pic1.semaobf1.com/20220215/FB8B3ACB4424CE97/FB8B3ACB4424CE97.jpg
IP
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash c140e88a9d066bd0620cbe35348f5829
2d7e06abe39fb9e334234231fab3785c9c191894
05ca9333b9e535f1b20876b018060ccfde5001213c9d0bb88641366578245c79
GET /20220215/FB8B3ACB4424CE97/FB8B3ACB4424CE97.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:00 GMT
Content-Type: image/jpeg
Content-Length: 11016
Last-Modified: Tue, 06 Sep 2022 14:29:37 GMT
Connection: keep-alive
ETag: "63175951-2b08"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20210928/AA5C1C3C0D614B29/AA5C1C3C0D614B29.jpg
200 OK 8.8 kB URL HTTP/1.1 pic1.semaobf1.com/20210928/AA5C1C3C0D614B29/AA5C1C3C0D614B29.jpg
IP
ASN #61317 Ipxo Uk Limited
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash f307f42df7d74fff3060999242c89e35
e9d6485ffc8905fcb1596b113e0a76b2839a2c9e
328d8fc7349b0a930fa6ec836b3a518341af5f02bbfbcd4512e9777e080c18d4
GET /20210928/AA5C1C3C0D614B29/AA5C1C3C0D614B29.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:00 GMT
Content-Type: image/jpeg
Content-Length: 8750
Last-Modified: Tue, 06 Sep 2022 14:29:08 GMT
Connection: keep-alive
ETag: "63175934-222e"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/upload/vod/20210212-1/c87dcfaf4e7add9c22b3a4e1beabd9f6.jpg
200 OK 72 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20210212-1/c87dcfaf4e7add9c22b3a4e1beabd9f6.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 795x458, components 3\012- data
Hash 3e8ea030c4d0c5f6ed46baca6148477d
51b4beb45ca2b2e1b46636511e2751382e59d91e
f8ee1161dde4f79e05da1e0119e26a0d69fe47741a561431e26172ee46936d3f
GET /upload/vod/20210212-1/c87dcfaf4e7add9c22b3a4e1beabd9f6.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:26 GMT
Content-Type: image/jpeg
Content-Length: 72522
Last-Modified: Wed, 10 Aug 2022 12:10:05 GMT
Connection: keep-alive
ETag: "62f3a01d-11b4a"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/dderwmzw-pic/image_20190911104202156816.jpg
200 OK 47 kB URL HTTP/1.1 sycdn.comtucdncom.com/dderwmzw-pic/image_20190911104202156816.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 596x400, components 3\012- data
Hash 5658f3780900295f8c1c559cf1977dcf
1c935e2dd35c90dfd0f6102904485479c8bc318e
08409bdbd95a80de1e84263fd3074e0525ab22e05ee44960b35bc0d03bd526a6
GET /dderwmzw-pic/image_20190911104202156816.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:26 GMT
Content-Type: image/jpeg
Content-Length: 46740
Last-Modified: Wed, 10 Aug 2022 12:10:31 GMT
Connection: keep-alive
ETag: "62f3a037-b694"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
data1.huakuibf1.com/20220209/419AA6B2FDF3CDAB/419AA6B2FDF3CDAB.jpg
200 OK 8.0 kB URL HTTP/1.1 data1.huakuibf1.com/20220209/419AA6B2FDF3CDAB/419AA6B2FDF3CDAB.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 27x64, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 05b46e989f49f4a6115cafa9964f64be
3227cfafb240223fd4a10e2f9c3ed8dfb0cd3335
0dc7779a842c1771a062beba0e9d2630ee25e78f3f98b59662af0c4bc4933c6e
GET /20220209/419AA6B2FDF3CDAB/419AA6B2FDF3CDAB.jpg HTTP/1.1
Host: data1.huakuibf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 8003
Last-Modified: Mon, 28 Feb 2022 13:11:09 GMT
Connection: keep-alive
ETag: "621cc9ed-1f43"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
xiusebf1.com/20210811/bkO5CpOk/1.jpg
200 OK 8.8 kB URL HTTP/1.1 xiusebf1.com/20210811/bkO5CpOk/1.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 286x381, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash d2c1fb27149bf41e8e2bad98f9b74ffc
292fec9ee91752378f00bf19b1fa9c61fc952e28
1484fe6bf62b997cf7c4f4b3ec5bd6d2e457d2ffdedd318a8f7e2a16dc2626d0
GET /20210811/bkO5CpOk/1.jpg HTTP/1.1
Host: xiusebf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:33 GMT
Content-Type: image/jpeg
Content-Length: 8771
Last-Modified: Sat, 23 Jul 2022 06:13:04 GMT
Connection: keep-alive
ETag: "62db9170-2243"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/papa-PIC/avid589c0afad73a8.jpg
200 OK 57 kB URL HTTP/1.1 sycdn.comtucdncom.com/papa-PIC/avid589c0afad73a8.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.63.103", baseline, precision 8, 1024x576, components 3\012- data
Hash 4e833adc6b13738055a6ac17e6f78bd2
a6638789d5825592dfe2dddd5b9974f9f1d6f66a
e52f229176d0a746f8ababa237f9cc3930cc2bfa7d86765e17b565ca4d65fb45
GET /papa-PIC/avid589c0afad73a8.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:26 GMT
Content-Type: image/jpeg
Content-Length: 57391
Last-Modified: Wed, 10 Aug 2022 12:18:00 GMT
Connection: keep-alive
ETag: "62f3a1f8-e02f"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e789c45e4856e860d2f093c3f9c53451
8a2fa381db391bf1c8e0659a5a13afb5097bc831
5f6ebcd4c93bbbdcb6690a07a97f84431e52e11cea5e822eba757d382d5aa4e0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5F6EBCD4C93BBBDCB6690A07A97F84431E52E11CEA5E822EBA757D382D5AA4E0"
Last-Modified: Tue, 06 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17018
Expires: Thu, 08 Sep 2022 17:28:40 GMT
Date: Thu, 08 Sep 2022 12:45:02 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e789c45e4856e860d2f093c3f9c53451
8a2fa381db391bf1c8e0659a5a13afb5097bc831
5f6ebcd4c93bbbdcb6690a07a97f84431e52e11cea5e822eba757d382d5aa4e0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5F6EBCD4C93BBBDCB6690A07A97F84431E52E11CEA5E822EBA757D382D5AA4E0"
Last-Modified: Tue, 06 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17018
Expires: Thu, 08 Sep 2022 17:28:40 GMT
Date: Thu, 08 Sep 2022 12:45:02 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e789c45e4856e860d2f093c3f9c53451
8a2fa381db391bf1c8e0659a5a13afb5097bc831
5f6ebcd4c93bbbdcb6690a07a97f84431e52e11cea5e822eba757d382d5aa4e0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5F6EBCD4C93BBBDCB6690A07A97F84431E52E11CEA5E822EBA757D382D5AA4E0"
Last-Modified: Tue, 06 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17018
Expires: Thu, 08 Sep 2022 17:28:40 GMT
Date: Thu, 08 Sep 2022 12:45:02 GMT
Connection: keep-alive
xiusebf1.com/20210813/AtkUQQHR/1.jpg
200 OK 10 kB URL HTTP/1.1 xiusebf1.com/20210813/AtkUQQHR/1.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash b5b4eb7cca1a60c4c925f9f380fa005d
90cad237869d1af7087292b986366bed4bb1e80c
45f626ca5fa608c37623517fecb709afb2516b84617502c4bb7bf075594b7440
GET /20210813/AtkUQQHR/1.jpg HTTP/1.1
Host: xiusebf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:33 GMT
Content-Type: image/jpeg
Content-Length: 9980
Last-Modified: Sat, 23 Jul 2022 06:29:44 GMT
Connection: keep-alive
ETag: "62db9558-26fc"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ocsp.trust-provider.cn/
200 OK 600 B IP
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash dbed7c876423bf87fc7d364de5246107
1017f611f46e836ffc9293cf85ec8bbca68bd90c
1b1466be39448fc150c8c1e9abe59075d336103cf82cc738e2d2a511394bb716
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Thu, 08 Sep 2022 12:19:38 GMT
last-modified: Thu, 08 Sep 2022 03:51:04 GMT
expires: Thu, 15 Sep 2022 03:51:03 GMT
etag: "1017f611f46e836ffc9293cf85ec8bbca68bd90c"
cache-control: max-age=603074,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb3
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
cf-ray: 7477a232feb29186-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1662639578
via: cache3.l2de2[0,0,304-0,H], cache20.l2de2[0,0], cache7.se1[0,0,200-0,H], cache1.se1[1,0], cache7.se1[3,0]
age: 1524
x-cache: HIT TCP_MEM_HIT dirn:11:137336839
x-swift-savetime: Thu, 08 Sep 2022 12:44:11 GMT
x-swift-cachetime: 327
timing-allow-origin: *, *
eagleid: 2ff62c9b16626411022384599e, 2ff62c9b16626411022384599e
ocsp.trust-provider.cn/
200 OK 600 B IP
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash dbed7c876423bf87fc7d364de5246107
1017f611f46e836ffc9293cf85ec8bbca68bd90c
1b1466be39448fc150c8c1e9abe59075d336103cf82cc738e2d2a511394bb716
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Thu, 08 Sep 2022 12:19:38 GMT
last-modified: Thu, 08 Sep 2022 03:51:04 GMT
expires: Thu, 15 Sep 2022 03:51:03 GMT
etag: "1017f611f46e836ffc9293cf85ec8bbca68bd90c"
cache-control: max-age=603074,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb3
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
cf-ray: 7477a232feb29186-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1662639578
via: cache3.l2de2[0,0,304-0,H], cache20.l2de2[0,0], cache7.se1[0,0,200-0,H], cache1.se1[0,0], cache2.se1[2,0]
age: 1524
x-cache: HIT TCP_MEM_HIT dirn:11:137336839
x-swift-savetime: Thu, 08 Sep 2022 12:44:11 GMT
x-swift-cachetime: 327
timing-allow-origin: *, *
eagleid: 2ff62c9616626411022434088e, 2ff62c9616626411022434088e
sycdn.comtucdncom.com/papa-PIC/avid5955f1bd61a66.jpg
200 OK 38 kB URL HTTP/1.1 sycdn.comtucdncom.com/papa-PIC/avid5955f1bd61a66.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.63.103", baseline, precision 8, 1024x576, components 3\012- data
Hash 5fc2a367156c1fb3fc532e6fe9e2a42d
e2aa56454012260361afce5a83e259978d62ba7e
060f0bbe0251cdf5dff8565e27f0442aaaa38d03b364636e1fe62fcf5d9e8442
GET /papa-PIC/avid5955f1bd61a66.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:26 GMT
Content-Type: image/jpeg
Content-Length: 38069
Last-Modified: Wed, 10 Aug 2022 12:14:13 GMT
Connection: keep-alive
ETag: "62f3a115-94b5"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ocsp.digicert.com/
200 OK 471 B IP
Hash 042105f89c8d64b470d84e052cd412d1
a26c7e2559b3760ea2765b16a3f8d1be27f5dcf4
fadb8cdd22f4d7773d5c20d576f6400ab25e20e1efe3e3fe50d2ae39ca6f2725
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5495
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 12:45:02 GMT
Last-Modified: Thu, 08 Sep 2022 11:13:27 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
pic.laoyapic.com/upload/vod/20220223-1/b3ff6eadd42bf3504bca7bf2441257f6.jpg
200 OK 7.0 kB URL HTTP/1.1 pic.laoyapic.com/upload/vod/20220223-1/b3ff6eadd42bf3504bca7bf2441257f6.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc58.54.100", baseline, precision 8, 320x240, components 3\012- data
Hash dd8a70cf983e8269cdf75a736b68c920
2e0fba546287363f15a057420a367bdc81ea220e
d890548a1ffba20ad59a3adc3611ff09ee783de09f2aee9f810dfd4341284763
GET /upload/vod/20220223-1/b3ff6eadd42bf3504bca7bf2441257f6.jpg HTTP/1.1
Host: pic.laoyapic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 7008
Last-Modified: Sun, 04 Sep 2022 19:04:29 GMT
Connection: keep-alive
ETag: "6314f6bd-1b60"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
statuse.digitalcertvalidation.com/
200 OK 471 B URL HTTP/1.1 statuse.digitalcertvalidation.com/
IP
Hash 4922a086c7e9e819692fc584421bc301
b8912eb9b87edca2e8fc95729ad3f9916632fb7f
25d621c0754564900ad276d5409a9e992de0d20c8b3c8653d926500cc845d609
POST / HTTP/1.1
Host: statuse.digitalcertvalidation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5144
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 12:45:02 GMT
Etag: "63189fd2-1d7"
Last-Modified: Thu, 08 Sep 2022 11:19:18 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
statuse.digitalcertvalidation.com/
200 OK 471 B URL HTTP/1.1 statuse.digitalcertvalidation.com/
IP
Hash 4922a086c7e9e819692fc584421bc301
b8912eb9b87edca2e8fc95729ad3f9916632fb7f
25d621c0754564900ad276d5409a9e992de0d20c8b3c8653d926500cc845d609
POST / HTTP/1.1
Host: statuse.digitalcertvalidation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3848
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 12:45:02 GMT
Last-Modified: Thu, 08 Sep 2022 11:40:55 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
ocsp.sectigo.com/
200 OK 472 B IP
Hash 143fd2028431f3bbef9def3212df00d1
001ccf76ccc999c102103412c69051c71bd74254
e4262fd0e5e45117d4e426fdf9290300b298582c0f13af55772254087945cae4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 06 Sep 2022 18:07:39 GMT
Expires: Tue, 13 Sep 2022 18:07:38 GMT
Etag: "001ccf76ccc999c102103412c69051c71bd74254"
Cache-Control: max-age=450755,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7477c769e8ccb50b-OSL
ocsp.globalsign.com/gsgccr3dvtlsca2020
200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP
Hash 205952f18de8b18b298fe97f90537e5c
19241d57d5a107d521d923fae745270d73179905
dd4b0fd70776c2e783e4a90636488a5b44d062f6a2f2248c14df0ffa2456e434
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Mon, 12 Sep 2022 10:39:33 GMT
ETag: "19241d57d5a107d521d923fae745270d73179905"
Last-Modified: Thu, 08 Sep 2022 10:39:34 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1194
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7477c76a4bd5b515-OSL
sycdn.comtucdncom.com/upload/vod/20200806-1/d59ad6791ae1acc0c3390e1debd63333.jpg
200 OK 96 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20200806-1/d59ad6791ae1acc0c3390e1debd63333.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 791x512, components 3\012- data
Hash 67df210f2b035925297e7b81e22d7b33
3f2ce6c93f11d4e763ce626f88d63c9c04efa5ed
74aef7b433ec5c3f33f9c00df98228473f9976d4b1297ddde038c3c5c63b640a
GET /upload/vod/20200806-1/d59ad6791ae1acc0c3390e1debd63333.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:26 GMT
Content-Type: image/jpeg
Content-Length: 95758
Last-Modified: Wed, 10 Aug 2022 12:08:29 GMT
Connection: keep-alive
ETag: "62f39fbd-1760e"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ocsp.sectigo.com/
200 OK 472 B IP
Hash 143fd2028431f3bbef9def3212df00d1
001ccf76ccc999c102103412c69051c71bd74254
e4262fd0e5e45117d4e426fdf9290300b298582c0f13af55772254087945cae4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 06 Sep 2022 18:07:39 GMT
Expires: Tue, 13 Sep 2022 18:07:38 GMT
Etag: "001ccf76ccc999c102103412c69051c71bd74254"
Cache-Control: max-age=450755,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7477c7693857b527-OSL
ocsp.sectigo.com/
200 OK 472 B IP
Hash 143fd2028431f3bbef9def3212df00d1
001ccf76ccc999c102103412c69051c71bd74254
e4262fd0e5e45117d4e426fdf9290300b298582c0f13af55772254087945cae4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 06 Sep 2022 18:07:39 GMT
Expires: Tue, 13 Sep 2022 18:07:38 GMT
Etag: "001ccf76ccc999c102103412c69051c71bd74254"
Cache-Control: max-age=450755,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7477c7694833b509-OSL
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ece86515fa98334ce364e851735e20a1
f76fab90360bd0620469c6af0ac2b678a2b6bf94
9d6383b540c6d241f169bd20de089916e89ca3c51351e501ed1cedfb388bee6b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9D6383B540C6D241F169BD20DE089916E89CA3C51351E501ED1CEDFB388BEE6B"
Last-Modified: Wed, 07 Sep 2022 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8562
Expires: Thu, 08 Sep 2022 15:07:44 GMT
Date: Thu, 08 Sep 2022 12:45:02 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ece86515fa98334ce364e851735e20a1
f76fab90360bd0620469c6af0ac2b678a2b6bf94
9d6383b540c6d241f169bd20de089916e89ca3c51351e501ed1cedfb388bee6b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9D6383B540C6D241F169BD20DE089916E89CA3C51351E501ED1CEDFB388BEE6B"
Last-Modified: Wed, 07 Sep 2022 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8562
Expires: Thu, 08 Sep 2022 15:07:44 GMT
Date: Thu, 08 Sep 2022 12:45:02 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ece86515fa98334ce364e851735e20a1
f76fab90360bd0620469c6af0ac2b678a2b6bf94
9d6383b540c6d241f169bd20de089916e89ca3c51351e501ed1cedfb388bee6b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9D6383B540C6D241F169BD20DE089916E89CA3C51351E501ED1CEDFB388BEE6B"
Last-Modified: Wed, 07 Sep 2022 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8562
Expires: Thu, 08 Sep 2022 15:07:44 GMT
Date: Thu, 08 Sep 2022 12:45:02 GMT
Connection: keep-alive
ocsp.globalsign.com/gsrsaovsslca2018
200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP
Hash 377fbbc52dfdb32516f55f3cd565b12c
0563d040ff06332898a2420f28e68357cebf66b8
8cf22790f744659cf13e4d23609cdc807127141b5701497ad5aff9c149e8bf76
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Mon, 12 Sep 2022 10:43:51 GMT
ETag: "0563d040ff06332898a2420f28e68357cebf66b8"
Last-Modified: Thu, 08 Sep 2022 10:43:52 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 675
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7477c76aac64b515-OSL
fmlb.netlbtu.com/upload/vod/2019/11-13/21/jpzy3wityl32117jpzy3wityl3482841.jpg
200 OK 7.8 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2019/11-13/21/jpzy3wityl32117jpzy3wityl3482841.jpg
IP
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash a888b6a6958f19bd55088c0842a6a553
31a8dc639865acdde0e08a1cf190d953c45721a2
497651b37cd597c335ca5598b09d57c6bdf768486843b310b4db5c7f48f5d963
GET /upload/vod/2019/11-13/21/jpzy3wityl32117jpzy3wityl3482841.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:45:02 GMT
content-type: image/jpeg
content-length: 7772
cf-bgj: h2pri
etag: "75d770be249ad51:0"
last-modified: Wed, 13 Nov 2019 13:17:48 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 54
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hKfH0iV%2BVlzAGa6v4DcXTzo1i%2Ff5EpcYgmUiSfeDDr%2FcPOzXSInqN2bTzWhQvhdb%2FoP8RFr1pvIRGqQqJyXIIJ20730P3agyBd0Q3mp9SxsuKXZruRQ83YV3oAsfL6iMr4UZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c76a984c75d2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.trust-provider.cn/
200 OK 599 B IP
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 9b596444c530190ec7d5f459f3ff8843
065f6b5ac297d6c9523c812e7d72c9e7f424bd7c
99bb95fc152a80c0ecfaf5de9a1e2da1fc238ef5827049c01d43693c6d1712df
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Thu, 08 Sep 2022 12:36:08 GMT
last-modified: Mon, 05 Sep 2022 13:02:28 GMT
expires: Mon, 12 Sep 2022 13:02:27 GMT
etag: "065f6b5ac297d6c9523c812e7d72c9e7f424bd7c"
cache-control: max-age=602646,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb3
x-frame-options: SAMEORIGIN
cf-cache-status: REVALIDATED
cf-ray: 7477ba607f435c80-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1662640568
via: cache20.l2de2[31,30,304-0,M], cache4.l2de2[32,0], cache4.se1[0,0,200-0,H], cache1.se1[1,0], cache7.se1[2,0]
age: 534
x-cache: HIT TCP_MEM_HIT dirn:4:76727077
x-swift-savetime: Thu, 08 Sep 2022 12:36:08 GMT
x-swift-cachetime: 1800
timing-allow-origin: *, *
eagleid: 2ff62c9b16626411024904755e, 2ff62c9b16626411024904755e
ocsp.globalsign.com/gsrsaovsslca2018
200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP
Hash 377fbbc52dfdb32516f55f3cd565b12c
0563d040ff06332898a2420f28e68357cebf66b8
8cf22790f744659cf13e4d23609cdc807127141b5701497ad5aff9c149e8bf76
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Mon, 12 Sep 2022 10:43:51 GMT
ETag: "0563d040ff06332898a2420f28e68357cebf66b8"
Last-Modified: Thu, 08 Sep 2022 10:43:52 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 675
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7477c76abc79b515-OSL
fmlb.netlbtu.com/upload/vod/2021/05-19/06/rlopz34etoh0608rlopz34etoh471039.jpg
200 OK 9.0 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2021/05-19/06/rlopz34etoh0608rlopz34etoh471039.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 64af21137dbe4dce67563bcbc0512f1e
bee3b6a72b11ba66bd2bb0df244a141273c50d4b
5a0dee7cd628fb74f7cbcd4bd508a16184d532e140b76c49cb3e8a558bbb88d4
GET /upload/vod/2021/05-19/06/rlopz34etoh0608rlopz34etoh471039.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:45:02 GMT
content-type: image/jpeg
content-length: 8986
cf-bgj: h2pri
etag: "f3e8e05f324cd71:0"
last-modified: Tue, 18 May 2021 22:08:47 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 54
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4nc55NpBd909lwqcnenKgMvWtmFtrZOo9ogv8SMmQ5tdXZP4XtM3xhLt5BfLOeKE3ZQQdSsgbeAZNXVVomqYYKZ6pue%2FlAEu%2BmFujbBTwNlummWIDDI1I%2F6dpbkqXlpDwUhz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c76a985675d2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
sycdn.comtucdncom.com/upload/vod/20200817-1/bbcc1b275804f8ebfa8056c9929f1ee7.jpg
200 OK 190 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20200817-1/bbcc1b275804f8ebfa8056c9929f1ee7.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "Lavc57.51.100", baseline, precision 8, 761x512, components 3\012- data
Size 190 kB (190503 bytes)
Hash 40cf7c10af783e250404839331d10e0c
5259ce28b405f82b6653ea11ef153cdb72163921
99ff01f336aa6fa7ddc8d895cd50cd022c0eb03acbbf5e178c55232b4a126189
GET /upload/vod/20200817-1/bbcc1b275804f8ebfa8056c9929f1ee7.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:26 GMT
Content-Type: image/jpeg
Content-Length: 190503
Last-Modified: Wed, 10 Aug 2022 12:11:33 GMT
Connection: keep-alive
ETag: "62f3a075-2e827"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7868
Expires: Thu, 08 Sep 2022 14:56:10 GMT
Date: Thu, 08 Sep 2022 12:45:02 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7868
Expires: Thu, 08 Sep 2022 14:56:10 GMT
Date: Thu, 08 Sep 2022 12:45:02 GMT
Connection: keep-alive
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 4aH3NuDTiCbO5Aapk1K3gA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 4OHZ4CiqN/hrbfKIt25Q8tMSARg=
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7868
Expires: Thu, 08 Sep 2022 14:56:10 GMT
Date: Thu, 08 Sep 2022 12:45:02 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Thu, 08 Sep 2022 12:38:18 GMT
Cache-Control: max-age=3600
Expires: Thu, 08 Sep 2022 13:19:47 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 4yh3xu_m9WTxJ-PHyqa4OcmOslmsrioEr5wb64hyWU3GrlhwWI93TQ==
