r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b9adda4796e3cda8d92753c46964621c
5f1eba1f6085b23dea088a91fe6f8947172f9f62
a0577a8fcfa81b3f86d99566eb4429655b93a238ffd1a3752bc9aae3d969deea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A0577A8FCFA81B3F86D99566EB4429655B93A238FFD1A3752BC9AAE3D969DEEA"
Last-Modified: Tue, 06 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16193
Expires: Thu, 08 Sep 2022 17:14:01 GMT
Date: Thu, 08 Sep 2022 12:44:08 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 08 Sep 2022 11:47:38 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: cIdcQfeoDdR13q982l4AvDLbAauqQP2icZCweX7mT28kw88Oz0rZrg==
Age: 3389
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.25200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.25:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Thu, 08 Sep 2022 03:46:35 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: DP6QgoWVKC9pMh5nOv2kV5mtQ3FFLePVwc8XXlNZD_xyM5J15f3gJg==
age: 32254
X-Firefox-Spdy: h2
www.chinadqwx.com/uar3/?WN68=9m2BuYjy2P5QVnF55yTJRV/9LhiAAt/MT+Kbm8QIT+MHAFzaldcGnNZ3pWSYBbzkonlkIpTVKgvisutZzhPqOw==&Rx=3fqpvFxpqlVpsJr0
173.231.37.114200 OK 27 kB URL HTTP/1.1 www.chinadqwx.com/uar3/?WN68=9m2BuYjy2P5QVnF55yTJRV/9LhiAAt/MT+Kbm8QIT+MHAFzaldcGnNZ3pWSYBbzkonlkIpTVKgvisutZzhPqOw==&Rx=3fqpvFxpqlVpsJr0
IP 173.231.37.114:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 618aec652af30c6524ef2031f8613e84
5a2a47c7b4797264a50ef971116bb6e2d58e71e8
113e2d464b307da039d18986de4ea290998a53e9cfb7c05bd05f81a7a75ce6c8
Analyzer Verdict Alert quad9 Sinkholed
GET /uar3/?WN68=9m2BuYjy2P5QVnF55yTJRV/9LhiAAt/MT+Kbm8QIT+MHAFzaldcGnNZ3pWSYBbzkonlkIpTVKgvisutZzhPqOw==&Rx=3fqpvFxpqlVpsJr0 HTTP/1.1
Host: www.chinadqwx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Sep 2022 12:44:25 GMT
Content-Type: text/html
Content-Length: 26709
Connection: keep-alive
Content-Encoding: gzip
Vary: Accept-Encoding
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 12:44:08 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.chinadqwx.com/static9/js/jquery.lazyload.js
173.231.37.114200 OK 747 B URL HTTP/1.1 www.chinadqwx.com/static9/js/jquery.lazyload.js
IP 173.231.37.114:0
File type ASCII text, with very long lines (2230), with CRLF line terminators
Hash 51bc439737d248eeaa9c42758e5c6b4f
a93e2cf688564063a325704c0f35a66edb0b3e20
cae2d23160e178f39804d4d3d13ce98d231a34871baf6111e4714c52653f10b1
Analyzer Verdict Alert quad9 Sinkholed
GET /static9/js/jquery.lazyload.js HTTP/1.1
Host: www.chinadqwx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/uar3/?WN68=9m2BuYjy2P5QVnF55yTJRV/9LhiAAt/MT+Kbm8QIT+MHAFzaldcGnNZ3pWSYBbzkonlkIpTVKgvisutZzhPqOw==&Rx=3fqpvFxpqlVpsJr0
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Sep 2022 12:44:26 GMT
Content-Type: application/javascript
Last-Modified: Sat, 14 Aug 2021 10:32:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61179ba4-8ba"
Expires: Fri, 09 Sep 2022 00:44:26 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
fmtu.netfhtu.com/upload/vod/20211015-1/7d500b72bda1c76ce9a835f2e93b3a74.jpg
104.21.235.63200 OK 63 kB URL HTTP/2 fmtu.netfhtu.com/upload/vod/20211015-1/7d500b72bda1c76ce9a835f2e93b3a74.jpg
IP 104.21.235.63:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 800x540, components 3\012- data
Hash 999eb2b09a1d4fcb2e7005e2401c14cf
77991ea65f9c8c37fcb5100446ec8a5f98900340
234aa7053954c2fea56caf1a0ea8d20490e1c94ef964b43977205650839813c7
GET /upload/vod/20211015-1/7d500b72bda1c76ce9a835f2e93b3a74.jpg HTTP/1.1
Host: fmtu.netfhtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:44:08 GMT
content-type: image/jpeg
content-length: 62606
cf-bgj: h2pri
etag: "6168ebe4-f48e"
last-modified: Fri, 15 Oct 2021 02:48:04 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wsaqz7BOagG7Fn5zrTD4hmdAQ2WkbfbiuwCyKsq%2FD964xrdmxj62xaz62UC%2FEaHJjDqHGK1OzXBRntHQK1RtKU%2BSmag4P1lGjvQ2uvCoSS5C%2Bm6kyBtDFqwfqv%2F%2FQmmMrFo0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c618be0106f9-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.chinadqwx.com/static9/js/jquery.autocomplete.js
173.231.37.114200 OK 6.4 kB URL HTTP/1.1 www.chinadqwx.com/static9/js/jquery.autocomplete.js
IP 173.231.37.114:0
File type Algol 68 source text\012- Pascal source, Unicode text, UTF-8 text, with CRLF line terminators
Hash d9f67b358ecd6dc03fc709356018ab11
11a75063c50de09d8a323dc8bb93c194729055c0
d1f6fa1324f9b17b39672b105b95aa7792ab1a5e10a5a95e625f26b0c1b0a801
Analyzer Verdict Alert quad9 Sinkholed
GET /static9/js/jquery.autocomplete.js HTTP/1.1
Host: www.chinadqwx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/uar3/?WN68=9m2BuYjy2P5QVnF55yTJRV/9LhiAAt/MT+Kbm8QIT+MHAFzaldcGnNZ3pWSYBbzkonlkIpTVKgvisutZzhPqOw==&Rx=3fqpvFxpqlVpsJr0
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Sep 2022 12:44:26 GMT
Content-Type: application/javascript
Last-Modified: Sat, 14 Aug 2021 10:32:02 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61179ba2-64a8"
Expires: Fri, 09 Sep 2022 00:44:26 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.chinadqwx.com/static9/js/jquery.js
173.231.37.114200 OK 37 kB URL HTTP/1.1 www.chinadqwx.com/static9/js/jquery.js
IP 173.231.37.114:0
File type ASCII text, with very long lines (32089), with CRLF line terminators
Hash cb8b32d2a46a250954f981780ea7d0d3
149d7140bb977c0ea043397cd72f067e56974692
080e5c45daae1e54faf78ecb600d5bd6680e7889343ebf220f94b6b9a343beae
Analyzer Verdict Alert quad9 Sinkholed
GET /static9/js/jquery.js HTTP/1.1
Host: www.chinadqwx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/uar3/?WN68=9m2BuYjy2P5QVnF55yTJRV/9LhiAAt/MT+Kbm8QIT+MHAFzaldcGnNZ3pWSYBbzkonlkIpTVKgvisutZzhPqOw==&Rx=3fqpvFxpqlVpsJr0
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Sep 2022 12:44:26 GMT
Content-Type: application/javascript
Last-Modified: Sat, 14 Aug 2021 10:32:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61179ba4-169d9"
Expires: Fri, 09 Sep 2022 00:44:26 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.chinadqwx.com/ads/float.js
173.231.37.114200 OK 1.1 kB URL HTTP/1.1 www.chinadqwx.com/ads/float.js
IP 173.231.37.114:0
File type HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (558), with CRLF line terminators
Hash 0d2da301dfe5cafed26d7358e0aff287
ccfa4e051825d8d3d6c65047bff7b7d8cd54c1f2
a80e56569865dac21f3044e071ca27dec23a7601f95244fccf5335016f628179
Analyzer Verdict Alert quad9 Sinkholed
GET /ads/float.js HTTP/1.1
Host: www.chinadqwx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/uar3/?WN68=9m2BuYjy2P5QVnF55yTJRV/9LhiAAt/MT+Kbm8QIT+MHAFzaldcGnNZ3pWSYBbzkonlkIpTVKgvisutZzhPqOw==&Rx=3fqpvFxpqlVpsJr0
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Sep 2022 12:44:26 GMT
Content-Type: application/javascript
Last-Modified: Tue, 06 Sep 2022 10:11:44 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63171ce0-12de"
Expires: Fri, 09 Sep 2022 00:44:26 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.chinadqwx.com/static9/css/layer.css
173.231.37.114200 OK 1.4 kB URL HTTP/1.1 www.chinadqwx.com/static9/css/layer.css
IP 173.231.37.114:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (5261), with no line terminators
Hash 1ecab368d900dfeb45c936a58b1199d2
787f95478788ae15a6724648a3d6e4cdaa1822d7
d1f5386addc2e6a5b22fc448e04f81f521e89630660ec1577c63e694352a7cb2
Analyzer Verdict Alert quad9 Sinkholed
GET /static9/css/layer.css HTTP/1.1
Host: www.chinadqwx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/uar3/?WN68=9m2BuYjy2P5QVnF55yTJRV/9LhiAAt/MT+Kbm8QIT+MHAFzaldcGnNZ3pWSYBbzkonlkIpTVKgvisutZzhPqOw==&Rx=3fqpvFxpqlVpsJr0
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Sep 2022 12:44:26 GMT
Content-Type: text/css
Last-Modified: Sat, 14 Aug 2021 10:31:51 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61179b97-1492"
Expires: Fri, 09 Sep 2022 00:44:26 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.chinadqwx.com/static9/css/home.css
173.231.37.114200 OK 7.2 kB URL HTTP/1.1 www.chinadqwx.com/static9/css/home.css
IP 173.231.37.114:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 9138ef057adfdc9694c4bb594856d2f6
daf3ff19b6969cb883c630192663e080fd9bfd1c
65aafaca24946a3ad95d64ff90dc7daf352b028ee72700a7534723dd8703052c
Analyzer Verdict Alert quad9 Sinkholed
GET /static9/css/home.css HTTP/1.1
Host: www.chinadqwx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/uar3/?WN68=9m2BuYjy2P5QVnF55yTJRV/9LhiAAt/MT+Kbm8QIT+MHAFzaldcGnNZ3pWSYBbzkonlkIpTVKgvisutZzhPqOw==&Rx=3fqpvFxpqlVpsJr0
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Sep 2022 12:44:26 GMT
Content-Type: text/css
Last-Modified: Fri, 25 Feb 2022 12:00:21 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6218c4d5-a391"
Expires: Fri, 09 Sep 2022 00:44:26 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.chinadqwx.com/static9/js/home.js
173.231.37.114200 OK 9.5 kB URL HTTP/1.1 www.chinadqwx.com/static9/js/home.js
IP 173.231.37.114:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 80f08abfbb794875177a0ae35491c20d
f7b3e1a15af111db3645bce86c18138506a63e9c
884d190f58f4bfe351627c2772d65a70321b05be345ec9ebc9aee1cb09df2648
Analyzer Verdict Alert quad9 Sinkholed
GET /static9/js/home.js HTTP/1.1
Host: www.chinadqwx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/uar3/?WN68=9m2BuYjy2P5QVnF55yTJRV/9LhiAAt/MT+Kbm8QIT+MHAFzaldcGnNZ3pWSYBbzkonlkIpTVKgvisutZzhPqOw==&Rx=3fqpvFxpqlVpsJr0
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Sep 2022 12:44:26 GMT
Content-Type: application/javascript
Last-Modified: Fri, 27 May 2022 05:46:44 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"629065c4-8e22"
Expires: Fri, 09 Sep 2022 00:44:26 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
fmtu.netfhtu.com/upload/vod/20211015-1/9aec425019c1ee9089309ba591c26ebe.jpg
104.21.235.63200 OK 54 kB URL HTTP/2 fmtu.netfhtu.com/upload/vod/20211015-1/9aec425019c1ee9089309ba591c26ebe.jpg
IP 104.21.235.63:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 800x539, components 3\012- data
Hash 4798cfdc64e492242d1df6e4b15a9d5e
2f2e580a0e46f9ea22791575993ac14ad65028dd
3d1731a369dcf50d664ab473d94065e094d7384491f0375430647ba11ce3a376
GET /upload/vod/20211015-1/9aec425019c1ee9089309ba591c26ebe.jpg HTTP/1.1
Host: fmtu.netfhtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:44:08 GMT
content-type: image/jpeg
content-length: 54505
cf-bgj: h2pri
etag: "6168eded-d4e9"
last-modified: Fri, 15 Oct 2021 02:56:45 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3wK0m67pZHiIa%2BbPgI2xuQJSzHcogdK4miWpvaHVG%2FGUu5VAlfXNyo5uGSROhGfMzUQl4HuW58AsExb5vfg34zeZsBx%2FrQonee6WYOnfqVGxHh21u%2B8Drb5UPokoR9ehu%2F4M"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c6189dd706f9-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmtu.netfhtu.com/upload/vod/2020/07/g2mqtrfeund.jpg
104.21.235.63200 OK 8.6 kB URL HTTP/2 fmtu.netfhtu.com/upload/vod/2020/07/g2mqtrfeund.jpg
IP 104.21.235.63:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 34x45, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash 270153e3487988749a040b0160d17843
473f737b4d59afed4aa6ffe8df2ec2ee0230bede
98ca8461b6abda545481f4beda70947969c8000242532a543f011ff6c0e33394
GET /upload/vod/2020/07/g2mqtrfeund.jpg HTTP/1.1
Host: fmtu.netfhtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:44:08 GMT
content-type: image/jpeg
content-length: 8612
cf-bgj: h2pri
etag: "5f0a7a53-21a4"
last-modified: Sun, 12 Jul 2020 02:49:55 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=h98FntKcGzcda%2BqJ7GDkAhK7KUddbRVVJTm%2Buzn1l%2FZ224lQYKRF6mQp07ZQKuQN49T7PpPMa5yaUWkR4Y7BrKaoHXMr6RlE1rMuqPn0EyGV2%2B7Psd9U%2B%2B44zCAB3aCuzkBC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c6189dd806f9-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmtu.netfhtu.com/upload/vod/2020/11/nq2nbtmdgmn.jpg
104.21.235.63200 OK 7.6 kB URL HTTP/2 fmtu.netfhtu.com/upload/vod/2020/11/nq2nbtmdgmn.jpg
IP 104.21.235.63:0
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash 44e1a423ad53d0be6fb0f8db474514e1
49158038f4fcc44e3f2f339879029516eb442524
d068a4dcabe1017362bd08426af598a3da6e966280d6247286fd47aeb1a7bb5a
GET /upload/vod/2020/11/nq2nbtmdgmn.jpg HTTP/1.1
Host: fmtu.netfhtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:44:08 GMT
content-type: image/jpeg
content-length: 7600
cf-bgj: h2pri
etag: "5fb5999a-1db0"
last-modified: Wed, 18 Nov 2020 22:00:58 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=K9P0C0kZlqqUcKaRGqsXF4IGLqUig5Z%2BnQO2t91eH7yiRwPS%2BeUIWR5zaql%2FFESOwRY4KX9EK33GfyZJOdVrgsDcjH0HuuH9832jLDBKkUfOJS5a3nBS1a%2F5zMHiWYkr1PN0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c618ee2d06f9-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dvcasha2.ocsp-certum.com/
23.36.79.10200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.10:0
ASN #20940 Akamai International B.V.
Hash 806f4f3536539e2d64e8f424479d9638
3366f9699e74d49e81cda2dde836324863195901
87da11faee9b1d69e533b33be7bd94b0e10f5ff50c51c83e961cf11f3edfa521
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=900
Date: Thu, 08 Sep 2022 12:44:08 GMT
Connection: keep-alive
X-N: S
fmtu.netfhtu.com/upload/vod/20210705-1/a7e91c8a487ecbe4722dcb80a540075c.jpg
104.21.235.63200 OK 6.7 kB URL HTTP/2 fmtu.netfhtu.com/upload/vod/20210705-1/a7e91c8a487ecbe4722dcb80a540075c.jpg
IP 104.21.235.63:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 298x375, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash f7c9ec290fdfc96a62e0a7703afafc62
e4f0422465fe6483ec9dbc38f29aa935d8eee070
04de636b70665604e95bbca24eb039179de1cfafbff53147984fe898210bbd70
GET /upload/vod/20210705-1/a7e91c8a487ecbe4722dcb80a540075c.jpg HTTP/1.1
Host: fmtu.netfhtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:44:08 GMT
content-type: image/jpeg
content-length: 6745
last-modified: Mon, 05 Jul 2021 04:33:07 GMT
etag: "60e28b83-1a59"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bbm5813qAvzcO4tZzjPOebu%2BmL7Lz8V49fWvS%2BGL91yFJX4GOeiK7Vu9AHerjsDvCscs5TCoU14JtK6xCU04fWytuTKqUo2Lz4emhLLkv801DTfImmNtkG1eJjk6EAvCHH80"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c618addb06f9-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmtu.netfhtu.com/upload/vod/20211005-1/ce1770afc736ba5e6ecd287f2cd26baa.jpg
104.21.235.63200 OK 8.3 kB URL HTTP/2 fmtu.netfhtu.com/upload/vod/20211005-1/ce1770afc736ba5e6ecd287f2cd26baa.jpg
IP 104.21.235.63:0
File type JPEG image data, baseline, precision 8, 240x320, components 3\012- data
Hash 1ba5202983a90170901ac7234dfd4636
4b111edc15ffc408fcebdd45e17a32775509533f
df6fcf3fbaee509467391d00d91d8561c721edb227af58f41b9a7040ce6bde73
GET /upload/vod/20211005-1/ce1770afc736ba5e6ecd287f2cd26baa.jpg HTTP/1.1
Host: fmtu.netfhtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:44:08 GMT
content-type: image/jpeg
content-length: 8307
last-modified: Mon, 04 Oct 2021 22:03:19 GMT
etag: "615b7a27-2073"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iFaXjOd7gu7QUoqkra68nb5g%2BBB4Bmqj18c7Y%2FSDzHILkL75n6bPafG%2Fq4oIoyHJz9fz485xz4wICRmH1HZ6HzKeVXRggpX17ZJJQvoUE9yp5ScsUGrB1%2BqB6Bc1%2FXcPRXP1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c618bdfe06f9-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmtu.netfhtu.com/upload/vod/2022/05/0esj4bfelbt.jpg
104.21.235.63200 OK 8.5 kB URL HTTP/2 fmtu.netfhtu.com/upload/vod/2022/05/0esj4bfelbt.jpg
IP 104.21.235.63:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 5632ed6cbc614f4acfd0031b907838b3
3b9fe8fc5173d3f208dcfbe01452511acb32689c
8ad03068815199d742af60c7ef40243392b2959147d97b3bbec23cd3887e98d8
GET /upload/vod/2022/05/0esj4bfelbt.jpg HTTP/1.1
Host: fmtu.netfhtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:44:08 GMT
content-type: image/jpeg
content-length: 8529
last-modified: Sat, 07 May 2022 23:45:31 GMT
etag: "6277049b-2151"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HsHKT63EMYWjLo86qgfTbm%2FwW6Gt7WWt9URi3zAQc%2F8HGXpObU28IdBvlGI6UK7t7kPeuWh3yq%2BLWhuIJ14y%2F5yNvmEh9oCKouL95swgkm1TYozhHtcHXGqeOvc5D2bYgzlx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c618bdfa06f9-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.chinadqwx.com/static9/js/tongji.js
173.231.37.114200 OK 364 B URL HTTP/1.1 www.chinadqwx.com/static9/js/tongji.js
IP 173.231.37.114:0
File type HTML document, ASCII text, with CRLF line terminators
Hash 060825039a5e7954ff077da88a211f20
139b281292cfc54da7f51a4f89c2428608bbe1ab
6c042b4aea7fe253c51d7d9361daef04b96581cb53f7369dd7af0ead7fb3c1c2
Analyzer Verdict Alert quad9 Sinkholed
GET /static9/js/tongji.js HTTP/1.1
Host: www.chinadqwx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/uar3/?WN68=9m2BuYjy2P5QVnF55yTJRV/9LhiAAt/MT+Kbm8QIT+MHAFzaldcGnNZ3pWSYBbzkonlkIpTVKgvisutZzhPqOw==&Rx=3fqpvFxpqlVpsJr0
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Sep 2022 12:44:26 GMT
Content-Type: application/javascript
Content-Length: 364
Last-Modified: Tue, 05 Jul 2022 10:53:33 GMT
Connection: keep-alive
ETag: "62c4182d-16c"
Expires: Fri, 09 Sep 2022 00:44:26 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes
fmlb.netlbtu.com/upload/vod/2021/05-19/06/rlopz34etoh0608rlopz34etoh471039.jpg
104.21.235.174200 OK 9.0 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2021/05-19/06/rlopz34etoh0608rlopz34etoh471039.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 64af21137dbe4dce67563bcbc0512f1e
bee3b6a72b11ba66bd2bb0df244a141273c50d4b
5a0dee7cd628fb74f7cbcd4bd508a16184d532e140b76c49cb3e8a558bbb88d4
GET /upload/vod/2021/05-19/06/rlopz34etoh0608rlopz34etoh471039.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:44:08 GMT
content-type: image/jpeg
content-length: 8986
cf-bgj: h2pri
etag: "f3e8e05f324cd71:0"
last-modified: Tue, 18 May 2021 22:08:47 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BC6NQetxSLVM1bRuVqJatnrFg2uB2Yw%2B7kkHIKi6ctszQTvYdhgKtFfSfAjdDMbFAmPS%2FRauuk2tg8DuDg4oS1L2RVxKA93qj9kI5laJeVbSfOhs%2FGNeMv%2BtUoWNomd0xaIY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c6199a5074bd-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.chinadqwx.com/static9/css/styles.css
173.231.37.114200 OK 20 kB URL HTTP/1.1 www.chinadqwx.com/static9/css/styles.css
IP 173.231.37.114:0
File type assembler source, Unicode text, UTF-8 (with BOM) text, with very long lines (2135), with CRLF line terminators
Hash 66640af7cb26968b0144f578b88c8a89
dd98ca5be5a99f10aabbca030fba75ddf09cc0e1
02944278b97c037a55ad56b7d3014c2e35c6f289f49f7a26d87a3b7b60159224
Analyzer Verdict Alert quad9 Sinkholed
GET /static9/css/styles.css HTTP/1.1
Host: www.chinadqwx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/uar3/?WN68=9m2BuYjy2P5QVnF55yTJRV/9LhiAAt/MT+Kbm8QIT+MHAFzaldcGnNZ3pWSYBbzkonlkIpTVKgvisutZzhPqOw==&Rx=3fqpvFxpqlVpsJr0
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Sep 2022 12:44:26 GMT
Content-Type: text/css
Last-Modified: Sat, 14 Aug 2021 10:31:53 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61179b99-17b03"
Expires: Fri, 09 Sep 2022 00:44:26 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 143fd2028431f3bbef9def3212df00d1
001ccf76ccc999c102103412c69051c71bd74254
e4262fd0e5e45117d4e426fdf9290300b298582c0f13af55772254087945cae4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 12:44:08 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 06 Sep 2022 18:07:39 GMT
Expires: Tue, 13 Sep 2022 18:07:38 GMT
Etag: "001ccf76ccc999c102103412c69051c71bd74254"
Cache-Control: max-age=450809,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7477c61a7d40b515-OSL
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e789c45e4856e860d2f093c3f9c53451
8a2fa381db391bf1c8e0659a5a13afb5097bc831
5f6ebcd4c93bbbdcb6690a07a97f84431e52e11cea5e822eba757d382d5aa4e0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5F6EBCD4C93BBBDCB6690A07A97F84431E52E11CEA5E822EBA757D382D5AA4E0"
Last-Modified: Tue, 06 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17072
Expires: Thu, 08 Sep 2022 17:28:40 GMT
Date: Thu, 08 Sep 2022 12:44:08 GMT
Connection: keep-alive
fmlb.netlbtu.com/upload/vod/2019/11-08/03/lwkrigftsuc0309lwkrigftsuc303195.jpg
104.21.235.174200 OK 8.0 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2019/11-08/03/lwkrigftsuc0309lwkrigftsuc303195.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 23x30, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash 05be57e4d9fc1e60ac9a0aa1a65507ee
4b6ccace4b60c6619ec954d18bf7e7ed839a6ce9
8ffc1c6c37f9e642530d642d20994aa923c9e3e5ff8240ada6c0513de2c0b645
GET /upload/vod/2019/11-08/03/lwkrigftsuc0309lwkrigftsuc303195.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:44:08 GMT
content-type: image/jpeg
content-length: 8047
last-modified: Thu, 07 Nov 2019 19:09:30 GMT
etag: "4c3bdde19e95d51:0"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nlerv%2FHa8uMqmYPCyvKnvWxmrajIf%2Ffq6xzNtvP%2FFnsi6wYYvFs6A7hNxHy2oGNlBX4qAtiOonOkw3AIFP8jmE0xM04dBg0L8SIwm0uRuHerG2EXjoOtHjRp%2FZYy7MjMiI4Y"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c6198a4174bd-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2020/03-28/18/c34ufww1ym31816c34ufww1ym3323934.jpg
104.21.235.174200 OK 8.6 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2020/03-28/18/c34ufww1ym31816c34ufww1ym3323934.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash ba14d2dbb05b1745ca57fd7f6ad3f218
9796dc2924c5fa1662db51a9b473f73af2a75bc0
2652a737c859ef17173e5afb2a1d179f5382234a88b0eadd0671711ffe76ff4f
GET /upload/vod/2020/03-28/18/c34ufww1ym31816c34ufww1ym3323934.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:44:08 GMT
content-type: image/jpeg
content-length: 8646
last-modified: Sat, 28 Mar 2020 10:16:32 GMT
etag: "76ef69f4e94d61:0"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8t6sJFzUZGVDdPvDrJIwa3uXx5u9XQCwE3aVXMQ3iskxraHcUvuotzly7Y%2BX%2FOdxR33GNXoTTSCmFC7rD4lVlid4Yav%2BwAL%2Ffebv7MzZlCw6%2BnBqG3efsp53fr%2BfZXZxjITu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c6198a3f74bd-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2020/05-21/12/mpw3scfadf51201mpw3scfadf5441069.jpg
104.21.235.174200 OK 9.4 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2020/05-21/12/mpw3scfadf51201mpw3scfadf5441069.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash ed965ac8cf1d8754b298c21e23eada55
f5dcddd54384f3c1d3a7423ea26049ed8d444753
3419ed0aa819eec3486b99c1c3f85561664de5c5abb54e5ee9c0fe8d9087f7e8
GET /upload/vod/2020/05-21/12/mpw3scfadf51201mpw3scfadf5441069.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:44:08 GMT
content-type: image/jpeg
content-length: 9422
last-modified: Thu, 21 May 2020 04:01:44 GMT
etag: "96af8b8a242fd61:0"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4DUoI0Z0PPstSY8ccgN4QNwXV6PA3VWdJgpJcB6cUle4Ppy3sRi7ECgcUitbuCpc%2FgF9a%2F%2FyK%2FHWrLbEpiuahTqswWXqqID2Rme2zOJwZjdwZxzCwJIyKSOUQXEyKoVg72GJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c6198a4074bd-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmtu.netfhtu.com/upload/vod/2020/07/nka2sbaae0k.jpg
104.21.235.63200 OK 11 kB URL HTTP/2 fmtu.netfhtu.com/upload/vod/2020/07/nka2sbaae0k.jpg
IP 104.21.235.63:0
File type JPEG image data, baseline, precision 8, 240x320, components 3\012- data
Hash 97314d4cd41486154831d027b3deac43
a090a8cf4dfd1daf6077ce9328c48942c43866bf
3c83add1f179b05d4621e289927e98aecac10d8f2cb98e624e96cf04c68bb725
GET /upload/vod/2020/07/nka2sbaae0k.jpg HTTP/1.1
Host: fmtu.netfhtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:44:09 GMT
content-type: image/jpeg
content-length: 10718
last-modified: Sun, 19 Jul 2020 05:32:39 GMT
etag: "5f13daf7-29de"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oaeJi6pnyaYdnWTbNTIyaWXcHStcKYgKysJDrRAgNqOwRDKSFGxvEyCtM7eMa76%2Fjl8Ljn3ll807DNqn9vLTm5tlZ3IxRKKPvdGpajAIL0fZ3e8%2FdoSlgbUcuLYgl%2BX9%2Ba4Z"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c619af5e06f9-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 143fd2028431f3bbef9def3212df00d1
001ccf76ccc999c102103412c69051c71bd74254
e4262fd0e5e45117d4e426fdf9290300b298582c0f13af55772254087945cae4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 12:44:09 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 06 Sep 2022 18:07:39 GMT
Expires: Tue, 13 Sep 2022 18:07:38 GMT
Etag: "001ccf76ccc999c102103412c69051c71bd74254"
Cache-Control: max-age=450809,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7477c61b3a8bb51e-OSL
fmlb.netlbtu.com/upload/vod/2019/11-13/21/jpzy3wityl32117jpzy3wityl3482841.jpg
104.21.235.174200 OK 7.8 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2019/11-13/21/jpzy3wityl32117jpzy3wityl3482841.jpg
IP 104.21.235.174:0
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash a888b6a6958f19bd55088c0842a6a553
31a8dc639865acdde0e08a1cf190d953c45721a2
497651b37cd597c335ca5598b09d57c6bdf768486843b310b4db5c7f48f5d963
GET /upload/vod/2019/11-13/21/jpzy3wityl32117jpzy3wityl3482841.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:44:09 GMT
content-type: image/jpeg
content-length: 7772
last-modified: Wed, 13 Nov 2019 13:17:48 GMT
etag: "75d770be249ad51:0"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uLg%2BSmoa%2FdXb8njmfClvIuGYTVGYndin4w7MDtYKuZO6jty8%2FyvvF0lx52Y4HLxgXBS8xkCqyWvaya%2FKXr1pkILECDUdCgAsNAiyXknZR1ugpZ5CFyquicL5HBJLj0SB2%2FSw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c619ba8374bd-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