Age: 404
ocsp.sectigo.com/
200 OK 472 B IP
Hash 143fd2028431f3bbef9def3212df00d1
001ccf76ccc999c102103412c69051c71bd74254
e4262fd0e5e45117d4e426fdf9290300b298582c0f13af55772254087945cae4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 06 Sep 2022 18:07:39 GMT
Expires: Tue, 13 Sep 2022 18:07:38 GMT
Etag: "001ccf76ccc999c102103412c69051c71bd74254"
Cache-Control: max-age=450755,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7477c769b8dfb509-OSL
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8def29c-7ade-4990-abac-c54befd5dd27.jpeg
200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8def29c-7ade-4990-abac-c54befd5dd27.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b413a04f7d68e7fbcc3c8eca91c380c5
48c83029644495c0ee4041d647e7f29a38048825
d5fd885c0e8e9788d6006123b4eaa4e588ef7658b73c2f711445100142d784f4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8def29c-7ade-4990-abac-c54befd5dd27.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6330
x-amzn-requestid: 9e6e1482-e341-4abf-9aab-0c9a1c2911ae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9TgGplIAMFd1g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f49-69decda2237011501bdc7327;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:38:17 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: KwVV15KPKIWgELQ4Svs5GDj2XZDia4tXiDyBXncXJKs_hCzK58DoRw==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 22:02:24 GMT
etag: "48c83029644495c0ee4041d647e7f29a38048825"
content-type: image/jpeg
age: 52958
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F822fb287-f1f6-45a1-be54-4fa7385bb163.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F822fb287-f1f6-45a1-be54-4fa7385bb163.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6f73ee4e91b38eaa36cadd4c437785f8
6ceea057f5ae50b9cef505da0a358e3d3b7d6a38
778d28e14b28c154843403470136d0efdcdd5e93e4b5aab784c12d4344e7af6f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F822fb287-f1f6-45a1-be54-4fa7385bb163.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11365
x-amzn-requestid: d50039cd-381c-4221-997e-9231d40ecfbb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9V0EHEoAMFeag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f58-11cab61904bd14462cd13d0d;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:38:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Qhobt81rs5gqg8hcr1Su3J3MNFt4_gR2hLHkIl5xDDS1HF9g_3ecCg==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 22:40:35 GMT
age: 50667
etag: "6ceea057f5ae50b9cef505da0a358e3d3b7d6a38"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6069f6c-2029-46b3-9867-5eaeb96d65e7.jpeg
200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6069f6c-2029-46b3-9867-5eaeb96d65e7.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7ca5b5d4ac26d97b5729a30ecdc688bc
3e633bc6c4ab9adfe84899e5209d73bef1d097eb
2c8275d1819d933f86df9685b76aea030842ba5a341c59ea88ffd2da99a5a3d5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6069f6c-2029-46b3-9867-5eaeb96d65e7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7885
x-amzn-requestid: 305dc6b7-eb3d-40ad-af89-8b60be935637
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9ThE3DIAMFRtA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f49-7c0b58644e26de7f27c5b388;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:38:17 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: MG4_YJuVqfSCQ80FTdo5XU8xIi74XtILVbIQAbByh54QNOoMJCyS-Q==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 5abfab33f248090bb0f31ca137ce9464.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 21:47:05 GMT
age: 53877
etag: "3e633bc6c4ab9adfe84899e5209d73bef1d097eb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
pic.laoyapic.com/upload/vod/20220409-1/cbdbc63d803d5cfaf500d0a300219610.jpg
200 OK 10 kB URL HTTP/1.1 pic.laoyapic.com/upload/vod/20220409-1/cbdbc63d803d5cfaf500d0a300219610.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc58.54.100", baseline, precision 8, 320x240, components 3\012- data
Hash 3bb898dda7fb4d2749c825c3e26fed83
53073bf6fe15a65b863b08a943d436629527aca7
fa9bfd287a1350b690112ba50f83873f76751de3a4ff6070f2def39385d5cac2
GET /upload/vod/20220409-1/cbdbc63d803d5cfaf500d0a300219610.jpg HTTP/1.1
Host: pic.laoyapic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 10540
Last-Modified: Sun, 04 Sep 2022 18:11:59 GMT
Connection: keep-alive
ETag: "6314ea6f-292c"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ocsp.sectigo.com/
200 OK 472 B IP
Hash 143fd2028431f3bbef9def3212df00d1
001ccf76ccc999c102103412c69051c71bd74254
e4262fd0e5e45117d4e426fdf9290300b298582c0f13af55772254087945cae4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 06 Sep 2022 18:07:39 GMT
Expires: Tue, 13 Sep 2022 18:07:38 GMT
Etag: "001ccf76ccc999c102103412c69051c71bd74254"
Cache-Control: max-age=450755,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7477c769dcb8b500-OSL
img.tpttzy.com/upload/vod/20211210-1/5f4c0f29a694a5476f206a2edcb5252f.jpg
200 OK 6.1 kB URL HTTP/1.1 img.tpttzy.com/upload/vod/20211210-1/5f4c0f29a694a5476f206a2edcb5252f.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash b9f6f96ace7b83c79fd8e29d4c3d542d
c2e61c0416e3347a434a09a94e1f263ebb01eb06
c474917987d81d2dcf7d6a3bae195958b43da0be6fa59a0a16ca103e46c96093
GET /upload/vod/20211210-1/5f4c0f29a694a5476f206a2edcb5252f.jpg HTTP/1.1
Host: img.tpttzy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 6137
Last-Modified: Tue, 07 Jun 2022 09:15:58 GMT
Connection: keep-alive
ETag: "629f174e-17f9"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic.laoyapic.com/upload/vod/20220327-1/b5787c3c61a35565d2d8241ec82277f0.jpg
200 OK 54 kB URL HTTP/1.1 pic.laoyapic.com/upload/vod/20220327-1/b5787c3c61a35565d2d8241ec82277f0.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 960x540, components 3\012- data
Hash 2dff7219da18f31a76347938e3f8970a
82dd11dc90769e2ca5ec0b90ff206919376789e0
1e8bfa21b3192aa09df41affbb0dcfb8da058acc92dc8742661de9f66e27356a
GET /upload/vod/20220327-1/b5787c3c61a35565d2d8241ec82277f0.jpg HTTP/1.1
Host: pic.laoyapic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 54308
Last-Modified: Sun, 04 Sep 2022 18:16:51 GMT
Connection: keep-alive
ETag: "6314eb93-d424"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.tpttzy.com/upload/vod/20211128-1/788489eec29c77a590f792621bdf6d53.jpg
200 OK 9.2 kB URL HTTP/1.1 img.tpttzy.com/upload/vod/20211128-1/788489eec29c77a590f792621bdf6d53.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 6172ebb5ce39d65e0ae61975625bdd73
664312de2340fe788df94c94ebfc3b2d15106fa5
8b23e9f03ad0f76d4bf69f4e88a83aa514c8498291e4c0def186b7e239f3b08f
GET /upload/vod/20211128-1/788489eec29c77a590f792621bdf6d53.jpg HTTP/1.1
Host: img.tpttzy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 9167
Last-Modified: Tue, 07 Jun 2022 09:12:31 GMT
Connection: keep-alive
ETag: "629f167f-23cf"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5314d83a-c7f9-468e-8b42-535c4fae5d85.jpeg
200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5314d83a-c7f9-468e-8b42-535c4fae5d85.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a07d553b6441514870ed7e9e989a29a7
98c145b9326d1e6036fa9089d87a25232dd45b0b
373a586b596016baeb8de98022207c25af24c099c06077edbdfd837cffc31a0e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5314d83a-c7f9-468e-8b42-535c4fae5d85.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7492
x-amzn-requestid: 2c5e9ff3-c7a4-4a8f-96bf-74f0ca5d9137
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9dOHguIAMFjGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f87-70dbe6532b1a241e6dbe729e;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:39:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lbCmv9fV9iBGOQvxRzleYwC5dBYeu1kRgSSkC2hycDmavyXj-KlFSw==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 22:24:59 GMT
age: 51603
etag: "98c145b9326d1e6036fa9089d87a25232dd45b0b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
pic.laoyapic.com/upload/vod/20220224-2/aa01a81fc25ca87c1e98e668faf745e1.jpg
200 OK 7.0 kB URL HTTP/1.1 pic.laoyapic.com/upload/vod/20220224-2/aa01a81fc25ca87c1e98e668faf745e1.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 9x8, segment length 16, comment: "Lavc58.54.100", baseline, precision 8, 320x240, components 3\012- data
Hash a1a4ddc4cc62b43d6c464cec998cae71
d2fdabd84b2a9b17b07380bed73933bd6d3c38c8
16560d16979204539575927db6f7938878dac874e8e7c37ef06834564c08df52
GET /upload/vod/20220224-2/aa01a81fc25ca87c1e98e668faf745e1.jpg HTTP/1.1
Host: pic.laoyapic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 6979
Last-Modified: Sun, 04 Sep 2022 18:06:18 GMT
Connection: keep-alive
ETag: "6314e91a-1b43"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/upload/vod/20210923-1/2e8595786fe6eb122a5ee3fc688ab6bb.jpg
200 OK 500 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20210923-1/2e8595786fe6eb122a5ee3fc688ab6bb.jpg
IP
File type PNG image data, 800 x 539, 8-bit/color RGBA, non-interlaced\012- data
Size 500 kB (499647 bytes)
Hash 91493e2d1c6130f9dc81c75c74f060df
95b5c44eed54a49020cd8bccbffffade2586b87e
76a9bddbf374e4621c543d0aa4ebc9a1eb16035e1107adfae07147fbf15ed457
GET /upload/vod/20210923-1/2e8595786fe6eb122a5ee3fc688ab6bb.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:26 GMT
Content-Type: image/jpeg
Content-Length: 499647
Last-Modified: Wed, 10 Aug 2022 12:16:14 GMT
Connection: keep-alive
ETag: "62f3a18e-79fbf"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F54a37db8-5622-4532-b3bf-d5e45c3888d3.jpeg
200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F54a37db8-5622-4532-b3bf-d5e45c3888d3.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d1232dc455c65c9e2d4515b6235ca8c7
8e94919a162c8bcf1ce76f395e8e8bddc94ed9a5
9c8ad996fff98d6dbd7a43c4c36905013d6e74649976294cd3a429f276a0db58
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F54a37db8-5622-4532-b3bf-d5e45c3888d3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6751
x-amzn-requestid: 847805f8-6893-4c51-80b9-655aa50f922d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9TiGnlIAMF_oA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f49-293897317a79be817669cfaa;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:38:17 GMT
x-amz-cf-pop: YVR50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: PXGgZayFEn6dT_yaSsCIWDtSvinPyWI6tr6iFYdRRizbOKv5Qw3dzQ==
via: 1.1 0b8b9a0373f930a971a9e76550280d02.cloudfront.net (CloudFront), 1.1 583992e175976bd59a21b4416890271e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 21:47:05 GMT
age: 53877
etag: "8e94919a162c8bcf1ce76f395e8e8bddc94ed9a5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ef55d7-b6c2-4550-aff3-c9052f7d4816.jpeg
200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ef55d7-b6c2-4550-aff3-c9052f7d4816.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f922505178de0cea92eedcfda85a9f67
50f1459de01174e594e03e7df4dfaa8eb1798672
981cd58768d6ad841673add855ddcc7106fbc85de05db9a1bd2d6bc8928b4c2c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ef55d7-b6c2-4550-aff3-c9052f7d4816.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6214
x-amzn-requestid: 46a44af0-e547-49e8-bc39-f6c49d94e375
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xj_0HFKbIAMFRbg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630b134d-0297c83c305422fa51b86dcf;Sampled=0
x-amzn-remapped-date: Sun, 28 Aug 2022 07:03:41 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: _ZKcuRO8Z6wBMdm79iDZj5uRYk4YYpYJqOoG8hZqY81O0R7hfbe5bQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Sep 2022 05:29:44 GMT
age: 26118
etag: "50f1459de01174e594e03e7df4dfaa8eb1798672"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
pt1.putaozy.info/20220322/DDBE5CC3F295EE3A/DDBE5CC3F295EE3A.jpg
200 OK 10 kB URL HTTP/1.1 pt1.putaozy.info/20220322/DDBE5CC3F295EE3A/DDBE5CC3F295EE3A.jpg
IP
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 457c395acc999ae612ca332f1a1728b8
d7714596aa9d61279a819f2f855c4a9f0a7a94d2
1d47fb098f888e949341915a3ea9b8d0d9e66ecc15faedf1260cad0438fbcbad
GET /20220322/DDBE5CC3F295EE3A/DDBE5CC3F295EE3A.jpg HTTP/1.1
Host: pt1.putaozy.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 10221
Last-Modified: Wed, 07 Sep 2022 13:05:00 GMT
Connection: keep-alive
ETag: "631896fc-27ed"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pt1.putaozy.info/20220314/B50ED50F7F9ECA5C/B50ED50F7F9ECA5C.jpg
200 OK 7.5 kB URL HTTP/1.1 pt1.putaozy.info/20220314/B50ED50F7F9ECA5C/B50ED50F7F9ECA5C.jpg
IP
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 0d0b9c30b38c90ae64d2147a7797d65c
7d9e27ad148f31192c55ca131337517ee68082f1
9caf27808d2273275edfc62f84e9bcc0bff079111465e1d59e16469bf82f6246
GET /20220314/B50ED50F7F9ECA5C/B50ED50F7F9ECA5C.jpg HTTP/1.1
Host: pt1.putaozy.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 7501
Last-Modified: Wed, 07 Sep 2022 13:04:39 GMT
Connection: keep-alive
ETag: "631896e7-1d4d"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pt1.putaozy.info/20220412/D05FDCE7FDC87680/D05FDCE7FDC87680.jpg
200 OK 7.2 kB URL HTTP/1.1 pt1.putaozy.info/20220412/D05FDCE7FDC87680/D05FDCE7FDC87680.jpg
IP
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 27x64, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash e5c29e1da1499ce20878dc249abf8c28
847a0ffea517edfa52461b69565c89a7451de078
d5a00662054c4de726f71fa4fe3771baced6af24ed7ca6f6add77d4b3a2da7f5
GET /20220412/D05FDCE7FDC87680/D05FDCE7FDC87680.jpg HTTP/1.1
Host: pt1.putaozy.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 7234
Last-Modified: Wed, 07 Sep 2022 13:05:26 GMT
Connection: keep-alive
ETag: "63189716-1c42"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pt1.putaozy.info/20220415/B46C4D1FCBE0BA7B/B46C4D1FCBE0BA7B.jpg
200 OK 11 kB URL HTTP/1.1 pt1.putaozy.info/20220415/B46C4D1FCBE0BA7B/B46C4D1FCBE0BA7B.jpg
IP
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 961x720, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash a576ba17719a46a8e6d7f19df3ca61e4
bc4bf00960beb746710d37de1d65f6657d554d01
fe6408c523f32146dfbbd232c17ddca4d94222ab994e946573602beec2c6229e
GET /20220415/B46C4D1FCBE0BA7B/B46C4D1FCBE0BA7B.jpg HTTP/1.1
Host: pt1.putaozy.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 11349
Last-Modified: Wed, 07 Sep 2022 13:02:31 GMT
Connection: keep-alive
ETag: "63189667-2c55"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pt1.putaozy.info/20220307/0E1E95E4D1C83884/0E1E95E4D1C83884.jpg
200 OK 8.5 kB URL HTTP/1.1 pt1.putaozy.info/20220307/0E1E95E4D1C83884/0E1E95E4D1C83884.jpg
IP
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash ed9d636085be1cd249674d94b3e186fd
b0548741af9af11112450fe19f082f4f9c57a6ac
5db21fd53c82553cd4a92a62e6d8929f7250322f589ff0eb2b0d20e561a8c017
GET /20220307/0E1E95E4D1C83884/0E1E95E4D1C83884.jpg HTTP/1.1
Host: pt1.putaozy.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 8500
Last-Modified: Wed, 07 Sep 2022 13:04:35 GMT
Connection: keep-alive
ETag: "631896e3-2134"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
js.users.51.la/21195469.js
200 OK 2.3 kB URL HTTP/1.1 js.users.51.la/21195469.js
IP
ASN #4837 CHINA UNICOM China169 Backbone
File type ASCII text, with very long lines (4898)
Hash 01135f7581d2bda5f970ac0c014b2b91
66b03a4cf76894f15ffb487f691f91ebdb38c366
628ff431dada10358a2442a100271b13c8d8ae646b3824f30b847e1c3ba9984e
Analyzer Verdict Alert fortinet Malware
GET /21195469.js HTTP/1.1
Host: js.users.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: CloudWAF
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: HWWAFSESID=cd9d74f30c4b25d8083; path=/
HWWAFSESTIME=1662641098830; path=/
Cache-Control: max-age=360000
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
ddcdn.comtucdncom.com/upload/vod/2019-08-04/156488961113.jpg
200 OK 10 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/2019-08-04/156488961113.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 427x320, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 2a54238df1847351e1be518c6acb331b
8a7e87843513559079ce330b4eb1b6b1a4230cf2
2cd105f49d773559952d2c2ceb58e317ec4ff407c177b8a496a74187380f8bdf
GET /upload/vod/2019-08-04/156488961113.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 10142
Last-Modified: Thu, 11 Aug 2022 04:59:21 GMT
Connection: keep-alive
ETag: "62f48ca9-279e"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/upload/vod/2018-12-12/154462872110.jpg
200 OK 11 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/2018-12-12/154462872110.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 237x178, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 616e22e8927f5968807693287a9d69fa
32dd4968808c6fc03b019ae65b02c337b8170168
4e051c027aa65533c5b32fd405bc18ada88474a6b84f588444aeb7d54c2f734b
GET /upload/vod/2018-12-12/154462872110.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 10847
Last-Modified: Thu, 11 Aug 2022 05:09:09 GMT
Connection: keep-alive
ETag: "62f48ef5-2a5f"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.sewozyimg.com/upload/vod/20220405-3/8f0175f4e1ca681f9e65ac1c4579ca78.jpg
200 OK 8.5 kB URL HTTP/1.1 img.sewozyimg.com/upload/vod/20220405-3/8f0175f4e1ca681f9e65ac1c4579ca78.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash 520cbe32c2ffc573e05de4f3ead9d3d8
cd077eb4bdb0215204ba4e19eb8da54c63ba4777
14fd853077b34bd89bf009782929b5361512e3e60d14e774f89c917f00887c7b
GET /upload/vod/20220405-3/8f0175f4e1ca681f9e65ac1c4579ca78.jpg HTTP/1.1
Host: img.sewozyimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 8542
Last-Modified: Sun, 04 Sep 2022 16:05:29 GMT
Connection: keep-alive
ETag: "6314ccc9-215e"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.sewozyimg.com/upload/vod/20220510-1/18c10ef5b377405c94cfd2d591bf8f49.jpg
404 Not Found 146 B URL HTTP/1.1 img.sewozyimg.com/upload/vod/20220510-1/18c10ef5b377405c94cfd2d591bf8f49.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /upload/vod/20220510-1/18c10ef5b377405c94cfd2d591bf8f49.jpg HTTP/1.1
Host: img.sewozyimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 146
Connection: keep-alive
ddcdn.comtucdncom.com/upload/vod/2019-03-19/155298899310.jpg
200 OK 10 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/2019-03-19/155298899310.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc58.35.100", baseline, precision 8, 320x240, components 3\012- data
Hash c3ea880403e0eb0a217f7f02eb3359a9
7e9714c09b334ee910cb526d584cdeb19e9af6f6
67a168699de0054ca495e11b4c1b420bea91fbd83ad0a35a7dd97617718e0ca8
GET /upload/vod/2019-03-19/155298899310.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 10453
Last-Modified: Thu, 11 Aug 2022 04:55:25 GMT
Connection: keep-alive
ETag: "62f48bbd-28d5"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
fmlb.netlbtu.com/upload/vod/2022/04-28/01/beb4p2rc4o20104beb4p2rc4o231305.jpg
200 OK 8.4 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/04-28/01/beb4p2rc4o20104beb4p2rc4o231305.jpg
IP
File type JPEG image data, baseline, precision 8, 240x320, components 3\012- data
Hash 692d2e0ecc28a7ab835497644c4fe4cc
a6522db2ded59baa5ad2f72b169d3b23c7d17b9b
c81d478b61fba2304f055aa5ca76eb51f63b56db770e7f3ab4136cf9a6e1dd79
GET /upload/vod/2022/04-28/01/beb4p2rc4o20104beb4p2rc4o231305.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:45:02 GMT
content-type: image/jpeg
content-length: 8377
cf-bgj: h2pri
etag: "e69511dd585ad81:0"
last-modified: Wed, 27 Apr 2022 17:04:31 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YFRfKBDu2Nvu4q1Xx54IsDAB1sWBsjnL7qdJgyU9RtDjI3uS9xsziGyAU6YhDdOr%2FDf9SxtlIcIEk8NuhIVf8F4AIotYIQBpSXmmV3oYx%2B78SHGqith1M66D8vhWfMjFp%2BHJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c76a5fee75d2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img.tpttzy.com/upload/vod/20210902-1/3298c3339f59410292c82c16840b4f2a.jpg
200 OK 20 kB URL HTTP/1.1 img.tpttzy.com/upload/vod/20210902-1/3298c3339f59410292c82c16840b4f2a.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 320x184, components 3\012- data
Hash 029675f675ddf54fb13191ce8bbc8758
1c5ab8b462febfa433c782874e34025667dfd498
9392f70c65731282d2788d356d42c221e63dce633ca443df43420183fbd43189
GET /upload/vod/20210902-1/3298c3339f59410292c82c16840b4f2a.jpg HTTP/1.1
Host: img.tpttzy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 20246
Last-Modified: Tue, 07 Jun 2022 09:16:19 GMT
Connection: keep-alive
ETag: "629f1763-4f16"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.tpttzy.com/upload/vod/20210902-1/e3cada2a39c2146b98839ae284def388.jpg
200 OK 27 kB URL HTTP/1.1 img.tpttzy.com/upload/vod/20210902-1/e3cada2a39c2146b98839ae284def388.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 320x184, components 3\012- data
Hash ff6ac00d2935b5d449d9af5e37a746e5
d28097b75cbe1a83131414bc7f75565e15faf44a
5b3c3cbdfb9fac978d0f49fe1fb66c7a751485c87646d783637349bf5eac832b
GET /upload/vod/20210902-1/e3cada2a39c2146b98839ae284def388.jpg HTTP/1.1
Host: img.tpttzy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 27409
Last-Modified: Tue, 07 Jun 2022 09:12:35 GMT
Connection: keep-alive
ETag: "629f1683-6b11"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.tpttzy.com/upload/vod/20211224-1/152e0ea04172f5f0e1ea60631f47984a.jpg
200 OK 9.9 kB URL HTTP/1.1 img.tpttzy.com/upload/vod/20211224-1/152e0ea04172f5f0e1ea60631f47984a.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 438088d011cac49f1b7c1e84afd46b37
96407e0245a381400c4b9158340aac71da971e37
a13c61c38e405623fcbcfa697afc62528888c1e1352876e5d58829bc6710421f
GET /upload/vod/20211224-1/152e0ea04172f5f0e1ea60631f47984a.jpg HTTP/1.1
Host: img.tpttzy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 9854
Last-Modified: Tue, 07 Jun 2022 09:15:30 GMT
Connection: keep-alive
ETag: "629f1732-267e"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic.laoyapic.com/upload/vod/20220424-1/ba83db01191755e5b7148b3271101621.jpg
200 OK 8.7 kB URL HTTP/1.1 pic.laoyapic.com/upload/vod/20220424-1/ba83db01191755e5b7148b3271101621.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 3x4, segment length 16, comment: "Lavc58.54.100", baseline, precision 8, 240x320, components 3\012- data
Hash 403d76c8b3f1c91d9c19164e54923da9
45a33d1290235bb423e405c0e53913a0b4212166
d8832ee44f46fa4e3f4e0887da92d1ca6d41d2dc3246552764b5c5eb93f223d1
GET /upload/vod/20220424-1/ba83db01191755e5b7148b3271101621.jpg HTTP/1.1
Host: pic.laoyapic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 8684
Last-Modified: Sun, 04 Sep 2022 18:08:04 GMT
Connection: keep-alive
ETag: "6314e984-21ec"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.tpttzy.com/upload/vod/20220217-1/46061ec502aead7a1c8365186ae91785.jpg
200 OK 10 kB URL HTTP/1.1 img.tpttzy.com/upload/vod/20220217-1/46061ec502aead7a1c8365186ae91785.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 3x4, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash 05aac782d4cfcc94ebe7bdc8972fcb46
c5cb341444d103bb4a0b229b93749d15e24bbb33
2b1a088f3c210135979297ad21547488d12e0444ebdb7e93f004b6e661812ad0
GET /upload/vod/20220217-1/46061ec502aead7a1c8365186ae91785.jpg HTTP/1.1
Host: img.tpttzy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 10373
Last-Modified: Tue, 07 Jun 2022 09:13:02 GMT
Connection: keep-alive
ETag: "629f169e-2885"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic.laoyapic.com/upload/vod/20220413-1/99eaaba8125a462f1a33522bb7e9aeb0.jpg
200 OK 11 kB URL HTTP/1.1 pic.laoyapic.com/upload/vod/20220413-1/99eaaba8125a462f1a33522bb7e9aeb0.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc58.54.100", baseline, precision 8, 320x240, components 3\012- data
Hash c0ef7b42a931cc9e6285d28ae29274a0
2c6477908cd79b96a0c6a0bfeda31605606f4e96
854c3ab30a90dd475d556254698af16cea5741b96289e5b1e902acd1c3498f3e
GET /upload/vod/20220413-1/99eaaba8125a462f1a33522bb7e9aeb0.jpg HTTP/1.1
Host: pic.laoyapic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 11288
Last-Modified: Sun, 04 Sep 2022 18:07:22 GMT
Connection: keep-alive
ETag: "6314e95a-2c18"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
png.pngtree.com/png-vector/20190603/ourmid/pngtree-icon-close-button-png-image_1357955.jpg
200 OK 9.2 kB URL HTTP/2 png.pngtree.com/png-vector/20190603/ourmid/pngtree-icon-close-button-png-image_1357955.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x360, components 3\012- data
Hash 43ae14560cdbc69ce960a28002f04309
4dc694c2754882f840c77807016676732c38138b
af0e248de25efb22e6edd4e1453e686154b00ce5039f94dceb2684a332ddad0e
GET /png-vector/20190603/ourmid/pngtree-icon-close-button-png-image_1357955.jpg HTTP/1.1
Host: png.pngtree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:45:02 GMT
content-type: image/jpg
content-length: 9166
cache-control: public, max-age=16070400
cf-bgj: h2pri
etag: "43ae14560cdbc69ce960a28002f04309"
last-modified: Wed, 28 Jul 2021 07:06:38 GMT
x-amz-id-2: IZRvItv2KlIfxpVowD85Xg4Uk/1H+XuQTEdfoFWsc+IpA1zQW2wADVI9pTz2bh7YaCysOgO/974=
x-amz-request-id: NT1CVYHWGWWJEKRS
cf-cache-status: HIT
age: 8083334
expires: Mon, 13 Mar 2023 12:45:02 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c76c58940b59-OSL
X-Firefox-Spdy: h2
52xxx.org/tc/BOOM.gif
200 OK 100 kB IP
File type GIF image data, version 89a, 150 x 150\012- data
Size 100 kB (100094 bytes)
Hash be75d9b0d03c3649caf48c4cddd54b5e
9197d31dec3fa0f1a67d487ce1e3bd477750cdcf
61f4aae9cce59c2abeec0585fd4715f166e8108e601687004ebac3b84a33cab0
GET /tc/BOOM.gif HTTP/1.1
Host: 52xxx.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:45:02 GMT
content-type: image/gif
content-length: 100094
last-modified: Thu, 16 Jun 2022 13:28:03 GMT
etag: "62ab2fe3-186fe"
expires: Fri, 09 Sep 2022 21:12:44 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 2475135
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=T1xw1E6f1ILZMagmsuXOEcXESTNzKZDRoYngAJm9IU8r%2FCwujX2zq%2F%2BvZn3vcTBHAA0j4oRUAqt3ZwyeS0%2F0OfG30ddCIdiSRzjwYg6EHDyR0IvN2zdd81azP%2B4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c76c6febb50f-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
pic.laoyapic.com/upload/vod/20220327-1/aaca07c3515f8bbf59483d4090461074.jpg
200 OK 6.7 kB URL HTTP/1.1 pic.laoyapic.com/upload/vod/20220327-1/aaca07c3515f8bbf59483d4090461074.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc58.54.100", baseline, precision 8, 320x240, components 3\012- data
Hash 2ca3f195b1abb706b555c8256022acfb
8a6104b91bb115773ca96df7fb9d78ffe2b543f1
601fcc2e650a0120e69753c74077fdaed8ea0596761e9d35d2df53c0194d614f
GET /upload/vod/20220327-1/aaca07c3515f8bbf59483d4090461074.jpg HTTP/1.1
Host: pic.laoyapic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 6653
Last-Modified: Sun, 04 Sep 2022 18:26:59 GMT
Connection: keep-alive
ETag: "6314edf3-19fd"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic.laoyapic.com/upload/vod/20220225-2/b66c70c6665775e1e3be62eb24aefac3.jpg
200 OK 5.5 kB URL HTTP/1.1 pic.laoyapic.com/upload/vod/20220225-2/b66c70c6665775e1e3be62eb24aefac3.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc58.54.100", baseline, precision 8, 320x240, components 3\012- data
Hash 5b72b876eeeee0be6807d49cebc582c3
8b4eaf2232323b4425a8ffcfb5e96dfce7a2ac8d
b6bb811d3831e2a399f9cfe6467377475e453ae694bf86abdeed962d24109e1e
GET /upload/vod/20220225-2/b66c70c6665775e1e3be62eb24aefac3.jpg HTTP/1.1
Host: pic.laoyapic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 5525
Last-Modified: Sun, 04 Sep 2022 19:27:09 GMT
Connection: keep-alive
ETag: "6314fc0d-1595"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pt1.putaozy.info/20220510/381A130975260434/381A130975260434.jpg
200 OK 30 kB URL HTTP/1.1 pt1.putaozy.info/20220510/381A130975260434/381A130975260434.jpg
IP
ASN #61317 Ipxo Uk Limited
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], progressive, precision 8, 512x288, components 3\012- data
Hash 6dbc5f0281a38cbf6d88542d3b0cd0d2
712c0a4e68a8144b85f416a8253df2e18d12ec3a
73b96378bc32f79d8354025f1a59656ea8e7356bd9021732a7ac9abbf5463ed1
GET /20220510/381A130975260434/381A130975260434.jpg HTTP/1.1
Host: pt1.putaozy.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 29561
Last-Modified: Wed, 07 Sep 2022 13:03:21 GMT
Connection: keep-alive
ETag: "63189699-7379"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
fmlb.netlbtu.com/upload/vod/2020/04-14/12/tc04stbxjo41208tc04stbxjo4595952.jpg
200 OK 8.6 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2020/04-14/12/tc04stbxjo41208tc04stbxjo4595952.jpg
IP
File type JPEG image data, baseline, precision 8, 240x320, components 3\012- data
Hash 8f6836b6fd36387b76d6ad2c91e46342
b0457096671f4b8db2f8116a3d11e77e8837ee12
101b1cc1fb9fa2163b8f18e7a1e27959371fa4964d5ae56c174607936b0df41b
GET /upload/vod/2020/04-14/12/tc04stbxjo41208tc04stbxjo4595952.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:45:02 GMT
content-type: image/jpeg
content-length: 8629
cf-bgj: h2pri
etag: "a84df26c1212d61:0"
last-modified: Tue, 14 Apr 2020 04:09:00 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KF5gzpztslF8yt203WxQAlxLn6HUtjNbpZg2%2B0rXU2HWZhHJ7bnPxjg3BGya5weS0DJ0xVPTl7zPHYrkNGnL%2F19WFWk7QqXVIDr37kdSCTaM22vTs4IAcVqqertCeENI2lhE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c76a985075d2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
pt1.putaozy.info/20220401/06E4A94BB18F5681/06E4A94BB18F5681.jpg
200 OK 11 kB URL HTTP/1.1 pt1.putaozy.info/20220401/06E4A94BB18F5681/06E4A94BB18F5681.jpg
IP
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 896531c5f2aa08b83d701359a222f358
28803457ae1b7721be95e862d33359daf7cd05ef
00d394d7df4a357ea7f67552155fe0b014710511ba943bb33fd780bba7a4a715
GET /20220401/06E4A94BB18F5681/06E4A94BB18F5681.jpg HTTP/1.1
Host: pt1.putaozy.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 10710
Last-Modified: Wed, 07 Sep 2022 13:05:41 GMT
Connection: keep-alive
ETag: "63189725-29d6"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pt1.putaozy.info/20220314/6496EE01B9BAF35B/6496EE01B9BAF35B.jpg
200 OK 4.3 kB URL HTTP/1.1 pt1.putaozy.info/20220314/6496EE01B9BAF35B/6496EE01B9BAF35B.jpg
IP
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 895bfdc7b3515de1243b85ac4efb3d6c
043441cc9eee153fed046e31424c15c4f7dd6ecf
0364f398f84e257a067bf64ced6bea9fc4b5cbb8d4f38e0a4412e21a582b339a
GET /20220314/6496EE01B9BAF35B/6496EE01B9BAF35B.jpg HTTP/1.1
Host: pt1.putaozy.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 4253
Last-Modified: Wed, 07 Sep 2022 13:09:38 GMT
Connection: keep-alive
ETag: "63189812-109d"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pt1.putaozy.info/20220310/884DF70E3B628D51/884DF70E3B628D51.jpg
200 OK 9.4 kB URL HTTP/1.1 pt1.putaozy.info/20220310/884DF70E3B628D51/884DF70E3B628D51.jpg
IP
ASN #61317 Ipxo Uk Limited
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash 4b758bdee51f37ecab0139e35950d243
f9259645468e82936b1b1032ec98c500b1d59e87
c062eb80f00e4c49c8a3bbab28d5cbcc64b66201375213f67113d5616fc1a97a
GET /20220310/884DF70E3B628D51/884DF70E3B628D51.jpg HTTP/1.1
Host: pt1.putaozy.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 9404
Last-Modified: Wed, 07 Sep 2022 13:11:37 GMT
Connection: keep-alive
ETag: "63189889-24bc"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pt1.putaozy.info/20220314/1F8BA4F770CD8012/1F8BA4F770CD8012.jpg
200 OK 5.7 kB URL HTTP/1.1 pt1.putaozy.info/20220314/1F8BA4F770CD8012/1F8BA4F770CD8012.jpg
IP
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash dc963b18f3956299dc84f70a64442217
f6e9c37db5194bc2c3671afccff2509767c5a8c9
e8a17bfe4e3104144ee1bc56cc004cc9ffa38d19c94eb7df6d8c80a0c2fce283
GET /20220314/1F8BA4F770CD8012/1F8BA4F770CD8012.jpg HTTP/1.1
Host: pt1.putaozy.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 5700
Last-Modified: Wed, 07 Sep 2022 13:08:01 GMT
Connection: keep-alive
ETag: "631897b1-1644"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/upload/vod/20201107-1/0bfa1781b3d1e21650131f65fc481197.jpg
200 OK 184 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20201107-1/0bfa1781b3d1e21650131f65fc481197.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 941x541, components 3\012- data
Size 184 kB (184205 bytes)
Hash 29805d421cc8df3b8fbba0b1eb606ca5
753cda1ca8a9145af302c87be61a57985f79430e
0d12251675357daef59c4d021c7293ac3780d63f36f814b3db3d601e04be9391
GET /upload/vod/20201107-1/0bfa1781b3d1e21650131f65fc481197.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:27 GMT
Content-Type: image/jpeg
Content-Length: 184205
Last-Modified: Wed, 10 Aug 2022 12:14:06 GMT
Connection: keep-alive
ETag: "62f3a10e-2cf8d"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
fmlb.netlbtu.com/upload/vod/2020/04-14/06/3nphf3k0lnr06053nphf3k0lnr474082.jpg
200 OK 6.8 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2020/04-14/06/3nphf3k0lnr06053nphf3k0lnr474082.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 2x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash 1d750d5af921aff8d6d24acb18a5a968
9acce17828f90f54e5ef09b7cbfb5a3d4521843d
596a2188b35151d68126598a8041b462460d128651756c2605ed9f88d41b42a7
GET /upload/vod/2020/04-14/06/3nphf3k0lnr06053nphf3k0lnr474082.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:45:02 GMT
content-type: image/jpeg
content-length: 6798
last-modified: Mon, 13 Apr 2020 22:05:48 GMT
etag: "77a6e2afdf11d61:0"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xOoII2wfbAohOuQxMttKMmqthRu0SId0cadA2bs9gXjaLIpdj8H%2FD0QVt3je%2FwLgsNiD9VTGjow1ULeSxjj08IUP01CoZ%2B8fCgSwfgmphq%2BwdZmKVmCCvZaJgWXw3HBwk6Ez"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c76a5fef75d2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2019/11-08/02/s0elqjm1hwp0247s0elqjm1hwp21788.jpg
200 OK 12 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2019/11-08/02/s0elqjm1hwp0247s0elqjm1hwp21788.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 717x538, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 5a551025030f0ac1e065aa040b7e34c3
842870d648f0527fbb2ebe74f0c659cb79c526a1
dc6d5de44ed441c4e463a38118240987d49f97e492f83f3c729cded5d618cafc
GET /upload/vod/2019/11-08/02/s0elqjm1hwp0247s0elqjm1hwp21788.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:45:02 GMT
content-type: image/jpeg
content-length: 11882
last-modified: Thu, 07 Nov 2019 18:47:21 GMT
etag: "98ce98c99b95d51:0"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fbrg0n2HKayXjkgmFwu8UjUB54vzlLRLFtZ11WdK%2F%2BWx97sLbakEDKBTeftYPrdKfcOynRpllREgHkwcQZZYl9aqpWZunvR8PwiNx%2Fkp2m0wjrH%2FgMxLFsxyZ8Yool1kyaFA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c76a5ff075d2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2019/11-08/03/nlni0sgqdpp0345nlni0sgqdpp116896.jpg
200 OK 10 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2019/11-08/03/nlni0sgqdpp0345nlni0sgqdpp116896.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 23x30, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash dd969249b4a6ea4954f8da6b7c7898fe
f98eb4fcbecbc85de853692ef8b30b7b40554f00
ec0ab76b4a556c3bf157540be96d5084d0dd722807b4c559973003c6cfe2d9af
GET /upload/vod/2019/11-08/03/nlni0sgqdpp0345nlni0sgqdpp116896.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:45:02 GMT
content-type: image/jpeg
content-length: 10368
last-modified: Thu, 07 Nov 2019 19:45:11 GMT
etag: "ef3dcdea395d51:0"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=X7XqYAHjIcRtfy3fIMYzDDdOEpKue9cmeOWE%2BWDUAvmVW8TZGU3aVyvgWg%2B1hEE05PADIESgKiMOtsxAIEVqowRN%2F99lqgJZFbw%2BDKUJBKKbyKHNoNvSksky62PePWQDd8Ei"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c76a5ff175d2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2020/11-19/06/eqnytvyha0k0601eqnytvyha0k5477.jpg
200 OK 13 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2020/11-19/06/eqnytvyha0k0601eqnytvyha0k5477.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 34x45, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash 65e558816e3a9fecb57a48d34fe50b63
9ae05a9bf28731ff4b7c4b4743fdcfff7bbbee16
6464af58e4a800ab2254cb4f5787471f015f8c83ba170e637928197c3e46be81
GET /upload/vod/2020/11-19/06/eqnytvyha0k0601eqnytvyha0k5477.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:45:02 GMT
content-type: image/jpeg
content-length: 12671
last-modified: Wed, 18 Nov 2020 22:01:54 GMT
etag: "2be2d6df6bdd61:0"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DJhme%2Bv4FsJ%2F1e8IoWS%2BxF9hYBoOCgIVEYwrU%2BgUphAbYNHLH2%2FjL%2Bvdbyjqh4UDRqtzDyrC32P04n7aG6fdyzMtOIsHHE%2FwoRTjdYBRkNA5LwBiJE1PAv0D8KeGogSleJ0k"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c76a6ffb75d2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/03-25/15/q2mz2oi0yct1556q2mz2oi0yct13723.jpg
200 OK 6.3 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/03-25/15/q2mz2oi0yct1556q2mz2oi0yct13723.jpg
IP
File type JPEG image data, baseline, precision 8, 240x320, components 3\012- data
Hash e7d8d426efa8b8e3d0b316208beb42b7
1f4f3df45203d19ecce94a7dd74d4a5c60cc319c
cac714f0ac1f05f890420dbfa3c075ccdc062da9583cf2552525aef78517abb8
GET /upload/vod/2022/03-25/15/q2mz2oi0yct1556q2mz2oi0yct13723.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:45:02 GMT
content-type: image/jpeg
content-length: 6260
last-modified: Fri, 25 Mar 2022 07:56:13 GMT
etag: "d3176ecc1d40d81:0"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=C6HeClPi7DFiywvLPB5eCuHr2TfLsp4E4sLvMVSbQUkCOZPAudFpphxW%2Bt4l%2FYDwKi2wUd8GKUcgDN5UzH0KLvIU718aeQRD9I48e%2F8ceRhGVvF0Z13icKauSgLL2Z3WDe%2BS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c76a782275d2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ddcdn.comtucdncom.com/upload/vod/2019-02-11/15498841248.jpg
200 OK 4.6 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/2019-02-11/15498841248.jpg
IP
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash d54f7a79f273c47b6d5a8d2bf986f2ca
e5945698879887875221dffa8ff94c8af91656bc
615489cb33baa7ab2cbcfa289ec97916203d5d436f13470af191f63ee53b06e1
GET /upload/vod/2019-02-11/15498841248.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 4625
Last-Modified: Thu, 11 Aug 2022 04:55:58 GMT
Connection: keep-alive
ETag: "62f48bde-1211"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
www.chinadqwx.com/static9/js/sss.js
200 OK 966 B URL HTTP/1.1 www.chinadqwx.com/static9/js/sss.js
IP
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 9997155da9fbdcf74aa0922970b4e3e2
76f0eb7cf045020200d5f999d5d5483b70c0ca3a
af6efba8e30bbf52c434daaf495d6a0c76c0134592b4121c75be8e5f02e04f38
Analyzer Verdict Alert quad9 Sinkholed
GET /static9/js/sss.js HTTP/1.1
Host: www.chinadqwx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Cookie: __tins__21195469=%7B%22sid%22%3A%201662641095077%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201662642895077%7D; __51cke__=; __51laig__=1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Sep 2022 12:45:20 GMT
Content-Type: application/javascript
Content-Length: 966
Last-Modified: Fri, 29 Jul 2022 08:18:19 GMT
Connection: keep-alive
ETag: "62e397cb-3c6"
Expires: Fri, 09 Sep 2022 00:45:20 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes
ddcdn.comtucdncom.com/upload/vod/2020-11-12/160512340217.jpg
200 OK 6.6 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/2020-11-12/160512340217.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 7e732cf1631dbccc06541bedf043237b
5b92143d8514f514fe40d1c8e0538ea180e0fd12
ddfc65e6e12a992a07cf81c90d2dfadea4e7a1ef8c2cf193207d1060923a9ffb
GET /upload/vod/2020-11-12/160512340217.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 6565
Last-Modified: Thu, 11 Aug 2022 04:58:40 GMT
Connection: keep-alive
ETag: "62f48c80-19a5"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.tpttzy.com/upload/vod/20210811-1/a2c4fa4e71481b92012255ee574fe5bf.jpg
200 OK 5.8 kB URL HTTP/1.1 img.tpttzy.com/upload/vod/20210811-1/a2c4fa4e71481b92012255ee574fe5bf.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 286x381, segment length 16, comment: "Lavc58.54.100", baseline, precision 8, 240x320, components 3\012- data
Hash bc27ada6b904952e745853ae6ad0a40d
98d4b2e44c8599da9d9b3b9d5f12f07d6ae39cb7
4afc014215981c08a3b73fee91943e064b96c6683bd78e9f07751d815a62b369
GET /upload/vod/20210811-1/a2c4fa4e71481b92012255ee574fe5bf.jpg HTTP/1.1
Host: img.tpttzy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 5813
Last-Modified: Tue, 07 Jun 2022 09:13:14 GMT
Connection: keep-alive
ETag: "629f16aa-16b5"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
fmlb.netlbtu.com/upload/vod/2019/11-13/21/2c1ridrpa1b21092c1ridrpa1b562355.jpg
200 OK 7.5 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2019/11-13/21/2c1ridrpa1b21092c1ridrpa1b562355.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 34x45, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash 4b8794e6e09ee9c8cd8d639564237437
c6bbbb014ce4360e8dd6f1ecbb09669867997008
111fafdda16e35821e5f2e2d6291c193f69edc085ddb79902784283b95e5260c
GET /upload/vod/2019/11-13/21/2c1ridrpa1b21092c1ridrpa1b562355.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:45:02 GMT
content-type: image/jpeg
content-length: 7457
last-modified: Wed, 13 Nov 2019 13:09:56 GMT
etag: "384b51a5239ad51:0"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6uVebBdN8NTs%2Fab0W3y8dDqJnQvalj2IG%2Fz%2BoEIEQO0VnyRYq9Uz5QJp0YVr1Sa0DSJFbypUrakC86nHFOiVd%2Bq%2FLCmAbrbcDynQmRnoJmzUN7bd8SyvXhtYkegbUwwUDiC6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c76a883f75d2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img.tpttzy.com/upload/vod/20211229-1/cfd5780c32eae15b19d16c44d4d647e0.jpg
200 OK 6.8 kB URL HTTP/1.1 img.tpttzy.com/upload/vod/20211229-1/cfd5780c32eae15b19d16c44d4d647e0.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 5c4c70cb0a2d883e25e6c1196e395796
d6c031b3293e8b56027eaad807dab9ea64347236
08a7cf658ed1c3881b6ea75e6c64ec36ce7f5718f2a2417b2ce6685bb40b95da
GET /upload/vod/20211229-1/cfd5780c32eae15b19d16c44d4d647e0.jpg HTTP/1.1
Host: img.tpttzy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 6790
Last-Modified: Tue, 07 Jun 2022 09:11:46 GMT
Connection: keep-alive
ETag: "629f1652-1a86"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.tpttzy.com/upload/vod/20210811-1/a5d4bbdc1e1224df694f31212a6595d1.jpg
200 OK 12 kB URL HTTP/1.1 img.tpttzy.com/upload/vod/20210811-1/a5d4bbdc1e1224df694f31212a6595d1.jpg
IP
File type JPEG image data, baseline, precision 8, 240x320, components 3\012- data
Hash 48d29af65cc9f3c969efa07d1d2fc0b6
f61fd3fdbc3a44baa108fbbfddc2bc261355a439
da0c94690975814274321821a9208cb140de2d2bfa68053d198a3033c3f20dce
GET /upload/vod/20210811-1/a5d4bbdc1e1224df694f31212a6595d1.jpg HTTP/1.1
Host: img.tpttzy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 12521
Last-Modified: Tue, 07 Jun 2022 09:13:33 GMT