pic.laoyapic.com/upload/vod/20220422-1/fd039cbbdb3c7b41b5fd73865ac77fdc.jpg
104.233.196.234200 OK 8.4 kB URL HTTP/1.1 pic.laoyapic.com/upload/vod/20220422-1/fd039cbbdb3c7b41b5fd73865ac77fdc.jpg
IP 104.233.196.234:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 16384x12285, segment length 16, comment: "Lavc58.54.100", baseline, precision 8, 320x240, components 3\012- data
Hash 4361375adc22a319420ed40fa574a4c7
72e29c261218263b85d94de132ed3d2d255edfa9
b6f3a41aeda5f1923c825186043657dd78e8948a2c0e96cc80fbed4237dcf471
GET /upload/vod/20220422-1/fd039cbbdb3c7b41b5fd73865ac77fdc.jpg HTTP/1.1
Host: pic.laoyapic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:09 GMT
Content-Type: image/jpeg
Content-Length: 8359
Last-Modified: Sun, 05 Jun 2022 14:04:21 GMT
Connection: keep-alive
ETag: "629cb7e5-20a7"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic.laoyapic.com/upload/vod/20220409-1/cbdbc63d803d5cfaf500d0a300219610.jpg
104.233.196.234200 OK 10 kB URL HTTP/1.1 pic.laoyapic.com/upload/vod/20220409-1/cbdbc63d803d5cfaf500d0a300219610.jpg
IP 104.233.196.234:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc58.54.100", baseline, precision 8, 320x240, components 3\012- data
Hash 3bb898dda7fb4d2749c825c3e26fed83
53073bf6fe15a65b863b08a943d436629527aca7
fa9bfd287a1350b690112ba50f83873f76751de3a4ff6070f2def39385d5cac2
GET /upload/vod/20220409-1/cbdbc63d803d5cfaf500d0a300219610.jpg HTTP/1.1
Host: pic.laoyapic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:09 GMT
Content-Type: image/jpeg
Content-Length: 10540
Last-Modified: Sun, 05 Jun 2022 14:03:14 GMT
Connection: keep-alive
ETag: "629cb7a2-292c"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ece86515fa98334ce364e851735e20a1
f76fab90360bd0620469c6af0ac2b678a2b6bf94
9d6383b540c6d241f169bd20de089916e89ca3c51351e501ed1cedfb388bee6b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9D6383B540C6D241F169BD20DE089916E89CA3C51351E501ED1CEDFB388BEE6B"
Last-Modified: Wed, 07 Sep 2022 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8615
Expires: Thu, 08 Sep 2022 15:07:44 GMT
Date: Thu, 08 Sep 2022 12:44:09 GMT
Connection: keep-alive
pic.laoyapic.com/upload/vod/20220406-1/ba6f82bd984455ac2892bce732fe286e.jpg
104.233.196.234200 OK 11 kB URL HTTP/1.1 pic.laoyapic.com/upload/vod/20220406-1/ba6f82bd984455ac2892bce732fe286e.jpg
IP 104.233.196.234:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc58.54.100", baseline, precision 8, 320x240, components 3\012- data
Hash 95e24a97af9577686b45ecd9b86967a4
1abba49f304f25baa218754055b8fd2c4a709cea
a8c2e1f1438b311ce560f9bf9e50d32ef0420362c0ccf7c42e0a04d74c221483
GET /upload/vod/20220406-1/ba6f82bd984455ac2892bce732fe286e.jpg HTTP/1.1
Host: pic.laoyapic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:09 GMT
Content-Type: image/jpeg
Content-Length: 10984
Last-Modified: Sun, 05 Jun 2022 14:03:10 GMT
Connection: keep-alive
ETag: "629cb79e-2ae8"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
fmtu.netfhtu.com/upload/vod/20211220-1/92073affd0440777981d125e434d0e9d.jpg
104.21.235.63200 OK 514 kB URL HTTP/2 fmtu.netfhtu.com/upload/vod/20211220-1/92073affd0440777981d125e434d0e9d.jpg
IP 104.21.235.63:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, xresolution=120, yresolution=120], baseline, precision 8, 1280x720, components 3\012- data
Size 514 kB (513876 bytes)
Hash 7d9874d0079256ace4ab77d20183aca3
2ea708b2dae7c53c11f3ece679d394bd5b765f52
4a75b7944c8337e2d66b58324d8d85b0abc6c21588b063903d1642a219e1abc3
GET /upload/vod/20211220-1/92073affd0440777981d125e434d0e9d.jpg HTTP/1.1
Host: fmtu.netfhtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:44:08 GMT
content-type: image/jpeg
content-length: 513876
last-modified: Sun, 19 Dec 2021 19:18:51 GMT
etag: "61bf859b-7d754"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=426A7SGxSnU%2BLYH8Mvb9Lm5oYG4zlg2k%2B%2BOeVOzp08MxPPh6okBpCHptR1q2QXfJrrbIDL0GQlQL0SQ1SlEo5CfYNNHm9IxaqMQg5%2F11IQvFnbK%2B5EUopiF%2B%2B2zPmuZwqmgX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c6189dd906f9-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmtu.netfhtu.com/upload/vod/20201007/fc2ppv_1211000-A.jpg
104.21.235.63200 OK 67 kB URL HTTP/2 fmtu.netfhtu.com/upload/vod/20201007/fc2ppv_1211000-A.jpg
IP 104.21.235.63:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 960x540, components 3\012- data
Hash bf7dbc674e93c6fb83c92300b710d817
90852902a1b4363caaafcf0814c135605fee6e88
405e1661d8f35132a97dd06ed47e4615c9f324d1d64188a6a9d760ec64e8d178
GET /upload/vod/20201007/fc2ppv_1211000-A.jpg HTTP/1.1
Host: fmtu.netfhtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:44:09 GMT
content-type: image/jpeg
content-length: 66712
last-modified: Wed, 07 Oct 2020 04:23:18 GMT
etag: "5f7d42b6-10498"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=d1hTYMHf2lZA6GUHsczsGrQjAyJPQZoI9P2KcXzx3KJIJvjva%2F9KRp41NR1HOerZuM3uOukE7fLbJSWup15h0ZViSqAj66DjkqesvHAYn%2Fqk5jcJ2Tvhq5CamCU9lx3mG5XL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c6196ee406f9-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmtu.netfhtu.com/upload/vod/20220428/110619_202-paco.jpg
104.21.235.63200 OK 108 kB URL HTTP/2 fmtu.netfhtu.com/upload/vod/20220428/110619_202-paco.jpg
IP 104.21.235.63:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 960x540, components 3\012- data
Size 108 kB (107879 bytes)
Hash eeffbe0953dd0617c832dcfff59ff9bc
de9b36a221cc6a47cd6c0a700ac0cfc5248c8369
c0c9b3fb297ea2f8ddc29bfb3fcfd3c49f7790603fa16fa2ef2fa81c06c27fcf
GET /upload/vod/20220428/110619_202-paco.jpg HTTP/1.1
Host: fmtu.netfhtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:44:09 GMT
content-type: image/jpeg
content-length: 107879
last-modified: Wed, 27 Apr 2022 23:03:14 GMT
etag: "6269cbb2-1a567"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JRI6XwfH6w7RIu5SWATcwXu50uu7kgCIp0FeG60BY18%2FrQTIWgXuWy4Hj5Mv6AA2NybvwHAoQjtH8qBSjesq2LbwfMob4aSNJI28cOdAZN4DVtbZDf2fT423meIqSFEMl0%2BZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c619bf7f06f9-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
data1.huakuibf1.com/20220526/89A93606DD9AB752/89A93606DD9AB752.jpg
23.224.241.210200 OK 20 kB URL HTTP/1.1 data1.huakuibf1.com/20220526/89A93606DD9AB752/89A93606DD9AB752.jpg
IP 23.224.241.210:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 3de0375fc9cedc85c94a71e689c7d79d
bd8ba30d4b9d919f76e2e7b2303dfbe8f272dafe
dfc1165fe023ba1cd5aaf6e87cd7ca287377290a5c2b94a224617ec5ede542f8
GET /20220526/89A93606DD9AB752/89A93606DD9AB752.jpg HTTP/1.1
Host: data1.huakuibf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:09 GMT
Content-Type: image/jpeg
Content-Length: 19485
Last-Modified: Mon, 23 May 2022 11:44:46 GMT
Connection: keep-alive
ETag: "628b73ae-4c1d"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pt1.putaozy.info/20220306/EAD05311697A79AD/EAD05311697A79AD.jpg
5.180.83.11200 OK 6.8 kB URL HTTP/1.1 pt1.putaozy.info/20220306/EAD05311697A79AD/EAD05311697A79AD.jpg
IP 5.180.83.11:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 3x8, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash a18d1258e4eb78f7682f0096ed3348fd
45b3080b4397194b025cab1b2874fff1f8e5ba52
2b7e99e6eb581c76354558e57de02596c81087405b98a5d579551582799f566e
GET /20220306/EAD05311697A79AD/EAD05311697A79AD.jpg HTTP/1.1
Host: pt1.putaozy.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:09 GMT
Content-Type: image/jpeg
Content-Length: 6827
Last-Modified: Wed, 07 Sep 2022 13:06:05 GMT
Connection: keep-alive
ETag: "6318973d-1aab"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pt1.putaozy.info/20220517/3E6C6789FACD1C38/3E6C6789FACD1C38.jpg
5.180.83.11200 OK 10 kB URL HTTP/1.1 pt1.putaozy.info/20220517/3E6C6789FACD1C38/3E6C6789FACD1C38.jpg
IP 5.180.83.11:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 77c15aba59a1ff87b1880f93014ddd83
e3b508d856416d2644d8c7015682bc9f3d0ea73b
1b222ff41c7ceded250a278db278d8142d480866ee0c7177f3668e5a96b6c3ee
GET /20220517/3E6C6789FACD1C38/3E6C6789FACD1C38.jpg HTTP/1.1
Host: pt1.putaozy.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:09 GMT
Content-Type: image/jpeg
Content-Length: 10193
Last-Modified: Wed, 07 Sep 2022 13:03:39 GMT
Connection: keep-alive
ETag: "631896ab-27d1"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pt1.putaozy.info/20220513/4ED26D6D4DC2DC86/4ED26D6D4DC2DC86.jpg
5.180.83.11200 OK 7.0 kB URL HTTP/1.1 pt1.putaozy.info/20220513/4ED26D6D4DC2DC86/4ED26D6D4DC2DC86.jpg
IP 5.180.83.11:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 27x64, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 85749e4cd3fc7dc748ffb22d3ac3f06c
2908df04fb74c9b70b99f6f14ab69492e862df5b
d38e705a76eb35424ac03758ca43f07f2c4fce79bfa10fa79a684ab56f59cfd9
GET /20220513/4ED26D6D4DC2DC86/4ED26D6D4DC2DC86.jpg HTTP/1.1
Host: pt1.putaozy.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:09 GMT
Content-Type: image/jpeg
Content-Length: 7031
Last-Modified: Wed, 07 Sep 2022 13:04:04 GMT
Connection: keep-alive
ETag: "631896c4-1b77"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pt1.putaozy.info/20220313/4E21C2B40A46E552/4E21C2B40A46E552.jpg
5.180.83.11200 OK 7.1 kB URL HTTP/1.1 pt1.putaozy.info/20220313/4E21C2B40A46E552/4E21C2B40A46E552.jpg
IP 5.180.83.11:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 17f18974b86e676b3d3fade75000b391
d251963e628dfb4a2d0c8f8aa4f2a094614ab191
0c2f925542a81d6940a0d108ab71aa0504cb9caac6b385fa0cc8f02d718ecb3f
GET /20220313/4E21C2B40A46E552/4E21C2B40A46E552.jpg HTTP/1.1
Host: pt1.putaozy.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:09 GMT
Content-Type: image/jpeg
Content-Length: 7146
Last-Modified: Wed, 07 Sep 2022 13:07:07 GMT
Connection: keep-alive
ETag: "6318977b-1bea"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20201216-1/6321d684f0462e667952c01e19ffd8b6.jpg
45.89.209.74200 OK 6.2 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20201216-1/6321d684f0462e667952c01e19ffd8b6.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 480x361, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 18a295c2c799feddbcb62a4b2ff181c8
fbd31d6b78700a9ac0a29bfd604d02dfadf94dd2
6e614c18be416e053c21bcbfb4020a1689324c3f19dc504abd42aba3e81fe53d
GET /upload/vod/20201216-1/6321d684f0462e667952c01e19ffd8b6.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:09 GMT
Content-Type: image/jpeg
Content-Length: 6191
Last-Modified: Thu, 11 Aug 2022 12:15:55 GMT
Connection: keep-alive
ETag: "62f4f2fb-182f"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20211130-1/e6ef457a891d4bfe388b730b2db64f07.jpg
45.89.209.74200 OK 12 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20211130-1/e6ef457a891d4bfe388b730b2db64f07.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 45x34, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 0245874e1b520802c78463a629b73afc
a84a7d7a38cf1d7769b4f233c0daf381670ce73a
db1bf5cc1b2c5351bc3e079fcbd81680b5388dc8904e123b18bac30f6bab5df3
GET /upload/vod/20211130-1/e6ef457a891d4bfe388b730b2db64f07.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:09 GMT
Content-Type: image/jpeg
Content-Length: 12116
Last-Modified: Thu, 11 Aug 2022 12:15:51 GMT
Connection: keep-alive
ETag: "62f4f2f7-2f54"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20201218-1/e42998a383e8dc12ab7ac1684e66a74e.jpg
45.89.209.74200 OK 5.6 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20201218-1/e42998a383e8dc12ab7ac1684e66a74e.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 427x320, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 49b86d4f96804f804d3d0212cca3d31e
3086bcfba9fffdeef198ed389f74da991140d8d4
93ab59202c5210d23a9794486bb0fd04eaba87f132b38054396086891ae29e3b
GET /upload/vod/20201218-1/e42998a383e8dc12ab7ac1684e66a74e.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:09 GMT
Content-Type: image/jpeg
Content-Length: 5562
Last-Modified: Thu, 11 Aug 2022 12:18:10 GMT
Connection: keep-alive
ETag: "62f4f382-15ba"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20210726-1/1d58f772dad3d484baa075338b63c46b.jpg
45.89.209.74200 OK 6.7 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20210726-1/1d58f772dad3d484baa075338b63c46b.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 9x16, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 8008b261131bfc5a45d06c130c09302e
e291cb8fe4700388c63d19e40b8b4410fd8bbf44
e297bc86e634a9dd6f36ab62c93d90195397a35483a646dc2a59d964019f994b
GET /upload/vod/20210726-1/1d58f772dad3d484baa075338b63c46b.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:09 GMT
Content-Type: image/jpeg
Content-Length: 6651
Last-Modified: Thu, 11 Aug 2022 12:13:42 GMT
Connection: keep-alive
ETag: "62f4f276-19fb"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20210220-1/e2a7cb39f0f73fcade29b3bfaf6a6084.jpg
45.89.209.74200 OK 15 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20210220-1/e2a7cb39f0f73fcade29b3bfaf6a6084.jpg
IP 45.89.209.74:0
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash 71338c8fe78aa49aba4c4462e8cb4122
8fbca2b5d6cfdfe625436049e81f7003798651a2
ad267c74c5f64c69c4995fb7643dfa88f7b3ff4adbb74a3285d9006e72627510
GET /upload/vod/20210220-1/e2a7cb39f0f73fcade29b3bfaf6a6084.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:09 GMT
Content-Type: image/jpeg
Content-Length: 14895
Last-Modified: Thu, 11 Aug 2022 12:14:34 GMT
Connection: keep-alive
ETag: "62f4f2aa-3a2f"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20220119-1/ca5ae7f7e4fe0dab7666453b42d98772.jpg
45.89.209.74200 OK 12 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20220119-1/ca5ae7f7e4fe0dab7666453b42d98772.jpg
IP 45.89.209.74:0
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash 5e91662e18180624366aaadf7580e35f
8f116ce383b979e09f5a6544d0bbe9e03cd1aa21
bc2c58a77f9901cbf1ebd6e9bb8365389f56529320c138a7ba6a31e9a909c27c
GET /upload/vod/20220119-1/ca5ae7f7e4fe0dab7666453b42d98772.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:09 GMT
Content-Type: image/jpeg
Content-Length: 11526
Last-Modified: Thu, 11 Aug 2022 12:14:46 GMT
Connection: keep-alive
ETag: "62f4f2b6-2d06"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
fmtu.netfhtu.com/upload/vod/20211220-1/fcf14528aff63648486ac45dccc3c782.jpg
104.21.235.63200 OK 548 kB URL HTTP/2 fmtu.netfhtu.com/upload/vod/20211220-1/fcf14528aff63648486ac45dccc3c782.jpg
IP 104.21.235.63:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, xresolution=120, yresolution=120], baseline, precision 8, 1280x720, components 3\012- data
Size 548 kB (547494 bytes)
Hash f6a31f62baed7e4b93f328a02faaa117
0884f4b14d865e380c32bd9745879b10709c71c6
b9ff3f448fea128dbaab9dcea2f4a91775d6bd1a330c822ebfb6aed92af61f6d
GET /upload/vod/20211220-1/fcf14528aff63648486ac45dccc3c782.jpg HTTP/1.1
Host: fmtu.netfhtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:44:09 GMT
content-type: image/jpeg
content-length: 547494
last-modified: Sun, 19 Dec 2021 19:20:35 GMT
etag: "61bf8603-85aa6"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HOXn0h47za9%2BrPr1qGmnIdCiZtlvuX6VhRuQMYUrmpo%2BVFUO8uNPVWfzL5eyIo2SFzpDvtJNeESR8LmU87098fQJ4YqEAPzCBTNhdk91lfsKEfp8dWyKljJ%2FqLLMjE7BowMQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c618adde06f9-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.chinadqwx.com/upload/vod/20220512-1/2db7453583fef406d001f97dd3ab2ffc.jpg
173.231.37.114404 Not Found 95 B URL HTTP/1.1 www.chinadqwx.com/upload/vod/20220512-1/2db7453583fef406d001f97dd3ab2ffc.jpg
IP 173.231.37.114:0
File type ASCII text, with no line terminators
Hash ce07798e85e7ceafe95c9d83a1fdbe4d
8daa79993ea8863f1f0ea4c1a7aec17e578c8b15
8a83d82aca300df0f137c0ada78e4fcf099ce91ac3837ec239af25af8db8e1cc
Analyzer Verdict Alert quad9 Sinkholed
GET /upload/vod/20220512-1/2db7453583fef406d001f97dd3ab2ffc.jpg HTTP/1.1
Host: www.chinadqwx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/uar3/?WN68=9m2BuYjy2P5QVnF55yTJRV/9LhiAAt/MT+Kbm8QIT+MHAFzaldcGnNZ3pWSYBbzkonlkIpTVKgvisutZzhPqOw==&Rx=3fqpvFxpqlVpsJr0
HTTP/1.1 404 Not Found
Server: nginx
Date: Thu, 08 Sep 2022 12:44:27 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.chinadqwx.com/static9/picture/default.png
173.231.37.114200 OK 7.1 kB URL HTTP/1.1 www.chinadqwx.com/static9/picture/default.png
IP 173.231.37.114:0
File type PNG image data, 90 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash 44537277b6d3e1b8aa9635e029e3af28
c5d9560cd5ac18835073565d5181f4a5afe7d41d
ffdad46d1eddb08ab07bb27e58fed19f26c3e57fea33466f2c693726bb519db6
Analyzer Verdict Alert quad9 Sinkholed
GET /static9/picture/default.png HTTP/1.1
Host: www.chinadqwx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/uar3/?WN68=9m2BuYjy2P5QVnF55yTJRV/9LhiAAt/MT+Kbm8QIT+MHAFzaldcGnNZ3pWSYBbzkonlkIpTVKgvisutZzhPqOw==&Rx=3fqpvFxpqlVpsJr0
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Sep 2022 12:44:27 GMT
Content-Type: image/png
Content-Length: 7136
Last-Modified: Sat, 14 Aug 2021 10:32:08 GMT
Connection: keep-alive
ETag: "61179ba8-1be0"
Expires: Sat, 08 Oct 2022 12:44:27 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
data1.huakuibf1.com/20220214/8E50714C1F61B3CA/8E50714C1F61B3CA.jpg
23.224.241.210200 OK 5.7 kB URL HTTP/1.1 data1.huakuibf1.com/20220214/8E50714C1F61B3CA/8E50714C1F61B3CA.jpg
IP 23.224.241.210:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 807a3aaed9fdbb12eb7eb4650f6aca7c
5cb1de595b70bc9d784367af02c81bb0a898a33f
f9af727a1293581c0b7dfaf9ca0492effc5848d27e6ea55670d1f6d8d528d66d
GET /20220214/8E50714C1F61B3CA/8E50714C1F61B3CA.jpg HTTP/1.1
Host: data1.huakuibf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:09 GMT
Content-Type: image/jpeg
Content-Length: 5737
Last-Modified: Mon, 28 Feb 2022 13:06:06 GMT
Connection: keep-alive
ETag: "621cc8be-1669"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pt1.putaozy.info/20220421/232CACF0F8A92DF6/232CACF0F8A92DF6.jpg
5.180.83.11200 OK 15 kB URL HTTP/1.1 pt1.putaozy.info/20220421/232CACF0F8A92DF6/232CACF0F8A92DF6.jpg
IP 5.180.83.11:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 015eecf67dca69d9dbd5c2ab95542531
cc5684fc638e4bc96931efdef46d2b1b5de8f4b5
2bf0108b2de008e64122de1c8c26c950ff76f9a153ea72a8b696a9e12409a368
GET /20220421/232CACF0F8A92DF6/232CACF0F8A92DF6.jpg HTTP/1.1
Host: pt1.putaozy.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:09 GMT
Content-Type: image/jpeg
Content-Length: 14658
Last-Modified: Wed, 07 Sep 2022 13:13:07 GMT
Connection: keep-alive
ETag: "631898e3-3942"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/upload/vod/2018-12-14/15447745821.jpg
45.89.208.114200 OK 11 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/2018-12-14/15447745821.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 427x320, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 77292ea286066bd08767194b9ff5e2c5
be8c11340f634ca1d03a45d678722295b28d097b
db47ed796bc67275aa06a7fbebf1a770b8e5a4e330cc313962e9d149802fb609
GET /upload/vod/2018-12-14/15447745821.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:09 GMT
Content-Type: image/jpeg
Content-Length: 11045
Last-Modified: Thu, 11 Aug 2022 04:57:52 GMT
Connection: keep-alive
ETag: "62f48c50-2b25"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic.laoyapic.com/upload/vod/20220318-1/bee12f08c753da5c9dcdb0e223e513e3.jpg
104.233.196.234200 OK 8.7 kB URL HTTP/1.1 pic.laoyapic.com/upload/vod/20220318-1/bee12f08c753da5c9dcdb0e223e513e3.jpg
IP 104.233.196.234:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc58.54.100", baseline, precision 8, 320x240, components 3\012- data
Hash 22eb0f989974a1650395455003f04764
85a25c4359ce7e47236d29e557ec8c2af0957a78
f7a2d369c55e472a54f5cfb643c5a938d4f33c74c7e1094a345d24b08705f56f
GET /upload/vod/20220318-1/bee12f08c753da5c9dcdb0e223e513e3.jpg HTTP/1.1
Host: pic.laoyapic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:09 GMT
Content-Type: image/jpeg
Content-Length: 8663
Last-Modified: Sun, 05 Jun 2022 13:57:49 GMT
Connection: keep-alive
ETag: "629cb65d-21d7"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic.laoyapic.com/upload/vod/20220318-1/c7366244d576916d032871903bf3d51b.jpg
104.233.196.234200 OK 11 kB URL HTTP/1.1 pic.laoyapic.com/upload/vod/20220318-1/c7366244d576916d032871903bf3d51b.jpg
IP 104.233.196.234:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc58.54.100", baseline, precision 8, 320x240, components 3\012- data
Hash 52c1e224d64c1148b952821be2d36382
7b3b8eed7f5cbb1ae13579687cbb6005198f30dc
b8d355ea25c30e3b88efd5ec92d90236524dd5fb414184dd815cfd0ffbc5c265
GET /upload/vod/20220318-1/c7366244d576916d032871903bf3d51b.jpg HTTP/1.1
Host: pic.laoyapic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:09 GMT
Content-Type: image/jpeg
Content-Length: 10724
Last-Modified: Sun, 05 Jun 2022 14:03:52 GMT
Connection: keep-alive
ETag: "629cb7c8-29e4"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
data1.huakuibf1.com/20220115/2D1A41FB5176980F/2D1A41FB5176980F.jpg
23.224.241.210200 OK 4.0 kB URL HTTP/1.1 data1.huakuibf1.com/20220115/2D1A41FB5176980F/2D1A41FB5176980F.jpg
IP 23.224.241.210:0
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash 1ffcf86ea684a03ad16f48d32baaf2e9
c575bcff694cd14490467f304a6dabf0ce38b184
db9e78ac54ac749d55e719ffb8326e3e3709031f8cfa133e12ea7135fd916878
GET /20220115/2D1A41FB5176980F/2D1A41FB5176980F.jpg HTTP/1.1
Host: data1.huakuibf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:09 GMT
Content-Type: image/jpeg
Content-Length: 4049
Last-Modified: Mon, 28 Feb 2022 13:08:57 GMT
Connection: keep-alive
ETag: "621cc969-fd1"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
data1.huakuibf1.com/20220130/AA4D2495AFDF4212/AA4D2495AFDF4212.jpg
23.224.241.210200 OK 9.4 kB URL HTTP/1.1 data1.huakuibf1.com/20220130/AA4D2495AFDF4212/AA4D2495AFDF4212.jpg
IP 23.224.241.210:0
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash 0830838898ce39b50291a1d32cb64ffe
c31478ec7143c63d26a7695314b0b4354c94c032
134a7bed3ba39f5fb67c83369713565b8481e2e02059ca46339f37670b14c7a1
GET /20220130/AA4D2495AFDF4212/AA4D2495AFDF4212.jpg HTTP/1.1
Host: data1.huakuibf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:09 GMT
Content-Type: image/jpeg
Content-Length: 9392
Last-Modified: Mon, 28 Feb 2022 13:19:10 GMT
Connection: keep-alive
ETag: "621ccbce-24b0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
data1.huakuibf1.com/20220316/2B17BBF88706F457/2B17BBF88706F457.jpg
23.224.241.210200 OK 12 kB URL HTTP/1.1 data1.huakuibf1.com/20220316/2B17BBF88706F457/2B17BBF88706F457.jpg
IP 23.224.241.210:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 28437f7c341423abb13098fd212e2781
78e690a5a481707062fb29c5496e2714137df41d
25ed333b2f2dccc9a671fa2fe9262c52b7db852a191b2fe749a3891a78bae16c
GET /20220316/2B17BBF88706F457/2B17BBF88706F457.jpg HTTP/1.1
Host: data1.huakuibf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:09 GMT
Content-Type: image/jpeg
Content-Length: 12297
Last-Modified: Sun, 06 Mar 2022 07:53:11 GMT
Connection: keep-alive
ETag: "62246867-3009"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/papa-PIC/avid5878a19e52f36.jpg
45.89.209.74200 OK 42 kB URL HTTP/1.1 sycdn.comtucdncom.com/papa-PIC/avid5878a19e52f36.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.63.103", baseline, precision 8, 1024x576, components 3\012- data
Hash ec3f5c52556bdd650502a71979075f82
4399a103b610fc365dea2492679527331e993461
9fd5733c89756145e82210f2ec4a0173375859757374bd23e98c89bd2ffc4b8c
GET /papa-PIC/avid5878a19e52f36.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:09 GMT
Content-Type: image/jpeg
Content-Length: 41969
Last-Modified: Thu, 11 Aug 2022 12:16:58 GMT
Connection: keep-alive
ETag: "62f4f33a-a3f1"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic.laoyapic.com/upload/vod/20220504-1/fbf11d925333970e6bd516ce52de21f9.jpg
104.233.196.234200 OK 164 kB URL HTTP/1.1 pic.laoyapic.com/upload/vod/20220504-1/fbf11d925333970e6bd516ce52de21f9.jpg
IP 104.233.196.234:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop Elements 18.0 (Windows), datetime=2021:09:24 16:00:07], baseline, precision 8, 960x540, components 3\012- data
Size 164 kB (163518 bytes)
Hash 574dd03745624ae19cf48913e2fbb600
8d8f4f23cda4ec289100cef344d0308e426e77a1
73aee1f5a2dfd43bc5549e3d01ffc56856108ce02a7b639a028c4921802f211b
GET /upload/vod/20220504-1/fbf11d925333970e6bd516ce52de21f9.jpg HTTP/1.1
Host: pic.laoyapic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:09 GMT
Content-Type: image/jpeg
Content-Length: 163518
Last-Modified: Sun, 05 Jun 2022 14:00:54 GMT
Connection: keep-alive
ETag: "629cb716-27ebe"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/upload/vod/20210318-1/27b9f13fffac6373874931f4c88cbc29.jpg
45.89.209.74200 OK 50 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20210318-1/27b9f13fffac6373874931f4c88cbc29.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.18.100", baseline, precision 8, 1104x640, components 3\012- data
Hash 0266902b8a4b72b201864e2b56bbb0eb
e47ce8d90b4d74018cafcf9ddefb9102fe3b72f9
b75a031ad8ed3d1b69d11986f50dc867994dbedd62ec39418f7c45eabacf3657
GET /upload/vod/20210318-1/27b9f13fffac6373874931f4c88cbc29.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:09 GMT
Content-Type: image/jpeg
Content-Length: 49787
Last-Modified: Thu, 11 Aug 2022 12:16:44 GMT
Connection: keep-alive
ETag: "62f4f32c-c27b"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
fmlb.netlbtu.com/images/2021/12/29/heyzo5865.jpg
104.21.235.174200 OK 64 kB URL HTTP/1.1 fmlb.netlbtu.com/images/2021/12/29/heyzo5865.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 820x462, components 3\012- data
Hash 768dc2517c24fb1d0ac0bb24f98ba7b7
c5299a49cd446d911391714d9f67d3b7b5ddaaf6
65770d4c9aab1c30b91af4228eebf0136efc2a0e0e7325e157a45bcf5ac22eb3
GET /images/2021/12/29/heyzo5865.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 12:44:09 GMT
Content-Type: image/jpeg
Content-Length: 63812
Connection: keep-alive
Cf-Bgj: h2pri
ETag: "56e74f9fbfad71:0"
Last-Modified: Mon, 27 Dec 2021 08:30:15 GMT
Cache-Control: max-age=31536000
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wya2CJmpyhT3lxUl5WcaiDQMWbe%2FX%2BZcS3fMy%2FNjzFcd%2BfP%2FLF05wVPhS9CkKnfADw%2Fv%2BC0xJLOvK4WoFpd8G3%2BkExcs0ZMhtqi%2BQWehZIoOabP3Htq7TskoMtFFYSMdjIfZ"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7477c6208a898e26-LHR
alt-svc: h2=":443"; ma=60
sycdn.comtucdncom.com/papaduanpian-img/avid57ad72a21528c.jpg
45.89.209.74200 OK 45 kB URL HTTP/1.1 sycdn.comtucdncom.com/papaduanpian-img/avid57ad72a21528c.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 795x458, components 3\012- data
Hash 229d1908468b7fae5aa2cf73cac3e00f
e23005d4e46fdd183621ad1d682466fcbac719f4
5e80f7dcea60d2e9d015c93ec7c0af32dfbdb2223cb5e3091bf0999013a9b5a5
GET /papaduanpian-img/avid57ad72a21528c.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:09 GMT
Content-Type: image/jpeg
Content-Length: 45152
Last-Modified: Thu, 11 Aug 2022 12:16:40 GMT
Connection: keep-alive
ETag: "62f4f328-b060"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20190606-1/ccdef233a31393b6e550fa352e480cc1.jpg
45.89.209.74200 OK 7.1 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20190606-1/ccdef233a31393b6e550fa352e480cc1.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash 4825bcaa031bf6c8ca83e595cec406e2
1af58fbadea68843cdb35e7f6bb8486c92646d0d
56836788c2bb93fd78ed403256c84ba3883f5fecf3874f5b384da62bad121b3f
GET /upload/vod/20190606-1/ccdef233a31393b6e550fa352e480cc1.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:09 GMT
Content-Type: image/jpeg
Content-Length: 7125
Last-Modified: Thu, 11 Aug 2022 12:15:55 GMT
Connection: keep-alive
ETag: "62f4f2fb-1bd5"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic.laoyapic.com/upload/vod/20220402-1/64e08d1cd1c5e0c31a9df69dfc1aabf7.jpg
104.233.196.234200 OK 8.2 kB URL HTTP/1.1 pic.laoyapic.com/upload/vod/20220402-1/64e08d1cd1c5e0c31a9df69dfc1aabf7.jpg
IP 104.233.196.234:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 304x405, segment length 16, comment: "Lavc58.54.100", baseline, precision 8, 240x320, components 3\012- data
Hash cc06dfb606d893b9ee92f094d4a7bde7
f942e1066e0fb7d7efb61e5566440bebc9118c6c
daa9f4026e45b223caf00a2aa2711ff236838bfb43391b45f196ccc442eced9b
GET /upload/vod/20220402-1/64e08d1cd1c5e0c31a9df69dfc1aabf7.jpg HTTP/1.1
Host: pic.laoyapic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:09 GMT
Content-Type: image/jpeg
Content-Length: 8194
Last-Modified: Sun, 05 Jun 2022 14:04:03 GMT
Connection: keep-alive
ETag: "629cb7d3-2002"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic.laoyapic.com/upload/vod/20220224-2/aa01a81fc25ca87c1e98e668faf745e1.jpg
104.233.196.234200 OK 7.0 kB URL HTTP/1.1 pic.laoyapic.com/upload/vod/20220224-2/aa01a81fc25ca87c1e98e668faf745e1.jpg
IP 104.233.196.234:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 9x8, segment length 16, comment: "Lavc58.54.100", baseline, precision 8, 320x240, components 3\012- data
Hash a1a4ddc4cc62b43d6c464cec998cae71
d2fdabd84b2a9b17b07380bed73933bd6d3c38c8
16560d16979204539575927db6f7938878dac874e8e7c37ef06834564c08df52
GET /upload/vod/20220224-2/aa01a81fc25ca87c1e98e668faf745e1.jpg HTTP/1.1
Host: pic.laoyapic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:09 GMT
Content-Type: image/jpeg
Content-Length: 6979
Last-Modified: Sun, 05 Jun 2022 14:04:58 GMT
Connection: keep-alive
ETag: "629cb80a-1b43"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20190506-1/ebb8183ebaf061f3da65b5cef67f8aec.jpg
45.89.209.74200 OK 8.7 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20190506-1/ebb8183ebaf061f3da65b5cef67f8aec.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 405x898, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 5e6a4c8f846618658e9c76bf40b0f9c0
eee68356611d5c92409b4373bc18e26320924f5c
5376b649195636fea25f50a8c174a55a7ff76f8328bb2ed35309d43fe156c14d
GET /upload/vod/20190506-1/ebb8183ebaf061f3da65b5cef67f8aec.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:09 GMT
Content-Type: image/jpeg
Content-Length: 8693
Last-Modified: Thu, 11 Aug 2022 12:23:08 GMT
Connection: keep-alive
ETag: "62f4f4ac-21f5"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20211116-1/da3e7bca64d33f8a1962d36746f939a5.jpg
45.89.209.74200 OK 8.4 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20211116-1/da3e7bca64d33f8a1962d36746f939a5.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash a922c6ddca1d76b2cf24ad40dccc882b
c7ee36c685e119c5f0e271b4802b34023a53ddb5
6a9c0a528b52b20f51fda587e2e6a3a0f9c02bf1107d9eb1b27de41b29e6fb89
GET /upload/vod/20211116-1/da3e7bca64d33f8a1962d36746f939a5.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:09 GMT
Content-Type: image/jpeg
Content-Length: 8361
Last-Modified: Thu, 11 Aug 2022 12:17:46 GMT
Connection: keep-alive
ETag: "62f4f36a-20a9"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20190716-1/cd8e850dd3dad8f23e8f6701eef4b244.jpg
45.89.209.74200 OK 12 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20190716-1/cd8e850dd3dad8f23e8f6701eef4b244.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 10727x10243, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash d04a9f2cee75ef12f17fba615b0669df
83e59d4880522270b6495f79842bd8a6f95b3a4d
eca0a78d938d67cc732861acadfb7721ceec14b14946266c01c01347d5dd6ff3
GET /upload/vod/20190716-1/cd8e850dd3dad8f23e8f6701eef4b244.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:09 GMT
Content-Type: image/jpeg
Content-Length: 12277
Last-Modified: Thu, 11 Aug 2022 12:20:12 GMT
Connection: keep-alive
ETag: "62f4f3fc-2ff5"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20190628-1/7b8db0d67f07b21bd411fda2cb784749.jpg
45.89.209.74200 OK 7.5 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20190628-1/7b8db0d67f07b21bd411fda2cb784749.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash d17efb9a0fae10007828c732962b1729
611d333b87a1d36a82f33a7b77555d22b11ef159
5e1e5f923ee5ee9ad4881deb96f786f88b4ebaab5f00f6df49f8c9ea3697976c
GET /upload/vod/20190628-1/7b8db0d67f07b21bd411fda2cb784749.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:09 GMT
Content-Type: image/jpeg
Content-Length: 7498
Last-Modified: Thu, 11 Aug 2022 12:14:34 GMT
Connection: keep-alive
ETag: "62f4f2aa-1d4a"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20190514-1/89e32b2779753d50379ab4fe34039159.jpg
45.89.209.74200 OK 9.4 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20190514-1/89e32b2779753d50379ab4fe34039159.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 70e27731eef53a36224d6ed9df4e3f12
23a57bdcaef20ff3d74c560841e20b8a6762d9b9
dc80790f1380d77f66bab1adc82d087eb233e7f88d71f774c74776e939695719
GET /upload/vod/20190514-1/89e32b2779753d50379ab4fe34039159.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:09 GMT
Content-Type: image/jpeg
Content-Length: 9427
Last-Modified: Thu, 11 Aug 2022 12:19:32 GMT
Connection: keep-alive
ETag: "62f4f3d4-24d3"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/upload/vod/2021-02-10/16128926674.jpg
45.89.208.114200 OK 9.5 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/2021-02-10/16128926674.jpg
IP 45.89.208.114:0
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash 0b6db2d6d819c4e58b43f53028c72b7c
f286985d5c7ecf897c20920705ae089e8c6bfc36
ab28b6754c89c9ee0ab6e78abaf46c1f12b51dc3dcc15e3a220e2b2ad35e6168
GET /upload/vod/2021-02-10/16128926674.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:09 GMT
Content-Type: image/jpeg
Content-Length: 9522
Last-Modified: Thu, 11 Aug 2022 04:56:52 GMT
Connection: keep-alive
ETag: "62f48c14-2532"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/upload/vod/2021-01-06/16098625246.jpg
45.89.208.114200 OK 9.5 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/2021-01-06/16098625246.jpg
IP 45.89.208.114:0
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash cc8f9b8dada6d47e4be0bdccf76d8e4a
ac019240aa9f695acfef1ec8c8b2694e50f2f4bf
4593ad741628ce33423af3652131338cfdc54c789fb20c256a2c73178bb8f2e0
GET /upload/vod/2021-01-06/16098625246.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:09 GMT
Content-Type: image/jpeg
Content-Length: 9452
Last-Modified: Thu, 11 Aug 2022 05:00:28 GMT
Connection: keep-alive
ETag: "62f48cec-24ec"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/upload/vod/2019-02-11/15498841248.jpg
45.89.208.114200 OK 4.6 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/2019-02-11/15498841248.jpg
IP 45.89.208.114:0
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash d54f7a79f273c47b6d5a8d2bf986f2ca
e5945698879887875221dffa8ff94c8af91656bc
615489cb33baa7ab2cbcfa289ec97916203d5d436f13470af191f63ee53b06e1
GET /upload/vod/2019-02-11/15498841248.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:09 GMT
Content-Type: image/jpeg
Content-Length: 4625
Last-Modified: Thu, 11 Aug 2022 04:55:58 GMT
Connection: keep-alive
ETag: "62f48bde-1211"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
data1.huakuibf1.com/20220205/842D0B4277743839/842D0B4277743839.jpg
23.224.241.210200 OK 14 kB URL HTTP/1.1 data1.huakuibf1.com/20220205/842D0B4277743839/842D0B4277743839.jpg
IP 23.224.241.210:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 317x240, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash c8f785ea5190b6f640e1562cec9e9d30
f7a42ffcbf16c671fb56ec562cf13e5ce1752f5b
d806af90899d16f0c1751b890a00cbc58086776e564fa5030f98e8cd00b99cab
GET /20220205/842D0B4277743839/842D0B4277743839.jpg HTTP/1.1
Host: data1.huakuibf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:10 GMT
Content-Type: image/jpeg
Content-Length: 14136
Last-Modified: Mon, 28 Feb 2022 13:06:16 GMT
Connection: keep-alive
ETag: "621cc8c8-3738"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
data1.huakuibf1.com/20220213/4408DE054AB395F7/4408DE054AB395F7.jpg
23.224.241.210200 OK 14 kB URL HTTP/1.1 data1.huakuibf1.com/20220213/4408DE054AB395F7/4408DE054AB395F7.jpg
IP 23.224.241.210:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 39ff73716cac6c929f0bf7e14ff60ea4
9a19d25906c79097cc12d0b5e650336dbed0d7fc
07265af3eaf06d3867f40f7d05b233aa69f1f39b4d367554fa98861fab5f3ee4
GET /20220213/4408DE054AB395F7/4408DE054AB395F7.jpg HTTP/1.1
Host: data1.huakuibf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:10 GMT
Content-Type: image/jpeg
Content-Length: 13640
Last-Modified: Mon, 28 Feb 2022 13:15:30 GMT
Connection: keep-alive
ETag: "621ccaf2-3548"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/papa-PIC/avid59253902aa7a4.jpg
45.89.209.74200 OK 16 kB URL HTTP/1.1 sycdn.comtucdncom.com/papa-PIC/avid59253902aa7a4.jpg
IP 45.89.209.74:0
File type JPEG image data, baseline, precision 8, 324x576, components 3\012- data
Hash 0142125a5360ef29c721e8d66003527d
3f7f029c776ab1a647a5307203cd6071c37ff74e
bf5e2ffc776e49b12bf41ee133c2dcf20d84c91154a77aaa639826bd9b1e274b
GET /papa-PIC/avid59253902aa7a4.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:10 GMT
Content-Type: image/jpeg
Content-Length: 16352
Last-Modified: Thu, 11 Aug 2022 12:16:19 GMT
Connection: keep-alive
ETag: "62f4f313-3fe0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/upload/vod/2021-02-17/16134950224.jpg
45.89.208.114200 OK 9.2 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/2021-02-17/16134950224.jpg
IP 45.89.208.114:0
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash fa98e3c3a0d140fad39ef62ffd529043
cf2be274f781cfe8023175387a1c4e895a31746c
59765f1d47db152fa9b50bf490a1a8180cbc537a94f3f30af2befd0cab4da115
GET /upload/vod/2021-02-17/16134950224.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:10 GMT
Content-Type: image/jpeg
Content-Length: 9179
Last-Modified: Thu, 11 Aug 2022 05:06:28 GMT
Connection: keep-alive
ETag: "62f48e54-23db"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic.laoyapic.com/upload/vod/20220512-1/1f48ce7a225fd360b3131fe58ae12ab2.jpg
104.233.196.234200 OK 123 kB URL HTTP/1.1 pic.laoyapic.com/upload/vod/20220512-1/1f48ce7a225fd360b3131fe58ae12ab2.jpg
IP 104.233.196.234:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=540, bps=158, PhotometricIntepretation=RGB, orientation=upper-left, width=960], baseline, precision 8, 800x450, components 3\012- data
Size 123 kB (122875 bytes)
Hash 8c45247cf478d9adcc81c03452d31c98
3d65e976fd40f921481fc554fbae21b2b5974125
feeee1c6de218ddac49a5e36f1c8a1e60257ee9bf298b3da46a65a672500f4f9
GET /upload/vod/20220512-1/1f48ce7a225fd360b3131fe58ae12ab2.jpg HTTP/1.1
Host: pic.laoyapic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:09 GMT
Content-Type: image/jpeg
Content-Length: 122875
Last-Modified: Sun, 05 Jun 2022 13:57:31 GMT
Connection: keep-alive
ETag: "629cb64b-1dffb"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/upload/vod/2019-08-04/156488961113.jpg
45.89.208.114200 OK 10 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/2019-08-04/156488961113.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 427x320, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 2a54238df1847351e1be518c6acb331b
8a7e87843513559079ce330b4eb1b6b1a4230cf2
2cd105f49d773559952d2c2ceb58e317ec4ff407c177b8a496a74187380f8bdf
GET /upload/vod/2019-08-04/156488961113.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:10 GMT
Content-Type: image/jpeg
Content-Length: 10142
Last-Modified: Thu, 11 Aug 2022 04:59:21 GMT
Connection: keep-alive
ETag: "62f48ca9-279e"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20190514-1/f4e100a8003949152cb9f58cded5dd76.jpg
45.89.209.74200 OK 8.9 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20190514-1/f4e100a8003949152cb9f58cded5dd76.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 5f1ffdde7a227bb11e356085c5a683be
d9e897c44cb7c45c882d1a873bc0ecd5f6435403
aaf20ab576ed4e394cd4f996a38a2b21e9d2c0dacce233182cda9d28743e2783
GET /upload/vod/20190514-1/f4e100a8003949152cb9f58cded5dd76.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:10 GMT
Content-Type: image/jpeg
Content-Length: 8855
Last-Modified: Thu, 11 Aug 2022 12:13:44 GMT
Connection: keep-alive
ETag: "62f4f278-2297"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic.laoyapic.com/upload/vod/20220327-1/f148fcdc1088adced2d1a0f68582267f.jpg
104.233.196.234200 OK 7.4 kB URL HTTP/1.1 pic.laoyapic.com/upload/vod/20220327-1/f148fcdc1088adced2d1a0f68582267f.jpg
IP 104.233.196.234:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 3x4, segment length 16, comment: "Lavc58.54.100", baseline, precision 8, 240x320, components 3\012- data
Hash a8922a74308957b6917064ee375d0bd2
f1c88570c75c7085a2efc6a5df1f3917e6bd9127
40bf2607e5430b1e2e7ca6a9ec22a2260d28c68d6bbf8b58b1fcb691421d5003
GET /upload/vod/20220327-1/f148fcdc1088adced2d1a0f68582267f.jpg HTTP/1.1
Host: pic.laoyapic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:10 GMT
Content-Type: image/jpeg
Content-Length: 7449
Last-Modified: Sun, 05 Jun 2022 14:07:30 GMT
Connection: keep-alive
ETag: "629cb8a2-1d19"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/upload/vod/20210829-1/3d2e180fc11e52f4700fa1639a56fe6c.jpg
45.89.208.114200 OK 58 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/20210829-1/3d2e180fc11e52f4700fa1639a56fe6c.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 795x530, components 3\012- data
Hash aef1f98c64dfcc2d9bb838ee14da7435
842561ed309a8fcb884433723bcafeb5579e46f2
9e93785ed04f48968a6bfa354a780a2bda788394e63400c0b902b6a2aba73c7e
GET /upload/vod/20210829-1/3d2e180fc11e52f4700fa1639a56fe6c.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:09 GMT
Content-Type: image/jpeg
Content-Length: 57716
Last-Modified: Thu, 11 Aug 2022 04:58:22 GMT
Connection: keep-alive
ETag: "62f48c6e-e174"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/upload/vod/2021-03-12/16154789031.jpg
45.89.208.114200 OK 6.4 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/2021-03-12/16154789031.jpg
IP 45.89.208.114:0
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash df876520aee37978e8d950a3420b8793
50d1b6dcd4a775903ce7e996aef9e68ce6d339bb
dcb2a0a81548fa9ebd5e3ddb94c60abdc05db58acfcc3ebf9847a3ba9dcc0057
GET /upload/vod/2021-03-12/16154789031.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:10 GMT
Content-Type: image/jpeg
Content-Length: 6372
Last-Modified: Thu, 11 Aug 2022 04:55:39 GMT
Connection: keep-alive
ETag: "62f48bcb-18e4"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pt1.putaozy.info/20220427/EFBCD88E3CBE8970/EFBCD88E3CBE8970.jpg
5.180.83.11200 OK 9.2 kB URL HTTP/1.1 pt1.putaozy.info/20220427/EFBCD88E3CBE8970/EFBCD88E3CBE8970.jpg
IP 5.180.83.11:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 0bc5ce94d2b0bb447c0f6e794dd58eb1
aa552ba2bbcfd462b174c5ea8c84bffc35dbcdd4
ced7ca86a695996b08c1f9d34aa21a5c6c59829977d8146f63258072bc754dc6
GET /20220427/EFBCD88E3CBE8970/EFBCD88E3CBE8970.jpg HTTP/1.1
Host: pt1.putaozy.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:10 GMT
Content-Type: image/jpeg
Content-Length: 9177
Last-Modified: Wed, 07 Sep 2022 13:06:55 GMT
Connection: keep-alive
ETag: "6318976f-23d9"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
push.services.mozilla.com/
35.163.147.190101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.163.147.190:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: J0dY4gfttJG0zMezlpCkDQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: EowXEjEak5wueja/feIfvmLf/cw=
ljcdn.comtucdncom.com/upload/vod/20190627-1/02199ac5169b9a21248f17a4c6b58215.jpg
45.89.209.74200 OK 127 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20190627-1/02199ac5169b9a21248f17a4c6b58215.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x538, components 3\012- data
Size 127 kB (126620 bytes)
Hash 9ada6dc9838966db85d67f2ad5c6fb2a
bbea69f10b1dbeeb4b4c5cb00b84aa938b962513
493dfadf01dccd2f15104fc0d9ad10a43cf7f40bb980eccefe6a137203b08773
GET /upload/vod/20190627-1/02199ac5169b9a21248f17a4c6b58215.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:09 GMT
Content-Type: image/jpeg
Content-Length: 126620
Last-Modified: Thu, 11 Aug 2022 12:16:29 GMT
Connection: keep-alive
ETag: "62f4f31d-1ee9c"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/upload/vod/2021-03-08/16151350311.jpg
45.89.208.114200 OK 8.3 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/2021-03-08/16151350311.jpg
IP 45.89.208.114:0
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash f119c700c984d2b87ddd5069b8b26f42
7e3df6b02255dbedc0aa85e1fb02efc8b74acbfc
73167ff8212cd201f5d50ae2360d513c0758dd7d91de60042136fd0ac316426f
GET /upload/vod/2021-03-08/16151350311.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:10 GMT
Content-Type: image/jpeg
Content-Length: 8279
Last-Modified: Thu, 11 Aug 2022 04:59:38 GMT
Connection: keep-alive
ETag: "62f48cba-2057"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic.laoyapic.com/upload/vod/20220508-1/a11c175565f32515f078c4841d58ed2c.jpg
104.233.196.234200 OK 122 kB URL HTTP/1.1 pic.laoyapic.com/upload/vod/20220508-1/a11c175565f32515f078c4841d58ed2c.jpg
IP 104.233.196.234:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=450, bps=158, PhotometricIntepretation=RGB, orientation=upper-left, width=800], baseline, precision 8, 800x450, components 3\012- data
Size 122 kB (121796 bytes)
Hash 11c2c4b4bf82906f443fb5637a3904e8
fbcb6e48369341499af7454d3ad37cc466ceb11a
64b775c67ec13f6350dcb3e9fc98b1f4ec4f87858d3151165bb6fb1c692971d4
GET /upload/vod/20220508-1/a11c175565f32515f078c4841d58ed2c.jpg HTTP/1.1
Host: pic.laoyapic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:10 GMT
Content-Type: image/jpeg
Content-Length: 121796
Last-Modified: Sun, 05 Jun 2022 14:05:33 GMT
Connection: keep-alive
ETag: "629cb82d-1dbc4"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/uptu/20220516/A9T9P3MC/1.jpg
45.89.208.114200 OK 6.6 kB URL HTTP/1.1 ddcdn.comtucdncom.com/uptu/20220516/A9T9P3MC/1.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 2ecda7e5d44592dc5e006331063efcf1
7e7a400001a47050f3a331646b54e909bff20404
f64ac094c526ff35f8ad518aa3232f3ef526b6dbf6b0036dff47ba4a859c05f3
GET /uptu/20220516/A9T9P3MC/1.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:10 GMT
Content-Type: image/jpeg
Content-Length: 6641
Last-Modified: Thu, 11 Aug 2022 04:54:45 GMT
Connection: keep-alive
ETag: "62f48b95-19f1"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/upload/vod/20210525-1/e92d4ac06cb7ce37c359cca31f5ed59d.jpg
45.89.209.74200 OK 29 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20210525-1/e92d4ac06cb7ce37c359cca31f5ed59d.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.75.100", baseline, precision 8, 636x364, components 3\012- data
Hash e62330f04f4eef73c7ee07f20a88c1db
4b97eaf52ce2faf8ea9147de8e096b21feca7bf8
8eb266c00fd0e3acec52d25513fb2459ad17443d228fb9a5c37fb2c5c24e527d
GET /upload/vod/20210525-1/e92d4ac06cb7ce37c359cca31f5ed59d.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:10 GMT
Content-Type: image/jpeg
Content-Length: 29246
Last-Modified: Thu, 11 Aug 2022 12:16:39 GMT
Connection: keep-alive
ETag: "62f4f327-723e"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
js.users.51.la/21195469.js
103.143.19.103200 OK 2.3 kB URL HTTP/1.1 js.users.51.la/21195469.js
IP 103.143.19.103:0
ASN #4837 CHINA UNICOM China169 Backbone
File type ASCII text, with very long lines (4898)
Hash 01135f7581d2bda5f970ac0c014b2b91
66b03a4cf76894f15ffb487f691f91ebdb38c366
628ff431dada10358a2442a100271b13c8d8ae646b3824f30b847e1c3ba9984e
Analyzer Verdict Alert fortinet Malware
GET /21195469.js HTTP/1.1
Host: js.users.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: CloudWAF
Date: Thu, 08 Sep 2022 12:44:10 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: HWWAFSESID=0b0e44cc84e2d3c6946; path=/
HWWAFSESTIME=1662641047458; path=/
Cache-Control: max-age=360000
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
ddcdn.comtucdncom.com/upload/vod/2019-10-05/15702377638.jpg
45.89.208.114200 OK 9.4 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/2019-10-05/15702377638.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 69x68, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 23029fbb4a5fa2bcfa304ae948b121ed
6b678a58068a92ce4f9778faa408a2eb42886e77
576914e4508f0077b08b00e353c9178162ba9c327ce87b67926bb02b6ac70a1f
GET /upload/vod/2019-10-05/15702377638.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:10 GMT
Content-Type: image/jpeg
Content-Length: 9365
Last-Modified: Thu, 11 Aug 2022 04:54:41 GMT
Connection: keep-alive
ETag: "62f48b91-2495"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/upload/vod/20211015-1/730cb933e3db04f48ad437f632e49dbf.jpg
45.89.208.114200 OK 116 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/20211015-1/730cb933e3db04f48ad437f632e49dbf.jpg
IP 45.89.208.114:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 800x539, components 3\012- data
Size 116 kB (115524 bytes)
Hash 1abdb09ee8b030edfd286d89c99221d0
40c73f24541df959602cda0ba49925a3d1dc01d3
487305ac3b929612364c8ff11e2a2d74df3b7a9503b6953897ac67c3e0adcac6
GET /upload/vod/20211015-1/730cb933e3db04f48ad437f632e49dbf.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:10 GMT
Content-Type: image/jpeg
Content-Length: 115524
Last-Modified: Thu, 11 Aug 2022 05:01:57 GMT
Connection: keep-alive
ETag: "62f48d45-1c344"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/upload/vod/2018-12-14/15447676839.jpg
45.89.208.114200 OK 7.7 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/2018-12-14/15447676839.jpg
IP 45.89.208.114:0
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash c9aeba090577a0ec3505fe1a1a8ec083
a1960eca130fa62f75b9ea6d2294faf66fe6d5d5
a69b7b70be410c7bc3cf77901f4b31663568b70accbcb264e3c274228ef155f8
GET /upload/vod/2018-12-14/15447676839.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:10 GMT
Content-Type: image/jpeg
Content-Length: 7687
Last-Modified: Thu, 11 Aug 2022 04:56:51 GMT
Connection: keep-alive
ETag: "62f48c13-1e07"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/upload/vod/2019-02-02/15490899422.jpg
45.89.208.114200 OK 8.7 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/2019-02-02/15490899422.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 45x46, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 4c24d25b654a2e6f85e65a5676dc15fc
409490972a3a8972bf9455c414a05d4425625d34
4871ba9cdfd86a6b4141027991e829c6f610602eadc01441b42cf1a922e85d35
GET /upload/vod/2019-02-02/15490899422.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:10 GMT