Connection: keep-alive
ETag: "629f16bd-30e9"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/upload/vod/2021-06-07/16230246575.jpg
200 OK 42 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/2021-06-07/16230246575.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 750x422, components 3\012- data
Hash 239b1031585fcc02be164e712e2ae252
0e5a22b3a126c41a7084ec51b5323a65cd3e4651
c2a5e51418536cc763205c2a3cbb0014d3d38108c2f83476a3c1c310c5fac3c6
GET /upload/vod/2021-06-07/16230246575.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 41947
Last-Modified: Thu, 11 Aug 2022 05:00:27 GMT
Connection: keep-alive
ETag: "62f48ceb-a3db"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.sewozyimg.com/upload/vod/20220422-1/9b573272ad53faa4d7e3456d955d4b28.jpg
200 OK 65 kB URL HTTP/1.1 img.sewozyimg.com/upload/vod/20220422-1/9b573272ad53faa4d7e3456d955d4b28.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 820x462, components 3\012- data
Hash c49fdc42d6b8c025e8cc2e8932e3b341
cf8a7f02333f8c4a216ef0b85e9ae326fd2307c5
45353fff71b3d804ce457ecc6e07ad48aa02c5139dced2de653ede39003eee2b
GET /upload/vod/20220422-1/9b573272ad53faa4d7e3456d955d4b28.jpg HTTP/1.1
Host: img.sewozyimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 65021
Last-Modified: Sun, 04 Sep 2022 16:21:07 GMT
Connection: keep-alive
ETag: "6314d073-fdfd"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic.laoyapic.com/upload/vod/20220407-1/efa462356b500519f9e581c2ffdc3a1a.jpg
200 OK 5.5 kB URL HTTP/1.1 pic.laoyapic.com/upload/vod/20220407-1/efa462356b500519f9e581c2ffdc3a1a.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, baseline, precision 8, 240x320, components 3\012- data
Hash 0d1293429754922bc16ab23a232d1501
315732c349b297c12969db046404a6d256c1b6de
b9d61d3fa4aab738e7a0efc1b7a40834880c58f6ad9a4bb465b8bc568f34f07c
GET /upload/vod/20220407-1/efa462356b500519f9e581c2ffdc3a1a.jpg HTTP/1.1
Host: pic.laoyapic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 5516
Last-Modified: Sun, 04 Sep 2022 18:09:28 GMT
Connection: keep-alive
ETag: "6314e9d8-158c"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/upload/vod/20211125-1/71925b18d82957cf6f024da708f50387.jpg
200 OK 436 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20211125-1/71925b18d82957cf6f024da708f50387.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, xresolution=120, yresolution=120], baseline, precision 8, 1280x720, components 3\012- data
Size 436 kB (436312 bytes)
Hash 1b3d284a0a10fce8396b5c8208014382
d3aba76ad9b9ff85d92b3c4d6a2394d5450e72fe
0baf954b7a2b76067ca328186183f44c0cd6f20cdeef6d27ea47fb28a55d3fc0
GET /upload/vod/20211125-1/71925b18d82957cf6f024da708f50387.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:27 GMT
Content-Type: image/jpeg
Content-Length: 436312
Last-Modified: Wed, 10 Aug 2022 12:10:35 GMT
Connection: keep-alive
ETag: "62f3a03b-6a858"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic.laoyapic.com/upload/vod/20220506-1/17509c0202f93c982463956d7eb62f47.jpg
200 OK 68 kB URL HTTP/1.1 pic.laoyapic.com/upload/vod/20220506-1/17509c0202f93c982463956d7eb62f47.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 800x536, components 3\012- data
Hash 970c39ecc032684246f2ac2638d5b530
72ea9b8440e5d7d9e2724a85dc7ca0f69a0c8454
6e8620e1470b6155a20814ccdbbb74a7b2a542683fe04b76aa490d76d9e955a1
GET /upload/vod/20220506-1/17509c0202f93c982463956d7eb62f47.jpg HTTP/1.1
Host: pic.laoyapic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 67947
Last-Modified: Sun, 04 Sep 2022 17:14:34 GMT
Connection: keep-alive
ETag: "6314dcfa-1096b"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic.laoyapic.com/upload/vod/20220513-1/358aaea3f1ddcc999a40e3a795d2be4f.jpg
200 OK 8.1 kB URL HTTP/1.1 pic.laoyapic.com/upload/vod/20220513-1/358aaea3f1ddcc999a40e3a795d2be4f.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 27x64, segment length 16, comment: "Lavc58.54.100", baseline, precision 8, 320x240, components 3\012- data
Hash 5affa38d89026819dce873be5f9034ba
994ac9f528956a3b1b738f14b5a840450127c00f
f1d7ba3bbf4a224256f38c49c2d25e2e4f01a4c51a892b51bba7e998d8f70098
GET /upload/vod/20220513-1/358aaea3f1ddcc999a40e3a795d2be4f.jpg HTTP/1.1
Host: pic.laoyapic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 8072
Last-Modified: Sun, 04 Sep 2022 18:07:04 GMT
Connection: keep-alive
ETag: "6314e948-1f88"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic.laoyapic.com/upload/vod/20220227-2/dda16d1ddf57f8af5f28b5ea40bcfd22.jpg
200 OK 12 kB URL HTTP/1.1 pic.laoyapic.com/upload/vod/20220227-2/dda16d1ddf57f8af5f28b5ea40bcfd22.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 799x800, segment length 16, comment: "Lavc58.39.100", baseline, precision 8, 320x188, components 3\012- data
Hash 2080b7e310bddd5a4808ceaf133f06cc
dd5057e281f894ac65aea9ad4be6b16c95d2cc05
512b6d03a4fd882b0079c2337ed5a36baa42cad914b57132ef8e3504d18ae217
GET /upload/vod/20220227-2/dda16d1ddf57f8af5f28b5ea40bcfd22.jpg HTTP/1.1
Host: pic.laoyapic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 11598
Last-Modified: Sun, 04 Sep 2022 18:07:06 GMT
Connection: keep-alive
ETag: "6314e94a-2d4e"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/upload/vod/20211125-1/cc8dcea3dc2e7f238181bb178aabdd67.jpg
200 OK 468 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20211125-1/cc8dcea3dc2e7f238181bb178aabdd67.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, xresolution=120, yresolution=120], baseline, precision 8, 1280x720, components 3\012- data
Size 468 kB (467500 bytes)
Hash 293851a313bb99235b9b7ac44edd919b
197ee561e7c46d2a0e0be206939cf3a9a1424603
e553c4da8775511ce29e0187d67db875f6c9b973cb86a771103af4852f69b0d7
GET /upload/vod/20211125-1/cc8dcea3dc2e7f238181bb178aabdd67.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:27 GMT
Content-Type: image/jpeg
Content-Length: 467500
Last-Modified: Wed, 10 Aug 2022 12:13:11 GMT
Connection: keep-alive
ETag: "62f3a0d7-7222c"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.sewozyimg.com/upload/vod/20220409-1/c140026b5e3bc0906bec8010498da7fd.jpg
200 OK 79 kB URL HTTP/1.1 img.sewozyimg.com/upload/vod/20220409-1/c140026b5e3bc0906bec8010498da7fd.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 800x536, components 3\012- data
Hash 97b512cde2b2b672f5289b4a40d2cf5b
b75e914fbf9424686bb9ec928cef6a764ca5ed84
22bb6a548cccb3bb42a657b7ecadfb6e0a30398cabf7aef62b4b1e3ff483ba0f
GET /upload/vod/20220409-1/c140026b5e3bc0906bec8010498da7fd.jpg HTTP/1.1
Host: img.sewozyimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 79193
Last-Modified: Sun, 04 Sep 2022 15:53:48 GMT
Connection: keep-alive
ETag: "6314ca0c-13559"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/upload/vod/20210829-1/3d2e180fc11e52f4700fa1639a56fe6c.jpg
200 OK 58 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/20210829-1/3d2e180fc11e52f4700fa1639a56fe6c.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 795x530, components 3\012- data
Hash aef1f98c64dfcc2d9bb838ee14da7435
842561ed309a8fcb884433723bcafeb5579e46f2
9e93785ed04f48968a6bfa354a780a2bda788394e63400c0b902b6a2aba73c7e
GET /upload/vod/20210829-1/3d2e180fc11e52f4700fa1639a56fe6c.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 57716
Last-Modified: Thu, 11 Aug 2022 04:58:22 GMT
Connection: keep-alive
ETag: "62f48c6e-e174"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/papaduanpian-img/avid5d0209e6ca060.jpg
200 OK 48 kB URL HTTP/1.1 sycdn.comtucdncom.com/papaduanpian-img/avid5d0209e6ca060.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 795x458, components 3\012- data
Hash 0d1f0141278b4a5111316146e8f37b5f
c125276587a2f79394892e63757fbfe778a376fa
eb35c9ce938e919605137d5c353b59a2f26330e79cf5262b282d44c0c1663d29
GET /papaduanpian-img/avid5d0209e6ca060.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:27 GMT
Content-Type: image/jpeg
Content-Length: 47655
Last-Modified: Wed, 10 Aug 2022 12:18:45 GMT
Connection: keep-alive
ETag: "62f3a225-ba27"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/upload/vod/20201126-1/85f230cb9f67383824c3aad1d7770061.jpg
200 OK 64 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20201126-1/85f230cb9f67383824c3aad1d7770061.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 800x539, components 3\012- data
Hash 20b2f562fafb9d5be0eee10224bef107
b7502fb4bcc90d3a386139d0dbc45c9d96fd88c4
5ab04f99600dcf71a6eb9558831d3e8ba5bec98a6cc236d20bdbc54e4bd0d675
GET /upload/vod/20201126-1/85f230cb9f67383824c3aad1d7770061.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:27 GMT
Content-Type: image/jpeg
Content-Length: 64534
Last-Modified: Wed, 10 Aug 2022 11:49:15 GMT
Connection: keep-alive
ETag: "62f39b3b-fc16"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/papa-PIC/avid5c331601bdb4d.jpg
200 OK 60 kB URL HTTP/1.1 sycdn.comtucdncom.com/papa-PIC/avid5c331601bdb4d.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 795x458, components 3\012- data
Hash f557bf62b3b4751fb1be2d96aa187bd3
e8b507cbdf1f0f8cee58723d454fa96b0c3fd623
76340601fe2945f36492ae70aecbb8329acbbd0254c59229413ca0e6b99aff3a
GET /papa-PIC/avid5c331601bdb4d.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:27 GMT
Content-Type: image/jpeg
Content-Length: 60104
Last-Modified: Wed, 10 Aug 2022 12:15:22 GMT
Connection: keep-alive
ETag: "62f3a15a-eac8"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
www.chinadqwx.com/static9/js/dhs.js
200 OK 551 B URL HTTP/1.1 www.chinadqwx.com/static9/js/dhs.js
IP
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 29e1c82da887b7f2987bea3685bde9b2
f3d4587d57b38f65e50e82d78e3ebcf486adc303
23598f2205a2f97b5694cfb5bbf3ec6faf38c46da9c89f681e1d63e0d61cdbf1
Analyzer Verdict Alert quad9 Sinkholed
GET /static9/js/dhs.js HTTP/1.1
Host: www.chinadqwx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Cookie: __tins__21195469=%7B%22sid%22%3A%201662641095077%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201662642895077%7D; __51cke__=; __51laig__=1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Sep 2022 12:45:20 GMT
Content-Type: application/javascript
Last-Modified: Fri, 29 Jul 2022 08:20:37 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62e39855-18a6"
Expires: Fri, 09 Sep 2022 00:45:20 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
pic.laoyapic.com/upload/vod/20220427-1/558a92c524fb4cea5d4a5eb94af776b7.jpg
200 OK 164 kB URL HTTP/1.1 pic.laoyapic.com/upload/vod/20220427-1/558a92c524fb4cea5d4a5eb94af776b7.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 960x540, components 3\012- data
Size 164 kB (164142 bytes)
Hash 9a39606bbee4010ac924c6f567bcc596
be93de007501592bca93cdaa573287e6d501025c
f2fcd2cb119fe0ef8886799572a452011ce589bb61b07738defac7b118b834d3
GET /upload/vod/20220427-1/558a92c524fb4cea5d4a5eb94af776b7.jpg HTTP/1.1
Host: pic.laoyapic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 164142
Last-Modified: Sun, 04 Sep 2022 18:07:39 GMT
Connection: keep-alive
ETag: "6314e96b-2812e"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/upload/vod/20201126-1/dc648ee46f009194ab3ff10c146571e4.jpg
200 OK 612 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20201126-1/dc648ee46f009194ab3ff10c146571e4.jpg
IP
File type PNG image data, 800 x 539, 8-bit/color RGBA, non-interlaced\012- data
Size 612 kB (611893 bytes)
Hash bc52438e9303d530addebb65c8ac00b5
157ccf828334a071c76a46ee16965405817c2044
649326513032d89ae007d5e51c9a9ad301028ff2fd451a16db219fec14752cad
GET /upload/vod/20201126-1/dc648ee46f009194ab3ff10c146571e4.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:27 GMT
Content-Type: image/jpeg
Content-Length: 611893
Last-Modified: Wed, 10 Aug 2022 12:11:58 GMT
Connection: keep-alive
ETag: "62f3a08e-95635"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/upload/vod/2019-06-05/15596948445.jpg
200 OK 7.9 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/2019-06-05/15596948445.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc58.35.100", baseline, precision 8, 320x240, components 3\012- data
Hash d5f61546a699687558ac561fa42dbd33
cc7bd9a64cfdc08db7e348d3101f9212f9d9cfef
5d33e8642f7d9a00a7b1adf3be5d2c1b1fe8bf391366831531cbfc29606878d0
GET /upload/vod/2019-06-05/15596948445.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 7946
Last-Modified: Thu, 11 Aug 2022 04:56:51 GMT
Connection: keep-alive
ETag: "62f48c13-1f0a"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.sewozyimg.com/upload/vod/20220405-1/a879de8a012c473936d516bc2f57b8b2.jpg
200 OK 116 kB URL HTTP/1.1 img.sewozyimg.com/upload/vod/20220405-1/a879de8a012c473936d516bc2f57b8b2.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 835x535, components 3\012- data
Size 116 kB (115813 bytes)
Hash 3b4f650538ce985d1b964ce1bfe6d301
135c03cf0ad8b876c701f9f33d8e5a864b89bbee
24fc0618bb3d78a9aa9815cac8bfa03c037a2219b3dfc2abedec30270c2f614b
GET /upload/vod/20220405-1/a879de8a012c473936d516bc2f57b8b2.jpg HTTP/1.1
Host: img.sewozyimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 115813
Last-Modified: Sun, 04 Sep 2022 15:57:49 GMT
Connection: keep-alive
ETag: "6314cafd-1c465"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.tpttzy.com/upload/vod/20210811-1/6d732538103cfd82701bed331f87aec1.jpg
200 OK 104 kB URL HTTP/1.1 img.tpttzy.com/upload/vod/20210811-1/6d732538103cfd82701bed331f87aec1.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 700x394, components 3\012- data
Size 104 kB (103648 bytes)
Hash 8cd63a3e0037644d0d2f2e85d6d3ddba
7954c7a33132496f419ea84dfa1332ef7dac9106
e40e86eab41a1330988875c65323ad7f0182ab52f6357a16602c60d8e47d68e7
GET /upload/vod/20210811-1/6d732538103cfd82701bed331f87aec1.jpg HTTP/1.1
Host: img.tpttzy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 103648
Last-Modified: Tue, 07 Jun 2022 09:12:54 GMT
Connection: keep-alive
ETag: "629f1696-194e0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/images/2022/04/06/wuma6652.jpg
200 OK 114 kB URL HTTP/1.1 ddcdn.comtucdncom.com/images/2022/04/06/wuma6652.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=0], baseline, precision 8, 960x540, components 3\012- data
Size 114 kB (114302 bytes)
Hash 3e4c94517307c5093abb8b701b5b3071
b20032d718b13b0b3b67caf1b584004ea618c540
273012e61ae3923396f54f7f6e3cf0cce650c4d44a0d8a9fc8b0b36616575ac1
GET /images/2022/04/06/wuma6652.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 114302
Last-Modified: Thu, 11 Aug 2022 05:10:49 GMT
Connection: keep-alive
ETag: "62f48f59-1be7e"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/upload/vod/2020-07-25/159561658217.jpg
200 OK 8.8 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/2020-07-25/159561658217.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 427x320, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 8611414b716e717f32181f94aa613ce9
1cf7bbbc6cebce9bb9c908aa8f78e7a4f8c86a9a
0e06f3b1f32bbdfabeac0c49d1bc16c48b6abcdb43ca875294fb3b56ff401267
GET /upload/vod/2020-07-25/159561658217.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:03 GMT
Content-Type: image/jpeg
Content-Length: 8779
Last-Modified: Thu, 11 Aug 2022 04:51:50 GMT
Connection: keep-alive
ETag: "62f48ae6-224b"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.sewozyimg.com/upload/vod/20220405-2/499a1ce118892b4026ac7f6d51a186a7.jpg
200 OK 118 kB URL HTTP/1.1 img.sewozyimg.com/upload/vod/20220405-2/499a1ce118892b4026ac7f6d51a186a7.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 820x462, components 3\012- data
Size 118 kB (117791 bytes)
Hash f83dd27c2a8c0c043cbc0ce82f253e64
a24770cec89d43ab779022e02093abfa7491aafa
3917593f9fcf3cb55a72d5e2740f7097f0200647de198b8ba66354fcf8874fb1
GET /upload/vod/20220405-2/499a1ce118892b4026ac7f6d51a186a7.jpg HTTP/1.1
Host: img.sewozyimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 117791
Last-Modified: Sun, 04 Sep 2022 15:54:19 GMT
Connection: keep-alive
ETag: "6314ca2b-1cc1f"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/upload/vod/20210110-1/90eaab2bff38eaa3c582c697e8e73b50.jpg
200 OK 83 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20210110-1/90eaab2bff38eaa3c582c697e8e73b50.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.18.100", baseline, precision 8, 2160x1280, components 3\012- data
Hash 669dd6a0af56d19ef37622fe8480acfc
d7a30bf1d610e8c76f86361a60eede20e47c05ec
bef36b3d9bdb56c423151eaa94bc0ffce250900afd60c5d93538a6a28c02c6cb
GET /upload/vod/20210110-1/90eaab2bff38eaa3c582c697e8e73b50.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:27 GMT
Content-Type: image/jpeg
Content-Length: 83187
Last-Modified: Wed, 10 Aug 2022 12:11:58 GMT
Connection: keep-alive
ETag: "62f3a08e-144f3"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/kpd-pic/7J3TnUWp.jpg
200 OK 26 kB URL HTTP/1.1 sycdn.comtucdncom.com/kpd-pic/7J3TnUWp.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 586x438, components 3\012- data
Hash 67a1ce0def292e7dd23b58fa84232009
e3a51c4941d7da2995beb1c4428aa2098f9ced53
d1a44aaa525499d05946eeb26a130427a1a1f7b7505f38bd66450f03ebdad393
GET /kpd-pic/7J3TnUWp.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:27 GMT
Content-Type: image/jpeg
Content-Length: 26281
Last-Modified: Wed, 10 Aug 2022 12:10:25 GMT
Connection: keep-alive
ETag: "62f3a031-66a9"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/upload/vod/2019-10-05/15702377638.jpg
200 OK 9.4 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/2019-10-05/15702377638.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 69x68, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 23029fbb4a5fa2bcfa304ae948b121ed
6b678a58068a92ce4f9778faa408a2eb42886e77
576914e4508f0077b08b00e353c9178162ba9c327ce87b67926bb02b6ac70a1f
GET /upload/vod/2019-10-05/15702377638.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:03 GMT
Content-Type: image/jpeg
Content-Length: 9365
Last-Modified: Thu, 11 Aug 2022 04:54:41 GMT
Connection: keep-alive
ETag: "62f48b91-2495"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
www.chinadqwx.com/cssadmin/tuiguang.js
200 OK 685 B URL HTTP/1.1 www.chinadqwx.com/cssadmin/tuiguang.js
IP
File type ASCII text, with CRLF line terminators
Hash 97027325447cfd921a0b70e4d9fc4e35
3b09679a54414b4c2221b41f9180296d8d860094
5fa63d6d7b11650dc2bfbfe922521c707b18ea017bc13a4bfa47ca9b782bd8f3
Analyzer Verdict Alert quad9 Sinkholed
GET /cssadmin/tuiguang.js HTTP/1.1
Host: www.chinadqwx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Cookie: __tins__21195469=%7B%22sid%22%3A%201662641095077%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201662642895077%7D; __51cke__=; __51laig__=1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Sep 2022 12:45:20 GMT
Content-Type: application/javascript
Content-Length: 685
Last-Modified: Wed, 08 Jun 2022 09:51:31 GMT
Connection: keep-alive
ETag: "62a07123-2ad"
Expires: Fri, 09 Sep 2022 00:45:20 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20201004-1/f0a9b11a081c53681a3e8d6455d9b3df.jpg
200 OK 158 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20201004-1/f0a9b11a081c53681a3e8d6455d9b3df.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 800x540, components 3\012- data
Size 158 kB (157970 bytes)
Hash 08638939d884040fcc2a11dbee6483cd
2c25b0a95b4456ed9d4a90a1b78cdf38aac38f86
2dbb1233b6e0a3a61edfbcba3baa734d2a27c2bfa847e09f5bef33601787078a
GET /upload/vod/20201004-1/f0a9b11a081c53681a3e8d6455d9b3df.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 157970
Last-Modified: Thu, 11 Aug 2022 12:16:32 GMT
Connection: keep-alive
ETag: "62f4f320-26912"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.sewozyimg.com/upload/vod/20220428-1/f3227e322a608a7875cf186b7181ef0a.jpg
200 OK 115 kB URL HTTP/1.1 img.sewozyimg.com/upload/vod/20220428-1/f3227e322a608a7875cf186b7181ef0a.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 960x540, components 3\012- data
Size 115 kB (114932 bytes)
Hash 925170c9ce3dffc2e9cc0fd9f662d8df
c9c543b8864c65fcb58941082a0b59bfa485da44
2b6feb7b735a9341103958957406fba90142e017e34776c57438796e698e35bc
GET /upload/vod/20220428-1/f3227e322a608a7875cf186b7181ef0a.jpg HTTP/1.1
Host: img.sewozyimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 114932
Last-Modified: Sun, 04 Sep 2022 15:51:38 GMT
Connection: keep-alive
ETag: "6314c98a-1c0f4"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/papa-PIC/avid5878a19e52f36.jpg
200 OK 42 kB URL HTTP/1.1 sycdn.comtucdncom.com/papa-PIC/avid5878a19e52f36.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.63.103", baseline, precision 8, 1024x576, components 3\012- data
Hash ec3f5c52556bdd650502a71979075f82
4399a103b610fc365dea2492679527331e993461
9fd5733c89756145e82210f2ec4a0173375859757374bd23e98c89bd2ffc4b8c
GET /papa-PIC/avid5878a19e52f36.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:27 GMT
Content-Type: image/jpeg
Content-Length: 41969
Last-Modified: Wed, 10 Aug 2022 12:09:45 GMT
Connection: keep-alive