Content-Type: image/jpeg
Content-Length: 8729
Last-Modified: Thu, 11 Aug 2022 04:55:48 GMT
Connection: keep-alive
ETag: "62f48bd4-2219"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/upload/vod/20200703-1/029728be03b4549761274acc81b03bc8.jpg
45.89.209.74200 OK 71 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20200703-1/029728be03b4549761274acc81b03bc8.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 310x208, components 3\012- data
Hash 4671f6ff8bdf8fe9e89a0c4d11f1dadb
3af450343f0ec1c0b621e85e585563046a77acdf
d1d578b8b38b3e77232d30c1bdb7b727c802308fa75b1fa4fa5d539cf7ee9916
GET /upload/vod/20200703-1/029728be03b4549761274acc81b03bc8.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:10 GMT
Content-Type: image/jpeg
Content-Length: 71010
Last-Modified: Thu, 11 Aug 2022 12:19:12 GMT
Connection: keep-alive
ETag: "62f4f3c0-11562"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
www.chinadqwx.com/static9/js/sss.js
173.231.37.114200 OK 966 B URL HTTP/1.1 www.chinadqwx.com/static9/js/sss.js
IP 173.231.37.114:0
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 9997155da9fbdcf74aa0922970b4e3e2
76f0eb7cf045020200d5f999d5d5483b70c0ca3a
af6efba8e30bbf52c434daaf495d6a0c76c0134592b4121c75be8e5f02e04f38
Analyzer Verdict Alert quad9 Sinkholed
GET /static9/js/sss.js HTTP/1.1
Host: www.chinadqwx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/uar3/?WN68=9m2BuYjy2P5QVnF55yTJRV/9LhiAAt/MT+Kbm8QIT+MHAFzaldcGnNZ3pWSYBbzkonlkIpTVKgvisutZzhPqOw==&Rx=3fqpvFxpqlVpsJr0
Cookie: __tins__21195469=%7B%22sid%22%3A%201662641042989%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201662642842989%7D; __51cke__=; __51laig__=1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Sep 2022 12:44:28 GMT
Content-Type: application/javascript
Content-Length: 966
Last-Modified: Fri, 29 Jul 2022 08:18:19 GMT
Connection: keep-alive
ETag: "62e397cb-3c6"
Expires: Fri, 09 Sep 2022 00:44:28 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes
sycdn.comtucdncom.com/upload/vod/20210923-1/2e8595786fe6eb122a5ee3fc688ab6bb.jpg
45.89.209.74200 OK 500 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20210923-1/2e8595786fe6eb122a5ee3fc688ab6bb.jpg
IP 45.89.209.74:0
File type PNG image data, 800 x 539, 8-bit/color RGBA, non-interlaced\012- data
Size 500 kB (499647 bytes)
Hash 91493e2d1c6130f9dc81c75c74f060df
95b5c44eed54a49020cd8bccbffffade2586b87e
76a9bddbf374e4621c543d0aa4ebc9a1eb16035e1107adfae07147fbf15ed457
GET /upload/vod/20210923-1/2e8595786fe6eb122a5ee3fc688ab6bb.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:10 GMT
Content-Type: image/jpeg
Content-Length: 499647
Last-Modified: Thu, 11 Aug 2022 12:16:21 GMT
Connection: keep-alive
ETag: "62f4f315-79fbf"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/pic/20200213bentu-gc/hsj1Jfmh.jpg
45.89.209.74200 OK 7.1 kB URL HTTP/1.1 sycdn.comtucdncom.com/pic/20200213bentu-gc/hsj1Jfmh.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash c0b93e2c1942dda1df002541ca3aa79f
4f5e26b1c3384fbae47b08ca98c28c2ab741212a
2afacd8be0a879f150cb4588ecd09c44bee8246a663c07c066f631c63a7c4ea6
GET /pic/20200213bentu-gc/hsj1Jfmh.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:10 GMT
Content-Type: image/jpeg
Content-Length: 7100
Last-Modified: Thu, 11 Aug 2022 12:45:46 GMT
Connection: keep-alive
ETag: "62f4f9fa-1bbc"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/upload/vod/20210909-1/eb11b0dad02220bf8e07d1b6da9bd7e3.jpg
45.89.208.114200 OK 165 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/20210909-1/eb11b0dad02220bf8e07d1b6da9bd7e3.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 752x423, components 3\012- data
Size 165 kB (165173 bytes)
Hash 338388be85ef5e59fd9d2165e3dfb46e
59cc7e947b6138cc7e75aecf0d4f1ca1c3199325
aa9e10b807c395fb303667715929f22485563e78fe1d2b721b1eed25604340be
GET /upload/vod/20210909-1/eb11b0dad02220bf8e07d1b6da9bd7e3.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:10 GMT
Content-Type: image/jpeg
Content-Length: 165173
Last-Modified: Thu, 11 Aug 2022 05:02:47 GMT
Connection: keep-alive
ETag: "62f48d77-28535"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/upload/vod/2018-12-12/15446286561.jpg
45.89.208.114200 OK 8.4 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/2018-12-12/15446286561.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 135x101, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 7c6f1e69112aae31394ccf2d6c0f0d4d
cbe489ecf14b4ebd05784d116bc800a946c1f9e1
8c3dd161302b495e7e680f94b9adcc58d7fce79f7986d62e1de1a8c88bd19ae0
GET /upload/vod/2018-12-12/15446286561.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:10 GMT
Content-Type: image/jpeg
Content-Length: 8363
Last-Modified: Thu, 11 Aug 2022 05:07:57 GMT
Connection: keep-alive
ETag: "62f48ead-20ab"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
www.chinadqwx.com/static9/js/dhs.js
173.231.37.114200 OK 551 B URL HTTP/1.1 www.chinadqwx.com/static9/js/dhs.js
IP 173.231.37.114:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 29e1c82da887b7f2987bea3685bde9b2
f3d4587d57b38f65e50e82d78e3ebcf486adc303
23598f2205a2f97b5694cfb5bbf3ec6faf38c46da9c89f681e1d63e0d61cdbf1
Analyzer Verdict Alert quad9 Sinkholed
GET /static9/js/dhs.js HTTP/1.1
Host: www.chinadqwx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/uar3/?WN68=9m2BuYjy2P5QVnF55yTJRV/9LhiAAt/MT+Kbm8QIT+MHAFzaldcGnNZ3pWSYBbzkonlkIpTVKgvisutZzhPqOw==&Rx=3fqpvFxpqlVpsJr0
Cookie: __tins__21195469=%7B%22sid%22%3A%201662641042989%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201662642842989%7D; __51cke__=; __51laig__=1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Sep 2022 12:44:28 GMT
Content-Type: application/javascript
Last-Modified: Fri, 29 Jul 2022 08:20:37 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62e39855-18a6"
Expires: Fri, 09 Sep 2022 00:44:28 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
ddcdn.comtucdncom.com/upload/vod/2018-12-12/154462872110.jpg
45.89.208.114200 OK 11 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/2018-12-12/154462872110.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 237x178, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 616e22e8927f5968807693287a9d69fa
32dd4968808c6fc03b019ae65b02c337b8170168
4e051c027aa65533c5b32fd405bc18ada88474a6b84f588444aeb7d54c2f734b
GET /upload/vod/2018-12-12/154462872110.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:10 GMT
Content-Type: image/jpeg
Content-Length: 10847
Last-Modified: Thu, 11 Aug 2022 05:09:09 GMT
Connection: keep-alive
ETag: "62f48ef5-2a5f"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/upload/vod/2020-02-13/15815589121.jpg
45.89.208.114200 OK 8.0 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/2020-02-13/15815589121.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash b2af4dc9806e19d071237726b2c28fc5
8f1b874ff58fbc4075f1d3be9a34a9957d39c3ab
09ab39f11f89ba66b9d4db8b6239e9386a22d8eae73ba9dde52f5acb06cf459b
GET /upload/vod/2020-02-13/15815589121.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:10 GMT
Content-Type: image/jpeg
Content-Length: 7967
Last-Modified: Thu, 11 Aug 2022 05:01:16 GMT
Connection: keep-alive
ETag: "62f48d1c-1f1f"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/upload/vod/20201126-1/67557cc696504eeb3ce7b99ea78191e1.jpg
45.89.209.74200 OK 107 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20201126-1/67557cc696504eeb3ce7b99ea78191e1.jpg
IP 45.89.209.74:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 800x539, components 3\012- data
Size 107 kB (107054 bytes)
Hash 7bb21ec8e51faa792e04edb6bba3a21d
42b7864c2f0bd1741e36aa2ce945cdfeb477be02
3df99a841facfbbe57615ee05f0011b34bfa9955341e39a1681b5b7d35324396
GET /upload/vod/20201126-1/67557cc696504eeb3ce7b99ea78191e1.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:10 GMT
Content-Type: image/jpeg
Content-Length: 107054
Last-Modified: Thu, 11 Aug 2022 12:16:43 GMT
Connection: keep-alive
ETag: "62f4f32b-1a22e"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ece86515fa98334ce364e851735e20a1
f76fab90360bd0620469c6af0ac2b678a2b6bf94
9d6383b540c6d241f169bd20de089916e89ca3c51351e501ed1cedfb388bee6b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9D6383B540C6D241F169BD20DE089916E89CA3C51351E501ED1CEDFB388BEE6B"
Last-Modified: Wed, 07 Sep 2022 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8613
Expires: Thu, 08 Sep 2022 15:07:44 GMT
Date: Thu, 08 Sep 2022 12:44:11 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 042105f89c8d64b470d84e052cd412d1
a26c7e2559b3760ea2765b16a3f8d1be27f5dcf4
fadb8cdd22f4d7773d5c20d576f6400ab25e20e1efe3e3fe50d2ae39ca6f2725
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6503
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 12:44:11 GMT
Last-Modified: Thu, 08 Sep 2022 10:55:48 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
www.chinadqwx.com/cssadmin/tuiguang.js
173.231.37.114200 OK 685 B URL HTTP/1.1 www.chinadqwx.com/cssadmin/tuiguang.js
IP 173.231.37.114:0
File type ASCII text, with CRLF line terminators
Hash 97027325447cfd921a0b70e4d9fc4e35
3b09679a54414b4c2221b41f9180296d8d860094
5fa63d6d7b11650dc2bfbfe922521c707b18ea017bc13a4bfa47ca9b782bd8f3
Analyzer Verdict Alert quad9 Sinkholed
GET /cssadmin/tuiguang.js HTTP/1.1
Host: www.chinadqwx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/uar3/?WN68=9m2BuYjy2P5QVnF55yTJRV/9LhiAAt/MT+Kbm8QIT+MHAFzaldcGnNZ3pWSYBbzkonlkIpTVKgvisutZzhPqOw==&Rx=3fqpvFxpqlVpsJr0
Cookie: __tins__21195469=%7B%22sid%22%3A%201662641042989%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201662642842989%7D; __51cke__=; __51laig__=1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Sep 2022 12:44:28 GMT
Content-Type: application/javascript
Content-Length: 685
Last-Modified: Wed, 08 Jun 2022 09:51:31 GMT
Connection: keep-alive
ETag: "62a07123-2ad"
Expires: Fri, 09 Sep 2022 00:44:28 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes
ocsp.trust-provider.cn/
47.246.44.205200 OK 599 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 9b596444c530190ec7d5f459f3ff8843
065f6b5ac297d6c9523c812e7d72c9e7f424bd7c
99bb95fc152a80c0ecfaf5de9a1e2da1fc238ef5827049c01d43693c6d1712df
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Thu, 08 Sep 2022 12:36:08 GMT
last-modified: Mon, 05 Sep 2022 13:02:28 GMT
expires: Mon, 12 Sep 2022 13:02:27 GMT
etag: "065f6b5ac297d6c9523c812e7d72c9e7f424bd7c"
cache-control: max-age=602646,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb3
x-frame-options: SAMEORIGIN
cf-cache-status: REVALIDATED
cf-ray: 7477ba607f435c80-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1662640568
via: cache20.l2de2[31,30,304-0,M], cache4.l2de2[32,0], cache4.se1[0,0,200-0,H], cache1.se1[0,0], cache3.se1[3,0]
age: 483
x-cache: HIT TCP_MEM_HIT dirn:4:76727077
x-swift-savetime: Thu, 08 Sep 2022 12:36:08 GMT
x-swift-cachetime: 1800
timing-allow-origin: *, *
eagleid: 2ff62c9716626410510656221e, 2ff62c9716626410510656221e
ocsp.trust-provider.cn/
47.246.44.205200 OK 599 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 9b596444c530190ec7d5f459f3ff8843
065f6b5ac297d6c9523c812e7d72c9e7f424bd7c
99bb95fc152a80c0ecfaf5de9a1e2da1fc238ef5827049c01d43693c6d1712df
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Thu, 08 Sep 2022 12:36:08 GMT
last-modified: Mon, 05 Sep 2022 13:02:28 GMT
expires: Mon, 12 Sep 2022 13:02:27 GMT
etag: "065f6b5ac297d6c9523c812e7d72c9e7f424bd7c"
cache-control: max-age=602646,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb3
x-frame-options: SAMEORIGIN
cf-cache-status: REVALIDATED
cf-ray: 7477ba607f435c80-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1662640568
via: cache20.l2de2[31,30,304-0,M], cache4.l2de2[32,0], cache4.se1[0,0,200-0,H], cache1.se1[1,0], cache3.se1[2,0]
age: 483
x-cache: HIT TCP_MEM_HIT dirn:4:76727077
x-swift-savetime: Thu, 08 Sep 2022 12:36:08 GMT
x-swift-cachetime: 1800
timing-allow-origin: *, *
eagleid: 2ff62c9716626410510766226e, 2ff62c9716626410510766226e
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.21.226:0
Hash 205952f18de8b18b298fe97f90537e5c
19241d57d5a107d521d923fae745270d73179905
dd4b0fd70776c2e783e4a90636488a5b44d062f6a2f2248c14df0ffa2456e434
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 12:44:11 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Mon, 12 Sep 2022 10:39:33 GMT
ETag: "19241d57d5a107d521d923fae745270d73179905"
Last-Modified: Thu, 08 Sep 2022 10:39:34 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1143
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7477c6297aa40b39-OSL
sycdn.comtucdncom.com/upload/vod/20201107-1/4efcfa74d697be50ce622fa67a314b50.jpg
45.89.209.74200 OK 55 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20201107-1/4efcfa74d697be50ce622fa67a314b50.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 980x550, components 3\012- data
Hash 8ec0811a15372f2bb7c308eefeb91a34
159490cf35da5d3f2bd61e4384e24f7b8209bf13
5464eff0a56a06cd861655cb69b6de20d4dae3eb001859401d61b8960a062676
GET /upload/vod/20201107-1/4efcfa74d697be50ce622fa67a314b50.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:10 GMT
Content-Type: image/jpeg
Content-Length: 54930
Last-Modified: Thu, 11 Aug 2022 12:18:12 GMT
Connection: keep-alive
ETag: "62f4f384-d692"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/upload/vod/20210726-1/e768419f7822d631d8a7820f6d8e1044.jpg
45.89.209.74200 OK 598 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20210726-1/e768419f7822d631d8a7820f6d8e1044.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x1920, components 3\012- data
Size 598 kB (597609 bytes)
Hash c556cc26fbe119f828f28b6652980165
514acb557b48c19ee1f008d8ad5d46707d774f20
5051d5ff9aab96868d76518e991844d8639f09f3355963a49e0e7532273ed074
GET /upload/vod/20210726-1/e768419f7822d631d8a7820f6d8e1044.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:10 GMT
Content-Type: image/jpeg
Content-Length: 597609
Last-Modified: Thu, 11 Aug 2022 12:16:22 GMT
Connection: keep-alive
ETag: "62f4f316-91e69"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ocsp.trust-provider.cn/
47.246.44.205200 OK 599 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 9b596444c530190ec7d5f459f3ff8843
065f6b5ac297d6c9523c812e7d72c9e7f424bd7c
99bb95fc152a80c0ecfaf5de9a1e2da1fc238ef5827049c01d43693c6d1712df
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Thu, 08 Sep 2022 12:36:08 GMT
last-modified: Mon, 05 Sep 2022 13:02:28 GMT
expires: Mon, 12 Sep 2022 13:02:27 GMT
etag: "065f6b5ac297d6c9523c812e7d72c9e7f424bd7c"
cache-control: max-age=602646,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb3
x-frame-options: SAMEORIGIN
cf-cache-status: REVALIDATED
cf-ray: 7477ba607f435c80-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1662640568
via: cache20.l2de2[31,30,304-0,M], cache4.l2de2[32,0], cache4.se1[0,0,200-0,H], cache1.se1[1,0], cache3.se1[2,0]
age: 483
x-cache: HIT TCP_MEM_HIT dirn:4:76727077
x-swift-savetime: Thu, 08 Sep 2022 12:36:08 GMT
x-swift-cachetime: 1800
timing-allow-origin: *, *
eagleid: 2ff62c9716626410511346255e, 2ff62c9716626410511346255e
statuse.digitalcertvalidation.com/
93.184.220.29200 OK 471 B URL HTTP/1.1 statuse.digitalcertvalidation.com/
IP 93.184.220.29:0
Hash 4922a086c7e9e819692fc584421bc301
b8912eb9b87edca2e8fc95729ad3f9916632fb7f
25d621c0754564900ad276d5409a9e992de0d20c8b3c8653d926500cc845d609
POST / HTTP/1.1
Host: statuse.digitalcertvalidation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3797
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 12:44:11 GMT
Last-Modified: Thu, 08 Sep 2022 11:40:55 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
statuse.digitalcertvalidation.com/
93.184.220.29200 OK 471 B URL HTTP/1.1 statuse.digitalcertvalidation.com/
IP 93.184.220.29:0
Hash 4922a086c7e9e819692fc584421bc301
b8912eb9b87edca2e8fc95729ad3f9916632fb7f
25d621c0754564900ad276d5409a9e992de0d20c8b3c8653d926500cc845d609
POST / HTTP/1.1
Host: statuse.digitalcertvalidation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3797
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 12:44:11 GMT
Last-Modified: Thu, 08 Sep 2022 11:40:55 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
statuse.digitalcertvalidation.com/
93.184.220.29200 OK 471 B URL HTTP/1.1 statuse.digitalcertvalidation.com/
IP 93.184.220.29:0
Hash 4922a086c7e9e819692fc584421bc301
b8912eb9b87edca2e8fc95729ad3f9916632fb7f
25d621c0754564900ad276d5409a9e992de0d20c8b3c8653d926500cc845d609
POST / HTTP/1.1
Host: statuse.digitalcertvalidation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3797
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 12:44:11 GMT
Last-Modified: Thu, 08 Sep 2022 11:40:55 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
sycdn.comtucdncom.com/18SEAV-PIC/40920.jpg
45.89.209.74200 OK 22 kB URL HTTP/1.1 sycdn.comtucdncom.com/18SEAV-PIC/40920.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 400x224, components 3\012- data
Hash ca7640ae54e78506500a21dfeb8441a6
42ca905ef87549842657a0c22bfe29840fc9e300
ddcabc70e1566b7b6c2ff5a72b05bc8a02eadae09ec26ccc1850b541c90a9252
GET /18SEAV-PIC/40920.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:11 GMT
Content-Type: image/jpeg
Content-Length: 22406
Last-Modified: Thu, 11 Aug 2022 12:32:45 GMT
Connection: keep-alive
ETag: "62f4f6ed-5786"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
statuse.digitalcertvalidation.com/
93.184.220.29200 OK 471 B URL HTTP/1.1 statuse.digitalcertvalidation.com/
IP 93.184.220.29:0
Hash 4922a086c7e9e819692fc584421bc301
b8912eb9b87edca2e8fc95729ad3f9916632fb7f
25d621c0754564900ad276d5409a9e992de0d20c8b3c8653d926500cc845d609
POST / HTTP/1.1
Host: statuse.digitalcertvalidation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3797
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 12:44:11 GMT
Last-Modified: Thu, 08 Sep 2022 11:40:55 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
www.chinadqwx.com/static9/js/dhx.js
173.231.37.114200 OK 520 B URL HTTP/1.1 www.chinadqwx.com/static9/js/dhx.js
IP 173.231.37.114:0
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash cce9201b83bbcdff67773b849706c7fd
d7d375e578fd6b2908afe99dfb94f3fcc802a925
8eb4ba79223df51bdbff5d7af15a870e1e22eb7060296d23c6674fdf1df511bd
Analyzer Verdict Alert quad9 Sinkholed
GET /static9/js/dhx.js HTTP/1.1
Host: www.chinadqwx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/uar3/?WN68=9m2BuYjy2P5QVnF55yTJRV/9LhiAAt/MT+Kbm8QIT+MHAFzaldcGnNZ3pWSYBbzkonlkIpTVKgvisutZzhPqOw==&Rx=3fqpvFxpqlVpsJr0
Cookie: __tins__21195469=%7B%22sid%22%3A%201662641042989%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201662642842989%7D; __51cke__=; __51laig__=1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Sep 2022 12:44:28 GMT
Content-Type: application/javascript
Last-Modified: Thu, 11 Aug 2022 14:15:26 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62f50efe-afd"
Expires: Fri, 09 Sep 2022 00:44:28 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
sycdn.comtucdncom.com/papa-PIC/avid5be0fc0c82e1b.jpg
45.89.209.74200 OK 46 kB URL HTTP/1.1 sycdn.comtucdncom.com/papa-PIC/avid5be0fc0c82e1b.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 795x458, components 3\012- data
Hash 7748cf104a73f4266a0dbf90a8a92faa
3d85a94d1d100f7c79c8f410cc75b057322a5234
bc96fc5ed4a59ceb449086e6610c22ca821a70e60d326ebb2c6cb7580a79c717
GET /papa-PIC/avid5be0fc0c82e1b.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:10 GMT
Content-Type: image/jpeg
Content-Length: 46077
Last-Modified: Thu, 11 Aug 2022 12:16:23 GMT
Connection: keep-alive
ETag: "62f4f317-b3fd"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pt1.putaozy.info/20220320/0C1CCBB83C1EBD53/0C1CCBB83C1EBD53.jpg
5.180.83.11200 OK 4.1 kB URL HTTP/1.1 pt1.putaozy.info/20220320/0C1CCBB83C1EBD53/0C1CCBB83C1EBD53.jpg
IP 5.180.83.11:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 7eeda5541ca91cc5a21bb91a9c880d0a
a9bd18efea3be3360282d701f167d25ed0de107b
4584e31485c599e3d2a962c5d4864216b6ecc7ab6ee7bc03b3c11c9bacf4b234
GET /20220320/0C1CCBB83C1EBD53/0C1CCBB83C1EBD53.jpg HTTP/1.1
Host: pt1.putaozy.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:11 GMT
Content-Type: image/jpeg
Content-Length: 4060
Last-Modified: Wed, 07 Sep 2022 13:09:23 GMT
Connection: keep-alive
ETag: "63189803-fdc"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pt1.putaozy.info/20220309/3DDEB648A095DF10/3DDEB648A095DF10.jpg
5.180.83.11200 OK 12 kB URL HTTP/1.1 pt1.putaozy.info/20220309/3DDEB648A095DF10/3DDEB648A095DF10.jpg
IP 5.180.83.11:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash b9c1d791d7f2aa53c48ce958a6402152
73146d7520269fe8046ad1939dc464f3e24e6a52
e597487dbeeb9514ac3a5be48db6aaeefab4e44d76272eb8bb6d48e85c759926
GET /20220309/3DDEB648A095DF10/3DDEB648A095DF10.jpg HTTP/1.1
Host: pt1.putaozy.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:11 GMT
Content-Type: image/jpeg
Content-Length: 12513
Last-Modified: Wed, 07 Sep 2022 13:03:19 GMT
Connection: keep-alive
ETag: "63189697-30e1"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pt1.putaozy.info/20220305/A2447FD05D9AF913/A2447FD05D9AF913.jpg
5.180.83.11200 OK 8.4 kB URL HTTP/1.1 pt1.putaozy.info/20220305/A2447FD05D9AF913/A2447FD05D9AF913.jpg
IP 5.180.83.11:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 78d08c7f138c2fc12b8b04f1958e88f8
0aa9332daa2d982ec881194ddedd523ceb90c8ae
130a241c7db25348e0fdabfe8df61cee93646d2628a232c5dcbbd86385e10929
GET /20220305/A2447FD05D9AF913/A2447FD05D9AF913.jpg HTTP/1.1
Host: pt1.putaozy.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:11 GMT
Content-Type: image/jpeg
Content-Length: 8429
Last-Modified: Wed, 07 Sep 2022 13:05:45 GMT
Connection: keep-alive
ETag: "63189729-20ed"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/uptu/20220514/P9TDiID8/1.jpg
45.89.209.74200 OK 7.0 kB URL HTTP/1.1 sycdn.comtucdncom.com/uptu/20220514/P9TDiID8/1.jpg
IP 45.89.209.74:0
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash 63dc918b13210fd516c6e06b6c19a730
bde7acf8e26eb4b34b9870bcacf95d66cf3b9996
0f077ee6b3674a872bd67ca54cddca2324bf06428199ad993a14cb56371c04db
GET /uptu/20220514/P9TDiID8/1.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:11 GMT
Content-Type: image/jpeg
Content-Length: 7023
Last-Modified: Thu, 11 Aug 2022 12:15:24 GMT
Connection: keep-alive
ETag: "62f4f2dc-1b6f"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 381f03e837e17e47e729e4debe1b2b0d
e6f5bacfe185feda02fab402f39558fcd7f9945a
3eb4d8a8ba39ffc272e375286082b9ab30bd3b9bb9e044b5d88ebd32e0523fc8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3EB4D8A8BA39FFC272E375286082B9AB30BD3B9BB9E044B5D88EBD32E0523FC8"
Last-Modified: Thu, 08 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12037
Expires: Thu, 08 Sep 2022 16:04:48 GMT
Date: Thu, 08 Sep 2022 12:44:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 381f03e837e17e47e729e4debe1b2b0d
e6f5bacfe185feda02fab402f39558fcd7f9945a
3eb4d8a8ba39ffc272e375286082b9ab30bd3b9bb9e044b5d88ebd32e0523fc8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3EB4D8A8BA39FFC272E375286082B9AB30BD3B9BB9E044B5D88EBD32E0523FC8"
Last-Modified: Thu, 08 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12037
Expires: Thu, 08 Sep 2022 16:04:48 GMT
Date: Thu, 08 Sep 2022 12:44:11 GMT
Connection: keep-alive
sycdn.comtucdncom.com/papa-PIC/avid5c329094c1ba6.jpg
45.89.209.74200 OK 43 kB URL HTTP/1.1 sycdn.comtucdncom.com/papa-PIC/avid5c329094c1ba6.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 795x458, components 3\012- data
Hash 79ac4783b86c4f864876fb654187701a
e34524aee86f448b6c9bb3bde3ac561ca6839bb4
b04782c0a521690a7925b0831605929ffff601042f1b36d5d7c52d0aa1a93f36
GET /papa-PIC/avid5c329094c1ba6.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:11 GMT
Content-Type: image/jpeg
Content-Length: 42736
Last-Modified: Thu, 11 Aug 2022 12:16:21 GMT
Connection: keep-alive
ETag: "62f4f315-a6f0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.tpttzy.com/upload/vod/20210918-1/5357817f29278bf9c121b567c173057b.jpg
23.224.136.186200 OK 8.1 kB URL HTTP/1.1 img.tpttzy.com/upload/vod/20210918-1/5357817f29278bf9c121b567c173057b.jpg
IP 23.224.136.186:0
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash 11f71278ba5e67665788f5133274ef59
1f18ea3cd3b30099b1fbb82180867705ca4e2ac0
7f3c9b578b8eef0a5d5940557b7fd5c0ca266b7d384fe64a8afd4f207f17c817
GET /upload/vod/20210918-1/5357817f29278bf9c121b567c173057b.jpg HTTP/1.1
Host: img.tpttzy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:11 GMT
Content-Type: image/jpeg
Content-Length: 8072
Last-Modified: Tue, 07 Jun 2022 09:15:38 GMT
Connection: keep-alive
ETag: "629f173a-1f88"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 381f03e837e17e47e729e4debe1b2b0d
e6f5bacfe185feda02fab402f39558fcd7f9945a
3eb4d8a8ba39ffc272e375286082b9ab30bd3b9bb9e044b5d88ebd32e0523fc8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3EB4D8A8BA39FFC272E375286082B9AB30BD3B9BB9E044B5D88EBD32E0523FC8"
Last-Modified: Thu, 08 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12037
Expires: Thu, 08 Sep 2022 16:04:48 GMT
Date: Thu, 08 Sep 2022 12:44:11 GMT
Connection: keep-alive