ETag: "62f3a009-a3f1"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ia.51.la/go1?id=21195469&rt=1662641095077&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=%25E5%259B%25BD%25E4%25BA%25A7%25E7%25B2%25BE%25E5%2593%2581%25E4%25B9%2585%25E4%25B9%2585%25E5%259B%25BD%25E4%25BA%25A7%25E7%25B2%25BE%25E5%2593%258199%252C%25E5%259B%25BD%25E4%25BA%25A799%25E7%2588%25B1%25E5%259C%25A8%25E7%25BA%25BF%25E8%25A7%2586%25E9%25A2%2591%25E5%2585%258D%25E8%25B4%25B9%25E8%25A7%2582%25E7%259C%258B%252C97%25E5%259B%25BD&ing=1&ekc=&sid=1662641095077&tt=%25E5%259B%25BD%25E4%25BA%25A7%25E7%25B2%25BE%25E5%2593%2581%25E4%25B9%2585%25E4%25B9%2585%25E5%259B%25BD%25E4%25BA%25A7%25E7%25B2%25BE%25E5%2593%258199%252C%25E5%259B%25BD%25E4%25BA%25A799%25E7%2588%25B1%25E5%259C%25A8%25E7%25BA%25BF%25E8%25A7%2586%25E9%25A2%2591%25E5%2585%258D%25E8%25B4%25B9%25E8%25A7%2582%25E7%259C%258B%252C97%25E5%259B%25BD%25E8%25AF%25AD%25E7%25B2%25BE%25E5%2593%2581%25E8%2587%25AA%25E4%25BA%25A7%25E6%258B%258D%25E5%259C%25A8%25E7%25BA%25BF%25E8%25A7%2582%25E7%259C%258B&kw=%25E5%259B%25BD%25E4%25BA%25A7%25E7%25B2%25BE%25E5%2593%2581%25E4%25B9%2585%25E4%25B9%2585%25E5%259B%25BD%25E4%25BA%25A7%25E7%25B2%25BE%25E5%2593%258199%252C%25E5%259B%25BD%25E4%25BA%25A799%25E7%2588%25B1%25E5%259C%25A8%25E7%25BA%25BF%25E8%25A7%2586%25E9%25A2%2591%25E5%2585%258D%25E8%25B4%25B9%25E8%25A7%2582%25E7%259C%258B%252C97%25E5%259B%25BD%25E8%25AF%25AD%25E7%25B2%25BE%25E5%2593%2581%25E8%2587%25AA%25E4%25BA%25A7%25E6%258B%258D%25E5%259C%25A8%25E7%25BA%25BF%25E8%25A7%2582%25E7%259C%258B%252C%25E6%25AD%25A3%25E5%259C%25A8%25E6%2592%25AD%25E6%2594%25BE%25E9%25AB%2598%25E6%258C%2591%25E8%25BA%25AB%25E6%259D%2590%252C%25E5%259B%25BD%25E4%25BA%25A7%25E4%25B8%2580%25E5%258C%25BA%25E4%25BA%258C%25E5%258C%25BA%25E6%2583%2585%25E4%25BE%25A3%25E9%259C%25B2%25E8%2584%25B8%252C%25E6%25AC%25A7%25E7%25BE%258E%25E6%2588%2590%25E4%25BA%25BA%25E7%25B2%25BE%25E5%2593%2581%25E7%25B2%25BE%25E5%2593%2581%25E8%25A7%2586%25E9%25A2%2591%252C%25E7%25B2%2597%25E9%2595%25BF%25E5%25B7%25A8%25E9%25BE%2599%25E6%258C%25A4%25E8%25BF%259B%25E6%2596%25B0%25E5%25A9%259A%25E5%25B0%2591%25E5%25A6%2587%25E6%259C%25AA%25E5%2588%25A0%25E7%2589%2588&cu=http%253A%252F%252Fwww.chinadqwx.com%252F&pu=
200 0 B URL HTTP/1.1 ia.51.la/go1?id=21195469&rt=1662641095077&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=%25E5%259B%25BD%25E4%25BA%25A7%25E7%25B2%25BE%25E5%2593%2581%25E4%25B9%2585%25E4%25B9%2585%25E5%259B%25BD%25E4%25BA%25A7%25E7%25B2%25BE%25E5%2593%258199%252C%25E5%259B%25BD%25E4%25BA%25A799%25E7%2588%25B1%25E5%259C%25A8%25E7%25BA%25BF%25E8%25A7%2586%25E9%25A2%2591%25E5%2585%258D%25E8%25B4%25B9%25E8%25A7%2582%25E7%259C%258B%252C97%25E5%259B%25BD&ing=1&ekc=&sid=1662641095077&tt=%25E5%259B%25BD%25E4%25BA%25A7%25E7%25B2%25BE%25E5%2593%2581%25E4%25B9%2585%25E4%25B9%2585%25E5%259B%25BD%25E4%25BA%25A7%25E7%25B2%25BE%25E5%2593%258199%252C%25E5%259B%25BD%25E4%25BA%25A799%25E7%2588%25B1%25E5%259C%25A8%25E7%25BA%25BF%25E8%25A7%2586%25E9%25A2%2591%25E5%2585%258D%25E8%25B4%25B9%25E8%25A7%2582%25E7%259C%258B%252C97%25E5%259B%25BD%25E8%25AF%25AD%25E7%25B2%25BE%25E5%2593%2581%25E8%2587%25AA%25E4%25BA%25A7%25E6%258B%258D%25E5%259C%25A8%25E7%25BA%25BF%25E8%25A7%2582%25E7%259C%258B&kw=%25E5%259B%25BD%25E4%25BA%25A7%25E7%25B2%25BE%25E5%2593%2581%25E4%25B9%2585%25E4%25B9%2585%25E5%259B%25BD%25E4%25BA%25A7%25E7%25B2%25BE%25E5%2593%258199%252C%25E5%259B%25BD%25E4%25BA%25A799%25E7%2588%25B1%25E5%259C%25A8%25E7%25BA%25BF%25E8%25A7%2586%25E9%25A2%2591%25E5%2585%258D%25E8%25B4%25B9%25E8%25A7%2582%25E7%259C%258B%252C97%25E5%259B%25BD%25E8%25AF%25AD%25E7%25B2%25BE%25E5%2593%2581%25E8%2587%25AA%25E4%25BA%25A7%25E6%258B%258D%25E5%259C%25A8%25E7%25BA%25BF%25E8%25A7%2582%25E7%259C%258B%252C%25E6%25AD%25A3%25E5%259C%25A8%25E6%2592%25AD%25E6%2594%25BE%25E9%25AB%2598%25E6%258C%2591%25E8%25BA%25AB%25E6%259D%2590%252C%25E5%259B%25BD%25E4%25BA%25A7%25E4%25B8%2580%25E5%258C%25BA%25E4%25BA%258C%25E5%258C%25BA%25E6%2583%2585%25E4%25BE%25A3%25E9%259C%25B2%25E8%2584%25B8%252C%25E6%25AC%25A7%25E7%25BE%258E%25E6%2588%2590%25E4%25BA%25BA%25E7%25B2%25BE%25E5%2593%2581%25E7%25B2%25BE%25E5%2593%2581%25E8%25A7%2586%25E9%25A2%2591%252C%25E7%25B2%2597%25E9%2595%25BF%25E5%25B7%25A8%25E9%25BE%2599%25E6%258C%25A4%25E8%25BF%259B%25E6%2596%25B0%25E5%25A9%259A%25E5%25B0%2591%25E5%25A6%2587%25E6%259C%25AA%25E5%2588%25A0%25E7%2589%2588&cu=http%253A%252F%252Fwww.chinadqwx.com%252F&pu=
IP
ASN #4837 CHINA UNICOM China169 Backbone
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go1?id=21195469&rt=1662641095077&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=%25E5%259B%25BD%25E4%25BA%25A7%25E7%25B2%25BE%25E5%2593%2581%25E4%25B9%2585%25E4%25B9%2585%25E5%259B%25BD%25E4%25BA%25A7%25E7%25B2%25BE%25E5%2593%258199%252C%25E5%259B%25BD%25E4%25BA%25A799%25E7%2588%25B1%25E5%259C%25A8%25E7%25BA%25BF%25E8%25A7%2586%25E9%25A2%2591%25E5%2585%258D%25E8%25B4%25B9%25E8%25A7%2582%25E7%259C%258B%252C97%25E5%259B%25BD&ing=1&ekc=&sid=1662641095077&tt=%25E5%259B%25BD%25E4%25BA%25A7%25E7%25B2%25BE%25E5%2593%2581%25E4%25B9%2585%25E4%25B9%2585%25E5%259B%25BD%25E4%25BA%25A7%25E7%25B2%25BE%25E5%2593%258199%252C%25E5%259B%25BD%25E4%25BA%25A799%25E7%2588%25B1%25E5%259C%25A8%25E7%25BA%25BF%25E8%25A7%2586%25E9%25A2%2591%25E5%2585%258D%25E8%25B4%25B9%25E8%25A7%2582%25E7%259C%258B%252C97%25E5%259B%25BD%25E8%25AF%25AD%25E7%25B2%25BE%25E5%2593%2581%25E8%2587%25AA%25E4%25BA%25A7%25E6%258B%258D%25E5%259C%25A8%25E7%25BA%25BF%25E8%25A7%2582%25E7%259C%258B&kw=%25E5%259B%25BD%25E4%25BA%25A7%25E7%25B2%25BE%25E5%2593%2581%25E4%25B9%2585%25E4%25B9%2585%25E5%259B%25BD%25E4%25BA%25A7%25E7%25B2%25BE%25E5%2593%258199%252C%25E5%259B%25BD%25E4%25BA%25A799%25E7%2588%25B1%25E5%259C%25A8%25E7%25BA%25BF%25E8%25A7%2586%25E9%25A2%2591%25E5%2585%258D%25E8%25B4%25B9%25E8%25A7%2582%25E7%259C%258B%252C97%25E5%259B%25BD%25E8%25AF%25AD%25E7%25B2%25BE%25E5%2593%2581%25E8%2587%25AA%25E4%25BA%25A7%25E6%258B%258D%25E5%259C%25A8%25E7%25BA%25BF%25E8%25A7%2582%25E7%259C%258B%252C%25E6%25AD%25A3%25E5%259C%25A8%25E6%2592%25AD%25E6%2594%25BE%25E9%25AB%2598%25E6%258C%2591%25E8%25BA%25AB%25E6%259D%2590%252C%25E5%259B%25BD%25E4%25BA%25A7%25E4%25B8%2580%25E5%258C%25BA%25E4%25BA%258C%25E5%258C%25BA%25E6%2583%2585%25E4%25BE%25A3%25E9%259C%25B2%25E8%2584%25B8%252C%25E6%25AC%25A7%25E7%25BE%258E%25E6%2588%2590%25E4%25BA%25BA%25E7%25B2%25BE%25E5%2593%2581%25E7%25B2%25BE%25E5%2593%2581%25E8%25A7%2586%25E9%25A2%2591%252C%25E7%25B2%2597%25E9%2595%25BF%25E5%25B7%25A8%25E9%25BE%2599%25E6%258C%25A4%25E8%25BF%259B%25E6%2596%25B0%25E5%25A9%259A%25E5%25B0%2591%25E5%25A6%2587%25E6%259C%25AA%25E5%2588%25A0%25E7%2589%2588&cu=http%253A%252F%252Fwww.chinadqwx.com%252F&pu= HTTP/1.1
Host: ia.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/
HTTP/1.1 200
Server: CloudWAF
Date: Thu, 08 Sep 2022 12:45:03 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: HWWAFSESID=c70cf46f4f8e569f298; path=/
HWWAFSESTIME=1662641102135; path=/
sycdn.comtucdncom.com/upload/vod/20210706-1/4cd119af18c326ef349176452717b2fe.jpg
200 OK 23 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20210706-1/4cd119af18c326ef349176452717b2fe.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.115.101", baseline, precision 8, 638x376, components 3\012- data
Hash 1a181762e22e4d7177f436e83568a73d
d5ee2c8876e9115b0057d5a44948e852c4f4c32d
6691c8b48c187d445dde9c156cb89328c009a1bdc09f9c0e9a95a4fd23e2ba0c
GET /upload/vod/20210706-1/4cd119af18c326ef349176452717b2fe.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:27 GMT
Content-Type: image/jpeg
Content-Length: 23110
Last-Modified: Wed, 10 Aug 2022 12:07:45 GMT
Connection: keep-alive
ETag: "62f39f91-5a46"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/upload/vod/20210726-1/e768419f7822d631d8a7820f6d8e1044.jpg
200 OK 598 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20210726-1/e768419f7822d631d8a7820f6d8e1044.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x1920, components 3\012- data
Size 598 kB (597609 bytes)
Hash c556cc26fbe119f828f28b6652980165
514acb557b48c19ee1f008d8ad5d46707d774f20
5051d5ff9aab96868d76518e991844d8639f09f3355963a49e0e7532273ed074
GET /upload/vod/20210726-1/e768419f7822d631d8a7820f6d8e1044.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:27 GMT
Content-Type: image/jpeg
Content-Length: 597609
Last-Modified: Wed, 10 Aug 2022 12:12:37 GMT
Connection: keep-alive
ETag: "62f3a0b5-91e69"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/upload/vod/20201021-1/da7b048698c3a0371a579c3761ae72c8.jpg
200 OK 56 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20201021-1/da7b048698c3a0371a579c3761ae72c8.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 980x550, components 3\012- data
Hash 4595df8d74099e1c95389a8862a19e95
b517c7c5258633cef23054f0a567e704a46ec495
6ab2c178f80ca39de1ca331235b494c5c66b215d437424cf0b74b5367fc97276
GET /upload/vod/20201021-1/da7b048698c3a0371a579c3761ae72c8.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:27 GMT
Content-Type: image/jpeg
Content-Length: 56085
Last-Modified: Wed, 10 Aug 2022 12:11:23 GMT
Connection: keep-alive
ETag: "62f3a06b-db15"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/upload/vod/2019-09-12/15682421470.jpg
200 OK 9.6 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/2019-09-12/15682421470.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 319x227, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash b7cd55686ec5dc3e9ae96daaa0819060
084acc23c3ad34e3eebf8aa6192022f6550cf154
0a043a76b60fd71a1454d20f6c4c45f1a0c3b7cdf41f3b27dab9799f15b7032e
GET /upload/vod/2019-09-12/15682421470.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:03 GMT
Content-Type: image/jpeg
Content-Length: 9571
Last-Modified: Thu, 11 Aug 2022 04:57:55 GMT
Connection: keep-alive
ETag: "62f48c53-2563"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/upload/vod/2018-12-14/15447745821.jpg
200 OK 11 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/2018-12-14/15447745821.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 427x320, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 77292ea286066bd08767194b9ff5e2c5
be8c11340f634ca1d03a45d678722295b28d097b
db47ed796bc67275aa06a7fbebf1a770b8e5a4e330cc313962e9d149802fb609
GET /upload/vod/2018-12-14/15447745821.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:03 GMT
Content-Type: image/jpeg
Content-Length: 11045
Last-Modified: Thu, 11 Aug 2022 04:57:52 GMT
Connection: keep-alive
ETag: "62f48c50-2b25"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic.laoyapic.com/upload/vod/20220327-1/789e55856158c49ab491f41d9d66f23f.jpg
200 OK 130 kB URL HTTP/1.1 pic.laoyapic.com/upload/vod/20220327-1/789e55856158c49ab491f41d9d66f23f.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 820x462, components 3\012- data
Size 130 kB (130140 bytes)
Hash e02473a1c359238a49a2dcea33bb4586
87a453f8cedbb63a30958828c790cabf8d87bf00
67c8b5ec28cc41b62f1b8f2028a347258e1a8cb22caf3419cc27ea109727ab8d
GET /upload/vod/20220327-1/789e55856158c49ab491f41d9d66f23f.jpg HTTP/1.1
Host: pic.laoyapic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 130140
Last-Modified: Sun, 04 Sep 2022 18:08:33 GMT
Connection: keep-alive
ETag: "6314e9a1-1fc5c"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/upload/vod/20201021-1/a42720b8ec2df33183c05fbaa871a46c.jpg
200 OK 52 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20201021-1/a42720b8ec2df33183c05fbaa871a46c.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 980x550, components 3\012- data
Hash c2bd5619d07be257f6ebd68ab605087b
aa30c60815ec0a328b3cd9d70af3cd7e50f93063
cf057a2f7db107fa8f5c80b2eb441817f84d4889a93dc7aaa54baef500905e55
GET /upload/vod/20201021-1/a42720b8ec2df33183c05fbaa871a46c.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:27 GMT
Content-Type: image/jpeg
Content-Length: 51745
Last-Modified: Wed, 10 Aug 2022 12:11:51 GMT
Connection: keep-alive
ETag: "62f3a087-ca21"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
www.chinadqwx.com/static9/js/dhx.js
200 OK 520 B URL HTTP/1.1 www.chinadqwx.com/static9/js/dhx.js
IP
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash cce9201b83bbcdff67773b849706c7fd
d7d375e578fd6b2908afe99dfb94f3fcc802a925
8eb4ba79223df51bdbff5d7af15a870e1e22eb7060296d23c6674fdf1df511bd
Analyzer Verdict Alert quad9 Sinkholed
GET /static9/js/dhx.js HTTP/1.1
Host: www.chinadqwx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Cookie: __tins__21195469=%7B%22sid%22%3A%201662641095077%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201662642895077%7D; __51cke__=; __51laig__=1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Sep 2022 12:45:20 GMT
Content-Type: application/javascript
Last-Modified: Thu, 11 Aug 2022 14:15:26 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62f50efe-afd"
Expires: Fri, 09 Sep 2022 00:45:20 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
sycdn.comtucdncom.com/papa-PIC/avid59a8f4388892d.jpg
200 OK 28 kB URL HTTP/1.1 sycdn.comtucdncom.com/papa-PIC/avid59a8f4388892d.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.96.101", baseline, precision 8, 768x576, components 3\012- data
Hash 48e8205e4af1783f7a97aa02b0657118
609e51bd9ac600c5c1416c5afc590e341a940f9f
c55a1c0373f92e9540f845db19cac1513f217f3b630ea75224d0db996e5766ab
GET /papa-PIC/avid59a8f4388892d.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:27 GMT
Content-Type: image/jpeg
Content-Length: 27817
Last-Modified: Wed, 10 Aug 2022 12:07:22 GMT
Connection: keep-alive
ETag: "62f39f7a-6ca9"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/upload/vod/2018-12-12/154462854218.jpg
200 OK 9.5 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/2018-12-12/154462854218.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 237x178, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash dfad7897d2c60c284f895d35b5156947
ff3ee411a6eca4382115268426fa3f6828372064
2195bdd1adff47af6eaa6ca636bcf688f7ddf0db9b04bac42c25cf443e6b3aa9
GET /upload/vod/2018-12-12/154462854218.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:03 GMT
Content-Type: image/jpeg
Content-Length: 9496
Last-Modified: Thu, 11 Aug 2022 04:59:13 GMT
Connection: keep-alive
ETag: "62f48ca1-2518"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/upload/vod/2021-06-20/162416309620.jpg
200 OK 96 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/2021-06-20/162416309620.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 750x422, components 3\012- data
Hash ecdbdd321fe33dcb6607534f6c702b5c
806abd4a21bc002269c8f901f62d7f40400d469f
376c412930be73a3a1b3495ce571df641c8b7956e02f934b2637448cfa5ba644
GET /upload/vod/2021-06-20/162416309620.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:03 GMT
Content-Type: image/jpeg
Content-Length: 95831
Last-Modified: Thu, 11 Aug 2022 04:54:42 GMT
Connection: keep-alive
ETag: "62f48b92-17657"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
www.chinadqwx.com/static9/images/240x50-1.gif
200 OK 5.9 kB URL HTTP/1.1 www.chinadqwx.com/static9/images/240x50-1.gif
IP
File type GIF image data, version 89a, 240 x 50\012- data
Hash 99d379b5ddbe576fffef7ca718482cf4
0707cfd32a19e61c70f7b33086b8a0562430c7e3
39a8605e08852f70bf30d439dc750a0c673cbf0e4b6a51c7b6fc113b25c695b6
Analyzer Verdict Alert quad9 Sinkholed
GET /static9/images/240x50-1.gif HTTP/1.1
Host: www.chinadqwx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/static9/css/home.css
Cookie: __tins__21195469=%7B%22sid%22%3A%201662641095077%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201662642895077%7D; __51cke__=; __51laig__=1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Sep 2022 12:45:20 GMT
Content-Type: image/gif
Content-Length: 5902
Last-Modified: Sat, 14 Aug 2021 10:31:56 GMT
Connection: keep-alive
ETag: "61179b9c-170e"
Expires: Sat, 08 Oct 2022 12:45:20 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
ddcdn.comtucdncom.com/images/2022/04/30/wuma7432.jpg
200 OK 138 kB URL HTTP/1.1 ddcdn.comtucdncom.com/images/2022/04/30/wuma7432.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=12, height=528, bps=158, PhotometricIntepretation=RGB, orientation=upper-left, width=940], progressive, precision 8, 940x528, components 3\012- data
Size 138 kB (137600 bytes)
Hash 81d4453ae01b36565d6dd508aba17301
d5d95c5058bd2de37385b661993fa9d92454527f
da1bfb47b1e4ad29cd10930347b0dbc4b743c6f423383faeb64d63e408a9c86a
GET /images/2022/04/30/wuma7432.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 137600
Last-Modified: Thu, 11 Aug 2022 05:01:27 GMT
Connection: keep-alive
ETag: "62f48d27-21980"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/upload/vod/20201019-1/5de2b1df9b357a240053e01ea656b153.jpg
200 OK 112 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20201019-1/5de2b1df9b357a240053e01ea656b153.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 966x550, components 3\012- data
Size 112 kB (112198 bytes)
Hash 18085f2347624add0b587a37b6e25f87
9c743d6b2ba134b50eb7f1de5f0661ff2e0f87c3
d18656d5a94ecfa4148bf964ed9e531bca5e0ecea38b35bc5808d483b8569ae2
GET /upload/vod/20201019-1/5de2b1df9b357a240053e01ea656b153.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:27 GMT
Content-Type: image/jpeg
Content-Length: 112198
Last-Modified: Wed, 10 Aug 2022 12:12:49 GMT
Connection: keep-alive
ETag: "62f3a0c1-1b646"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/papa-PIC/avid5c329094c1ba6.jpg
200 OK 43 kB URL HTTP/1.1 sycdn.comtucdncom.com/papa-PIC/avid5c329094c1ba6.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 795x458, components 3\012- data
Hash 79ac4783b86c4f864876fb654187701a
e34524aee86f448b6c9bb3bde3ac561ca6839bb4
b04782c0a521690a7925b0831605929ffff601042f1b36d5d7c52d0aa1a93f36
GET /papa-PIC/avid5c329094c1ba6.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:28 GMT
Content-Type: image/jpeg
Content-Length: 42736
Last-Modified: Wed, 10 Aug 2022 12:05:11 GMT
Connection: keep-alive
ETag: "62f39ef7-a6f0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/pic/20200430-HIP91/RdpbdE9T.jpg
200 OK 6.0 kB URL HTTP/1.1 sycdn.comtucdncom.com/pic/20200430-HIP91/RdpbdE9T.jpg
IP
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash ca2e9aa2fb71769f6bc96c7a48462b80
f376c7f39e88bc57fcc05d86410208aef811a1b8
27e4942c2285ba74d62265faa81a36f631b3787b738ae646eac9be22df6afa08
GET /pic/20200430-HIP91/RdpbdE9T.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:28 GMT
Content-Type: image/jpeg
Content-Length: 5952
Last-Modified: Wed, 10 Aug 2022 12:07:26 GMT
Connection: keep-alive
ETag: "62f39f7e-1740"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/upload/vod/2018-12-14/154476767912.jpg
200 OK 8.6 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/2018-12-14/154476767912.jpg
IP
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash eea7b68506cf659f70c12ddb37656d05
0c7bace77223dadac0e44e2b6a190bf2028b4962
8473a07ab18954deeb21a48beec4c90b15c35371f2349676b48c592cb2b44711
GET /upload/vod/2018-12-14/154476767912.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:03 GMT
Content-Type: image/jpeg
Content-Length: 8623
Last-Modified: Thu, 11 Aug 2022 04:56:49 GMT
Connection: keep-alive
ETag: "62f48c11-21af"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
www.chinadqwx.com/static9/js/ssx.js
200 OK 685 B URL HTTP/1.1 www.chinadqwx.com/static9/js/ssx.js
IP
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 91b18329186b0613d8a4a7f1e1688eb0
cfdd95b4925a26c859f4c111e877446a77dcb56d
9433c96621cb60dc2422b75175b4d28872b8bf7cddc644578d8d7eb6b7c1223d
Analyzer Verdict Alert quad9 Sinkholed
GET /static9/js/ssx.js HTTP/1.1
Host: www.chinadqwx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Cookie: __tins__21195469=%7B%22sid%22%3A%201662641095077%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201662642895077%7D; __51cke__=; __51laig__=1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Sep 2022 12:45:21 GMT
Content-Type: application/javascript
Last-Modified: Fri, 29 Jul 2022 08:18:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62e397c5-839"
Expires: Fri, 09 Sep 2022 00:45:21 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
img.tpttzy.com/upload/vod/20210821-1/296e1baa637f57c1bb97d711168bbc26.jpg
200 OK 518 kB URL HTTP/1.1 img.tpttzy.com/upload/vod/20210821-1/296e1baa637f57c1bb97d711168bbc26.jpg
IP
File type PNG image data, 800 x 539, 8-bit/color RGBA, non-interlaced\012- data
Size 518 kB (518410 bytes)
Hash 4175c8d42734e402199647c7a9f09cb2
92d3e88858d466423e5a0ebe9eccabaa874abbe1
91a5f3ccc4375d6e084db27ca6b0a356bd87089734449fd2b84207eb5d114ba9
GET /upload/vod/20210821-1/296e1baa637f57c1bb97d711168bbc26.jpg HTTP/1.1
Host: img.tpttzy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 518410
Last-Modified: Tue, 07 Jun 2022 09:17:21 GMT
Connection: keep-alive
ETag: "629f17a1-7e90a"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/uptu/20220516/A9T9P3MC/1.jpg
200 OK 6.6 kB URL HTTP/1.1 ddcdn.comtucdncom.com/uptu/20220516/A9T9P3MC/1.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 2ecda7e5d44592dc5e006331063efcf1
7e7a400001a47050f3a331646b54e909bff20404
f64ac094c526ff35f8ad518aa3232f3ef526b6dbf6b0036dff47ba4a859c05f3
GET /uptu/20220516/A9T9P3MC/1.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:03 GMT
Content-Type: image/jpeg
Content-Length: 6641
Last-Modified: Thu, 11 Aug 2022 04:54:45 GMT
Connection: keep-alive
ETag: "62f48b95-19f1"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.tpttzy.com/upload/vod/20210811-1/5cf937a5c6807da12f54fa5826862c62.jpg
200 OK 530 kB URL HTTP/1.1 img.tpttzy.com/upload/vod/20210811-1/5cf937a5c6807da12f54fa5826862c62.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, xresolution=72, yresolution=72], baseline, precision 8, 1280x720, components 3\012- data