www.chinadqwx.com/static9/js/ssx.js
173.231.37.114200 OK 685 B URL HTTP/1.1 www.chinadqwx.com/static9/js/ssx.js
IP 173.231.37.114:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 91b18329186b0613d8a4a7f1e1688eb0
cfdd95b4925a26c859f4c111e877446a77dcb56d
9433c96621cb60dc2422b75175b4d28872b8bf7cddc644578d8d7eb6b7c1223d
Analyzer Verdict Alert quad9 Sinkholed
GET /static9/js/ssx.js HTTP/1.1
Host: www.chinadqwx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/uar3/?WN68=9m2BuYjy2P5QVnF55yTJRV/9LhiAAt/MT+Kbm8QIT+MHAFzaldcGnNZ3pWSYBbzkonlkIpTVKgvisutZzhPqOw==&Rx=3fqpvFxpqlVpsJr0
Cookie: __tins__21195469=%7B%22sid%22%3A%201662641042989%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201662642842989%7D; __51cke__=; __51laig__=1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Sep 2022 12:44:28 GMT
Content-Type: application/javascript
Last-Modified: Fri, 29 Jul 2022 08:18:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62e397c5-839"
Expires: Fri, 09 Sep 2022 00:44:28 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
img.tpttzy.com/upload/vod/20211210-1/5f4c0f29a694a5476f206a2edcb5252f.jpg
23.224.136.186200 OK 6.1 kB URL HTTP/1.1 img.tpttzy.com/upload/vod/20211210-1/5f4c0f29a694a5476f206a2edcb5252f.jpg
IP 23.224.136.186:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash b9f6f96ace7b83c79fd8e29d4c3d542d
c2e61c0416e3347a434a09a94e1f263ebb01eb06
c474917987d81d2dcf7d6a3bae195958b43da0be6fa59a0a16ca103e46c96093
GET /upload/vod/20211210-1/5f4c0f29a694a5476f206a2edcb5252f.jpg HTTP/1.1
Host: img.tpttzy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:11 GMT
Content-Type: image/jpeg
Content-Length: 6137
Last-Modified: Tue, 07 Jun 2022 09:15:58 GMT
Connection: keep-alive
ETag: "629f174e-17f9"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.tpttzy.com/upload/vod/20220329-1/7c9f7ba7bfcd95f5c1d40963b61a7292.jpg
23.224.136.186200 OK 13 kB URL HTTP/1.1 img.tpttzy.com/upload/vod/20220329-1/7c9f7ba7bfcd95f5c1d40963b61a7292.jpg
IP 23.224.136.186:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 6e170a66023f913fe1141d9cb4a2efbd
7fccafdda1433a0228b618f61859ce33a70260db
9751a63e36dba584421fbcf090a420e4f90c032151b3c3b62e0661cf462df63c
GET /upload/vod/20220329-1/7c9f7ba7bfcd95f5c1d40963b61a7292.jpg HTTP/1.1
Host: img.tpttzy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:11 GMT
Content-Type: image/jpeg
Content-Length: 12794
Last-Modified: Tue, 07 Jun 2022 09:13:02 GMT
Connection: keep-alive
ETag: "629f169e-31fa"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 381f03e837e17e47e729e4debe1b2b0d
e6f5bacfe185feda02fab402f39558fcd7f9945a
3eb4d8a8ba39ffc272e375286082b9ab30bd3b9bb9e044b5d88ebd32e0523fc8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3EB4D8A8BA39FFC272E375286082B9AB30BD3B9BB9E044B5D88EBD32E0523FC8"
Last-Modified: Thu, 08 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12037
Expires: Thu, 08 Sep 2022 16:04:48 GMT
Date: Thu, 08 Sep 2022 12:44:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 381f03e837e17e47e729e4debe1b2b0d
e6f5bacfe185feda02fab402f39558fcd7f9945a
3eb4d8a8ba39ffc272e375286082b9ab30bd3b9bb9e044b5d88ebd32e0523fc8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3EB4D8A8BA39FFC272E375286082B9AB30BD3B9BB9E044B5D88EBD32E0523FC8"
Last-Modified: Thu, 08 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12037
Expires: Thu, 08 Sep 2022 16:04:48 GMT
Date: Thu, 08 Sep 2022 12:44:11 GMT
Connection: keep-alive
sycdn.comtucdncom.com/upload/vod/20201021-1/9f80dd0e3b3fc88560062033e5010980.jpg
45.89.209.74200 OK 40 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20201021-1/9f80dd0e3b3fc88560062033e5010980.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 980x550, components 3\012- data
Hash c164a942ca6ae7775ea2fa001adae0f3
fb412c9aaa66be570f3c2e96394ba2f5fd96772b
e18dee4b0f3c97970fc23ed37a4e61632694dfd1653a39c89ebe812297d22b31
GET /upload/vod/20201021-1/9f80dd0e3b3fc88560062033e5010980.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:11 GMT
Content-Type: image/jpeg
Content-Length: 39807
Last-Modified: Thu, 11 Aug 2022 12:16:23 GMT
Connection: keep-alive
ETag: "62f4f317-9b7f"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7919
Expires: Thu, 08 Sep 2022 14:56:10 GMT
Date: Thu, 08 Sep 2022 12:44:11 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd38a7ac-451e-4dae-8707-f68a3c27ee4e.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd38a7ac-451e-4dae-8707-f68a3c27ee4e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7ccc1d45458086694a8221a8a6c6aa3b
b8f1359214f21be812390a6cca80b8e84c26a403
461503caa5ec14c1214bdc19795e47b8c1c3c5be1b21f0f29e923e5191e93846
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd38a7ac-451e-4dae-8707-f68a3c27ee4e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8693
x-amzn-requestid: aae6e4f7-9b0a-49da-b2f1-58b625609942
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9TgFokoAMFbwA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f49-27854a575dea22e1035454e3;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:38:17 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: PKD1-NMnB_gBWmi4tmCDLib4ROvVwI4hrOL7CHtoMXEEGgYNYiAsTw==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 21:48:35 GMT
etag: "b8f1359214f21be812390a6cca80b8e84c26a403"
content-type: image/jpeg
age: 53736
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 377fbbc52dfdb32516f55f3cd565b12c
0563d040ff06332898a2420f28e68357cebf66b8
8cf22790f744659cf13e4d23609cdc807127141b5701497ad5aff9c149e8bf76
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 12:44:11 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Mon, 12 Sep 2022 10:43:51 GMT
ETag: "0563d040ff06332898a2420f28e68357cebf66b8"
Last-Modified: Thu, 08 Sep 2022 10:43:52 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 624
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7477c62b6d9b0b39-OSL
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Thu, 08 Sep 2022 12:38:18 GMT
Cache-Control: max-age=3600
Expires: Thu, 08 Sep 2022 13:19:47 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 8cz5yQLwBtXzobEJj6IZ1Lw8Pp3pHyJNT9BazG2kjbPI95DYPPyUgw==
Age: 353
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6069f6c-2029-46b3-9867-5eaeb96d65e7.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6069f6c-2029-46b3-9867-5eaeb96d65e7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7ca5b5d4ac26d97b5729a30ecdc688bc
3e633bc6c4ab9adfe84899e5209d73bef1d097eb
2c8275d1819d933f86df9685b76aea030842ba5a341c59ea88ffd2da99a5a3d5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6069f6c-2029-46b3-9867-5eaeb96d65e7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7885
x-amzn-requestid: 305dc6b7-eb3d-40ad-af89-8b60be935637
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9ThE3DIAMFRtA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f49-7c0b58644e26de7f27c5b388;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:38:17 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Ry2D03udnweYHan_7KhC9IDhT01g9_73G40Fa10BdIX21tgK0Cgjiw==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 21:48:35 GMT
etag: "3e633bc6c4ab9adfe84899e5209d73bef1d097eb"
content-type: image/jpeg
age: 53736
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F54a37db8-5622-4532-b3bf-d5e45c3888d3.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F54a37db8-5622-4532-b3bf-d5e45c3888d3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d1232dc455c65c9e2d4515b6235ca8c7
8e94919a162c8bcf1ce76f395e8e8bddc94ed9a5
9c8ad996fff98d6dbd7a43c4c36905013d6e74649976294cd3a429f276a0db58
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F54a37db8-5622-4532-b3bf-d5e45c3888d3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6751
x-amzn-requestid: 847805f8-6893-4c51-80b9-655aa50f922d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9TiGnlIAMF_oA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f49-293897317a79be817669cfaa;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:38:17 GMT
x-amz-cf-pop: YVR50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: f8xbrJQbaXsHcsUNPeH3knAN2mXMzP4ValMvxzIX9KLVmPFVGqS1ng==
via: 1.1 0b8b9a0373f930a971a9e76550280d02.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 21:48:35 GMT
etag: "8e94919a162c8bcf1ce76f395e8e8bddc94ed9a5"
content-type: image/jpeg
age: 53736
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ef55d7-b6c2-4550-aff3-c9052f7d4816.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ef55d7-b6c2-4550-aff3-c9052f7d4816.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f922505178de0cea92eedcfda85a9f67
50f1459de01174e594e03e7df4dfaa8eb1798672
981cd58768d6ad841673add855ddcc7106fbc85de05db9a1bd2d6bc8928b4c2c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ef55d7-b6c2-4550-aff3-c9052f7d4816.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6214
x-amzn-requestid: 46a44af0-e547-49e8-bc39-f6c49d94e375
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xj_0HFKbIAMFRbg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630b134d-0297c83c305422fa51b86dcf;Sampled=0
x-amzn-remapped-date: Sun, 28 Aug 2022 07:03:41 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: _ZKcuRO8Z6wBMdm79iDZj5uRYk4YYpYJqOoG8hZqY81O0R7hfbe5bQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Sep 2022 05:34:36 GMT
age: 25775
etag: "50f1459de01174e594e03e7df4dfaa8eb1798672"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5314d83a-c7f9-468e-8b42-535c4fae5d85.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5314d83a-c7f9-468e-8b42-535c4fae5d85.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a07d553b6441514870ed7e9e989a29a7
98c145b9326d1e6036fa9089d87a25232dd45b0b
373a586b596016baeb8de98022207c25af24c099c06077edbdfd837cffc31a0e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5314d83a-c7f9-468e-8b42-535c4fae5d85.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7492
x-amzn-requestid: 2c5e9ff3-c7a4-4a8f-96bf-74f0ca5d9137
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9dOHguIAMFjGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f87-70dbe6532b1a241e6dbe729e;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:39:19 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: 6mfdlMHJozdykr4faiijvUuJPXVrJGU_n0MxJgCrZ-uWWdejGYfiAQ==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 020978022b22df6352245f09cfbc410c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 22:33:06 GMT
age: 51065
etag: "98c145b9326d1e6036fa9089d87a25232dd45b0b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
sycdn.comtucdncom.com/upload/vod/20201021-1/3e3f5a89ee4e34257d2f295a57b7577b.jpg
45.89.209.74200 OK 57 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20201021-1/3e3f5a89ee4e34257d2f295a57b7577b.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 980x550, components 3\012- data
Hash c8c590bc8158e7cf7e3eea4fd0687edb
f2b1921d71ad608d8979cb00eff161540e4da65d
9088c7c6fcc5b8232ad63f78b87ee5fab5637f46312e37b1910912fc969d78fd
GET /upload/vod/20201021-1/3e3f5a89ee4e34257d2f295a57b7577b.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:11 GMT
Content-Type: image/jpeg
Content-Length: 57304
Last-Modified: Thu, 11 Aug 2022 12:16:46 GMT
Connection: keep-alive
ETag: "62f4f32e-dfd8"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
www.chinadqwx.com/static9/images/240x50-1.gif
173.231.37.114200 OK 5.9 kB URL HTTP/1.1 www.chinadqwx.com/static9/images/240x50-1.gif
IP 173.231.37.114:0
File type GIF image data, version 89a, 240 x 50\012- data
Hash 99d379b5ddbe576fffef7ca718482cf4
0707cfd32a19e61c70f7b33086b8a0562430c7e3
39a8605e08852f70bf30d439dc750a0c673cbf0e4b6a51c7b6fc113b25c695b6
Analyzer Verdict Alert quad9 Sinkholed
GET /static9/images/240x50-1.gif HTTP/1.1
Host: www.chinadqwx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/static9/css/home.css
Cookie: __tins__21195469=%7B%22sid%22%3A%201662641042989%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201662642842989%7D; __51cke__=; __51laig__=1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Sep 2022 12:44:29 GMT
Content-Type: image/gif
Content-Length: 5902
Last-Modified: Sat, 14 Aug 2021 10:31:56 GMT
Connection: keep-alive
ETag: "61179b9c-170e"
Expires: Sat, 08 Oct 2022 12:44:29 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
sycdn.comtucdncom.com/papa-PIC/avid5c331601bdb4d.jpg
45.89.209.74200 OK 60 kB URL HTTP/1.1 sycdn.comtucdncom.com/papa-PIC/avid5c331601bdb4d.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 795x458, components 3\012- data
Hash f557bf62b3b4751fb1be2d96aa187bd3
e8b507cbdf1f0f8cee58723d454fa96b0c3fd623
76340601fe2945f36492ae70aecbb8329acbbd0254c59229413ca0e6b99aff3a
GET /papa-PIC/avid5c331601bdb4d.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:11 GMT
Content-Type: image/jpeg
Content-Length: 60104
Last-Modified: Thu, 11 Aug 2022 12:16:25 GMT
Connection: keep-alive
ETag: "62f4f319-eac8"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/papa-PIC/avid5be29d95b575a.jpg
45.89.209.74200 OK 54 kB URL HTTP/1.1 sycdn.comtucdncom.com/papa-PIC/avid5be29d95b575a.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 795x458, components 3\012- data
Hash 7aa838b81abd966cae2bc6c742441772
cf9ce72334cd354d9ae54f142a76b6993b369c55
a4c0e1d5df8b8efba70182cbe708b1fc90f3bec030a4b560e777c2e1ea214a87
GET /papa-PIC/avid5be29d95b575a.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:11 GMT
Content-Type: image/jpeg
Content-Length: 54083
Last-Modified: Thu, 11 Aug 2022 12:16:18 GMT
Connection: keep-alive
ETag: "62f4f312-d343"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0b6df26b-97aa-461c-9f22-c5c9496b5701.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0b6df26b-97aa-461c-9f22-c5c9496b5701.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 24e43bc53a0b047911cff00ad4b72320
f6ef30b5df0e634c3a3f607d751e738e55a276c9
7e1406b2101c912e72f37f0257128574079e618c1af83e360acb3f29b4d44d89
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0b6df26b-97aa-461c-9f22-c5c9496b5701.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8705
x-amzn-requestid: ccc5b695-35b5-49fd-b938-296a88a78ab8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9TgFOiIAMFaXQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f49-12e809c767cdbba61492187c;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:38:17 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: iN3jcMCQ8paYD_O9gQLAswM-ITb0oY8CYmbnMDwpwS-7hPLis5TGSg==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 95785220a566cd050f3ad80928463374.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 22:03:47 GMT
age: 52824
etag: "f6ef30b5df0e634c3a3f607d751e738e55a276c9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
52xxx.org/tc/BOOM.gif
104.21.73.122200 OK 100 kB IP 104.21.73.122:0
File type GIF image data, version 89a, 150 x 150\012- data
Size 100 kB (100094 bytes)
Hash be75d9b0d03c3649caf48c4cddd54b5e
9197d31dec3fa0f1a67d487ce1e3bd477750cdcf
61f4aae9cce59c2abeec0585fd4715f166e8108e601687004ebac3b84a33cab0
GET /tc/BOOM.gif HTTP/1.1
Host: 52xxx.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:44:11 GMT
content-type: image/gif
content-length: 100094
last-modified: Thu, 16 Jun 2022 13:28:03 GMT
etag: "62ab2fe3-186fe"
expires: Fri, 09 Sep 2022 21:12:44 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 2475084
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bV5Zsy5tAL4r7bkSycZege608wS3bre4Uc3e56KDmrX%2BuPKoNnC%2BTegs8hyck7Rj85PZD3T0ZhfRp5n7wVt4LI%2Fh3DNHbLgb%2BMTC1BSRq9gpemTEyc%2BbkgsvXj8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c62baa15b4e8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 377fbbc52dfdb32516f55f3cd565b12c
0563d040ff06332898a2420f28e68357cebf66b8
8cf22790f744659cf13e4d23609cdc807127141b5701497ad5aff9c149e8bf76
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 12:44:11 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Mon, 12 Sep 2022 10:43:51 GMT
ETag: "0563d040ff06332898a2420f28e68357cebf66b8"
Last-Modified: Thu, 08 Sep 2022 10:43:52 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 624
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7477c62b9dde0b39-OSL
png.pngtree.com/png-vector/20190603/ourmid/pngtree-icon-close-button-png-image_1357955.jpg
104.18.2.157200 OK 9.2 kB URL HTTP/2 png.pngtree.com/png-vector/20190603/ourmid/pngtree-icon-close-button-png-image_1357955.jpg
IP 104.18.2.157:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x360, components 3\012- data
Hash 43ae14560cdbc69ce960a28002f04309
4dc694c2754882f840c77807016676732c38138b
af0e248de25efb22e6edd4e1453e686154b00ce5039f94dceb2684a332ddad0e
GET /png-vector/20190603/ourmid/pngtree-icon-close-button-png-image_1357955.jpg HTTP/1.1
Host: png.pngtree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:44:11 GMT
content-type: image/jpg
content-length: 9166
cache-control: public, max-age=16070400
cf-bgj: h2pri
etag: "43ae14560cdbc69ce960a28002f04309"
last-modified: Wed, 28 Jul 2021 07:06:38 GMT
x-amz-id-2: IZRvItv2KlIfxpVowD85Xg4Uk/1H+XuQTEdfoFWsc+IpA1zQW2wADVI9pTz2bh7YaCysOgO/974=
x-amz-request-id: NT1CVYHWGWWJEKRS
cf-cache-status: HIT
age: 8083283
expires: Mon, 13 Mar 2023 12:44:11 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c62baaf5b527-OSL
X-Firefox-Spdy: h2
pic1.semaobf1.com/20220426/6E87C687A589D3D4/6E87C687A589D3D4.jpg
5.180.83.41200 OK 10 kB URL HTTP/1.1 pic1.semaobf1.com/20220426/6E87C687A589D3D4/6E87C687A589D3D4.jpg
IP 5.180.83.41:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash b6ac45182d9290e4d660b6f8a7c62bed
a05b90dc70b4a236c8e188a4a4d91c370b9703b9
65cb9012296b24e7f52204c7a5ba8a2bcae83de2593fb643eb40a7088c585701
GET /20220426/6E87C687A589D3D4/6E87C687A589D3D4.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:10 GMT
Content-Type: image/jpeg
Content-Length: 10145
Last-Modified: Tue, 06 Sep 2022 14:29:56 GMT
Connection: keep-alive
ETag: "63175964-27a1"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20210918/C063DF0A2EBAC5F3/C063DF0A2EBAC5F3.jpg
5.180.83.41200 OK 6.6 kB URL HTTP/1.1 pic1.semaobf1.com/20210918/C063DF0A2EBAC5F3/C063DF0A2EBAC5F3.jpg
IP 5.180.83.41:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 99012be73b768b71df7d95ccb5580f90
1332776410275444d3d2e4078a150d16f8521b5c
2b3959670275ddb44911f9d01ca4402a77636c638c97af76205e666e480b133f
GET /20210918/C063DF0A2EBAC5F3/C063DF0A2EBAC5F3.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:10 GMT
Content-Type: image/jpeg
Content-Length: 6581
Last-Modified: Tue, 06 Sep 2022 14:27:20 GMT
Connection: keep-alive
ETag: "631758c8-19b5"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
www.chinadqwx.com/ads/ggshang.php
173.231.37.114200 OK 138 B URL HTTP/1.1 www.chinadqwx.com/ads/ggshang.php
IP 173.231.37.114:0
File type ASCII text, with no line terminators
Hash 7f8317147c8a36a1e63530c4e8830a06
9bb19038ade48d53469f46c75dce0843f30ea9a1
12a95b294a72b8b06e3ce9e7fd9b2e81fbe23c1987bba483f75dbe9abf266999
Analyzer Verdict Alert quad9 Sinkholed
GET /ads/ggshang.php HTTP/1.1
Host: www.chinadqwx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/uar3/?WN68=9m2BuYjy2P5QVnF55yTJRV/9LhiAAt/MT+Kbm8QIT+MHAFzaldcGnNZ3pWSYBbzkonlkIpTVKgvisutZzhPqOw==&Rx=3fqpvFxpqlVpsJr0
Cookie: __tins__21195469=%7B%22sid%22%3A%201662641042989%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201662642842989%7D; __51cke__=; __51laig__=1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Sep 2022 12:44:29 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
pic1.semaobf1.com/20220215/FB8B3ACB4424CE97/FB8B3ACB4424CE97.jpg
5.180.83.41200 OK 11 kB URL HTTP/1.1 pic1.semaobf1.com/20220215/FB8B3ACB4424CE97/FB8B3ACB4424CE97.jpg
IP 5.180.83.41:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash c140e88a9d066bd0620cbe35348f5829
2d7e06abe39fb9e334234231fab3785c9c191894
05ca9333b9e535f1b20876b018060ccfde5001213c9d0bb88641366578245c79
GET /20220215/FB8B3ACB4424CE97/FB8B3ACB4424CE97.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:10 GMT
Content-Type: image/jpeg
Content-Length: 11016
Last-Modified: Tue, 06 Sep 2022 14:29:37 GMT
Connection: keep-alive
ETag: "63175951-2b08"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ocsp.trust-provider.cn/
47.246.44.205200 OK 600 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash dbed7c876423bf87fc7d364de5246107
1017f611f46e836ffc9293cf85ec8bbca68bd90c
1b1466be39448fc150c8c1e9abe59075d336103cf82cc738e2d2a511394bb716
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Thu, 08 Sep 2022 12:19:38 GMT
last-modified: Thu, 08 Sep 2022 03:51:04 GMT
expires: Thu, 15 Sep 2022 03:51:03 GMT
etag: "1017f611f46e836ffc9293cf85ec8bbca68bd90c"
cache-control: max-age=603074,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb3
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
cf-ray: 7477a232feb29186-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1662639578
via: cache3.l2de2[0,0,304-0,H], cache20.l2de2[0,0], cache7.se1[83,83,200-0,H], cache1.se1[85,0], cache3.se1[87,0]
age: 1473
x-cache: HIT TCP_REFRESH_HIT dirn:11:137336839
x-swift-savetime: Thu, 08 Sep 2022 12:44:11 GMT
x-swift-cachetime: 327
timing-allow-origin: *, *
eagleid: 2ff62c9716626410514126405e, 2ff62c9716626410514126405e
pic1.semaobf1.com/20220504/A6DF03CB3D0AEB22/A6DF03CB3D0AEB22.jpg
5.180.83.41200 OK 13 kB URL HTTP/1.1 pic1.semaobf1.com/20220504/A6DF03CB3D0AEB22/A6DF03CB3D0AEB22.jpg
IP 5.180.83.41:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash ad67e7606edb4c62a664a4ad87921edf
4ec3a78cb5f2e4169d16ab24b1f2732b99671cb3
0d05a5802a0a74f35543893c137f15ff210b77ae1a5bca29dd58ee40c73df471
GET /20220504/A6DF03CB3D0AEB22/A6DF03CB3D0AEB22.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:10 GMT
Content-Type: image/jpeg
Content-Length: 12855
Last-Modified: Tue, 06 Sep 2022 14:28:10 GMT
Connection: keep-alive
ETag: "631758fa-3237"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.tpttzy.com/upload/vod/20210902-1/3298c3339f59410292c82c16840b4f2a.jpg
23.224.136.186200 OK 20 kB URL HTTP/1.1 img.tpttzy.com/upload/vod/20210902-1/3298c3339f59410292c82c16840b4f2a.jpg
IP 23.224.136.186:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 320x184, components 3\012- data
Hash 029675f675ddf54fb13191ce8bbc8758
1c5ab8b462febfa433c782874e34025667dfd498
9392f70c65731282d2788d356d42c221e63dce633ca443df43420183fbd43189
GET /upload/vod/20210902-1/3298c3339f59410292c82c16840b4f2a.jpg HTTP/1.1
Host: img.tpttzy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:11 GMT
Content-Type: image/jpeg
Content-Length: 20246
Last-Modified: Tue, 07 Jun 2022 09:16:19 GMT
Connection: keep-alive
ETag: "629f1763-4f16"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.tpttzy.com/upload/vod/20210902-1/e3cada2a39c2146b98839ae284def388.jpg
23.224.136.186200 OK 27 kB URL HTTP/1.1 img.tpttzy.com/upload/vod/20210902-1/e3cada2a39c2146b98839ae284def388.jpg
IP 23.224.136.186:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 320x184, components 3\012- data
Hash ff6ac00d2935b5d449d9af5e37a746e5
d28097b75cbe1a83131414bc7f75565e15faf44a
5b3c3cbdfb9fac978d0f49fe1fb66c7a751485c87646d783637349bf5eac832b
GET /upload/vod/20210902-1/e3cada2a39c2146b98839ae284def388.jpg HTTP/1.1
Host: img.tpttzy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:11 GMT
Content-Type: image/jpeg
Content-Length: 27409
Last-Modified: Tue, 07 Jun 2022 09:12:35 GMT
Connection: keep-alive
ETag: "629f1683-6b11"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.tpttzy.com/upload/vod/20211229-1/09b5dcbe8e148667e74d35d185ad3bcf.jpg
23.224.136.186200 OK 7.7 kB URL HTTP/1.1 img.tpttzy.com/upload/vod/20211229-1/09b5dcbe8e148667e74d35d185ad3bcf.jpg
IP 23.224.136.186:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 3x4, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash d6c88e46f8b8e43fc456b740bbc03cd7
fcad2949d7d33b2f9adc1cc47ecf57ccde7d2631
a30686211d3f84bd0261aab6d5c3467ce40091cb7ae3d675edfb8702f7cdc3d7
GET /upload/vod/20211229-1/09b5dcbe8e148667e74d35d185ad3bcf.jpg HTTP/1.1
Host: img.tpttzy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:11 GMT
Content-Type: image/jpeg
Content-Length: 7740
Last-Modified: Tue, 07 Jun 2022 09:12:58 GMT
Connection: keep-alive
ETag: "629f169a-1e3c"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20220518/AB84F9922630CEE7/AB84F9922630CEE7.jpg
5.180.83.41200 OK 9.6 kB URL HTTP/1.1 pic1.semaobf1.com/20220518/AB84F9922630CEE7/AB84F9922630CEE7.jpg
IP 5.180.83.41:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash d0db4565205721d1a553208b554c9403
a1b569ca89d7fc6784d06e2745eb643a1dd25140
a8d881cb7585d5d2eb2e65b1acfdfb4b0017ffe8195fb72dc9d71bc3012b4942
GET /20220518/AB84F9922630CEE7/AB84F9922630CEE7.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:10 GMT
Content-Type: image/jpeg
Content-Length: 9631
Last-Modified: Tue, 06 Sep 2022 14:29:00 GMT
Connection: keep-alive
ETag: "6317592c-259f"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20220110/F0BB1C2C3A6ACAD3/F0BB1C2C3A6ACAD3.jpg
5.180.83.41404 Not Found 146 B URL HTTP/1.1 pic1.semaobf1.com/20220110/F0BB1C2C3A6ACAD3/F0BB1C2C3A6ACAD3.jpg
IP 5.180.83.41:0
ASN #61317 Ipxo Uk Limited
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /20220110/F0BB1C2C3A6ACAD3/F0BB1C2C3A6ACAD3.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:10 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 146
Connection: keep-alive
img.sewozyimg.com/upload/vod/20220412-1/2738842db0da5d4a02d1d2534139d1c9.jpg
154.12.54.74200 OK 9.0 kB URL HTTP/1.1 img.sewozyimg.com/upload/vod/20220412-1/2738842db0da5d4a02d1d2534139d1c9.jpg
IP 154.12.54.74:0
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, baseline, precision 8, 240x320, components 3\012- data
Hash 7c23dc1204b0d0c3bbf89eac9d4d1fc3
36a4d9a0abf58be42383bdd51b7e8d8b626aaf40
c38555254aa691e4c0d6664543c5e1fdbe514c3d6f28e00544c079dfd24388a8
GET /upload/vod/20220412-1/2738842db0da5d4a02d1d2534139d1c9.jpg HTTP/1.1
Host: img.sewozyimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:11 GMT
Content-Type: image/jpeg
Content-Length: 8992
Last-Modified: Sun, 04 Sep 2022 16:52:16 GMT
Connection: keep-alive
ETag: "6314d7c0-2320"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/papaduanpian-img/avid56fa62a293821.jpg
45.89.209.74200 OK 25 kB URL HTTP/1.1 sycdn.comtucdncom.com/papaduanpian-img/avid56fa62a293821.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.27.101", baseline, precision 8, 768x576, components 3\012- data
Hash c280ba0a20aedbe6ea7d26ce66d027a5
dabc2d2aa63254c11f01932cbbf92c1c3f7b395e
04bc39587b556690405dff18ff77312f688653acbaa58f5f1fc6f261a6fd960a
GET /papaduanpian-img/avid56fa62a293821.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:11 GMT
Content-Type: image/jpeg
Content-Length: 25020
Last-Modified: Thu, 11 Aug 2022 12:16:39 GMT
Connection: keep-alive
ETag: "62f4f327-61bc"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.sewozyimg.com/upload/vod/20220510-1/18c10ef5b377405c94cfd2d591bf8f49.jpg
154.12.54.74404 Not Found 146 B URL HTTP/1.1 img.sewozyimg.com/upload/vod/20220510-1/18c10ef5b377405c94cfd2d591bf8f49.jpg
IP 154.12.54.74:0
ASN #22769 DDOSING-BGP-NETWORK
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /upload/vod/20220510-1/18c10ef5b377405c94cfd2d591bf8f49.jpg HTTP/1.1
Host: img.sewozyimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:11 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 146
Connection: keep-alive
sycdn.comtucdncom.com/upload/vod/20201126-1/85f230cb9f67383824c3aad1d7770061.jpg
45.89.209.74200 OK 64 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20201126-1/85f230cb9f67383824c3aad1d7770061.jpg
IP 45.89.209.74:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 800x539, components 3\012- data
Hash 20b2f562fafb9d5be0eee10224bef107
b7502fb4bcc90d3a386139d0dbc45c9d96fd88c4
5ab04f99600dcf71a6eb9558831d3e8ba5bec98a6cc236d20bdbc54e4bd0d675
GET /upload/vod/20201126-1/85f230cb9f67383824c3aad1d7770061.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:11 GMT
Content-Type: image/jpeg
Content-Length: 64534
Last-Modified: Thu, 11 Aug 2022 12:24:24 GMT
Connection: keep-alive
ETag: "62f4f4f8-fc16"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/upload/vod/20220114-1/222aa811376fe7124727e35cd09fefa9.jpg
45.89.208.114200 OK 533 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/20220114-1/222aa811376fe7124727e35cd09fefa9.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, xresolution=120, yresolution=120], baseline, precision 8, 1280x720, components 3\012- data
Size 533 kB (532681 bytes)
Hash 1dd9dd05c49d9d8d92dedb50cb3305f6
95a625002252577e4be9e0d23dc2320219c8bf5d
0a55fe1f148641537314b0093f4c2cce55cc1de701033abd295603d5cd72e604
GET /upload/vod/20220114-1/222aa811376fe7124727e35cd09fefa9.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:10 GMT
Content-Type: image/jpeg
Content-Length: 532681
Last-Modified: Thu, 11 Aug 2022 04:55:34 GMT
Connection: keep-alive
ETag: "62f48bc6-820c9"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/upload/vod/20210726-1/5734021889e546518b38a0a0ae84e1e4.jpg
45.89.209.74200 OK 68 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20210726-1/5734021889e546518b38a0a0ae84e1e4.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 750x422, components 3\012- data
Hash 221f4caa8d99833e1082fce459d4424d
c544dc1dc812adf9e95a89855242b1fea7420be9
793b8e3f46d9fe59341dbbda34308cc43e62cd441349a8c33a3063aa9c47786a
GET /upload/vod/20210726-1/5734021889e546518b38a0a0ae84e1e4.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:11 GMT
Content-Type: image/jpeg
Content-Length: 67719
Last-Modified: Thu, 11 Aug 2022 12:16:48 GMT
Connection: keep-alive
ETag: "62f4f330-10887"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/pic/20200412-HIP91/h8itN5gf.jpg
45.89.209.74200 OK 7.9 kB URL HTTP/1.1 sycdn.comtucdncom.com/pic/20200412-HIP91/h8itN5gf.jpg
IP 45.89.209.74:0
File type JPEG image data, baseline, precision 8, 240x320, components 3\012- data
Hash 87cc7f3ed9b1fe591373fc8123ad05ff
98656d056874618203cb30e6d3394edff113afbe
a8da362ef41710e2e46eb9eb9ea5fc814c398a7d039cfe8b162c3281edc06639
GET /pic/20200412-HIP91/h8itN5gf.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:11 GMT
Content-Type: image/jpeg
Content-Length: 7901
Last-Modified: Thu, 11 Aug 2022 12:16:37 GMT
Connection: keep-alive
ETag: "62f4f325-1edd"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20211215/C2F69F451AB1886A/C2F69F451AB1886A.jpg
5.180.83.41200 OK 10 kB URL HTTP/1.1 pic1.semaobf1.com/20211215/C2F69F451AB1886A/C2F69F451AB1886A.jpg
IP 5.180.83.41:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 93b3e3dca2e3e4ec20d6572994e7ef77
8056c6ad77a22120be4be9418a0a82c998fc2d13
3c9f3e8096ac6588834df8095a2b91ba420d7dfedaf1d3a071da1a1566aefb61
GET /20211215/C2F69F451AB1886A/C2F69F451AB1886A.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:10 GMT
Content-Type: image/jpeg
Content-Length: 10294
Last-Modified: Tue, 06 Sep 2022 14:48:31 GMT
Connection: keep-alive
ETag: "63175dbf-2836"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20220120/EEBA44539F10D1EE/EEBA44539F10D1EE.jpg
5.180.83.41200 OK 11 kB URL HTTP/1.1 pic1.semaobf1.com/20220120/EEBA44539F10D1EE/EEBA44539F10D1EE.jpg
IP 5.180.83.41:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 2932cc4283b6ac932920fde97578f7ed
5194e9954e5fcf935d10f9bed839baeaf364d2bf
18300c3361806a0be66f5c33af6a09278c0c91b18b5cf31e19f103cacf55bc61
GET /20220120/EEBA44539F10D1EE/EEBA44539F10D1EE.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:10 GMT
Content-Type: image/jpeg
Content-Length: 10923
Last-Modified: Tue, 06 Sep 2022 14:30:01 GMT
Connection: keep-alive
ETag: "63175969-2aab"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.tpttzy.com/upload/vod/20211102-1/68a51c4f50fdcecc9de97d80c52e9bed.jpg
23.224.136.186200 OK 73 kB URL HTTP/1.1 img.tpttzy.com/upload/vod/20211102-1/68a51c4f50fdcecc9de97d80c52e9bed.jpg
IP 23.224.136.186:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 795x458, components 3\012- data
Hash 9b7113373798b35667be5e2d6fb963bc
3928aead8973a82cc80ccf909672d1b464f5b627
fdb9166d01a134d2a410b0adf465c47ff3892e73f629517b9957a4cda31ee8e9
GET /upload/vod/20211102-1/68a51c4f50fdcecc9de97d80c52e9bed.jpg HTTP/1.1
Host: img.tpttzy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:11 GMT
Content-Type: image/jpeg
Content-Length: 72816
Last-Modified: Tue, 07 Jun 2022 09:18:02 GMT
Connection: keep-alive
ETag: "629f17ca-11c70"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.sewozyimg.com/upload/vod/20220414-1/320d45d7c042b24337919f17c6c96630.jpg
154.12.54.74200 OK 38 kB URL HTTP/1.1 img.sewozyimg.com/upload/vod/20220414-1/320d45d7c042b24337919f17c6c96630.jpg
IP 154.12.54.74:0
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 960x540, components 3\012- data
Hash a7475e66496fcee27e4d44146910d827
0909912ff3e354aafe900c82472c9e2f9f24455f
ff6403193f1d54a723eaa671f5d399046d8eeef0ea9db334dfcb7dea9b171b4f
GET /upload/vod/20220414-1/320d45d7c042b24337919f17c6c96630.jpg HTTP/1.1
Host: img.sewozyimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:11 GMT
Content-Type: image/jpeg
Content-Length: 37520
Last-Modified: Sun, 04 Sep 2022 16:18:55 GMT
Connection: keep-alive
ETag: "6314cfef-9290"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
www.chinadqwx.com/ads/ggshang.html
173.231.37.114200 OK 3.3 kB URL HTTP/1.1 www.chinadqwx.com/ads/ggshang.html
IP 173.231.37.114:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 133256ff2cc63d265537208da82f1f01
4c90d22dce0d882e3046e8cf9033b9421e14252c
823e90ed84f05d2e2e64d507d993e9772df6423a92ec129cdbdde75c3dc9f687
Analyzer Verdict Alert quad9 Sinkholed
GET /ads/ggshang.html HTTP/1.1
Host: www.chinadqwx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/uar3/?WN68=9m2BuYjy2P5QVnF55yTJRV/9LhiAAt/MT+Kbm8QIT+MHAFzaldcGnNZ3pWSYBbzkonlkIpTVKgvisutZzhPqOw==&Rx=3fqpvFxpqlVpsJr0
Cookie: __tins__21195469=%7B%22sid%22%3A%201662641042989%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201662642842989%7D; __51cke__=; __51laig__=1
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Sep 2022 12:44:29 GMT
Content-Type: text/html
Last-Modified: Thu, 08 Sep 2022 08:28:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6319a7b2-36fa"
Content-Encoding: gzip
img.tpttzy.com/upload/vod/20211102-1/3e35c6ed01702765402a8ffc5f3b7bf3.jpg
23.224.136.186200 OK 63 kB URL HTTP/1.1 img.tpttzy.com/upload/vod/20211102-1/3e35c6ed01702765402a8ffc5f3b7bf3.jpg
IP 23.224.136.186:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 795x458, components 3\012- data
Hash b0627b0c5293bd759fc648ddd9de0e4b
67cbeb22e1a692548bcd6424785e5471ec612d64
29fe39ca4bcdb68f75c0fbbd05fafac5de97f8189e5faf243f09bcd2a9fdca36
GET /upload/vod/20211102-1/3e35c6ed01702765402a8ffc5f3b7bf3.jpg HTTP/1.1
Host: img.tpttzy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:11 GMT
Content-Type: image/jpeg
Content-Length: 63129
Last-Modified: Tue, 07 Jun 2022 09:16:08 GMT
Connection: keep-alive
ETag: "629f1758-f699"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
www.chinadqwx.com/ads/shipin.js
173.231.37.114200 OK 0 B URL HTTP/1.1 www.chinadqwx.com/ads/shipin.js
IP 173.231.37.114:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /ads/shipin.js HTTP/1.1
Host: www.chinadqwx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/uar3/?WN68=9m2BuYjy2P5QVnF55yTJRV/9LhiAAt/MT+Kbm8QIT+MHAFzaldcGnNZ3pWSYBbzkonlkIpTVKgvisutZzhPqOw==&Rx=3fqpvFxpqlVpsJr0
Cookie: __tins__21195469=%7B%22sid%22%3A%201662641042989%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201662642842989%7D; __51cke__=; __51laig__=1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Sep 2022 12:44:29 GMT
Content-Type: application/javascript
Content-Length: 0
Last-Modified: Sat, 13 Aug 2022 06:04:04 GMT
Connection: keep-alive
ETag: "62f73ed4-0"
Expires: Fri, 09 Sep 2022 00:44:29 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes
pic1.semaobf1.com/20210929/67291A8BBDADB309/67291A8BBDADB309.jpg
5.180.83.41200 OK 8.6 kB URL HTTP/1.1 pic1.semaobf1.com/20210929/67291A8BBDADB309/67291A8BBDADB309.jpg
IP 5.180.83.41:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash b5f5a81ffd61dd1125b78f32216354cf
fe1772134f84049562df53be7f217e1ed1a4d7b3
203e8e99559341d1cec5893f632569dc6e605b0a9dafe3f7911be459976a69fb
GET /20210929/67291A8BBDADB309/67291A8BBDADB309.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:10 GMT
Content-Type: image/jpeg
Content-Length: 8632
Last-Modified: Tue, 06 Sep 2022 14:29:10 GMT
Connection: keep-alive
ETag: "63175936-21b8"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20211016/FBAEE797F8E34CB4/FBAEE797F8E34CB4.jpg
5.180.83.41200 OK 7.2 kB URL HTTP/1.1 pic1.semaobf1.com/20211016/FBAEE797F8E34CB4/FBAEE797F8E34CB4.jpg
IP 5.180.83.41:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 326434c1b6cd635a8f4b88469b1ccbc8
74147565e73c3c76e9aafb22f397d39e2d3f9982
86597016a5df9d8e2d1d890b678564b4ae27369f57e067f441bb8bb5dfe59917
GET /20211016/FBAEE797F8E34CB4/FBAEE797F8E34CB4.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:10 GMT
Content-Type: image/jpeg
Content-Length: 7184
Last-Modified: Tue, 06 Sep 2022 14:29:28 GMT
Connection: keep-alive
ETag: "63175948-1c10"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/papa-PIC/avid5a6051c03ba52.jpg
45.89.209.74200 OK 44 kB URL HTTP/1.1 sycdn.comtucdncom.com/papa-PIC/avid5a6051c03ba52.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.79.100", baseline, precision 8, 1024x576, components 3\012- data
Hash 7940a142c1a394aacd9eaf3d9cd69cd2
b01bfdcd0c28ff1f4712c59df60c63a70eccbc38
6d704d01cc68f592358b9c38f380eadc11b65ccccfe3d5f6497e714fa8280d19
GET /papa-PIC/avid5a6051c03ba52.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:11 GMT
Content-Type: image/jpeg
Content-Length: 44001
Last-Modified: Thu, 11 Aug 2022 12:16:58 GMT
Connection: keep-alive
ETag: "62f4f33a-abe1"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.tpttzy.com/upload/vod/20210827-1/24feb377f2e9ac9ebd1803d6124bc4bb.jpg
23.224.136.186200 OK 24 kB URL HTTP/1.1 img.tpttzy.com/upload/vod/20210827-1/24feb377f2e9ac9ebd1803d6124bc4bb.jpg
IP 23.224.136.186:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=458, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=795], progressive, precision 8, 320x180, components 3\012- data
Hash 058e8ebec2e02ffa9f843aaab26e0597
e7a685565816d8cbe5e747fa0fbd90017479b75f
9c6ad29d81ad14c82c7370baedc0afc72a0af1d1631411f1a4b07944879dd4c0
GET /upload/vod/20210827-1/24feb377f2e9ac9ebd1803d6124bc4bb.jpg HTTP/1.1
Host: img.tpttzy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:11 GMT
Content-Type: image/jpeg
Content-Length: 24392
Last-Modified: Tue, 07 Jun 2022 09:15:36 GMT
Connection: keep-alive
ETag: "629f1738-5f48"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20220305/3C45A4A18686A41C/3C45A4A18686A41C.jpg
5.180.83.41200 OK 12 kB URL HTTP/1.1 pic1.semaobf1.com/20220305/3C45A4A18686A41C/3C45A4A18686A41C.jpg
IP 5.180.83.41:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 92ceebac81d0a1594ba8a722595cb9e6
96d7f264bad48552711cb28dc9cfe6dd338f82c6
5dfd6828bc367c61ae99a7ddf451da621bb9d4bf05d044c92c120e9f11116d9f
GET /20220305/3C45A4A18686A41C/3C45A4A18686A41C.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:10 GMT
Content-Type: image/jpeg
Content-Length: 11891
Last-Modified: Tue, 06 Sep 2022 14:28:25 GMT
Connection: keep-alive
ETag: "63175909-2e73"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
xiusebf1.com/20210813/AtkUQQHR/1.jpg
23.224.136.221200 OK 10 kB URL HTTP/1.1 xiusebf1.com/20210813/AtkUQQHR/1.jpg
IP 23.224.136.221:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash b5b4eb7cca1a60c4c925f9f380fa005d
90cad237869d1af7087292b986366bed4bb1e80c
45f626ca5fa608c37623517fecb709afb2516b84617502c4bb7bf075594b7440
GET /20210813/AtkUQQHR/1.jpg HTTP/1.1
Host: xiusebf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:11 GMT
Content-Type: image/jpeg
Content-Length: 9980
Last-Modified: Wed, 13 Apr 2022 06:38:16 GMT
Connection: keep-alive
ETag: "62566fd8-26fc"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ia.51.la/go1?id=21195469&rt=1662641042989&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=%25E5%259B%25BD%25E4%25BA%25A7%25E7%25BE%258E%25E5%25A5%25B3%25E4%25B8%2580%25E7%25BA%25A7%25E7%2589%25B9%25E9%25BB%2584%25E5%25A4%25A7%25E7%2589%2587_%25E6%2588%2590A%25E7%2589%2587%25E5%258D%2588%25E5%25A4%259C%25E5%25BA%258A%25E6%2588%258F%25E5%259C%25A8%25E7%25BA%25BF%25E8%25A7%2582%25E7%259C%258B%25E5%2585%258D%25E8%25B4%25B9_%25E4%25B9%2585%25E4%25B9%2585%25E7%25B2%25BE%25E5%2593%2581%25E5%259B%25BD&ing=1&ekc=&sid=1662641042989&tt=%25E5%259B%25BD%25E4%25BA%25A7%25E7%25BE%258E%25E5%25A5%25B3%25E4%25B8%2580%25E7%25BA%25A7%25E7%2589%25B9%25E9%25BB%2584%25E5%25A4%25A7%25E7%2589%2587_%25E6%2588%2590A%25E7%2589%2587%25E5%258D%2588%25E5%25A4%259C%25E5%25BA%258A%25E6%2588%258F%25E5%259C%25A8%25E7%25BA%25BF%25E8%25A7%2582%25E7%259C%258B%25E5%2585%258D%25E8%25B4%25B9_%25E4%25B9%2585%25E4%25B9%2585%25E7%25B2%25BE%25E5%2593%2581%25E5%259B%25BD%25E4%25BA%25A7%25E5%2586%259C%25E6%259D%2591%25E9%25AB%2598%25E6%25B8%2585%25E7%2589%2588_%25E7%2590%2586%25E8%25AE%25BA%25E7%25A6%258F%25E5%2588%25A9%25E8%25A7%2586%25E9%25A2%2591%25E5%25AF%25BC%25E8%2588%25AA&kw=%25E5%259B%25BD%25E4%25BA%25A7%25E7%25BE%258E%25E5%25A5%25B3%25E4%25B8%2580%25E7%25BA%25A7%25E7%2589%25B9%25E9%25BB%2584%25E5%25A4%25A7%25E7%2589%2587_%25E6%2588%2590A%25E7%2589%2587%25E5%258D%2588%25E5%25A4%259C%25E5%25BA%258A%25E6%2588%258F%25E5%259C%25A8%25E7%25BA%25BF%25E8%25A7%2582%25E7%259C%258B%25E5%2585%258D%25E8%25B4%25B9_%25E4%25B9%2585%25E4%25B9%2585%25E7%25B2%25BE%25E5%2593%2581%25E5%259B%25BD%25E4%25BA%25A7%25E5%2586%259C%25E6%259D%2591%25E9%25AB%2598%25E6%25B8%2585%25E7%2589%2588_%25E7%2590%2586%25E8%25AE%25BA%25E7%25A6%258F%25E5%2588%25A9%25E8%25A7%2586%25E9%25A2%2591%25E5%25AF%25BC%25E8%2588%25AA%252C%25E4%25B9%2585%25E4%25B9%2585%25E7%25B2%25BE%25E5%2593%2581%25E5%259B%25BD%25E8%25AF%25AD%25E5%25AF%25B9%25E7%2599%25BD%25E6%2597%25A0%25E5%25BC%25B9%25E7%25AA%2597%252C%25E6%2598%258E%25E6%2597%25A5%25E8%258A%25B1%25E7%25BB%25AE%25E7%25BD%2597snis651%252C%25E8%25A7%2586%25E9%25A2%2591app&cu=http%253A%252F%252Fwww.chinadqwx.com%252Fuar3%252F%253FWN68%253D9m2BuYjy2P5QVnF55yTJRV%252F9LhiAAt%252FMT%252BKbm8QIT%252BMHAFzaldcGnNZ3pWSYBbzkonlkIpTVKgvisutZzhPqOw%253D%253D~_~Rx%253D3fqpvFxpqlVpsJr0&pu=
103.143.19.103200 0 B URL HTTP/1.1 ia.51.la/go1?id=21195469&rt=1662641042989&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=%25E5%259B%25BD%25E4%25BA%25A7%25E7%25BE%258E%25E5%25A5%25B3%25E4%25B8%2580%25E7%25BA%25A7%25E7%2589%25B9%25E9%25BB%2584%25E5%25A4%25A7%25E7%2589%2587_%25E6%2588%2590A%25E7%2589%2587%25E5%258D%2588%25E5%25A4%259C%25E5%25BA%258A%25E6%2588%258F%25E5%259C%25A8%25E7%25BA%25BF%25E8%25A7%2582%25E7%259C%258B%25E5%2585%258D%25E8%25B4%25B9_%25E4%25B9%2585%25E4%25B9%2585%25E7%25B2%25BE%25E5%2593%2581%25E5%259B%25BD&ing=1&ekc=&sid=1662641042989&tt=%25E5%259B%25BD%25E4%25BA%25A7%25E7%25BE%258E%25E5%25A5%25B3%25E4%25B8%2580%25E7%25BA%25A7%25E7%2589%25B9%25E9%25BB%2584%25E5%25A4%25A7%25E7%2589%2587_%25E6%2588%2590A%25E7%2589%2587%25E5%258D%2588%25E5%25A4%259C%25E5%25BA%258A%25E6%2588%258F%25E5%259C%25A8%25E7%25BA%25BF%25E8%25A7%2582%25E7%259C%258B%25E5%2585%258D%25E8%25B4%25B9_%25E4%25B9%2585%25E4%25B9%2585%25E7%25B2%25BE%25E5%2593%2581%25E5%259B%25BD%25E4%25BA%25A7%25E5%2586%259C%25E6%259D%2591%25E9%25AB%2598%25E6%25B8%2585%25E7%2589%2588_%25E7%2590%2586%25E8%25AE%25BA%25E7%25A6%258F%25E5%2588%25A9%25E8%25A7%2586%25E9%25A2%2591%25E5%25AF%25BC%25E8%2588%25AA&kw=%25E5%259B%25BD%25E4%25BA%25A7%25E7%25BE%258E%25E5%25A5%25B3%25E4%25B8%2580%25E7%25BA%25A7%25E7%2589%25B9%25E9%25BB%2584%25E5%25A4%25A7%25E7%2589%2587_%25E6%2588%2590A%25E7%2589%2587%25E5%258D%2588%25E5%25A4%259C%25E5%25BA%258A%25E6%2588%258F%25E5%259C%25A8%25E7%25BA%25BF%25E8%25A7%2582%25E7%259C%258B%25E5%2585%258D%25E8%25B4%25B9_%25E4%25B9%2585%25E4%25B9%2585%25E7%25B2%25BE%25E5%2593%2581%25E5%259B%25BD%25E4%25BA%25A7%25E5%2586%259C%25E6%259D%2591%25E9%25AB%2598%25E6%25B8%2585%25E7%2589%2588_%25E7%2590%2586%25E8%25AE%25BA%25E7%25A6%258F%25E5%2588%25A9%25E8%25A7%2586%25E9%25A2%2591%25E5%25AF%25BC%25E8%2588%25AA%252C%25E4%25B9%2585%25E4%25B9%2585%25E7%25B2%25BE%25E5%2593%2581%25E5%259B%25BD%25E8%25AF%25AD%25E5%25AF%25B9%25E7%2599%25BD%25E6%2597%25A0%25E5%25BC%25B9%25E7%25AA%2597%252C%25E6%2598%258E%25E6%2597%25A5%25E8%258A%25B1%25E7%25BB%25AE%25E7%25BD%2597snis651%252C%25E8%25A7%2586%25E9%25A2%2591app&cu=http%253A%252F%252Fwww.chinadqwx.com%252Fuar3%252F%253FWN68%253D9m2BuYjy2P5QVnF55yTJRV%252F9LhiAAt%252FMT%252BKbm8QIT%252BMHAFzaldcGnNZ3pWSYBbzkonlkIpTVKgvisutZzhPqOw%253D%253D~_~Rx%253D3fqpvFxpqlVpsJr0&pu=
IP 103.143.19.103:0
ASN #4837 CHINA UNICOM China169 Backbone
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go1?id=21195469&rt=1662641042989&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=%25E5%259B%25BD%25E4%25BA%25A7%25E7%25BE%258E%25E5%25A5%25B3%25E4%25B8%2580%25E7%25BA%25A7%25E7%2589%25B9%25E9%25BB%2584%25E5%25A4%25A7%25E7%2589%2587_%25E6%2588%2590A%25E7%2589%2587%25E5%258D%2588%25E5%25A4%259C%25E5%25BA%258A%25E6%2588%258F%25E5%259C%25A8%25E7%25BA%25BF%25E8%25A7%2582%25E7%259C%258B%25E5%2585%258D%25E8%25B4%25B9_%25E4%25B9%2585%25E4%25B9%2585%25E7%25B2%25BE%25E5%2593%2581%25E5%259B%25BD&ing=1&ekc=&sid=1662641042989&tt=%25E5%259B%25BD%25E4%25BA%25A7%25E7%25BE%258E%25E5%25A5%25B3%25E4%25B8%2580%25E7%25BA%25A7%25E7%2589%25B9%25E9%25BB%2584%25E5%25A4%25A7%25E7%2589%2587_%25E6%2588%2590A%25E7%2589%2587%25E5%258D%2588%25E5%25A4%259C%25E5%25BA%258A%25E6%2588%258F%25E5%259C%25A8%25E7%25BA%25BF%25E8%25A7%2582%25E7%259C%258B%25E5%2585%258D%25E8%25B4%25B9_%25E4%25B9%2585%25E4%25B9%2585%25E7%25B2%25BE%25E5%2593%2581%25E5%259B%25BD%25E4%25BA%25A7%25E5%2586%259C%25E6%259D%2591%25E9%25AB%2598%25E6%25B8%2585%25E7%2589%2588_%25E7%2590%2586%25E8%25AE%25BA%25E7%25A6%258F%25E5%2588%25A9%25E8%25A7%2586%25E9%25A2%2591%25E5%25AF%25BC%25E8%2588%25AA&kw=%25E5%259B%25BD%25E4%25BA%25A7%25E7%25BE%258E%25E5%25A5%25B3%25E4%25B8%2580%25E7%25BA%25A7%25E7%2589%25B9%25E9%25BB%2584%25E5%25A4%25A7%25E7%2589%2587_%25E6%2588%2590A%25E7%2589%2587%25E5%258D%2588%25E5%25A4%259C%25E5%25BA%258A%25E6%2588%258F%25E5%259C%25A8%25E7%25BA%25BF%25E8%25A7%2582%25E7%259C%258B%25E5%2585%258D%25E8%25B4%25B9_%25E4%25B9%2585%25E4%25B9%2585%25E7%25B2%25BE%25E5%2593%2581%25E5%259B%25BD%25E4%25BA%25A7%25E5%2586%259C%25E6%259D%2591%25E9%25AB%2598%25E6%25B8%2585%25E7%2589%2588_%25E7%2590%2586%25E8%25AE%25BA%25E7%25A6%258F%25E5%2588%25A9%25E8%25A7%2586%25E9%25A2%2591%25E5%25AF%25BC%25E8%2588%25AA%252C%25E4%25B9%2585%25E4%25B9%2585%25E7%25B2%25BE%25E5%2593%2581%25E5%259B%25BD%25E8%25AF%25AD%25E5%25AF%25B9%25E7%2599%25BD%25E6%2597%25A0%25E5%25BC%25B9%25E7%25AA%2597%252C%25E6%2598%258E%25E6%2597%25A5%25E8%258A%25B1%25E7%25BB%25AE%25E7%25BD%2597snis651%252C%25E8%25A7%2586%25E9%25A2%2591app&cu=http%253A%252F%252Fwww.chinadqwx.com%252Fuar3%252F%253FWN68%253D9m2BuYjy2P5QVnF55yTJRV%252F9LhiAAt%252FMT%252BKbm8QIT%252BMHAFzaldcGnNZ3pWSYBbzkonlkIpTVKgvisutZzhPqOw%253D%253D~_~Rx%253D3fqpvFxpqlVpsJr0&pu= HTTP/1.1
Host: ia.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/
HTTP/1.1 200
Server: CloudWAF
Date: Thu, 08 Sep 2022 12:44:11 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: HWWAFSESID=23f4112735ff1cfc9c68; path=/
HWWAFSESTIME=1662641047093; path=/
pic1.semaobf1.com/20220523/CC65058047470938/CC65058047470938.jpg
5.180.83.41404 Not Found 146 B URL HTTP/1.1 pic1.semaobf1.com/20220523/CC65058047470938/CC65058047470938.jpg
IP 5.180.83.41:0
ASN #61317 Ipxo Uk Limited
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /20220523/CC65058047470938/CC65058047470938.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:10 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 146
Connection: keep-alive
sycdn.comtucdncom.com/pic/20200217bentu-gc/ttPPopkk.jpg
45.89.209.74200 OK 10 kB URL HTTP/1.1 sycdn.comtucdncom.com/pic/20200217bentu-gc/ttPPopkk.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 24e35d24d64dff827b1a0e1226ad4c14
e167116854aa74ad6d091e6774416e7d25cba268
bdcb33b1741c7999a9b303d5685a25b123b062468895ea5a1e942de62a05c768
GET /pic/20200217bentu-gc/ttPPopkk.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:11 GMT
Content-Type: image/jpeg
Content-Length: 9993
Last-Modified: Thu, 11 Aug 2022 12:16:45 GMT
Connection: keep-alive
ETag: "62f4f32d-2709"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/papa-PIC/avid5c5f03b579939.jpg
45.89.209.74200 OK 61 kB URL HTTP/1.1 sycdn.comtucdncom.com/papa-PIC/avid5c5f03b579939.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 795x458, components 3\012- data
Hash cf252bb8009094c59b5eee5ccaf38175
c938932a6f66bed3388120304287cbd302213e96
e3a3798a77465a015e9325da0841ee22d898de691f1ba5efe5fcd233121bed7d
GET /papa-PIC/avid5c5f03b579939.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:11 GMT
Content-Type: image/jpeg
Content-Length: 60626
Last-Modified: Thu, 11 Aug 2022 12:18:12 GMT
Connection: keep-alive
ETag: "62f4f384-ecd2"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/upload/vod/20211222-1/b48ae0c50350d5ba1e213ce0b3f88d6c.jpg
45.89.208.114200 OK 980 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/20211222-1/b48ae0c50350d5ba1e213ce0b3f88d6c.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, xresolution=72, yresolution=72], baseline, precision 8, 1280x720, components 3\012- data
Size 980 kB (979673 bytes)
Hash 5d987694b819a00bd600a26ec80d89b3
4a67de9439f864305a7f906b139d46f340412f7b
6aa168cb0925928447dd35c4d5ef2c7523b9f16b2d46fb29b6a533342efa1d8b
GET /upload/vod/20211222-1/b48ae0c50350d5ba1e213ce0b3f88d6c.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:10 GMT
Content-Type: image/jpeg
Content-Length: 979673
Last-Modified: Thu, 11 Aug 2022 04:55:05 GMT
Connection: keep-alive
ETag: "62f48ba9-ef2d9"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/upload/vod/20220104-1/e13e9d34d4c00cbc2f4ca437ec345ee6.jpg
45.89.208.114200 OK 516 kB URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/20220104-1/e13e9d34d4c00cbc2f4ca437ec345ee6.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, xresolution=120, yresolution=120], baseline, precision 8, 1280x720, components 3\012- data
Size 516 kB (515917 bytes)
Hash 0cce8dc88444434ff987e38d99aa5a05