Size 530 kB (530021 bytes)
Hash e59ba3bfa1b399531ed51aa9bd605ab4
cbf98a345a8522a77478bdb70f489c819f2629a0
5b91b681874a33aa1d1dd49d9016287c48affd989553db772c63d1ef2271e067
GET /upload/vod/20210811-1/5cf937a5c6807da12f54fa5826862c62.jpg HTTP/1.1
Host: img.tpttzy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 530021
Last-Modified: Tue, 07 Jun 2022 09:16:12 GMT
Connection: keep-alive
ETag: "629f175c-81665"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/papaduanpian-img/avid5cedf770544ea.jpg
200 OK 83 kB URL HTTP/1.1 sycdn.comtucdncom.com/papaduanpian-img/avid5cedf770544ea.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 795x458, components 3\012- data
Hash 71ca009fa6018120d403abd9f6a4f873
c6f3458203cdb46421ebf6481444ebc4fd5a97a9
98b3090866424a937a93ae256cea08e2440ecafeb22c258d5bd4a11ae9faaee8
GET /papaduanpian-img/avid5cedf770544ea.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:28 GMT
Content-Type: image/jpeg
Content-Length: 83001
Last-Modified: Wed, 10 Aug 2022 12:15:28 GMT
Connection: keep-alive
ETag: "62f3a160-14439"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/upload/vod/20200703-1/3f5e2649ef913adb1be900bb8402aa7f.jpg
200 OK 59 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20200703-1/3f5e2649ef913adb1be900bb8402aa7f.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 310x208, components 3\012- data
Hash c67cb2d6ec52dcef6ada67692894fd80
a1e5a7bcc71bc06de173225e2ce584cdbf55af73
a535e50b124aa725c027d8f1731dae8796172dea2cb80fb372aebb563c3a2f4a
GET /upload/vod/20200703-1/3f5e2649ef913adb1be900bb8402aa7f.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:28 GMT
Content-Type: image/jpeg
Content-Length: 58786
Last-Modified: Wed, 10 Aug 2022 12:13:38 GMT
Connection: keep-alive
ETag: "62f3a0f2-e5a2"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
hm.baidu.com/hm.js?384c8b3c3725a56957c2805fd35722fe
200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?384c8b3c3725a56957c2805fd35722fe
IP
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (626)
Hash 84ad8bcf4375383b5d4a519bbbff7367
1dd88655ec79e51a6129d020188171fd10192d31
a677efdc73dcea4c5b669896c6beeb73bcf09f81a63c9b428b5a8185edaa6fa3
GET /hm.js?384c8b3c3725a56957c2805fd35722fe HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11339
Content-Type: application/javascript
Date: Thu, 08 Sep 2022 12:45:02 GMT
Etag: b495ff348aef204755e30253dfa7b37d
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=EC9220923DB2F2D0; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
sycdn.comtucdncom.com/upload/vod/20200817-1/06eb092eae5ba3e34b8d5886bacabf83.jpg
200 OK 65 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20200817-1/06eb092eae5ba3e34b8d5886bacabf83.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 761x512, components 3\012- data
Hash f30e4b8f9f1d3ab34a708271f3d45188
aa3e06af844feb4acb4302f2818c69c065a38ce3
a2d89af8cb64aec635ab006f3fef7f684009407167cbcab7aae70b542831ccef
GET /upload/vod/20200817-1/06eb092eae5ba3e34b8d5886bacabf83.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:28 GMT
Content-Type: image/jpeg
Content-Length: 64608
Last-Modified: Wed, 10 Aug 2022 12:13:25 GMT
Connection: keep-alive
ETag: "62f3a0e5-fc60"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/upload/vod/20201107-1/9bed515d1a5a830c66a655a5a3780cb4.jpg
200 OK 82 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20201107-1/9bed515d1a5a830c66a655a5a3780cb4.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 920x580, components 3\012- data
Hash 8a07e7039ed115a7d25287092829b53d
291a6347d87f0f2c1a8bbfd3509bcad77eb6a92b
eea19f87ff0dfee0da059070cb7a7ddc946094bfdcd0094691729c9465dd68dc
GET /upload/vod/20201107-1/9bed515d1a5a830c66a655a5a3780cb4.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:27 GMT
Content-Type: image/jpeg
Content-Length: 82385
Last-Modified: Wed, 10 Aug 2022 12:09:44 GMT
Connection: keep-alive
ETag: "62f3a008-141d1"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/upload/vod/20201021-1/3e3f5a89ee4e34257d2f295a57b7577b.jpg
200 OK 57 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20201021-1/3e3f5a89ee4e34257d2f295a57b7577b.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 980x550, components 3\012- data
Hash c8c590bc8158e7cf7e3eea4fd0687edb
f2b1921d71ad608d8979cb00eff161540e4da65d
9088c7c6fcc5b8232ad63f78b87ee5fab5637f46312e37b1910912fc969d78fd
GET /upload/vod/20201021-1/3e3f5a89ee4e34257d2f295a57b7577b.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:28 GMT
Content-Type: image/jpeg
Content-Length: 57304
Last-Modified: Wed, 10 Aug 2022 12:10:26 GMT
Connection: keep-alive
ETag: "62f3a032-dfd8"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/papaduanpian-img/avid58dcc1c562d4f.jpg
200 OK 32 kB URL HTTP/1.1 sycdn.comtucdncom.com/papaduanpian-img/avid58dcc1c562d4f.jpg
IP
File type JPEG image data, baseline, precision 8, 1024x576, components 3\012- data
Hash 57b4a003fb43efaa8ede3b7fe060a768
07bf2a880cf97702ff49db8b9ab7709f195c8900
4ea35470cc29aedae82e62d7c267ea54fc7371d2c8aada021c75c2e22f5b3b0f
GET /papaduanpian-img/avid58dcc1c562d4f.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:28 GMT
Content-Type: image/jpeg
Content-Length: 31928
Last-Modified: Wed, 10 Aug 2022 12:09:32 GMT
Connection: keep-alive
ETag: "62f39ffc-7cb8"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
www.chinadqwx.com/ads/ggshang.php
200 OK 138 B URL HTTP/1.1 www.chinadqwx.com/ads/ggshang.php
IP
File type ASCII text, with no line terminators
Hash 7f8317147c8a36a1e63530c4e8830a06
9bb19038ade48d53469f46c75dce0843f30ea9a1
12a95b294a72b8b06e3ce9e7fd9b2e81fbe23c1987bba483f75dbe9abf266999
Analyzer Verdict Alert quad9 Sinkholed
GET /ads/ggshang.php HTTP/1.1
Host: www.chinadqwx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Cookie: __tins__21195469=%7B%22sid%22%3A%201662641095077%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201662642895077%7D; __51cke__=; __51laig__=1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Sep 2022 12:45:21 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
sycdn.comtucdncom.com/upload/vod/20210420-1/e7ac25d601c9e322b2e0667225284a57.jpg
200 OK 19 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20210420-1/e7ac25d601c9e322b2e0667225284a57.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.98.100", baseline, precision 8, 634x374, components 3\012- data
Hash b25649208f593e995edf689d9ac7c575
0428fa40320d9d4258fdb2446249f352caea6933
b9b24c852ef5199f0690e8835314c25ed727189698fffdcb6403612c3c611a87
GET /upload/vod/20210420-1/e7ac25d601c9e322b2e0667225284a57.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:28 GMT
Content-Type: image/jpeg
Content-Length: 18594
Last-Modified: Wed, 10 Aug 2022 12:11:38 GMT
Connection: keep-alive
ETag: "62f3a07a-48a2"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/upload/vod/20211008-1/f05222e6e4b8005cc8282026369bd613.jpg
200 OK 82 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/20211008-1/f05222e6e4b8005cc8282026369bd613.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 800x539, components 3\012- data
Hash af6de4faa26a8d7322670d2bcb31880b
faab020c044f998afc71208817615a5a6838fbe7
a5d625ece10c7567bec940efe805cd17394de2aaa2f3323dd7764f49a4fc696a
GET /upload/vod/20211008-1/f05222e6e4b8005cc8282026369bd613.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:03 GMT
Content-Type: image/jpeg
Content-Length: 82431
Last-Modified: Thu, 11 Aug 2022 04:58:28 GMT
Connection: keep-alive
ETag: "62f48c74-141ff"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/upload/vod/20201126-1/67557cc696504eeb3ce7b99ea78191e1.jpg
200 OK 107 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20201126-1/67557cc696504eeb3ce7b99ea78191e1.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 800x539, components 3\012- data
Size 107 kB (107054 bytes)
Hash 7bb21ec8e51faa792e04edb6bba3a21d
42b7864c2f0bd1741e36aa2ce945cdfeb477be02
3df99a841facfbbe57615ee05f0011b34bfa9955341e39a1681b5b7d35324396
GET /upload/vod/20201126-1/67557cc696504eeb3ce7b99ea78191e1.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:28 GMT
Content-Type: image/jpeg
Content-Length: 107054
Last-Modified: Wed, 10 Aug 2022 11:59:05 GMT
Connection: keep-alive
ETag: "62f39d89-1a22e"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
www.chinadqwx.com/ads/ggshang.html
200 OK 3.3 kB URL HTTP/1.1 www.chinadqwx.com/ads/ggshang.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 133256ff2cc63d265537208da82f1f01
4c90d22dce0d882e3046e8cf9033b9421e14252c
823e90ed84f05d2e2e64d507d993e9772df6423a92ec129cdbdde75c3dc9f687
Analyzer Verdict Alert quad9 Sinkholed
GET /ads/ggshang.html HTTP/1.1
Host: www.chinadqwx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Cookie: __tins__21195469=%7B%22sid%22%3A%201662641095077%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201662642895077%7D; __51cke__=; __51laig__=1; Hm_lvt_384c8b3c3725a56957c2805fd35722fe=1662641096; Hm_lpvt_384c8b3c3725a56957c2805fd35722fe=1662641096
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Sep 2022 12:45:21 GMT
Content-Type: text/html
Last-Modified: Thu, 08 Sep 2022 08:28:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6319a7b2-36fa"
Content-Encoding: gzip
www.chinadqwx.com/ads/shipin.js
200 OK 0 B URL HTTP/1.1 www.chinadqwx.com/ads/shipin.js
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /ads/shipin.js HTTP/1.1
Host: www.chinadqwx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Cookie: __tins__21195469=%7B%22sid%22%3A%201662641095077%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201662642895077%7D; __51cke__=; __51laig__=1; Hm_lvt_384c8b3c3725a56957c2805fd35722fe=1662641096; Hm_lpvt_384c8b3c3725a56957c2805fd35722fe=1662641096
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Sep 2022 12:45:21 GMT
Content-Type: application/javascript
Content-Length: 0
Last-Modified: Sat, 13 Aug 2022 06:04:04 GMT
Connection: keep-alive
ETag: "62f73ed4-0"
Expires: Fri, 09 Sep 2022 00:45:21 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes
sycdn.comtucdncom.com/upload/vod/20201107-1/8a55a73ecfe5d52934119ced4fce0a61.jpg
200 OK 121 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20201107-1/8a55a73ecfe5d52934119ced4fce0a61.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "Software: Snipaste", baseline, precision 8, 1470x862, components 3\012- data
Size 121 kB (120653 bytes)
Hash effc55f0c825f86a814ff278ca9f6d84
04dc5620985d957e6f561368c127149f88a794bd
d7db2374a3b8012e72bdb640ebfe3da72338e6790cbdcec6a1b1e3fde90f54a7
GET /upload/vod/20201107-1/8a55a73ecfe5d52934119ced4fce0a61.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:28 GMT
Content-Type: image/jpeg
Content-Length: 120653
Last-Modified: Wed, 10 Aug 2022 12:12:36 GMT
Connection: keep-alive
ETag: "62f3a0b4-1d74d"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1436556034&si=384c8b3c3725a56957c2805fd35722fe&v=1.2.97&lv=1&sn=18146&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.chinadqwx.com%2F&tt=%E5%9B%BD%E4%BA%A7%E7%B2%BE%E5%93%81%E4%B9%85%E4%B9%85%E5%9B%BD%E4%BA%A7%E7%B2%BE%E5%93%8199%2C%E5%9B%BD%E4%BA%A799%E7%88%B1%E5%9C%A8%E7%BA%BF%E8%A7%86%E9%A2%91%E5%85%8D%E8%B4%B9%E8%A7%82%E7%9C%8B%2C97%E5%9B%BD%E8%AF%AD%E7%B2%BE%E5%93%81%E8%87%AA%E4%BA%A7%E6%8B%8D%E5%9C%A8%E7%BA%BF%E8%A7%82%E7%9C%8B
200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1436556034&si=384c8b3c3725a56957c2805fd35722fe&v=1.2.97&lv=1&sn=18146&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.chinadqwx.com%2F&tt=%E5%9B%BD%E4%BA%A7%E7%B2%BE%E5%93%81%E4%B9%85%E4%B9%85%E5%9B%BD%E4%BA%A7%E7%B2%BE%E5%93%8199%2C%E5%9B%BD%E4%BA%A799%E7%88%B1%E5%9C%A8%E7%BA%BF%E8%A7%86%E9%A2%91%E5%85%8D%E8%B4%B9%E8%A7%82%E7%9C%8B%2C97%E5%9B%BD%E8%AF%AD%E7%B2%BE%E5%93%81%E8%87%AA%E4%BA%A7%E6%8B%8D%E5%9C%A8%E7%BA%BF%E8%A7%82%E7%9C%8B
IP
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1436556034&si=384c8b3c3725a56957c2805fd35722fe&v=1.2.97&lv=1&sn=18146&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.chinadqwx.com%2F&tt=%E5%9B%BD%E4%BA%A7%E7%B2%BE%E5%93%81%E4%B9%85%E4%B9%85%E5%9B%BD%E4%BA%A7%E7%B2%BE%E5%93%8199%2C%E5%9B%BD%E4%BA%A799%E7%88%B1%E5%9C%A8%E7%BA%BF%E8%A7%86%E9%A2%91%E5%85%8D%E8%B4%B9%E8%A7%82%E7%9C%8B%2C97%E5%9B%BD%E8%AF%AD%E7%B2%BE%E5%93%81%E8%87%AA%E4%BA%A7%E6%8B%8D%E5%9C%A8%E7%BA%BF%E8%A7%82%E7%9C%8B HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Thu, 08 Sep 2022 12:45:03 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=71808C09276D5AD6; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
pic1.semaobf1.com/20211201/A55690D43F8E31DE/A55690D43F8E31DE.jpg
404 Not Found 146 B URL HTTP/1.1 pic1.semaobf1.com/20211201/A55690D43F8E31DE/A55690D43F8E31DE.jpg
IP
ASN #61317 Ipxo Uk Limited
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /20211201/A55690D43F8E31DE/A55690D43F8E31DE.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 146
Connection: keep-alive
pic1.semaobf1.com/20220516/6453D10834C38639/6453D10834C38639.jpg
404 Not Found 146 B URL HTTP/1.1 pic1.semaobf1.com/20220516/6453D10834C38639/6453D10834C38639.jpg
IP
ASN #61317 Ipxo Uk Limited
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /20220516/6453D10834C38639/6453D10834C38639.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 146
Connection: keep-alive
img.sewozyimg.com/upload/vod/20220510-1/18c10ef5b377405c94cfd2d591bf8f49.jpg
404 Not Found 146 B URL HTTP/1.1 img.sewozyimg.com/upload/vod/20220510-1/18c10ef5b377405c94cfd2d591bf8f49.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /upload/vod/20220510-1/18c10ef5b377405c94cfd2d591bf8f49.jpg HTTP/1.1
Host: img.sewozyimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:03 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 146
Connection: keep-alive
pic1.semaobf1.com/20211025/55D08C3DD86A9046/55D08C3DD86A9046.jpg
404 Not Found 146 B URL HTTP/1.1 pic1.semaobf1.com/20211025/55D08C3DD86A9046/55D08C3DD86A9046.jpg
IP
ASN #61317 Ipxo Uk Limited
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /20211025/55D08C3DD86A9046/55D08C3DD86A9046.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 146
Connection: keep-alive
pic1.semaobf1.com/20220103/24BE706197990279/24BE706197990279.jpg
404 Not Found 146 B URL HTTP/1.1 pic1.semaobf1.com/20220103/24BE706197990279/24BE706197990279.jpg
IP
ASN #61317 Ipxo Uk Limited
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /20220103/24BE706197990279/24BE706197990279.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 146
Connection: keep-alive
pic1.semaobf1.com/20210916/1ECC10CBA816E185/1ECC10CBA816E185.jpg
404 Not Found 146 B URL HTTP/1.1 pic1.semaobf1.com/20210916/1ECC10CBA816E185/1ECC10CBA816E185.jpg
IP
ASN #61317 Ipxo Uk Limited
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /20210916/1ECC10CBA816E185/1ECC10CBA816E185.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 146
Connection: keep-alive
www.chinadqwx.com/static9/fonts/f1d752b16d6b4a78871e7ed63ffdddb4.woff
200 OK 130 kB URL HTTP/1.1 www.chinadqwx.com/static9/fonts/f1d752b16d6b4a78871e7ed63ffdddb4.woff
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Size 130 kB (130136 bytes)
Hash 3e05046c107e9412775077d29d2fd131
295d91552e2be53955c208055debf5a01e88f5ce
13213d80af19418bf8bf9d6ab5b888389de97cc4b9ededa4a1d18d4083107ecb
Analyzer Verdict Alert quad9 Sinkholed
GET /static9/fonts/f1d752b16d6b4a78871e7ed63ffdddb4.woff HTTP/1.1
Host: www.chinadqwx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.chinadqwx.com/static9/css/styles.css
Cookie: __tins__21195469=%7B%22sid%22%3A%201662641095077%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201662642895077%7D; __51cke__=; __51laig__=1; Hm_lvt_384c8b3c3725a56957c2805fd35722fe=1662641096; Hm_lpvt_384c8b3c3725a56957c2805fd35722fe=1662641096
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Sep 2022 12:45:21 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
www.chinadqwx.com/static9/fonts/iconfont.fa27ec7fe2f9d852bf7c-15.woff
200 OK 548 B URL HTTP/1.1 www.chinadqwx.com/static9/fonts/iconfont.fa27ec7fe2f9d852bf7c-15.woff
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 370e16c3b7dba286cff055f93b9a94d8
65f3537c3c798f7da146c55aef536f7b5d0cb943
d465172175d35d493fb1633e237700022bd849fa123164790b168b8318acb090
Analyzer Verdict Alert quad9 Sinkholed
GET /static9/fonts/iconfont.fa27ec7fe2f9d852bf7c-15.woff HTTP/1.1
Host: www.chinadqwx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.chinadqwx.com/static9/css/styles.css
Cookie: __tins__21195469=%7B%22sid%22%3A%201662641095077%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201662642895077%7D; __51cke__=; __51laig__=1; Hm_lvt_384c8b3c3725a56957c2805fd35722fe=1662641096; Hm_lpvt_384c8b3c3725a56957c2805fd35722fe=1662641096
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Sep 2022 12:45:22 GMT
Content-Type: font/woff
Content-Length: 548
Last-Modified: Sat, 14 Aug 2021 10:31:56 GMT
Connection: keep-alive
ETag: "61179b9c-224"
Accept-Ranges: bytes
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 64d9d2bfde2b52d6045638651ddd8066
dbd27b8de86073045a285adce5fec3f352f7d667
69334eea54f08c2dcc57a10330decd0d6d3f3d2cdc2c19ddf9be50d8fb8a9f8c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "69334EEA54F08C2DCC57A10330DECD0D6D3F3D2CDC2C19DDF9BE50D8FB8A9F8C"
Last-Modified: Thu, 08 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12586
Expires: Thu, 08 Sep 2022 16:14:50 GMT
Date: Thu, 08 Sep 2022 12:45:04 GMT
Connection: keep-alive
kvhaa.com/7d67cff6dd7d3196a8bd9d446a9d6fef.gif
301 Moved Permanently 162 B URL HTTP/2 kvhaa.com/7d67cff6dd7d3196a8bd9d446a9d6fef.gif
IP
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /7d67cff6dd7d3196a8bd9d446a9d6fef.gif HTTP/1.1
Host: kvhaa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Thu, 08 Sep 2022 12:45:04 GMT
content-type: text/html
content-length: 162
location: https://nvhaaa.top/7d67cff6dd7d3196a8bd9d446a9d6fef.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
statuse.digitalcertvalidation.com/
200 OK 471 B URL HTTP/1.1 statuse.digitalcertvalidation.com/
IP
Hash 06535da79142bcc0948b6a3e54ac8717
826a25ae413822cf189b8aae998d644ba3a74235
0b2aefab5f4eb7dce17490cdf62b44a11c208fe2723de800cf552d7d4bb019f1
POST / HTTP/1.1
Host: statuse.digitalcertvalidation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2606
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 12:45:04 GMT
Last-Modified: Thu, 08 Sep 2022 12:01:39 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d0ab17f1ddbf1cc70575ad1b44b67923
d12f3cf2b6ff9d89e938eb1ad3d785f016bb5832
54c3c5b69c90003530e01166a124b7c90c8b08da598877e9ebef60a3f87d009e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "54C3C5B69C90003530E01166A124B7C90C8B08DA598877E9EBEF60A3F87D009E"
Last-Modified: Wed, 07 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4802
Expires: Thu, 08 Sep 2022 14:05:06 GMT
Date: Thu, 08 Sep 2022 12:45:04 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 33cd005b39d1c050e01c74924ef88ba0
c63e1cc27c6c39a6d9555cd7a21d57cc453fe763
a41b7598ab90236451f91775aaeedbf7d3bbc934946d73198d89e09368a3becb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A41B7598AB90236451F91775AAEEDBF7D3BBC934946D73198D89E09368A3BECB"
Last-Modified: Wed, 07 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3314
Expires: Thu, 08 Sep 2022 13:40:18 GMT
Date: Thu, 08 Sep 2022 12:45:04 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 63f87946ebe53c0dc9b6b5ea95095f5f
36bfec36966764f2fbf7bb42c4f525b27eefe3b2
626d75bccee34a92f7b2f15a2a34440da40e82b8b4a20ab4308f6fb468b12f0a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "626D75BCCEE34A92F7B2F15A2A34440DA40E82B8B4A20AB4308F6FB468B12F0A"
Last-Modified: Wed, 07 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=223
Expires: Thu, 08 Sep 2022 12:48:47 GMT
Date: Thu, 08 Sep 2022 12:45:04 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash cd07836a48fb351896e199830a37a105
19699b2f3c8ba9cc360ba49751662c60ea1a6038
0d9ac9229f5315c9e14b8ad9176a7522b2ec9f6c8d9a46c34c4b5bafb8c6e67b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0D9AC9229F5315C9E14B8AD9176A7522B2EC9F6C8D9A46C34C4B5BAFB8C6E67B"
Last-Modified: Tue, 06 Sep 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18743
Expires: Thu, 08 Sep 2022 17:57:27 GMT
Date: Thu, 08 Sep 2022 12:45:04 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f9019b13a754760186c6dc8115838256
c35d02b2ef73ed3413e4f3e8d82f3f2c8615ac2a
fc4f11c6b076ced784da1a66fd568f25f1934079e7204055622027dce3f22abc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC4F11C6B076CED784DA1A66FD568F25F1934079E7204055622027DCE3F22ABC"
Last-Modified: Tue, 06 Sep 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16981
Expires: Thu, 08 Sep 2022 17:28:05 GMT
Date: Thu, 08 Sep 2022 12:45:04 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b329117fec9182d8099098aab5110171
ab0d51780fe8aa7f2ee2bf37e95336b2607956bc
8aca2f4d5f3984dba4a15ae1f47772d4f90fd59517773188ffe3804839fe790f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8ACA2F4D5F3984DBA4A15AE1F47772D4F90FD59517773188FFE3804839FE790F"
Last-Modified: Wed, 07 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9009
Expires: Thu, 08 Sep 2022 15:15:13 GMT
Date: Thu, 08 Sep 2022 12:45:04 GMT
Connection: keep-alive
www.chinadqwx.com/static9/fonts/iconfont.2bf44c243e7df0a70044-15.ttf