eb1edb1a8cc53eef988191f0fcbdae6f44ec12a3
e0515f3df775a8868303b8bdec86444a6c8f1bf48690ae2dc10194c0c76c3ce0
GET /upload/vod/20220104-1/e13e9d34d4c00cbc2f4ca437ec345ee6.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:10 GMT
Content-Type: image/jpeg
Content-Length: 515917
Last-Modified: Thu, 11 Aug 2022 04:55:31 GMT
Connection: keep-alive
ETag: "62f48bc3-7df4d"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.tpttzy.com/upload/vod/20210930-1/c6b8673b75432df662c664b71f9f98cb.jpg
23.224.136.186200 OK 68 kB URL HTTP/1.1 img.tpttzy.com/upload/vod/20210930-1/c6b8673b75432df662c664b71f9f98cb.jpg
IP 23.224.136.186:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 800x539, components 3\012- data
Hash 123d65035ff72558d328f738e53cfdf8
c51acb442a351b75225178f25eb5a4e38bda6580
aaac4f5228f10cc4fd3827bf0d83bd57f7662be3945ecc23043b845429414312
GET /upload/vod/20210930-1/c6b8673b75432df662c664b71f9f98cb.jpg HTTP/1.1
Host: img.tpttzy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:11 GMT
Content-Type: image/jpeg
Content-Length: 67796
Last-Modified: Tue, 07 Jun 2022 09:11:40 GMT
Connection: keep-alive
ETag: "629f164c-108d4"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20220508/CEE93BF194AF3728/CEE93BF194AF3728.jpg
5.180.83.41200 OK 8.1 kB URL HTTP/1.1 pic1.semaobf1.com/20220508/CEE93BF194AF3728/CEE93BF194AF3728.jpg
IP 5.180.83.41:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 213x160, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash ff9203eaa9580bf23ffe71714ba39557
3a28ce6f1a5e8d6be9d9c8d85a347abda5f87ada
9fc019728e217f15954df7289aec80b221078db66822d903d42acec732bf3b38
GET /20220508/CEE93BF194AF3728/CEE93BF194AF3728.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:10 GMT
Content-Type: image/jpeg
Content-Length: 8086
Last-Modified: Tue, 06 Sep 2022 14:32:45 GMT
Connection: keep-alive
ETag: "63175a0d-1f96"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20220427/2AE1044DC5941762/2AE1044DC5941762.jpg
5.180.83.41404 Not Found 146 B URL HTTP/1.1 pic1.semaobf1.com/20220427/2AE1044DC5941762/2AE1044DC5941762.jpg
IP 5.180.83.41:0
ASN #61317 Ipxo Uk Limited
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /20220427/2AE1044DC5941762/2AE1044DC5941762.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:10 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 146
Connection: keep-alive
img.sewozyimg.com/upload/vod/20220405-2/ede4060233600846b18c29f3064775a2.jpg
154.12.54.74200 OK 8.4 kB URL HTTP/1.1 img.sewozyimg.com/upload/vod/20220405-2/ede4060233600846b18c29f3064775a2.jpg
IP 154.12.54.74:0
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash 51507b9726f353eb72aefc2b11210858
4fcc862be8178f7e4ef9896fc3d5c97e14b632bd
3ca07034b657ca8e7b496fddeec24c8c31e6ac85c0c399a5bb4d66db416f2b61
GET /upload/vod/20220405-2/ede4060233600846b18c29f3064775a2.jpg HTTP/1.1
Host: img.sewozyimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:11 GMT
Content-Type: image/jpeg
Content-Length: 8391
Last-Modified: Sun, 04 Sep 2022 18:07:49 GMT
Connection: keep-alive
ETag: "6314e975-20c7"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/upload/vod/20200806-1/d59ad6791ae1acc0c3390e1debd63333.jpg
45.89.209.74200 OK 96 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20200806-1/d59ad6791ae1acc0c3390e1debd63333.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 791x512, components 3\012- data
Hash 67df210f2b035925297e7b81e22d7b33
3f2ce6c93f11d4e763ce626f88d63c9c04efa5ed
74aef7b433ec5c3f33f9c00df98228473f9976d4b1297ddde038c3c5c63b640a
GET /upload/vod/20200806-1/d59ad6791ae1acc0c3390e1debd63333.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:11 GMT
Content-Type: image/jpeg
Content-Length: 95758
Last-Modified: Thu, 11 Aug 2022 12:15:35 GMT
Connection: keep-alive
ETag: "62f4f2e7-1760e"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/upload/vod/20200920-1/0ca431bb2e8d8b6fac7897c8e8d69088.jpg
45.89.209.74200 OK 68 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20200920-1/0ca431bb2e8d8b6fac7897c8e8d69088.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 1280x720, components 3\012- data
Hash c178cc831621253ae46ef7eb490ecca8
fbdda845461f59c184ebbfc55632a0a76c112edb
200f7c57124a1db21d0a06dd5d99b8299710610982ba27f2e39dedd2f6849d15
GET /upload/vod/20200920-1/0ca431bb2e8d8b6fac7897c8e8d69088.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:11 GMT
Content-Type: image/jpeg
Content-Length: 67546
Last-Modified: Thu, 11 Aug 2022 12:16:06 GMT
Connection: keep-alive
ETag: "62f4f306-107da"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/upload/vod/20201107-1/9bed515d1a5a830c66a655a5a3780cb4.jpg
45.89.209.74200 OK 82 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20201107-1/9bed515d1a5a830c66a655a5a3780cb4.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 920x580, components 3\012- data
Hash 8a07e7039ed115a7d25287092829b53d
291a6347d87f0f2c1a8bbfd3509bcad77eb6a92b
eea19f87ff0dfee0da059070cb7a7ddc946094bfdcd0094691729c9465dd68dc
GET /upload/vod/20201107-1/9bed515d1a5a830c66a655a5a3780cb4.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:11 GMT
Content-Type: image/jpeg
Content-Length: 82385
Last-Modified: Thu, 11 Aug 2022 12:16:23 GMT
Connection: keep-alive
ETag: "62f4f317-141d1"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20220409/A5B6FB90A1D69657/A5B6FB90A1D69657.jpg
5.180.83.41200 OK 14 kB URL HTTP/1.1 pic1.semaobf1.com/20220409/A5B6FB90A1D69657/A5B6FB90A1D69657.jpg
IP 5.180.83.41:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash a511a407fad2d9aa409c2fa4b43e98d5
f0c9118a3ec82ad97bb4e5f706b80e25c86ae2f5
b2bf25de7c30594995a83a73f550968367b2ae462dd233d03024d109bfdd56e3
GET /20220409/A5B6FB90A1D69657/A5B6FB90A1D69657.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:10 GMT
Content-Type: image/jpeg
Content-Length: 14240
Last-Modified: Tue, 06 Sep 2022 14:29:01 GMT
Connection: keep-alive
ETag: "6317592d-37a0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20220103/24BE706197990279/24BE706197990279.jpg
5.180.83.41404 Not Found 146 B URL HTTP/1.1 pic1.semaobf1.com/20220103/24BE706197990279/24BE706197990279.jpg
IP 5.180.83.41:0
ASN #61317 Ipxo Uk Limited
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /20220103/24BE706197990279/24BE706197990279.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:10 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 146
Connection: keep-alive
pic1.semaobf1.com/20220425/4F093461B482BFB0/4F093461B482BFB0.jpg
5.180.83.41200 OK 5.3 kB URL HTTP/1.1 pic1.semaobf1.com/20220425/4F093461B482BFB0/4F093461B482BFB0.jpg
IP 5.180.83.41:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 58fb721fb9c9075c93d20baf2d30138d
919229922e629ed6c346ba45665af37b98006dba
1a84c3485808b9f2f17041eb688298e951d04f70619e89f7460e177f9c6c3fef
GET /20220425/4F093461B482BFB0/4F093461B482BFB0.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:10 GMT
Content-Type: image/jpeg
Content-Length: 5271
Last-Modified: Tue, 06 Sep 2022 14:29:39 GMT
Connection: keep-alive
ETag: "63175953-1497"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.sewozyimg.com/upload/vod/20220405-1/a879de8a012c473936d516bc2f57b8b2.jpg
154.12.54.74200 OK 116 kB URL HTTP/1.1 img.sewozyimg.com/upload/vod/20220405-1/a879de8a012c473936d516bc2f57b8b2.jpg
IP 154.12.54.74:0
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 835x535, components 3\012- data
Size 116 kB (115813 bytes)
Hash 3b4f650538ce985d1b964ce1bfe6d301
135c03cf0ad8b876c701f9f33d8e5a864b89bbee
24fc0618bb3d78a9aa9815cac8bfa03c037a2219b3dfc2abedec30270c2f614b
GET /upload/vod/20220405-1/a879de8a012c473936d516bc2f57b8b2.jpg HTTP/1.1
Host: img.sewozyimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:11 GMT
Content-Type: image/jpeg
Content-Length: 115813
Last-Modified: Sun, 04 Sep 2022 18:12:22 GMT
Connection: keep-alive
ETag: "6314ea86-1c465"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.sewozyimg.com/upload/vod/20220428-1/f3227e322a608a7875cf186b7181ef0a.jpg
154.12.54.74200 OK 115 kB URL HTTP/1.1 img.sewozyimg.com/upload/vod/20220428-1/f3227e322a608a7875cf186b7181ef0a.jpg
IP 154.12.54.74:0
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 960x540, components 3\012- data
Size 115 kB (114932 bytes)
Hash 925170c9ce3dffc2e9cc0fd9f662d8df
c9c543b8864c65fcb58941082a0b59bfa485da44
2b6feb7b735a9341103958957406fba90142e017e34776c57438796e698e35bc
GET /upload/vod/20220428-1/f3227e322a608a7875cf186b7181ef0a.jpg HTTP/1.1
Host: img.sewozyimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:11 GMT
Content-Type: image/jpeg
Content-Length: 114932
Last-Modified: Sun, 04 Sep 2022 18:06:23 GMT
Connection: keep-alive
ETag: "6314e91f-1c0f4"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/papa-PIC/avid5b92210968f45.jpg
45.89.209.74200 OK 47 kB URL HTTP/1.1 sycdn.comtucdncom.com/papa-PIC/avid5b92210968f45.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 795x458, components 3\012- data
Hash 6c2eb325e22ce8aef2c573af6d734967
c43903f8af833a880f8dd6e09f30b0ff3a10e250
3aa13fad10de505ca1a5a3c53f00aa33a0b8ba6f926ea456747db5c1c60e57df
GET /papa-PIC/avid5b92210968f45.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:11 GMT
Content-Type: image/jpeg
Content-Length: 46894
Last-Modified: Thu, 11 Aug 2022 12:16:36 GMT
Connection: keep-alive
ETag: "62f4f324-b72e"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/pic/reregc-pic/GhRSBZJ7.jpg
45.89.209.74200 OK 5.5 kB URL HTTP/1.1 sycdn.comtucdncom.com/pic/reregc-pic/GhRSBZJ7.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 363x272, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 2b489424593a936048a37543aeec7a7b
7583b8a48611e2cb39684acbf209db840d088860
4964d914a58ccfc5ad0deb5da0acb167263d52d078a9e2cb111b95b60227f9cd
GET /pic/reregc-pic/GhRSBZJ7.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:11 GMT
Content-Type: image/jpeg
Content-Length: 5472
Last-Modified: Thu, 11 Aug 2022 12:18:52 GMT
Connection: keep-alive
ETag: "62f4f3ac-1560"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.sewozyimg.com/upload/vod/20220405-2/499a1ce118892b4026ac7f6d51a186a7.jpg
154.12.54.74200 OK 118 kB URL HTTP/1.1 img.sewozyimg.com/upload/vod/20220405-2/499a1ce118892b4026ac7f6d51a186a7.jpg
IP 154.12.54.74:0
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 820x462, components 3\012- data
Size 118 kB (117791 bytes)
Hash f83dd27c2a8c0c043cbc0ce82f253e64
a24770cec89d43ab779022e02093abfa7491aafa
3917593f9fcf3cb55a72d5e2740f7097f0200647de198b8ba66354fcf8874fb1
GET /upload/vod/20220405-2/499a1ce118892b4026ac7f6d51a186a7.jpg HTTP/1.1
Host: img.sewozyimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:11 GMT
Content-Type: image/jpeg
Content-Length: 117791
Last-Modified: Sun, 04 Sep 2022 18:12:15 GMT
Connection: keep-alive
ETag: "6314ea7f-1cc1f"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.sewozyimg.com/upload/vod/20220525-1/185363d3dea80aac406fde23282b9b98.jpg
154.12.54.74200 OK 65 kB URL HTTP/1.1 img.sewozyimg.com/upload/vod/20220525-1/185363d3dea80aac406fde23282b9b98.jpg
IP 154.12.54.74:0
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 980x550, components 3\012- data
Hash db30b6ab0e5e542e8b95982e7aa0a5a1
4c55c4a2aa1b49149397665101a3ee7a6279bbbc
e9621b0f3055555737d89069e7bb947232558705e42db2cb46f42982b2b59f80
GET /upload/vod/20220525-1/185363d3dea80aac406fde23282b9b98.jpg HTTP/1.1
Host: img.sewozyimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:11 GMT
Content-Type: image/jpeg
Content-Length: 64564
Last-Modified: Sun, 04 Sep 2022 16:15:51 GMT
Connection: keep-alive
ETag: "6314cf37-fc34"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.sewozyimg.com/upload/vod/20220508-1/270a0e507b4acec24e88611692bf3939.jpg
154.12.54.74200 OK 72 kB URL HTTP/1.1 img.sewozyimg.com/upload/vod/20220508-1/270a0e507b4acec24e88611692bf3939.jpg
IP 154.12.54.74:0
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 800x450, components 3\012- data
Hash c418f66fdf5ce20ae3a1b9b12e19232c
d0af4641089d10136e99e1391e049629e5ada0d0
0773cdd42f14170679e961fbd5344963e4e0f571870eedd9d138113d574c1174
GET /upload/vod/20220508-1/270a0e507b4acec24e88611692bf3939.jpg HTTP/1.1
Host: img.sewozyimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:11 GMT
Content-Type: image/jpeg
Content-Length: 72267
Last-Modified: Sun, 04 Sep 2022 18:07:38 GMT
Connection: keep-alive
ETag: "6314e96a-11a4b"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c77e9f66b097a41d340765ff1ba2e9b3
9f56ff62a4c3ac1a25e0b0f7390375e316f1423a
82c7eb2b61f41ffbd86953782d9c21e3d3e4f1f50bfe82b04559af659fc72775
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "82C7EB2B61F41FFBD86953782D9C21E3D3E4F1F50BFE82B04559AF659FC72775"
Last-Modified: Wed, 07 Sep 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2777
Expires: Thu, 08 Sep 2022 13:30:29 GMT
Date: Thu, 08 Sep 2022 12:44:12 GMT
Connection: keep-alive
sycdn.comtucdncom.com/upload/vod/20211125-1/71925b18d82957cf6f024da708f50387.jpg
45.89.209.74200 OK 436 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20211125-1/71925b18d82957cf6f024da708f50387.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, xresolution=120, yresolution=120], baseline, precision 8, 1280x720, components 3\012- data
Size 436 kB (436312 bytes)
Hash 1b3d284a0a10fce8396b5c8208014382
d3aba76ad9b9ff85d92b3c4d6a2394d5450e72fe
0baf954b7a2b76067ca328186183f44c0cd6f20cdeef6d27ea47fb28a55d3fc0
GET /upload/vod/20211125-1/71925b18d82957cf6f024da708f50387.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:11 GMT
Content-Type: image/jpeg
Content-Length: 436312
Last-Modified: Thu, 11 Aug 2022 12:15:19 GMT
Connection: keep-alive
ETag: "62f4f2d7-6a858"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/pic/reregc-pic/cHAy50Ea.jpg
45.89.209.74200 OK 11 kB URL HTTP/1.1 sycdn.comtucdncom.com/pic/reregc-pic/cHAy50Ea.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash c1920312dd89af41210dac1e5ab77650
c2e0db92c0e93bf39f0cd07bc105e31ad781ed7b
e89c83568ca1504a2526aec0c08aac66d27aea83043b498d0bdfefc13c1ffe44
GET /pic/reregc-pic/cHAy50Ea.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:11 GMT
Content-Type: image/jpeg
Content-Length: 10679
Last-Modified: Thu, 11 Aug 2022 12:16:58 GMT
Connection: keep-alive
ETag: "62f4f33a-29b7"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/papa-PIC/avid59e6cbc2cf88e.jpg
45.89.209.74200 OK 30 kB URL HTTP/1.1 sycdn.comtucdncom.com/papa-PIC/avid59e6cbc2cf88e.jpg
IP 45.89.209.74:0
File type JPEG image data, baseline, precision 8, 1024x576, components 3\012- data
Hash bde9452352be1a2c30c27ca05152b6ae
5ebafb95d6153b5cd2128d45aa44ab9626e7a993
e69ca8456b5af6495a301c1d911c6f021e45a097e6e24b729bee5397a820a1d8
GET /papa-PIC/avid59e6cbc2cf88e.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:11 GMT
Content-Type: image/jpeg
Content-Length: 30230
Last-Modified: Thu, 11 Aug 2022 12:27:59 GMT
Connection: keep-alive
ETag: "62f4f5cf-7616"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/upload/vod/20210330-1/4ab93bde1abf8b5001456d4748c4ead8.jpg
45.89.209.74200 OK 5.6 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20210330-1/4ab93bde1abf8b5001456d4748c4ead8.jpg
IP 45.89.209.74:0
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash 447ac0f8394fa61d8d28d373a64a0c7a
eda470b6e96c5d8cc9529b846d3a7ee23f6ecb4e
cc6ea5b177a5373cf5da45070c5991184cc4c4c2b7efeab572c25930b5698a69
GET /upload/vod/20210330-1/4ab93bde1abf8b5001456d4748c4ead8.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:12 GMT
Content-Type: image/jpeg
Content-Length: 5611
Last-Modified: Thu, 11 Aug 2022 12:40:18 GMT
Connection: keep-alive
ETag: "62f4f8b2-15eb"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sycdn.comtucdncom.com/papaduanpian-img/avid56fa62a291cdf.jpg
45.89.209.74200 OK 27 kB URL HTTP/1.1 sycdn.comtucdncom.com/papaduanpian-img/avid56fa62a291cdf.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 512x511, segment length 16, comment: "Lavc57.27.101", baseline, precision 8, 1022x576, components 3\012- data
Hash a682725c83ebd6e7aece647cd57203d9
81465f38470bd552bef94a4f8d49d944b0f20237
0972dac996ff04e165cd629040ce298b57d75a056046bf2c288652d3be1a2e1e
GET /papaduanpian-img/avid56fa62a291cdf.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:12 GMT
Content-Type: image/jpeg
Content-Length: 26833
Last-Modified: Thu, 11 Aug 2022 12:16:20 GMT
Connection: keep-alive
ETag: "62f4f314-68d1"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 27bd819cde3a3beb3af590cddc0c452b
d6281bbd2d6868a309063e8d8f7921bcac89ed98
b08138d3438f2fc6355b28b31b512359894428d32b56942a6f6fae3f7a79c3bd
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 12:44:12 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 08 Sep 2022 10:55:25 GMT
Expires: Thu, 15 Sep 2022 10:55:24 GMT
Etag: "d6281bbd2d6868a309063e8d8f7921bcac89ed98"
Cache-Control: max-age=597671,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7477c62fcc99b515-OSL
sycdn.comtucdncom.com/papaduanpian-img/avid5cedf770544ea.jpg
45.89.209.74200 OK 83 kB URL HTTP/1.1 sycdn.comtucdncom.com/papaduanpian-img/avid5cedf770544ea.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 795x458, components 3\012- data
Hash 71ca009fa6018120d403abd9f6a4f873
c6f3458203cdb46421ebf6481444ebc4fd5a97a9
98b3090866424a937a93ae256cea08e2440ecafeb22c258d5bd4a11ae9faaee8
GET /papaduanpian-img/avid5cedf770544ea.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:11 GMT
Content-Type: image/jpeg
Content-Length: 83001
Last-Modified: Thu, 11 Aug 2022 12:16:47 GMT
Connection: keep-alive
ETag: "62f4f32f-14439"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
hm.baidu.com/hm.js?384c8b3c3725a56957c2805fd35722fe
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?384c8b3c3725a56957c2805fd35722fe
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (626)
Hash 93372b896dd327c1c2f205e6622d8b85
7950229aab4dc38c6f88d2c3ce338bc50871da35
987f8bfb97e0c4b98fe54ae249b56252e5c5f4dfe70994b63cec37b30f1c43cc
GET /hm.js?384c8b3c3725a56957c2805fd35722fe HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11339
Content-Type: application/javascript
Date: Thu, 08 Sep 2022 12:44:11 GMT
Etag: 3a009ee31a9019a50e6fdc86cb8bee30
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=5576144CF72191A7; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
sycdn.comtucdncom.com/papa-PIC/avid598bfe600cf35.jpg
45.89.209.74200 OK 40 kB URL HTTP/1.1 sycdn.comtucdncom.com/papa-PIC/avid598bfe600cf35.jpg
IP 45.89.209.74:0
File type JPEG image data, baseline, precision 8, 1026x576, components 3\012- data
Hash 38b61bdcfe577e54f35f340907d710f2
7d4552dca7bc9780b23ab41c4e42c40f709ed1e3
9cb532ab54cac600350c0419a91607dd1494017d983dd78a2230291943d382e6
GET /papa-PIC/avid598bfe600cf35.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:12 GMT
Content-Type: image/jpeg
Content-Length: 40217
Last-Modified: Thu, 11 Aug 2022 12:16:07 GMT
Connection: keep-alive
ETag: "62f4f307-9d19"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
www.chinadqwx.com/upload/vod/20220512-1/2db7453583fef406d001f97dd3ab2ffc.jpg
173.231.37.114404 Not Found 95 B URL HTTP/1.1 www.chinadqwx.com/upload/vod/20220512-1/2db7453583fef406d001f97dd3ab2ffc.jpg
IP 173.231.37.114:0
File type ASCII text, with no line terminators
Hash ce07798e85e7ceafe95c9d83a1fdbe4d
8daa79993ea8863f1f0ea4c1a7aec17e578c8b15
8a83d82aca300df0f137c0ada78e4fcf099ce91ac3837ec239af25af8db8e1cc
Analyzer Verdict Alert quad9 Sinkholed
GET /upload/vod/20220512-1/2db7453583fef406d001f97dd3ab2ffc.jpg HTTP/1.1
Host: www.chinadqwx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/uar3/?WN68=9m2BuYjy2P5QVnF55yTJRV/9LhiAAt/MT+Kbm8QIT+MHAFzaldcGnNZ3pWSYBbzkonlkIpTVKgvisutZzhPqOw==&Rx=3fqpvFxpqlVpsJr0
Cookie: __tins__21195469=%7B%22sid%22%3A%201662641042989%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201662642842989%7D; __51cke__=; __51laig__=1
HTTP/1.1 404 Not Found
Server: nginx
Date: Thu, 08 Sep 2022 12:44:29 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
img.sewozyimg.com/upload/vod/20220510-1/18c10ef5b377405c94cfd2d591bf8f49.jpg
154.12.54.74404 Not Found 146 B URL HTTP/1.1 img.sewozyimg.com/upload/vod/20220510-1/18c10ef5b377405c94cfd2d591bf8f49.jpg
IP 154.12.54.74:0
ASN #22769 DDOSING-BGP-NETWORK
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /upload/vod/20220510-1/18c10ef5b377405c94cfd2d591bf8f49.jpg HTTP/1.1
Host: img.sewozyimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:12 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 146
Connection: keep-alive
sycdn.comtucdncom.com/papa-PIC/avid5880847fc9730.jpg
45.89.209.74200 OK 13 kB URL HTTP/1.1 sycdn.comtucdncom.com/papa-PIC/avid5880847fc9730.jpg
IP 45.89.209.74:0
File type JPEG image data, baseline, precision 8, 326x576, components 3\012- data
Hash 38ba0630d5d1a6175056fe99ba88c19c
631cb5cbb8bf9cf8332eb77277680603143d55f6
7a71b5db898f272e4807df59bc52cc82a4c798a962bb0ec225fa8ee2df3946ba
GET /papa-PIC/avid5880847fc9730.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:12 GMT
Content-Type: image/jpeg
Content-Length: 12653
Last-Modified: Thu, 11 Aug 2022 12:16:22 GMT
Connection: keep-alive
ETag: "62f4f316-316d"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d0ab17f1ddbf1cc70575ad1b44b67923
d12f3cf2b6ff9d89e938eb1ad3d785f016bb5832
54c3c5b69c90003530e01166a124b7c90c8b08da598877e9ebef60a3f87d009e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "54C3C5B69C90003530E01166A124B7C90C8B08DA598877E9EBEF60A3F87D009E"
Last-Modified: Wed, 07 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4854
Expires: Thu, 08 Sep 2022 14:05:06 GMT
Date: Thu, 08 Sep 2022 12:44:12 GMT
Connection: keep-alive
sycdn.comtucdncom.com/papa-PIC/avid5c04b873f259f.jpg
45.89.209.74200 OK 57 kB URL HTTP/1.1 sycdn.comtucdncom.com/papa-PIC/avid5c04b873f259f.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 795x458, components 3\012- data
Hash 973f03c72bed20768ace4a85b77beb8e
830c40342d8336920c87010d0983039907992e7c
0d9dbc33b1d37c5ed9ee68f855b2e4d428ab5650e4131fd39018d8a1b8cfe829
GET /papa-PIC/avid5c04b873f259f.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:12 GMT
Content-Type: image/jpeg
Content-Length: 57403
Last-Modified: Thu, 11 Aug 2022 12:16:04 GMT
Connection: keep-alive
ETag: "62f4f304-e03b"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 64d9d2bfde2b52d6045638651ddd8066
dbd27b8de86073045a285adce5fec3f352f7d667
69334eea54f08c2dcc57a10330decd0d6d3f3d2cdc2c19ddf9be50d8fb8a9f8c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "69334EEA54F08C2DCC57A10330DECD0D6D3F3D2CDC2C19DDF9BE50D8FB8A9F8C"
Last-Modified: Thu, 08 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12638
Expires: Thu, 08 Sep 2022 16:14:50 GMT
Date: Thu, 08 Sep 2022 12:44:12 GMT
Connection: keep-alive
pic1.semaobf1.com/20220110/F0BB1C2C3A6ACAD3/F0BB1C2C3A6ACAD3.jpg
5.180.83.41404 Not Found 146 B URL HTTP/1.1 pic1.semaobf1.com/20220110/F0BB1C2C3A6ACAD3/F0BB1C2C3A6ACAD3.jpg
IP 5.180.83.41:0
ASN #61317 Ipxo Uk Limited
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /20220110/F0BB1C2C3A6ACAD3/F0BB1C2C3A6ACAD3.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:11 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 146
Connection: keep-alive
pic1.semaobf1.com/20211204/06B916BC8C3467E8/06B916BC8C3467E8.jpg
5.180.83.41200 OK 162 kB URL HTTP/1.1 pic1.semaobf1.com/20211204/06B916BC8C3467E8/06B916BC8C3467E8.jpg
IP 5.180.83.41:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 960x540, components 3\012- data
Size 162 kB (162063 bytes)
Hash b9f087a2a27f6062c370bbc144e9de49
9b296f34a565f2557249e3ddf132906aa13c440a
551175478685d75b1f76b493827e551ef555c92e4e890be70d0e9a140b5c0d97
GET /20211204/06B916BC8C3467E8/06B916BC8C3467E8.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:10 GMT
Content-Type: image/jpeg
Content-Length: 162063
Last-Modified: Tue, 06 Sep 2022 14:31:00 GMT
Connection: keep-alive
ETag: "631759a4-2790f"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic1.semaobf1.com/20211212/9D814105F86ADD4D/9D814105F86ADD4D.jpg
5.180.83.41200 OK 84 kB URL HTTP/1.1 pic1.semaobf1.com/20211212/9D814105F86ADD4D/9D814105F86ADD4D.jpg
IP 5.180.83.41:0
ASN #61317 Ipxo Uk Limited
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 800x450, components 3\012- data
Hash 60b99090a6735cec56ae8cb0b2acf75b
e1fdb2cd98d5f165d52843137a3f5eb3280c68be
80903b3d6834dce52c0188b928bca85f174cffde7a324a320e816b326fd054f3
GET /20211212/9D814105F86ADD4D/9D814105F86ADD4D.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:10 GMT
Content-Type: image/jpeg
Content-Length: 83553
Last-Modified: Tue, 06 Sep 2022 14:27:27 GMT
Connection: keep-alive
ETag: "631758cf-14661"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
kvhaa.com/7d67cff6dd7d3196a8bd9d446a9d6fef.gif
78.46.107.74301 Moved Permanently 162 B URL HTTP/2 kvhaa.com/7d67cff6dd7d3196a8bd9d446a9d6fef.gif
IP 78.46.107.74:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /7d67cff6dd7d3196a8bd9d446a9d6fef.gif HTTP/1.1
Host: kvhaa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Thu, 08 Sep 2022 12:44:12 GMT
content-type: text/html
content-length: 162
location: https://nvhaaa.top/7d67cff6dd7d3196a8bd9d446a9d6fef.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