200 OK 548 B URL HTTP/1.1 www.chinadqwx.com/static9/fonts/iconfont.2bf44c243e7df0a70044-15.ttf
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 370e16c3b7dba286cff055f93b9a94d8
65f3537c3c798f7da146c55aef536f7b5d0cb943
d465172175d35d493fb1633e237700022bd849fa123164790b168b8318acb090
Analyzer Verdict Alert quad9 Sinkholed
GET /static9/fonts/iconfont.2bf44c243e7df0a70044-15.ttf HTTP/1.1
Host: www.chinadqwx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/static9/css/styles.css
Cookie: __tins__21195469=%7B%22sid%22%3A%201662641095077%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201662642895077%7D; __51cke__=; __51laig__=1; Hm_lvt_384c8b3c3725a56957c2805fd35722fe=1662641096; Hm_lpvt_384c8b3c3725a56957c2805fd35722fe=1662641096
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Sep 2022 12:45:22 GMT
Content-Type: application/octet-stream
Content-Length: 548
Last-Modified: Sat, 14 Aug 2021 10:31:54 GMT
Connection: keep-alive
ETag: "61179b9a-224"
Accept-Ranges: bytes
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 4a2a72c0a3fec15b9af3462b38cf6e39
dd73551e61340edff6a5792f2de9094a35781c2a
c7ccaf5449563d864bddd29528f30ecc4afd38e419ba8f4ce1edd48b3a7505b9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C7CCAF5449563D864BDDD29528F30ECC4AFD38E419BA8F4CE1EDD48B3A7505B9"
Last-Modified: Wed, 07 Sep 2022 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21548
Expires: Thu, 08 Sep 2022 18:44:12 GMT
Date: Thu, 08 Sep 2022 12:45:04 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 08ebc1baec02ffbbc5fd461ccc1244fc
764d28f65908c2f9a12ff8480b22ce43835d863e
880ac3580f00da79ef927520885983461a819ee10ae1fd96fe256a5ad0580d0b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "880AC3580F00DA79EF927520885983461A819EE10AE1FD96FE256A5AD0580D0B"
Last-Modified: Wed, 07 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11470
Expires: Thu, 08 Sep 2022 15:56:14 GMT
Date: Thu, 08 Sep 2022 12:45:04 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 820c95d597a1313ac93952de9ae46423
fe8a393803099742ad3990de95b00b230bef686e
aa1196495643e7fcab457f38967a85362f3dfd48e6b4efbe590ac3ffa5b5b954
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AA1196495643E7FCAB457F38967A85362F3DFD48E6B4EFBE590AC3FFA5B5B954"
Last-Modified: Wed, 07 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11537
Expires: Thu, 08 Sep 2022 15:57:21 GMT
Date: Thu, 08 Sep 2022 12:45:04 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash efb106c7099a2d47ce3192f61b645a44
5db95f4860401808d0e0650cf279ddc99dce3ee0
3534e1cf8c658ce1ccdf929d690839b0cd2386477e01707ebd0c07a8eccce4eb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3534E1CF8C658CE1CCDF929D690839B0CD2386477E01707EBD0C07A8ECCCE4EB"
Last-Modified: Wed, 07 Sep 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2020
Expires: Thu, 08 Sep 2022 13:18:44 GMT
Date: Thu, 08 Sep 2022 12:45:04 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 71c4d9a576a7e0d71b456c99f2a78409
4e3617674d35d209dc530e0ee479617349ba3209
1ac727304837fe665d18a747a8626f83c1d41ef0a5c00d22b91119dc1e79bf6f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1AC727304837FE665D18A747A8626F83C1D41EF0A5C00D22B91119DC1E79BF6F"
Last-Modified: Wed, 07 Sep 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19499
Expires: Thu, 08 Sep 2022 18:10:03 GMT
Date: Thu, 08 Sep 2022 12:45:04 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 71c4d9a576a7e0d71b456c99f2a78409
4e3617674d35d209dc530e0ee479617349ba3209
1ac727304837fe665d18a747a8626f83c1d41ef0a5c00d22b91119dc1e79bf6f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1AC727304837FE665D18A747A8626F83C1D41EF0A5C00D22B91119DC1E79BF6F"
Last-Modified: Wed, 07 Sep 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19499
Expires: Thu, 08 Sep 2022 18:10:03 GMT
Date: Thu, 08 Sep 2022 12:45:04 GMT
Connection: keep-alive
pic.rmb.bdstatic.com/bjh/400c9be56a98077b42152906493ac1a6.gif
200 OK 1.0 MB URL HTTP/2 pic.rmb.bdstatic.com/bjh/400c9be56a98077b42152906493ac1a6.gif
IP
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 360 x 360\012- data
Size 1.0 MB (1025485 bytes)
Hash 400c9be56a98077b42152906493ac1a6
709e845e4231d9e7ecea1b42b0a412b0170307cf
a8be1fe1bc8d750fd534173dc8f6a1819417dd78f3dbff13411a34a1bced7122
GET /bjh/400c9be56a98077b42152906493ac1a6.gif HTTP/1.1
Host: pic.rmb.bdstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: JSP3/2.0.14
date: Thu, 08 Sep 2022 12:45:04 GMT
content-type: image/gif
content-length: 1025485
expires: Fri, 19 Aug 2022 14:45:33 GMT
last-modified: Wed, 25 May 2022 10:06:40 GMT
etag: "400c9be56a98077b42152906493ac1a6"
age: 1135148
accept-ranges: bytes
content-md5: QAyb5WqYB3tCFSkGSTrBpg==
x-bce-content-crc32: 539369125
x-bce-debug-id: rvddnlGRe9y3ux3kzr0AY+ZzQfY+TEmkR1eEDSXKLXN2coyF+iYLkLwHfcnaaWNa6BTa6+L2gns0bof4j3c8Sw==
x-bce-request-id: 2aad352a-55bc-477c-8e52-202203676443
x-bce-storage-class: STANDARD
timing-allow-origin: *
ohc-cache-hit: fra01-sys-jomo3.fra01.baidu.com [2], zhuzuncache83 [3], bdix206 [2]
ohc-file-size: 1025485
x-cache-status: HIT
X-Firefox-Spdy: h2
kvezz.com/082641934c5fa55c29cb6cef6f47ade6.gif
301 Moved Permanently 162 B URL HTTP/2 kvezz.com/082641934c5fa55c29cb6cef6f47ade6.gif
IP
ASN #201106 Spartan Host Ltd
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /082641934c5fa55c29cb6cef6f47ade6.gif HTTP/1.1
Host: kvezz.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Thu, 08 Sep 2022 12:45:04 GMT
content-type: text/html
content-length: 162
location: https://acoossn.top/082641934c5fa55c29cb6cef6f47ade6.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
kvemm.com/c70f7dd4a4c94432f7e7dfd8886c435b.gif
301 Moved Permanently 162 B URL HTTP/2 kvemm.com/c70f7dd4a4c94432f7e7dfd8886c435b.gif
IP
ASN #201106 Spartan Host Ltd
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /c70f7dd4a4c94432f7e7dfd8886c435b.gif HTTP/1.1
Host: kvemm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Thu, 08 Sep 2022 12:45:04 GMT
content-type: text/html
content-length: 162
location: https://kvhiii.top/c70f7dd4a4c94432f7e7dfd8886c435b.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
kzerr.com/6fb5deabda1e984b6bd49b2baa8dfa10.gif
301 Moved Permanently 162 B URL HTTP/2 kzerr.com/6fb5deabda1e984b6bd49b2baa8dfa10.gif
IP
ASN #201106 Spartan Host Ltd
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /6fb5deabda1e984b6bd49b2baa8dfa10.gif HTTP/1.1
Host: kzerr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Thu, 08 Sep 2022 12:45:04 GMT
content-type: text/html
content-length: 162
location: https://kvkccc.top/6fb5deabda1e984b6bd49b2baa8dfa10.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
kzecc.com/8fdce7479dd03f1ee73805e8d2e9bab8.gif
301 Moved Permanently 162 B URL HTTP/2 kzecc.com/8fdce7479dd03f1ee73805e8d2e9bab8.gif
IP
ASN #201106 Spartan Host Ltd
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /8fdce7479dd03f1ee73805e8d2e9bab8.gif HTTP/1.1
Host: kzecc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Thu, 08 Sep 2022 12:45:04 GMT
content-type: text/html
content-length: 162
location: https://acooss.com/8fdce7479dd03f1ee73805e8d2e9bab8.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
kvexx.com/03c3cb047014f05117117e4a924df90d.gif
301 Moved Permanently 162 B URL HTTP/2 kvexx.com/03c3cb047014f05117117e4a924df90d.gif
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /03c3cb047014f05117117e4a924df90d.gif HTTP/1.1
Host: kvexx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Thu, 08 Sep 2022 12:45:04 GMT
content-type: text/html
content-length: 162
location: https://kvhuuu.top/03c3cb047014f05117117e4a924df90d.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c77e9f66b097a41d340765ff1ba2e9b3
9f56ff62a4c3ac1a25e0b0f7390375e316f1423a
82c7eb2b61f41ffbd86953782d9c21e3d3e4f1f50bfe82b04559af659fc72775
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "82C7EB2B61F41FFBD86953782D9C21E3D3E4F1F50BFE82B04559AF659FC72775"
Last-Modified: Wed, 07 Sep 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2725
Expires: Thu, 08 Sep 2022 13:30:29 GMT
Date: Thu, 08 Sep 2022 12:45:04 GMT
Connection: keep-alive
acoossn.top/082641934c5fa55c29cb6cef6f47ade6.gif
200 OK 522 kB URL HTTP/2 acoossn.top/082641934c5fa55c29cb6cef6f47ade6.gif
IP
File type GIF image data, version 89a, 1280 x 60\012- data
Size 522 kB (521778 bytes)
Hash 20dd068dfddc9d4e0ebccd15712f1107
fe0d9ce2d1bd6f33883f8632c94dd62713da3e13
000376a3a5c8aa656fc044b43504a36483175ef37b0fa81dd7c98e9561481ae6
GET /082641934c5fa55c29cb6cef6f47ade6.gif HTTP/1.1
Host: acoossn.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.chinadqwx.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:45:04 GMT
content-type: image/gif
content-length: 521778
last-modified: Mon, 02 May 2022 19:20:23 GMT
etag: "62702ef7-7f632"
expires: Fri, 07 Oct 2022 16:09:04 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 74160
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TEpREiTWtX6LIoJPZLdqGS9tTH9x9ef5Z%2FE7ib6PZfOPUxUKdYIjjpVyYy0YGlSoV3aX%2Bj%2BarNn6o%2BKSnyoaaukX%2BBOvC3fD6hDkfc7OA0Layj7iPxZsV%2BHr6PWpIA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c778de981c12-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
kvemm.com/3ee137247160c51791bfbc62b7f35def.gif
301 Moved Permanently 162 B URL HTTP/2 kvemm.com/3ee137247160c51791bfbc62b7f35def.gif
IP
ASN #201106 Spartan Host Ltd
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /3ee137247160c51791bfbc62b7f35def.gif HTTP/1.1
Host: kvemm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Thu, 08 Sep 2022 12:45:04 GMT
content-type: text/html
content-length: 162
location: https://kvhiii.top/3ee137247160c51791bfbc62b7f35def.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
kveww.com/99462c01e85acc1311bebac224df6cce.gif
301 Moved Permanently 162 B URL HTTP/2 kveww.com/99462c01e85acc1311bebac224df6cce.gif
IP
ASN #201106 Spartan Host Ltd
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /99462c01e85acc1311bebac224df6cce.gif HTTP/1.1
Host: kveww.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Thu, 08 Sep 2022 12:45:04 GMT
content-type: text/html
content-length: 162
location: https://kvhqqq.top/99462c01e85acc1311bebac224df6cce.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.digicert.cn/
200 OK 471 B IP
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 78503109d7a5bcf6c743a2f14fa30ff6
f86e3065f41d0bebfb8f65cf09865d8eeefef8c9
6257349c0cba8993e144cecf2875b7ff111c32326144e4fa5e7ded0dd1406370
POST / HTTP/1.1
Host: ocsp.digicert.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Thu, 08 Sep 2022 12:45:04 GMT
Ali-Swift-Global-Savetime: 1662641104
Via: cache8.l2de2[275,274,200-0,M], cache8.l2de2[277,0], cache2.se1[297,296,200-0,M], cache2.se1[299,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Thu, 08 Sep 2022 12:45:04 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9616626411044815647e
kzeaa.com/92f0c144d76dd785f7c04f84ae149b33.gif
301 Moved Permanently 162 B URL HTTP/2 kzeaa.com/92f0c144d76dd785f7c04f84ae149b33.gif
IP
ASN #201106 Spartan Host Ltd
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /92f0c144d76dd785f7c04f84ae149b33.gif HTTP/1.1
Host: kzeaa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Thu, 08 Sep 2022 12:45:04 GMT
content-type: text/html
content-length: 162
location: https://kvhccc.top/92f0c144d76dd785f7c04f84ae149b33.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
kveii.com/af4e2918d615a9f2b12d5e14162653fd.gif
301 Moved Permanently 162 B URL HTTP/2 kveii.com/af4e2918d615a9f2b12d5e14162653fd.gif
IP
ASN #201106 Spartan Host Ltd
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /af4e2918d615a9f2b12d5e14162653fd.gif HTTP/1.1
Host: kveii.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Thu, 08 Sep 2022 12:45:04 GMT
content-type: text/html
content-length: 162
location: https://acoozza.top/af4e2918d615a9f2b12d5e14162653fd.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
imglf5.lf127.net/img/WjNSY05nczU5OWg2U3lKb0dnT2RWVVlIMDRpQ2VaVDdKQ1ppRkRMcEhFSVhhSm1oci9BZnJRPT0.jpg
200 OK 1.5 kB URL HTTP/2 imglf5.lf127.net/img/WjNSY05nczU5OWg2U3lKb0dnT2RWVVlIMDRpQ2VaVDdKQ1ppRkRMcEhFSVhhSm1oci9BZnJRPT0.jpg
IP
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 64x64, components 3\012- data
Hash b4e27b3853ed799500e579761c8f00e7
ed4fecb708318ef46b3075926a9d33ea7209c276
58f32fe58ceed46c3a1e8c5404f6bad35e640c09c3cb554c39a3f5b47edd3452
GET /img/WjNSY05nczU5OWg2U3lKb0dnT2RWVVlIMDRpQ2VaVDdKQ1ppRkRMcEhFSVhhSm1oci9BZnJRPT0.jpg HTTP/1.1
Host: imglf5.lf127.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/jpeg;charset=UTF-8
content-length: 1541
date: Wed, 07 Sep 2022 15:02:43 GMT
content-disposition: inline; filename="img%2FWjNSY05nczU5OWg2U3lKb0dnT2RWVVlIMDRpQ2VaVDdKQ1ppRkRMcEhFSVhhSm1oci9BZnJRPT0.jpg"
etag: b4e27b3853ed799500e579761c8f00e7
last-modified: Wed, 20 Oct 2021 20:02:02 Asia/Shanghai
x-nos-object-name: img%2FWjNSY05nczU5OWg2U3lKb0dnT2RWVVlIMDRpQ2VaVDdKQ1ppRkRMcEhFSVhhSm1oci9BZnJRPT0.jpg
x-nos-request-id: 897689c7-1f05-4452-813a-b1ffbdf48ad7
x-nos-requesttype: GetObject
x-nos-storage-class: STANDARD
ali-swift-global-savetime: 1662562963
via: cache2.l2st3-1[149,148,304-0,M], cache4.l2st3-1[150,0], cache31.l2hk2[154,154,304-0,M], cache14.l2hk2[157,0], cache5.l2de2[0,0,304-0,H], cache19.l2de2[1,0], cache4.se1[0,0,200-0,H], cache7.se1[2,0]
age: 78141
x-cache: HIT TCP_MEM_HIT dirn:11:356327573
x-swift-savetime: Wed, 07 Sep 2022 15:21:51 GMT
x-swift-cachetime: 2590852
cdn-user-ip: 91.90.42.154
cdn-source: Ali
cdn-ip: 47.246.44.230
timing-allow-origin: *
eagleid: 2ff62c9b16626411048266301e
X-Firefox-Spdy: h2
kvkaa.com/452fea0784d3b43013168a3ab40d787d.gif
301 Moved Permanently 162 B URL HTTP/2 kvkaa.com/452fea0784d3b43013168a3ab40d787d.gif
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /452fea0784d3b43013168a3ab40d787d.gif HTTP/1.1
Host: kvkaa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Thu, 08 Sep 2022 12:45:04 GMT
content-type: text/html
content-length: 162
location: https://kvtaaa.top/452fea0784d3b43013168a3ab40d787d.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 472 B IP
Hash e788665d06ab6e1173fafa4531130ded
3bd71aae0b1d008aff8307aa8234fb284ae8f86f
582811c1347f6506782a35fcfcaf236a81949cdbe376476f78a040ef205cc422
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 12:45:04 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 05 Sep 2022 13:23:14 GMT
Expires: Mon, 12 Sep 2022 13:23:13 GMT
Etag: "3bd71aae0b1d008aff8307aa8234fb284ae8f86f"
Cache-Control: max-age=347288,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7477c7782dccb50b-OSL
kvkaa.com/d816a0142aeb37814a5d77cfd510e67b.gif
301 Moved Permanently 162 B URL HTTP/2 kvkaa.com/d816a0142aeb37814a5d77cfd510e67b.gif
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /d816a0142aeb37814a5d77cfd510e67b.gif HTTP/1.1
Host: kvkaa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Thu, 08 Sep 2022 12:45:04 GMT
content-type: text/html
content-length: 162
location: https://kvtaaa.top/d816a0142aeb37814a5d77cfd510e67b.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsorganizationvalsha2g2
200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP
Hash abb297ef09fe1aef5312920166f0fbba
e84a9a13611fa18e279d96894941e9d41eedfe67
bc098a599e2aca4587f63cfc996f54e9aa9a7c1791bf6f991a4bdd2e478ff9ae
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 12:45:04 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Mon, 12 Sep 2022 10:49:25 GMT
ETag: "e84a9a13611fa18e279d96894941e9d41eedfe67"
Last-Modified: Thu, 08 Sep 2022 10:49:26 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2182
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7477c7796cd4b4f3-OSL
ocsp.sectigo.com/
200 OK 472 B IP
Hash 68a3bc618d6620233c84093c66639ba2
f7f8d9b3e36335b42d714358b561f5efe42ad160
bddcb15981f519b8fdf29987e4ab0056baeb302919733507a9e4be85c55f1e17
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 12:45:04 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 05 Sep 2022 16:50:06 GMT
Expires: Mon, 12 Sep 2022 16:50:05 GMT
Etag: "f7f8d9b3e36335b42d714358b561f5efe42ad160"
Cache-Control: max-age=359700,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7477c77938e4b509-OSL
nvhaaa.top/7d67cff6dd7d3196a8bd9d446a9d6fef.gif
200 OK 1.1 MB URL HTTP/2 nvhaaa.top/7d67cff6dd7d3196a8bd9d446a9d6fef.gif
IP
File type GIF image data, version 89a, 1070 x 80\012- data
Size 1.1 MB (1058705 bytes)
Hash 1c8ef0df174c2b2bc21b99e5833a86f5
be5a4efc232a53d5a3a7a49d9e8be6c318801a90
8ef47b086718806f2632e8dd77ea1727a5159627e7dcd318d104b41b887f7795
GET /7d67cff6dd7d3196a8bd9d446a9d6fef.gif HTTP/1.1
Host: nvhaaa.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.chinadqwx.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:45:04 GMT
content-type: image/gif
content-length: 1058705
last-modified: Tue, 12 Apr 2022 07:23:53 GMT
etag: "62552909-102791"
expires: Fri, 07 Oct 2022 17:23:10 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 69714
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pgjyuE2LFFE8ti57EcbZZicYpjeq3SfmOQzzG4vnv8aD28UWL2ZFWfc1KPpKDAcTJOEKkNAreJmriYO0VNRIq%2BbrLeMGNuEn1Uhn%2Fb27%2BR7ScnQJLy%2F6ZoA4cfd0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c778081888a3-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsorganizationvalsha2g2
200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP
Hash 23c37280756d833f47bffeaca48a1d76
dff27a8aaf776d62b50d516bbfb469ff054d403d
dcb1e56d58e2fcbb0503aedfca603517887bad81829487f932f35bea15edcef4
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 12:45:04 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Mon, 12 Sep 2022 10:53:42 GMT
ETag: "dff27a8aaf776d62b50d516bbfb469ff054d403d"
Last-Modified: Thu, 08 Sep 2022 10:53:43 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3412
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7477c779bd82b4f3-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g2
200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP
Hash 23c37280756d833f47bffeaca48a1d76
dff27a8aaf776d62b50d516bbfb469ff054d403d
dcb1e56d58e2fcbb0503aedfca603517887bad81829487f932f35bea15edcef4
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 12:45:04 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Mon, 12 Sep 2022 10:53:42 GMT
ETag: "dff27a8aaf776d62b50d516bbfb469ff054d403d"
Last-Modified: Thu, 08 Sep 2022 10:53:43 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3412
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7477c779ddb5b4f3-OSL
e1.o.lencr.org/
200 OK 346 B IP
ASN #20940 Akamai International B.V.
Hash 1b05c24922015f2779281a59c9918539
c2e3e16c8890ddbae49b4fd088f39a8fe0f8d98f
b1bbbe8a6d005ca9a41d235214c3b50c25158ace4174c75a00dc17f94e650ccf
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "B1BBBE8A6D005CA9A41D235214C3B50C25158ACE4174C75A00DC17F94E650CCF"
Last-Modified: Tue, 06 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2619
Expires: Thu, 08 Sep 2022 13:28:43 GMT
Date: Thu, 08 Sep 2022 12:45:04 GMT
Connection: keep-alive
ocsp.sectigo.com/
200 OK 472 B IP
Hash 32f0ca1dcb267398cdf7d188709a11a8
e6fb902bc8e5b2160ae83ca9e00da8331385b232
58a26e85e0c41021cf36271eb2e53500f9b711fee666d3a227371183e763f0c6
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 12:45:04 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 07 Sep 2022 13:26:56 GMT
Expires: Wed, 14 Sep 2022 13:26:55 GMT
Etag: "e6fb902bc8e5b2160ae83ca9e00da8331385b232"
Cache-Control: max-age=520310,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7477c778c9e8b527-OSL
kvhuuu.top/03c3cb047014f05117117e4a924df90d.gif
200 OK 310 kB URL HTTP/2 kvhuuu.top/03c3cb047014f05117117e4a924df90d.gif
IP
File type GIF image data, version 89a, 960 x 60\012- data
Size 310 kB (310102 bytes)
Hash aaaee07863e1fab7724d3b6698c0b4b3
1f75ba89585a8844a2c1e41625f88bae649be17d
41ac392c3cca5e4434c0f80595838a48338c94f8a9c691d4141c7ecb68acb24e
GET /03c3cb047014f05117117e4a924df90d.gif HTTP/1.1
Host: kvhuuu.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.chinadqwx.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:45:04 GMT
content-type: image/gif
content-length: 310102
last-modified: Wed, 13 Jul 2022 15:28:42 GMT
etag: "62cee4aa-4bb56"
expires: Sun, 11 Sep 2022 19:01:36 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 2310208
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oGZjWOO2x4myLgPGPwY6FRuOtnPN9cuWOW%2FmAz4%2BGtKLnreD%2B29YP%2BgBurQ2LP5klE6syT1BVDXcGPn1Eh4VoF%2FLbHKp30CoOkBT1oSt9ZRIns%2F0m5aFZ8U8rSNu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c779d9c3b509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsorganizationvalsha2g2
200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP
Hash dd3d6a2b96c38854b8153116764f9548
1c1b48853908d0a1e2c54283f603c3b05ef1b9e0
0d7b3b146fcf7fd34f2e888606c5c22d75964f3f6954311a93fd011df541228c
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 12:45:05 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Mon, 12 Sep 2022 09:00:46 GMT
ETag: "1c1b48853908d0a1e2c54283f603c3b05ef1b9e0"
Last-Modified: Thu, 08 Sep 2022 09:00:47 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2280
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7477c77a4e5bb4f3-OSL
e1.o.lencr.org/
200 OK 344 B IP
ASN #20940 Akamai International B.V.
Hash 6edf0b8d7b352936f2a23acef8abd39e
16e24c4f0bb9496a37532239b33cc4d7a3ef718d
41e8073b86fe7872386d997b2b0b19514d44b1fdff661af5c605f10c863e499c
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "41E8073B86FE7872386D997B2B0B19514D44B1FDFF661AF5C605F10C863E499C"
Last-Modified: Wed, 07 Sep 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5924
Expires: Thu, 08 Sep 2022 14:23:48 GMT
Date: Thu, 08 Sep 2022 12:45:04 GMT
Connection: keep-alive
ocsp2.globalsign.com/gsorganizationvalsha2g2
200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP
Hash 026afffd8019c388090a2a6a8e361361
caf263631cde96451711e4bca92dba1da5b9eda8
1cb4ea6948d9bd746e085b93572c2ab024659ed644c807e8c525f816a05c97e7
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 12:45:05 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Mon, 12 Sep 2022 11:20:35 GMT
ETag: "caf263631cde96451711e4bca92dba1da5b9eda8"
Last-Modified: Thu, 08 Sep 2022 11:20:36 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1623
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7477c77a4c8d0af6-OSL
acoozza.top/af4e2918d615a9f2b12d5e14162653fd.gif
200 OK 1.2 MB URL HTTP/2 acoozza.top/af4e2918d615a9f2b12d5e14162653fd.gif
IP
File type GIF image data, version 89a, 1280 x 60\012- data
Size 1.2 MB (1190448 bytes)
Hash 1435eab34769c6f90445cb49c89e84d5
a4aa9f12b2d9e82caab708a2d4574fb170143912
7385fceda62f98c31cbe9df6bb048134906f175e70c296024ec9239baf5e7cfb
Analyzer Verdict Alert quad9 Sinkholed
GET /af4e2918d615a9f2b12d5e14162653fd.gif HTTP/1.1
Host: acoozza.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.chinadqwx.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:45:04 GMT
content-type: image/gif
content-length: 1190448
last-modified: Wed, 23 Mar 2022 06:48:21 GMT
etag: "623ac2b5-122a30"
expires: Fri, 07 Oct 2022 18:13:44 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 66680
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cHsxYOwkher6iAlObj7WnsMKbxN5%2B36MRL1MzTp3YNQO1eqnDjjx01yfLPLZrNm8yioPdwGiJCfQwA2CqFWCKQ%2FMn76qBbu6tpt7VFXKQSrEoa9KlUH0CAfFpsFs2w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c77a18861bfe-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
kvkccc.top/6fb5deabda1e984b6bd49b2baa8dfa10.gif
200 OK 919 kB URL HTTP/2 kvkccc.top/6fb5deabda1e984b6bd49b2baa8dfa10.gif
IP
File type GIF image data, version 89a, 960 x 60\012- data
Size 919 kB (918679 bytes)
Hash 956582dd3aa22ca9b19bdd1d5e091e24
c2d80e05f59981f6ed58a8231f502bd990894d6b
88e686882e64a0e199c79bd83b7102885b67242b5d0b49a1f37674c0bb3ddd8e
GET /6fb5deabda1e984b6bd49b2baa8dfa10.gif HTTP/1.1
Host: kvkccc.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.chinadqwx.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:45:05 GMT
content-type: image/gif
content-length: 918679
last-modified: Sat, 02 Jul 2022 13:09:08 GMT
etag: "62c04374-e0497"
expires: Fri, 30 Sep 2022 15:19:49 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 681916
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5hqoY501BxFQIoQ%2FgEARwlYu%2BrOubtmDXFSmjqxj0vdzx%2BULV6V93qWVFKdXCzXmK6bCM86KJQOK8h6tm54LKa4H6eCT2FUa2ApwHsr2%2FRC0gQuF5hSjw3pMOBLk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c77a88f71bfe-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
kvtaaa.top/452fea0784d3b43013168a3ab40d787d.gif
200 OK 174 kB URL HTTP/2 kvtaaa.top/452fea0784d3b43013168a3ab40d787d.gif
IP
File type GIF image data, version 89a, 960 x 60\012- data
Size 174 kB (173866 bytes)
Hash ac1fee4aaccf483d355f50ef8a605230
d06097961d5b0f1e885ed02f73f47e3f33d37371
d33ce62c203e646ae72e379370df770446f8687788ab23116ca1bea162059672
GET /452fea0784d3b43013168a3ab40d787d.gif HTTP/1.1
Host: kvtaaa.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.chinadqwx.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:45:05 GMT
content-type: image/gif
content-length: 173866
last-modified: Thu, 19 May 2022 10:09:59 GMT
etag: "62861777-2a72a"
expires: Tue, 20 Sep 2022 10:11:39 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 1564406
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=m1140HcorFugLS%2FehBatasTW80lvgGker429OJ2EwN8z6PiJ4Y4u3vpzVpFgHBscN77zXbVBnbXJHuuPpE5fDpAyJJBAJIeIdCFe8m2oztu5rdFh%2FLpVQ9gd%2BdHw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c77a8ff60afa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
kvhccc.top/92f0c144d76dd785f7c04f84ae149b33.gif
200 OK 1.0 MB URL HTTP/2 kvhccc.top/92f0c144d76dd785f7c04f84ae149b33.gif
IP
File type GIF image data, version 89a, 960 x 60\012- data
Size 1.0 MB (1024160 bytes)
Hash 52748c8ca30fe48c822541046bceafc0
8640926f83b9c0d635fb28403505a7c0f0753857
2e292531362f37bf7a1cd01330efb234450b1f836e975c55f2b2179c0be32ae6
GET /92f0c144d76dd785f7c04f84ae149b33.gif HTTP/1.1
Host: kvhccc.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.chinadqwx.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:45:05 GMT
content-type: image/gif
content-length: 1024160
last-modified: Wed, 25 May 2022 13:49:10 GMT
etag: "628e33d6-fa0a0"
expires: Sat, 08 Oct 2022 01:19:36 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 41129
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GtM23xVMMEzgbn%2FAPs9BZ3lXGah32kZBAnizJWBO5eU2614YNiZnavkMn4y%2BykvA3%2FVLdl8O3E%2B7iFpb7TU%2FRcRLwjFPQ7k8%2BPdZn%2FUf9vQ28zIiAYc8ScWKWJr8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c77a9eae007d-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
kvtaaa.top/d816a0142aeb37814a5d77cfd510e67b.gif
200 OK 186 kB URL HTTP/2 kvtaaa.top/d816a0142aeb37814a5d77cfd510e67b.gif
IP
File type GIF image data, version 89a, 960 x 60\012- data
Size 186 kB (185463 bytes)
Hash 07d436db9009e187330d91ffc5c77745
a7944de8f44192fe6bee6e6584d03966d0ffe8b8
75e2ad510799f05ddf20510e09f538233254217314fc7b301370407112eab0e2
GET /d816a0142aeb37814a5d77cfd510e67b.gif HTTP/1.1
Host: kvtaaa.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.chinadqwx.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:45:05 GMT
content-type: image/gif
content-length: 185463
last-modified: Mon, 13 Jun 2022 10:10:31 GMT
etag: "62a70d17-2d477"
expires: Mon, 12 Sep 2022 15:04:28 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 2238037
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3rfaZE3kkhc2mlf8DZhHRt8%2BDwczFG%2BYpt2cOGTvjpVDCluK1wT2YPCuxzAq9f6KvrVjlQ2ZnALAI7vORF91YGmgNtS625K8EUG3soJbxkA5r5wqiZ6IztRVERlI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c77b68e70afa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ddcdn.comtucdncom.com/upload/vod/20211222-1/b48ae0c50350d5ba1e213ce0b3f88d6c.jpg
200 OK 980 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/20211222-1/b48ae0c50350d5ba1e213ce0b3f88d6c.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, xresolution=72, yresolution=72], baseline, precision 8, 1280x720, components 3\012- data
Size 980 kB (979673 bytes)
Hash 5d987694b819a00bd600a26ec80d89b3
4a67de9439f864305a7f906b139d46f340412f7b
6aa168cb0925928447dd35c4d5ef2c7523b9f16b2d46fb29b6a533342efa1d8b
GET /upload/vod/20211222-1/b48ae0c50350d5ba1e213ce0b3f88d6c.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:45:02 GMT
Content-Type: image/jpeg
Content-Length: 979673
Last-Modified: Thu, 11 Aug 2022 04:55:05 GMT
Connection: keep-alive
ETag: "62f48ba9-ef2d9"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
acooss.com/8fdce7479dd03f1ee73805e8d2e9bab8.gif
200 OK 864 kB URL HTTP/2 acooss.com/8fdce7479dd03f1ee73805e8d2e9bab8.gif
IP
File type GIF image data, version 89a, 960 x 60\012- data
Size 864 kB (864004 bytes)
Hash d2c820747a9b9b8c3abaab0775436ab7
99651afd10bd3874fb84d7973845482cd2c81f23
8aa3c7b05ba9bb5176a7155ead2a0ea562b07fb0dd7b27a9cf91c38e95ed43ed
GET /8fdce7479dd03f1ee73805e8d2e9bab8.gif HTTP/1.1
Host: acooss.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.chinadqwx.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:45:05 GMT
content-type: image/gif
content-length: 864004
last-modified: Sun, 04 Sep 2022 09:11:53 GMT
etag: "63146bd9-d2f04"
expires: Sat, 08 Oct 2022 09:56:50 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 10095
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BW4N2sTrMoLEy6RJZbzwhddEMDpHtWwrVirDS3xGRN%2BZ7t6m4wlDYmDqu9jW7cf1mA6pgnpqvfE%2BfnkHtcOJAC82ralRh9%2BvJxRiIZbhCfEjs1GjtbiyKZylD0Pc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c77b1a21dc49-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
kvhqqq.top/99462c01e85acc1311bebac224df6cce.gif
200 OK 845 kB URL HTTP/2 kvhqqq.top/99462c01e85acc1311bebac224df6cce.gif
IP
File type GIF image data, version 89a, 960 x 60\012- data
Size 845 kB (845326 bytes)
Hash c3e13dfb200737af2e68b42c07f28465
4d8262aecd8d789494afca5d63b5dd50600870dc
3e962d14b678808967d50df163581b65c6052144cb6239d72da58cceb7bf04ac
GET /99462c01e85acc1311bebac224df6cce.gif HTTP/1.1
Host: kvhqqq.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.chinadqwx.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:45:05 GMT
content-type: image/gif
content-length: 845326
last-modified: Mon, 15 Aug 2022 06:10:27 GMT
etag: "62f9e353-ce60e"
expires: Wed, 05 Oct 2022 12:23:28 GMT
cache-control: max-age=2678400
cf-cache-status: HIT
age: 260497
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PlAew6NTwzTAK1c6i5X1ona6cy25aADboDHGTHTvBSrpxICoGblQ%2B09JRAXo8OWgK6OFjb49y49Xng2SN4W3iaYElR5bOoV3TtoM0gbJF8aJQUCaApySF0rG6WWL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c77a99d775c9-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
e1.o.lencr.org/
200 OK 346 B IP
ASN #20940 Akamai International B.V.
Hash 1b05c24922015f2779281a59c9918539
c2e3e16c8890ddbae49b4fd088f39a8fe0f8d98f
b1bbbe8a6d005ca9a41d235214c3b50c25158ace4174c75a00dc17f94e650ccf
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "B1BBBE8A6D005CA9A41D235214C3B50C25158ACE4174C75A00DC17F94E650CCF"
Last-Modified: Tue, 06 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2618
Expires: Thu, 08 Sep 2022 13:28:43 GMT
Date: Thu, 08 Sep 2022 12:45:05 GMT
Connection: keep-alive
kvhiii.top/c70f7dd4a4c94432f7e7dfd8886c435b.gif
200 OK 1.6 MB URL HTTP/2 kvhiii.top/c70f7dd4a4c94432f7e7dfd8886c435b.gif
IP
File type GIF image data, version 89a, 960 x 60\012- data
Size 1.6 MB (1590489 bytes)
Hash 59648e1a4d52551c26255ff6bc625648
165fbacafad21065e9faa33c5e3752cd463549ad
eb53352fe423b9358ba49249e57fe3d55746d854c681f6c45baedb23eb2196e5
GET /c70f7dd4a4c94432f7e7dfd8886c435b.gif HTTP/1.1
Host: kvhiii.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.chinadqwx.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:45:04 GMT
content-type: image/gif
content-length: 1590489
last-modified: Sun, 26 Jun 2022 12:04:30 GMT
etag: "62b84b4e-1844d9"
expires: Fri, 07 Oct 2022 02:23:54 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 123670
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NLGLMO4w2n0APWcx3PPtnBZrDYCErYOKZGviorZLQW%2B90bngVzEsnqYCHZPNBQ3rN8ZCARZfG3rIAJ%2FpNzFB5dnfmFET56QsLiHlrfBiLJXXsU4dGUe4BnRQtgq4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c779eb3c7302-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
e1.o.lencr.org/
200 OK 344 B IP
ASN #20940 Akamai International B.V.
Hash 6edf0b8d7b352936f2a23acef8abd39e
16e24c4f0bb9496a37532239b33cc4d7a3ef718d
41e8073b86fe7872386d997b2b0b19514d44b1fdff661af5c605f10c863e499c
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "41E8073B86FE7872386D997B2B0B19514D44B1FDFF661AF5C605F10C863E499C"
Last-Modified: Wed, 07 Sep 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5923
Expires: Thu, 08 Sep 2022 14:23:48 GMT
Date: Thu, 08 Sep 2022 12:45:05 GMT
Connection: keep-alive
kvhiii.top/3ee137247160c51791bfbc62b7f35def.gif
200 OK 1.2 MB URL HTTP/2 kvhiii.top/3ee137247160c51791bfbc62b7f35def.gif
IP
File type GIF image data, version 89a, 1280 x 60\012- data
Size 1.2 MB (1204912 bytes)
Hash 99b1e181b956143555f7f71d575051a7
3ddb4415b1651fd55ddfc8e8483ba6155d5db023
81d27dbfad0530074c788872d76374a2d798ec2eecef83f410bde6f3eac0748b
GET /3ee137247160c51791bfbc62b7f35def.gif HTTP/1.1
Host: kvhiii.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.chinadqwx.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:45:05 GMT
content-type: image/gif
content-length: 1204912
last-modified: Sat, 12 Mar 2022 15:20:18 GMT
etag: "622cba32-1262b0"
expires: Tue, 04 Oct 2022 13:15:05 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 343800
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Fku%2FMhv8zmRCYOhwGkeNZ7yhp9owoAlLEfQ6sIfwCQKVFKkRIUPd1AsHEHzy%2BxfhsnMX9mnz4mV%2BhCNfX2yKl7LU52RwJFNNyn71GxM4ZtByMhpOuHju1NHfbQqs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c77a7c097302-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
de88deggtp89.com/235tp/960x60.gif
200 OK 590 kB URL HTTP/1.1 de88deggtp89.com/235tp/960x60.gif
IP
File type GIF image data, version 89a, 960 x 60\012- data
Size 590 kB (590255 bytes)
Hash d9d8d54236add0a03997175e250e51ef
b65ebc88346d3a308dbf4791ade0637330df8895
81954cd3768276219bbf7aca8ce82881fbda51a1721ef78d559cdd7772800571
GET /235tp/960x60.gif HTTP/1.1
Host: de88deggtp89.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 12:45:04 GMT
Content-Type: image/gif
Content-Length: 590255
Connection: keep-alive
Last-Modified: Wed, 15 Jun 2022 13:02:58 GMT
ETag: "62a9d882-901af"
Expires: Thu, 06 Oct 2022 08:21:26 GMT
Cache-Control: max-age=2592000
Server: cdn-ddos-cc
X-Cache-Status: HIT
Accept-Ranges: bytes
tpcdnde88de.com/79tp/960x60-2.gif
200 OK 322 kB URL HTTP/2 tpcdnde88de.com/79tp/960x60-2.gif
IP
File type GIF image data, version 89a, 960 x 60\012- data
Size 322 kB (322376 bytes)
Hash c41a909fa1e62a4ebc583626a93c05c1
10adfd5b6d78d04cc93c76b14a29fc93ce4f2708
b60310fa346cdc56ed271a244d9c4f1e137e0fd46571802f25c0c8e09131aa4e
GET /79tp/960x60-2.gif HTTP/1.1
Host: tpcdnde88de.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:45:04 GMT
content-type: image/gif
content-length: 322376
last-modified: Sat, 25 Jun 2022 12:15:37 GMT
etag: "62b6fc69-4eb48"
expires: Sat, 08 Oct 2022 11:38:31 GMT
cache-control: max-age=2592000
server: cdn-ddos-cc
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
u0079.com/239793e8f80f484492e5a01d670ff992.gif
200 OK 102 kB URL HTTP/1.1 u0079.com/239793e8f80f484492e5a01d670ff992.gif
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 960 x 60\012- data
Size 102 kB (101585 bytes)
Hash 64cda08ea65c9943d5845a1adc31d6d4
42ca850bcd7005d07518c4d91fd1ab06e4f78149
bc1f0fa9a3ef28d617e86f661cb7a0b6d6189ac5274dd5c7201bd3be2506c970
GET /239793e8f80f484492e5a01d670ff992.gif HTTP/1.1
Host: u0079.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 12:45:05 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 25 Aug 2022 11:33:06 GMT
ETag: W/"63075df2-39cbe"
Server: WAF/2.4-12.1
X-Cache-Status: HIT
Content-Encoding: gzip
u0062.com/0cca214d9702446d90008f7bb3b1382f.gif
200 OK 106 kB URL HTTP/1.1 u0062.com/0cca214d9702446d90008f7bb3b1382f.gif
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 960 x 60\012- data
Size 106 kB (105624 bytes)
Hash fed1644bf2ac138565e67fb6dc3201bd
3da83963c94b06617fcac1c33895a640f8652092
af629ac538d9a4e11f58e82873720825df4df836b683f4d42b69c97ac40f0038
GET /0cca214d9702446d90008f7bb3b1382f.gif HTTP/1.1
Host: u0062.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 12:45:05 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 25 Aug 2022 11:33:41 GMT
ETag: W/"63075e15-3d745"
Server: WAF/2.4-12.1
X-Cache-Status: HIT
Content-Encoding: gzip
jsoctn9.com/03d39ba0ce18456aa039318cbc96824a.gif
200 OK 725 kB URL HTTP/1.1 jsoctn9.com/03d39ba0ce18456aa039318cbc96824a.gif
IP
File type GIF image data, version 89a, 960 x 80\012- data
Size 725 kB (724869 bytes)
Hash 17d7276bec51de6123854892f5d1d4ec
2f4954866443fcb402a5ee33f78c61cffe22eae8
c677f7601d68004a5c0af802407899ba001333fd3c69e8993a8a757a8521b20d
GET /03d39ba0ce18456aa039318cbc96824a.gif HTTP/1.1
Host: jsoctn9.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "62696896-b0f85"
Date: Fri, 02 Sep 2022 01:48:18 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Wed, 27 Apr 2022 16:00:22 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us1-cdnb-19
Content-Length: 724869
93261587768.com/4fe2b2a7d33f4c66a1aa0bd1ae2b2824.gif
200 OK 1.0 MB URL HTTP/1.1 93261587768.com/4fe2b2a7d33f4c66a1aa0bd1ae2b2824.gif
IP
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 960 x 120\012- data
Size 1.0 MB (1020091 bytes)
Hash b3aedc862671b2fa2e2922fadaa38add
8134113e40aa47b7b0508e81c447ccea8c10e7c0
d60a38f60cbd8cc782d6ecaf7c076dea16bf5eddfdc064d0aa4c03a440d236aa
GET /4fe2b2a7d33f4c66a1aa0bd1ae2b2824.gif HTTP/1.1
Host: 93261587768.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "62ef736b-f90bb"
Date: Mon, 05 Sep 2022 20:29:20 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Sun, 07 Aug 2022 08:10:19 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-41
Content-Length: 1020091
xpj08.oss-cn-beijing.aliyuncs.com/vip80.gif
200 OK 264 kB URL HTTP/1.1 xpj08.oss-cn-beijing.aliyuncs.com/vip80.gif
IP
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type GIF image data, version 89a, 960 x 80\012- data
Size 264 kB (264494 bytes)
Hash 672b95e7b6ab24b5606b8287db85dbb4
98f1f1b06b3cb318d7f7a1bf7add76fa0a30c112
4203e1ae18bb06c6e719832987e87e838d8001fd6154e56a8b79c4c0678e7b54
GET /vip80.gif HTTP/1.1
Host: xpj08.oss-cn-beijing.aliyuncs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Thu, 08 Sep 2022 12:45:05 GMT
Content-Type: image/gif
Content-Length: 264494
Connection: keep-alive
x-oss-request-id: 6319E3D1C172C93031DB84B5
Accept-Ranges: bytes
ETag: "672B95E7B6AB24B5606B8287DB85DBB4"
Last-Modified: Mon, 08 Aug 2022 07:28:40 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 8762574589038276875
x-oss-storage-class: Standard
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: ZyuV57arJLVga4KH24XbtA==
x-oss-server-time: 2
n0233.com/faa5cb0ee4484ff881f4b12b798acae4.gif
200 OK 252 kB URL HTTP/1.1 n0233.com/faa5cb0ee4484ff881f4b12b798acae4.gif
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 650 x 200\012- data
Size 252 kB (251662 bytes)
Hash aee9e0e2d4e9d3b3b72e1b5884ab5811
4cb7adacc826ec3f5ba8795d99294f3e543a4374
969f70648db1f12ba7c6a5eb1ea7da44b5f7883db098a84d9e59463f11dc6371
GET /faa5cb0ee4484ff881f4b12b798acae4.gif HTTP/1.1
Host: n0233.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 12:45:05 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 30 May 2022 15:33:03 GMT
ETag: W/"6294e3af-3db4f"
Server: WAF/2.4-12.1
X-Cache-Status: HIT
Content-Encoding: gzip
38qptu4.oss-cn-hangzhou.aliyuncs.com/kyr87633.gif
200 OK 299 kB URL HTTP/1.1 38qptu4.oss-cn-hangzhou.aliyuncs.com/kyr87633.gif
IP
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type GIF image data, version 89a, 960 x 80\012- data
Size 299 kB (299398 bytes)
Hash f4b7967855549e81f65598b93a43d9db
6ab53e8a9af687c1dddad236af323080a04499cf
2e95dc2082af7cc833e0aef825efc261c04b69e3ec4350203854008cc4a12dc6
GET /kyr87633.gif HTTP/1.1
Host: 38qptu4.oss-cn-hangzhou.aliyuncs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Thu, 08 Sep 2022 12:45:05 GMT
Content-Type: image/gif
Content-Length: 299398
Connection: keep-alive
x-oss-request-id: 6319E3D1FE87B73134891914
Accept-Ranges: bytes
ETag: "F4B7967855549E81F65598B93A43D9DB"
Last-Modified: Sun, 05 Jun 2022 13:03:04 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 8810428828543929982
x-oss-storage-class: Standard
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: 9LeWeFVUnoH2VZi5OkPZ2w==
x-oss-server-time: 1
kyhd.oss-cn-hangzhou.aliyuncs.com/GG/0.1-.gif
200 OK 199 kB URL HTTP/1.1 kyhd.oss-cn-hangzhou.aliyuncs.com/GG/0.1-.gif
IP
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type GIF image data, version 89a, 960 x 60\012- data
Size 199 kB (199333 bytes)
Hash 4cee9e6c5a9d9766f1ff18718e213636
b8d0e49a22b6eaac3978a8d85492ded2ef4d409f
6eadd35337d078afa4145f96643d77f8d1c90864026283c39c17274600637e65
GET /GG/0.1-.gif HTTP/1.1
Host: kyhd.oss-cn-hangzhou.aliyuncs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Thu, 08 Sep 2022 12:45:05 GMT
Content-Type: image/gif
Content-Length: 199333
Connection: keep-alive
x-oss-request-id: 6319E3D1E001B43232BB9A0E
Accept-Ranges: bytes
ETag: "4CEE9E6C5A9D9766F1FF18718E213636"
Last-Modified: Sat, 25 Jun 2022 05:26:26 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 12750330762955313486
x-oss-storage-class: Standard
x-oss-version-id: CAEQZhiBgICa3KbljBgiIDc4NThjOWYzNDcwODQyYjliZTYxZmVkOWUwYzE0OTkz
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: TO6ebFqdl2bx/xhxjiE2Ng==
x-oss-server-time: 3
1111349.oss-cn-hongkong.aliyuncs.com/ZJhx8JQgQBqkbIMQwMsR-128060.gif
200 OK 327 kB URL HTTP/1.1 1111349.oss-cn-hongkong.aliyuncs.com/ZJhx8JQgQBqkbIMQwMsR-128060.gif
IP
ASN #45102 Alibaba US Technology Co., Ltd.
File type GIF image data, version 89a, 1280 x 60\012- data
Size 327 kB (327012 bytes)
Hash d0c3c3bbaa625a319709877c062f695d
7c569d476bcd6b37e33ac3da47b13a99971b9df2
2f5760ff0393c5f7dadfedc1bab3429f91273541bcba6e5aa8738fcc982aba6c
GET /ZJhx8JQgQBqkbIMQwMsR-128060.gif HTTP/1.1
Host: 1111349.oss-cn-hongkong.aliyuncs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Thu, 08 Sep 2022 12:45:05 GMT
Content-Type: image/gif
Content-Length: 327012
Connection: keep-alive
x-oss-request-id: 6319E3D1DD75B7313863E74B
Accept-Ranges: bytes
ETag: "D0C3C3BBAA625A319709877C062F695D"
Last-Modified: Tue, 31 May 2022 07:48:44 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 11758244341292412031
x-oss-storage-class: Standard
Content-MD5: 0MPDu6piWjGXCYd8Bi9pXQ==
x-oss-server-time: 2
p.qlogo.cn/hy_personal/3e28f14aa051684245c4e0cfebfbd4b50a56a24a513385a602ad3f28c6b7e75d/0.png
200 OK 689 kB URL HTTP/2 p.qlogo.cn/hy_personal/3e28f14aa051684245c4e0cfebfbd4b50a56a24a513385a602ad3f28c6b7e75d/0.png
IP
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type GIF image data, version 89a, 960 x 60\012- data
Size 689 kB (688878 bytes)
Hash 38adb06da8d7db34d62dfc1760cda2dd
862c5ecedd5add094b8dfb22c3087b09493a312a
89521c87c1fe061e63fb523bb11f2a328e9202574d73aa4c4e17de8a8f301c58
GET /hy_personal/3e28f14aa051684245c4e0cfebfbd4b50a56a24a513385a602ad3f28c6b7e75d/0.png HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Qnginx/1.4.4
date: Thu, 08 Sep 2022 12:45:05 GMT
content-type: image/gif
content-length: 688878
vary: Accept,Origin
last-modified: Mon, 18 Jul 2022 16:38:19 GMT
cache-control: max-age=2592000
x-delay: 296 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 2
x-reqgue: 0
size: 688878
chid: 0
fid: 0
x-nws-log-uuid: 0f90245f-9914-44af-b5de-f5fd44ab9a05
X-Firefox-Spdy: h2
p.qlogo.cn/hy_personal/3e28f14aa05168424fa80afa512d47670c98e6ee97c11a60ad0f9c35a38b4b7f/0.png
200 OK 989 kB URL HTTP/2 p.qlogo.cn/hy_personal/3e28f14aa05168424fa80afa512d47670c98e6ee97c11a60ad0f9c35a38b4b7f/0.png
IP
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type GIF image data, version 89a, 960 x 60\012- data
Size 989 kB (988610 bytes)
Hash 4145292e4c977dcbc7b371f460e08cf2
c8025e36c672a4240da49f73e80295b42a71b274
3f8ad1230a54a7c36522b11dd277ff02b878dde5384334dfd98359759c0a7fba
GET /hy_personal/3e28f14aa05168424fa80afa512d47670c98e6ee97c11a60ad0f9c35a38b4b7f/0.png HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Qnginx/1.4.4
date: Thu, 08 Sep 2022 12:45:05 GMT
content-type: image/gif
content-length: 988610
vary: Accept,Origin
last-modified: Mon, 18 Jul 2022 15:22:35 GMT
cache-control: max-age=2592000
x-delay: 396 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 2
x-reqgue: 0
size: 988610
chid: 0
fid: 0
x-nws-log-uuid: a69baf81-60ae-4461-9a68-d48344938ac9
X-Firefox-Spdy: h2
p.qlogo.cn/hy_personal/3e28f14aa051684245c4e0cfebfbd4b5ae29f1c75b96bd0a83bebaafdd18bfca/0.png
200 OK 0 B URL HTTP/2 p.qlogo.cn/hy_personal/3e28f14aa051684245c4e0cfebfbd4b5ae29f1c75b96bd0a83bebaafdd18bfca/0.png
IP
ASN #132203 Tencent Building, Kejizhongyi Avenue
GET /hy_personal/3e28f14aa051684245c4e0cfebfbd4b5ae29f1c75b96bd0a83bebaafdd18bfca/0.png HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Qnginx/1.4.4
date: Thu, 08 Sep 2022 12:45:05 GMT
content-type: image/gif
content-length: 1296026
vary: Accept,Origin
last-modified: Mon, 18 Jul 2022 17:08:22 GMT
cache-control: max-age=2592000
x-delay: 595 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 2
x-reqgue: 0
size: 1296026
chid: 0
fid: 0
x-nws-log-uuid: dcb05eab-9c21-4e92-9455-c2cb436ffeb2
X-Firefox-Spdy: h2
173.231.37.114
104.21.21.221
47.246.44.205
5.180.83.11
43.154.254.32
23.36.76.226
103.143.19.103
103.235.46.191
93.184.220.29
103.170.15.111