sycdn.comtucdncom.com/Miyagc-pic/6A30F03A7AED2D7B.jpg
45.89.209.74200 OK 51 kB URL HTTP/1.1 sycdn.comtucdncom.com/Miyagc-pic/6A30F03A7AED2D7B.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 310x208, components 3\012- data
Hash 871426435484ca4bebbc48c3bf263e64
1aaa6d11fa716ae2734d14fe32aa5dda5f501a96
f961fd96ef926e8f701731940826d659e759cb759ef83f679724eaa48bc977c7
GET /Miyagc-pic/6A30F03A7AED2D7B.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:12 GMT
Content-Type: image/jpeg
Content-Length: 51286
Last-Modified: Thu, 11 Aug 2022 12:16:21 GMT
Connection: keep-alive
ETag: "62f4f315-c856"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 33cd005b39d1c050e01c74924ef88ba0
c63e1cc27c6c39a6d9555cd7a21d57cc453fe763
a41b7598ab90236451f91775aaeedbf7d3bbc934946d73198d89e09368a3becb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A41B7598AB90236451F91775AAEEDBF7D3BBC934946D73198D89E09368A3BECB"
Last-Modified: Wed, 07 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6264
Expires: Thu, 08 Sep 2022 14:28:36 GMT
Date: Thu, 08 Sep 2022 12:44:12 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 33cd005b39d1c050e01c74924ef88ba0
c63e1cc27c6c39a6d9555cd7a21d57cc453fe763
a41b7598ab90236451f91775aaeedbf7d3bbc934946d73198d89e09368a3becb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A41B7598AB90236451F91775AAEEDBF7D3BBC934946D73198D89E09368A3BECB"
Last-Modified: Wed, 07 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3366
Expires: Thu, 08 Sep 2022 13:40:18 GMT
Date: Thu, 08 Sep 2022 12:44:12 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 63f87946ebe53c0dc9b6b5ea95095f5f
36bfec36966764f2fbf7bb42c4f525b27eefe3b2
626d75bccee34a92f7b2f15a2a34440da40e82b8b4a20ab4308f6fb468b12f0a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "626D75BCCEE34A92F7B2F15A2A34440DA40E82B8B4A20AB4308F6FB468B12F0A"
Last-Modified: Wed, 07 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=275
Expires: Thu, 08 Sep 2022 12:48:47 GMT
Date: Thu, 08 Sep 2022 12:44:12 GMT
Connection: keep-alive
sycdn.comtucdncom.com/upload/vod/20201226-1/ebed5275143bcb8b8503d0acac856430.jpg
45.89.209.74200 OK 34 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20201226-1/ebed5275143bcb8b8503d0acac856430.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.18.100", baseline, precision 8, 1280x720, components 3\012- data
Hash e3ae32bdaa5843a8327ec964ef3215b5
d2d62e3c45e42d3071da99830ea75ddcd1a4f48a
600aae0156ff6759346485e54b205a854a490b593bba12e23649f8091e232f42
GET /upload/vod/20201226-1/ebed5275143bcb8b8503d0acac856430.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:12 GMT
Content-Type: image/jpeg
Content-Length: 34200
Last-Modified: Thu, 11 Aug 2022 12:16:21 GMT
Connection: keep-alive
ETag: "62f4f315-8598"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 820c95d597a1313ac93952de9ae46423
fe8a393803099742ad3990de95b00b230bef686e
aa1196495643e7fcab457f38967a85362f3dfd48e6b4efbe590ac3ffa5b5b954
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AA1196495643E7FCAB457F38967A85362F3DFD48E6B4EFBE590AC3FFA5B5B954"
Last-Modified: Wed, 07 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=927
Expires: Thu, 08 Sep 2022 12:59:39 GMT
Date: Thu, 08 Sep 2022 12:44:12 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 08ebc1baec02ffbbc5fd461ccc1244fc
764d28f65908c2f9a12ff8480b22ce43835d863e
880ac3580f00da79ef927520885983461a819ee10ae1fd96fe256a5ad0580d0b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "880AC3580F00DA79EF927520885983461A819EE10AE1FD96FE256A5AD0580D0B"
Last-Modified: Wed, 07 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11522
Expires: Thu, 08 Sep 2022 15:56:14 GMT
Date: Thu, 08 Sep 2022 12:44:12 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f9019b13a754760186c6dc8115838256
c35d02b2ef73ed3413e4f3e8d82f3f2c8615ac2a
fc4f11c6b076ced784da1a66fd568f25f1934079e7204055622027dce3f22abc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC4F11C6B076CED784DA1A66FD568F25F1934079E7204055622027DCE3F22ABC"
Last-Modified: Tue, 06 Sep 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17033
Expires: Thu, 08 Sep 2022 17:28:05 GMT
Date: Thu, 08 Sep 2022 12:44:12 GMT
Connection: keep-alive
kvezz.com/082641934c5fa55c29cb6cef6f47ade6.gif
104.143.94.110301 Moved Permanently 162 B URL HTTP/2 kvezz.com/082641934c5fa55c29cb6cef6f47ade6.gif
IP 104.143.94.110:0
ASN #201106 Spartan Host Ltd
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /082641934c5fa55c29cb6cef6f47ade6.gif HTTP/1.1
Host: kvezz.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Thu, 08 Sep 2022 12:44:12 GMT
content-type: text/html
content-length: 162
location: https://acoossn.top/082641934c5fa55c29cb6cef6f47ade6.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
sycdn.comtucdncom.com/upload/vod/20201021-1/da7b048698c3a0371a579c3761ae72c8.jpg
45.89.209.74200 OK 56 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20201021-1/da7b048698c3a0371a579c3761ae72c8.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 980x550, components 3\012- data
Hash 4595df8d74099e1c95389a8862a19e95
b517c7c5258633cef23054f0a567e704a46ec495
6ab2c178f80ca39de1ca331235b494c5c66b215d437424cf0b74b5367fc97276
GET /upload/vod/20201021-1/da7b048698c3a0371a579c3761ae72c8.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:12 GMT
Content-Type: image/jpeg
Content-Length: 56085
Last-Modified: Thu, 11 Aug 2022 12:16:17 GMT
Connection: keep-alive
ETag: "62f4f311-db15"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash e788665d06ab6e1173fafa4531130ded
3bd71aae0b1d008aff8307aa8234fb284ae8f86f
582811c1347f6506782a35fcfcaf236a81949cdbe376476f78a040ef205cc422
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 12:44:12 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 05 Sep 2022 13:23:14 GMT
Expires: Mon, 12 Sep 2022 13:23:13 GMT
Etag: "3bd71aae0b1d008aff8307aa8234fb284ae8f86f"
Cache-Control: max-age=347340,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7477c6315b7cb51e-OSL
sycdn.comtucdncom.com/upload/vod/20201107-1/0bfa1781b3d1e21650131f65fc481197.jpg
45.89.209.74200 OK 184 kB URL HTTP/1.1 sycdn.comtucdncom.com/upload/vod/20201107-1/0bfa1781b3d1e21650131f65fc481197.jpg
IP 45.89.209.74:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 941x541, components 3\012- data
Size 184 kB (184205 bytes)
Hash 29805d421cc8df3b8fbba0b1eb606ca5
753cda1ca8a9145af302c87be61a57985f79430e
0d12251675357daef59c4d021c7293ac3780d63f36f814b3db3d601e04be9391
GET /upload/vod/20201107-1/0bfa1781b3d1e21650131f65fc481197.jpg HTTP/1.1
Host: sycdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 08 Sep 2022 12:44:12 GMT
Content-Type: image/jpeg
Content-Length: 184205
Last-Modified: Thu, 11 Aug 2022 12:16:19 GMT
Connection: keep-alive
ETag: "62f4f313-2cf8d"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash efb106c7099a2d47ce3192f61b645a44
5db95f4860401808d0e0650cf279ddc99dce3ee0
3534e1cf8c658ce1ccdf929d690839b0cd2386477e01707ebd0c07a8eccce4eb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3534E1CF8C658CE1CCDF929D690839B0CD2386477E01707EBD0C07A8ECCCE4EB"
Last-Modified: Wed, 07 Sep 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2072
Expires: Thu, 08 Sep 2022 13:18:44 GMT
Date: Thu, 08 Sep 2022 12:44:12 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash cd07836a48fb351896e199830a37a105
19699b2f3c8ba9cc360ba49751662c60ea1a6038
0d9ac9229f5315c9e14b8ad9176a7522b2ec9f6c8d9a46c34c4b5bafb8c6e67b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0D9AC9229F5315C9E14B8AD9176A7522B2EC9F6C8D9A46C34C4B5BAFB8C6E67B"
Last-Modified: Tue, 06 Sep 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18795
Expires: Thu, 08 Sep 2022 17:57:27 GMT
Date: Thu, 08 Sep 2022 12:44:12 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b329117fec9182d8099098aab5110171
ab0d51780fe8aa7f2ee2bf37e95336b2607956bc
8aca2f4d5f3984dba4a15ae1f47772d4f90fd59517773188ffe3804839fe790f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8ACA2F4D5F3984DBA4A15AE1F47772D4F90FD59517773188FFE3804839FE790F"
Last-Modified: Wed, 07 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9061
Expires: Thu, 08 Sep 2022 15:15:13 GMT
Date: Thu, 08 Sep 2022 12:44:12 GMT
Connection: keep-alive
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash abb297ef09fe1aef5312920166f0fbba
e84a9a13611fa18e279d96894941e9d41eedfe67
bc098a599e2aca4587f63cfc996f54e9aa9a7c1791bf6f991a4bdd2e478ff9ae
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 12:44:12 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Mon, 12 Sep 2022 10:49:25 GMT
ETag: "e84a9a13611fa18e279d96894941e9d41eedfe67"
Last-Modified: Thu, 08 Sep 2022 10:49:26 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2130
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7477c632484db505-OSL
kvexx.com/03c3cb047014f05117117e4a924df90d.gif
64.32.13.142301 Moved Permanently 162 B URL HTTP/2 kvexx.com/03c3cb047014f05117117e4a924df90d.gif
IP 64.32.13.142:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /03c3cb047014f05117117e4a924df90d.gif HTTP/1.1
Host: kvexx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Thu, 08 Sep 2022 12:44:12 GMT
content-type: text/html
content-length: 162
location: https://kvhuuu.top/03c3cb047014f05117117e4a924df90d.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
kvemm.com/c70f7dd4a4c94432f7e7dfd8886c435b.gif
45.154.214.206301 Moved Permanently 162 B URL HTTP/2 kvemm.com/c70f7dd4a4c94432f7e7dfd8886c435b.gif
IP 45.154.214.206:0
ASN #201106 Spartan Host Ltd
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /c70f7dd4a4c94432f7e7dfd8886c435b.gif HTTP/1.1
Host: kvemm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Thu, 08 Sep 2022 12:44:12 GMT
content-type: text/html
content-length: 162
location: https://kvhiii.top/c70f7dd4a4c94432f7e7dfd8886c435b.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
kveii.com/af4e2918d615a9f2b12d5e14162653fd.gif
45.154.215.92301 Moved Permanently 162 B URL HTTP/2 kveii.com/af4e2918d615a9f2b12d5e14162653fd.gif
IP 45.154.215.92:0
ASN #201106 Spartan Host Ltd
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /af4e2918d615a9f2b12d5e14162653fd.gif HTTP/1.1
Host: kveii.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Thu, 08 Sep 2022 12:44:12 GMT
content-type: text/html
content-length: 162
location: https://acoozza.top/af4e2918d615a9f2b12d5e14162653fd.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
kvemm.com/3ee137247160c51791bfbc62b7f35def.gif
45.154.214.206301 Moved Permanently 162 B URL HTTP/2 kvemm.com/3ee137247160c51791bfbc62b7f35def.gif
IP 45.154.214.206:0
ASN #201106 Spartan Host Ltd
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /3ee137247160c51791bfbc62b7f35def.gif HTTP/1.1
Host: kvemm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Thu, 08 Sep 2022 12:44:12 GMT
content-type: text/html
content-length: 162
location: https://kvhiii.top/3ee137247160c51791bfbc62b7f35def.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
kzeaa.com/92f0c144d76dd785f7c04f84ae149b33.gif
45.154.215.92301 Moved Permanently 162 B URL HTTP/2 kzeaa.com/92f0c144d76dd785f7c04f84ae149b33.gif
IP 45.154.215.92:0
ASN #201106 Spartan Host Ltd
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /92f0c144d76dd785f7c04f84ae149b33.gif HTTP/1.1
Host: kzeaa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Thu, 08 Sep 2022 12:44:12 GMT
content-type: text/html
content-length: 162
location: https://kvhccc.top/92f0c144d76dd785f7c04f84ae149b33.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
kzerr.com/6fb5deabda1e984b6bd49b2baa8dfa10.gif
45.154.215.92301 Moved Permanently 162 B URL HTTP/2 kzerr.com/6fb5deabda1e984b6bd49b2baa8dfa10.gif
IP 45.154.215.92:0
ASN #201106 Spartan Host Ltd
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /6fb5deabda1e984b6bd49b2baa8dfa10.gif HTTP/1.1
Host: kzerr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Thu, 08 Sep 2022 12:44:12 GMT
content-type: text/html
content-length: 162
location: https://kvkccc.top/6fb5deabda1e984b6bd49b2baa8dfa10.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
acoossn.top/082641934c5fa55c29cb6cef6f47ade6.gif
104.21.37.222200 OK 522 kB URL HTTP/2 acoossn.top/082641934c5fa55c29cb6cef6f47ade6.gif
IP 104.21.37.222:0
File type GIF image data, version 89a, 1280 x 60\012- data
Size 522 kB (521778 bytes)
Hash 20dd068dfddc9d4e0ebccd15712f1107
fe0d9ce2d1bd6f33883f8632c94dd62713da3e13
000376a3a5c8aa656fc044b43504a36483175ef37b0fa81dd7c98e9561481ae6
GET /082641934c5fa55c29cb6cef6f47ade6.gif HTTP/1.1
Host: acoossn.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.chinadqwx.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:44:12 GMT
content-type: image/gif
content-length: 521778
last-modified: Mon, 02 May 2022 19:20:23 GMT
etag: "62702ef7-7f632"
expires: Fri, 07 Oct 2022 16:09:04 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 74108
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8p%2Fbge5j%2BI8cGeY23xKSksvQ%2FtXfKTfeR3NkyWRcGyh2lK2astCbqsN7rCk%2FBwqH2A1KkTTbN3JzNi6%2BOqb92kqh9ysseBIrvvp9FR7meCX08Dw%2F0NGXAP3bb%2F0%2FOw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c63288660b59-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=628491229&si=384c8b3c3725a56957c2805fd35722fe&v=1.2.97&lv=1&sn=18095&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.chinadqwx.com%2Fuar3%2F%3FWN68%3D9m2BuYjy2P5QVnF55yTJRV%2F9LhiAAt%2FMT%2BKbm8QIT%2BMHAFzaldcGnNZ3pWSYBbzkonlkIpTVKgvisutZzhPqOw%3D%3D%26Rx%3D3fqpvFxpqlVpsJr0&tt=%E5%9B%BD%E4%BA%A7%E7%BE%8E%E5%A5%B3%E4%B8%80%E7%BA%A7%E7%89%B9%E9%BB%84%E5%A4%A7%E7%89%87_%E6%88%90A%E7%89%87%E5%8D%88%E5%A4%9C%E5%BA%8A%E6%88%8F%E5%9C%A8%E7%BA%BF%E8%A7%82%E7%9C%8B%E5%85%8D%E8%B4%B9_%E4%B9%85%E4%B9%85%E7%B2%BE%E5%93%81%E5%9B%BD%E4%BA%A7%E5%86%9C%E6%9D%91%E9%AB%98%E6%B8%85%E7%89%88_%E7%90%86%E8%AE%BA%E7%A6%8F%E5%88%A9%E8%A7%86%E9%A2%91%E5%AF%BC%E8%88%AA
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=628491229&si=384c8b3c3725a56957c2805fd35722fe&v=1.2.97&lv=1&sn=18095&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.chinadqwx.com%2Fuar3%2F%3FWN68%3D9m2BuYjy2P5QVnF55yTJRV%2F9LhiAAt%2FMT%2BKbm8QIT%2BMHAFzaldcGnNZ3pWSYBbzkonlkIpTVKgvisutZzhPqOw%3D%3D%26Rx%3D3fqpvFxpqlVpsJr0&tt=%E5%9B%BD%E4%BA%A7%E7%BE%8E%E5%A5%B3%E4%B8%80%E7%BA%A7%E7%89%B9%E9%BB%84%E5%A4%A7%E7%89%87_%E6%88%90A%E7%89%87%E5%8D%88%E5%A4%9C%E5%BA%8A%E6%88%8F%E5%9C%A8%E7%BA%BF%E8%A7%82%E7%9C%8B%E5%85%8D%E8%B4%B9_%E4%B9%85%E4%B9%85%E7%B2%BE%E5%93%81%E5%9B%BD%E4%BA%A7%E5%86%9C%E6%9D%91%E9%AB%98%E6%B8%85%E7%89%88_%E7%90%86%E8%AE%BA%E7%A6%8F%E5%88%A9%E8%A7%86%E9%A2%91%E5%AF%BC%E8%88%AA
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=628491229&si=384c8b3c3725a56957c2805fd35722fe&v=1.2.97&lv=1&sn=18095&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.chinadqwx.com%2Fuar3%2F%3FWN68%3D9m2BuYjy2P5QVnF55yTJRV%2F9LhiAAt%2FMT%2BKbm8QIT%2BMHAFzaldcGnNZ3pWSYBbzkonlkIpTVKgvisutZzhPqOw%3D%3D%26Rx%3D3fqpvFxpqlVpsJr0&tt=%E5%9B%BD%E4%BA%A7%E7%BE%8E%E5%A5%B3%E4%B8%80%E7%BA%A7%E7%89%B9%E9%BB%84%E5%A4%A7%E7%89%87_%E6%88%90A%E7%89%87%E5%8D%88%E5%A4%9C%E5%BA%8A%E6%88%8F%E5%9C%A8%E7%BA%BF%E8%A7%82%E7%9C%8B%E5%85%8D%E8%B4%B9_%E4%B9%85%E4%B9%85%E7%B2%BE%E5%93%81%E5%9B%BD%E4%BA%A7%E5%86%9C%E6%9D%91%E9%AB%98%E6%B8%85%E7%89%88_%E7%90%86%E8%AE%BA%E7%A6%8F%E5%88%A9%E8%A7%86%E9%A2%91%E5%AF%BC%E8%88%AA HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Thu, 08 Sep 2022 12:44:12 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=D724789556D6B4B7; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash 23c37280756d833f47bffeaca48a1d76
dff27a8aaf776d62b50d516bbfb469ff054d403d
dcb1e56d58e2fcbb0503aedfca603517887bad81829487f932f35bea15edcef4
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 12:44:12 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Mon, 12 Sep 2022 10:53:42 GMT
ETag: "dff27a8aaf776d62b50d516bbfb469ff054d403d"
Last-Modified: Thu, 08 Sep 2022 10:53:43 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3360
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7477c632f93cb505-OSL
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 71c4d9a576a7e0d71b456c99f2a78409
4e3617674d35d209dc530e0ee479617349ba3209
1ac727304837fe665d18a747a8626f83c1d41ef0a5c00d22b91119dc1e79bf6f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1AC727304837FE665D18A747A8626F83C1D41EF0A5C00D22B91119DC1E79BF6F"
Last-Modified: Wed, 07 Sep 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1271
Expires: Thu, 08 Sep 2022 13:05:23 GMT
Date: Thu, 08 Sep 2022 12:44:12 GMT
Connection: keep-alive
nvhaaa.top/7d67cff6dd7d3196a8bd9d446a9d6fef.gif
104.21.234.41200 OK 1.1 MB URL HTTP/2 nvhaaa.top/7d67cff6dd7d3196a8bd9d446a9d6fef.gif
IP 104.21.234.41:0
File type GIF image data, version 89a, 1070 x 80\012- data
Size 1.1 MB (1058705 bytes)
Hash 1c8ef0df174c2b2bc21b99e5833a86f5
be5a4efc232a53d5a3a7a49d9e8be6c318801a90
8ef47b086718806f2632e8dd77ea1727a5159627e7dcd318d104b41b887f7795
GET /7d67cff6dd7d3196a8bd9d446a9d6fef.gif HTTP/1.1
Host: nvhaaa.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.chinadqwx.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:44:12 GMT
content-type: image/gif
content-length: 1058705
last-modified: Tue, 12 Apr 2022 07:23:53 GMT
etag: "62552909-102791"
expires: Sat, 08 Oct 2022 00:15:21 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 44931
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=A1R3F1IQjF0ozldVensFD5Gf5VBtIykrPeTW328gyspoGXASBT%2BwrWScJfFLK4LmWVJkw77VScuA8Jl2uHXi32NVXG3pQ3rWzU5wD6aTkr%2BJR%2B6lmzaBkTKIEglC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c6321a99f3ef-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 71c4d9a576a7e0d71b456c99f2a78409
4e3617674d35d209dc530e0ee479617349ba3209
1ac727304837fe665d18a747a8626f83c1d41ef0a5c00d22b91119dc1e79bf6f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1AC727304837FE665D18A747A8626F83C1D41EF0A5C00D22B91119DC1E79BF6F"
Last-Modified: Wed, 07 Sep 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19551
Expires: Thu, 08 Sep 2022 18:10:03 GMT
Date: Thu, 08 Sep 2022 12:44:12 GMT
Connection: keep-alive
kveww.com/99462c01e85acc1311bebac224df6cce.gif
104.143.94.110301 Moved Permanently 162 B URL HTTP/2 kveww.com/99462c01e85acc1311bebac224df6cce.gif
IP 104.143.94.110:0
ASN #201106 Spartan Host Ltd
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /99462c01e85acc1311bebac224df6cce.gif HTTP/1.1
Host: kveww.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Thu, 08 Sep 2022 12:44:12 GMT
content-type: text/html
content-length: 162
location: https://kvhqqq.top/99462c01e85acc1311bebac224df6cce.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
kzecc.com/8fdce7479dd03f1ee73805e8d2e9bab8.gif
104.143.94.110301 Moved Permanently 162 B URL HTTP/2 kzecc.com/8fdce7479dd03f1ee73805e8d2e9bab8.gif
IP 104.143.94.110:0
ASN #201106 Spartan Host Ltd
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /8fdce7479dd03f1ee73805e8d2e9bab8.gif HTTP/1.1
Host: kzecc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Thu, 08 Sep 2022 12:44:12 GMT
content-type: text/html
content-length: 162
location: https://acooss.com/8fdce7479dd03f1ee73805e8d2e9bab8.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash 026afffd8019c388090a2a6a8e361361
caf263631cde96451711e4bca92dba1da5b9eda8
1cb4ea6948d9bd746e085b93572c2ab024659ed644c807e8c525f816a05c97e7
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 12:44:12 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Mon, 12 Sep 2022 11:20:35 GMT
ETag: "caf263631cde96451711e4bca92dba1da5b9eda8"
Last-Modified: Thu, 08 Sep 2022 11:20:36 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1570
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7477c633197cb505-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash 23c37280756d833f47bffeaca48a1d76
dff27a8aaf776d62b50d516bbfb469ff054d403d
dcb1e56d58e2fcbb0503aedfca603517887bad81829487f932f35bea15edcef4
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 12:44:12 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Mon, 12 Sep 2022 10:53:42 GMT
ETag: "dff27a8aaf776d62b50d516bbfb469ff054d403d"
Last-Modified: Thu, 08 Sep 2022 10:53:43 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3360
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7477c6338a39b505-OSL
acoozza.top/af4e2918d615a9f2b12d5e14162653fd.gif
104.21.21.221200 OK 1.2 MB URL HTTP/2 acoozza.top/af4e2918d615a9f2b12d5e14162653fd.gif
IP 104.21.21.221:0
File type GIF image data, version 89a, 1280 x 60\012- data
Size 1.2 MB (1190448 bytes)
Hash 1435eab34769c6f90445cb49c89e84d5
a4aa9f12b2d9e82caab708a2d4574fb170143912
7385fceda62f98c31cbe9df6bb048134906f175e70c296024ec9239baf5e7cfb
Analyzer Verdict Alert quad9 Sinkholed
GET /af4e2918d615a9f2b12d5e14162653fd.gif HTTP/1.1
Host: acoozza.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.chinadqwx.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:44:12 GMT
content-type: image/gif
content-length: 1190448
last-modified: Wed, 23 Mar 2022 06:48:21 GMT
etag: "623ac2b5-122a30"
expires: Fri, 07 Oct 2022 18:13:44 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 66628
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IGhy7YIBDRRohNAXzlbq%2BNyAWeXiLk%2BgJYAKm6DSRzAOi%2FNoSqpT1tZ%2BOT%2B%2BOedl9bC271pto8sjbgvHZQpWWsRvqtm6rpslKDjPzWpr1DrvqiDdK10R90WPuCOD0Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c633df120b31-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img.jialiimg.com/upload/vod/20220402-1/59bc09fbac47e5a4120c5496574b4c2b.jpg
108.186.171.14200 OK 11 kB URL HTTP/2 img.jialiimg.com/upload/vod/20220402-1/59bc09fbac47e5a4120c5496574b4c2b.jpg
IP 108.186.171.14:0
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash 60ab45b7842340974f4b18b90256d6bd
eb4c68406dd1b828df09024cfaf29c6caa8d05b0
65e832cd19ad639eea8da20c8b8bd4eb70b6084e8ce86fed80ce26957a809250
GET /upload/vod/20220402-1/59bc09fbac47e5a4120c5496574b4c2b.jpg HTTP/1.1
Host: img.jialiimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 12:45:40 GMT
content-type: image/jpeg
content-length: 11322
last-modified: Fri, 01 Apr 2022 16:18:35 GMT
etag: "624725db-2c3a"
expires: Sat, 08 Oct 2022 12:45:40 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
kvhuuu.top/03c3cb047014f05117117e4a924df90d.gif
172.67.138.227200 OK 310 kB URL HTTP/2 kvhuuu.top/03c3cb047014f05117117e4a924df90d.gif
IP 172.67.138.227:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 310 kB (310102 bytes)
Hash aaaee07863e1fab7724d3b6698c0b4b3
1f75ba89585a8844a2c1e41625f88bae649be17d
41ac392c3cca5e4434c0f80595838a48338c94f8a9c691d4141c7ecb68acb24e
GET /03c3cb047014f05117117e4a924df90d.gif HTTP/1.1
Host: kvhuuu.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.chinadqwx.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:44:12 GMT
content-type: image/gif
content-length: 310102
last-modified: Wed, 13 Jul 2022 15:28:42 GMT
etag: "62cee4aa-4bb56"
expires: Sun, 11 Sep 2022 19:01:36 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 2310156
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CWe8%2BAyYppJwZncKV8L3cpaR21hkk6uPRLho%2FWQAbzxUqWLZStjWQi9XSehNlwDUfHQNTAd4XK6YOkuvlpuCcPsSZFUCsihU4LayX9mMmjB%2F4y4rh95CBWgCNIc0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c633dcdd0b49-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
kvkaa.com/d816a0142aeb37814a5d77cfd510e67b.gif
64.32.13.142301 Moved Permanently 162 B URL HTTP/2 kvkaa.com/d816a0142aeb37814a5d77cfd510e67b.gif
IP 64.32.13.142:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /d816a0142aeb37814a5d77cfd510e67b.gif HTTP/1.1
Host: kvkaa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Thu, 08 Sep 2022 12:44:12 GMT
content-type: text/html
content-length: 162
location: https://kvtaaa.top/d816a0142aeb37814a5d77cfd510e67b.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4a2a72c0a3fec15b9af3462b38cf6e39
dd73551e61340edff6a5792f2de9094a35781c2a
c7ccaf5449563d864bddd29528f30ecc4afd38e419ba8f4ce1edd48b3a7505b9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C7CCAF5449563D864BDDD29528F30ECC4AFD38E419BA8F4CE1EDD48B3A7505B9"
Last-Modified: Wed, 07 Sep 2022 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Thu, 08 Sep 2022 18:44:12 GMT
Date: Thu, 08 Sep 2022 12:44:12 GMT
Connection: keep-alive
kvkaa.com/452fea0784d3b43013168a3ab40d787d.gif
64.32.13.142301 Moved Permanently 162 B URL HTTP/2 kvkaa.com/452fea0784d3b43013168a3ab40d787d.gif
IP 64.32.13.142:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /452fea0784d3b43013168a3ab40d787d.gif HTTP/1.1
Host: kvkaa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Thu, 08 Sep 2022 12:44:12 GMT
content-type: text/html
content-length: 162
location: https://kvtaaa.top/452fea0784d3b43013168a3ab40d787d.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 346 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1b05c24922015f2779281a59c9918539
c2e3e16c8890ddbae49b4fd088f39a8fe0f8d98f
b1bbbe8a6d005ca9a41d235214c3b50c25158ace4174c75a00dc17f94e650ccf
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "B1BBBE8A6D005CA9A41D235214C3B50C25158ACE4174C75A00DC17F94E650CCF"
Last-Modified: Tue, 06 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2671
Expires: Thu, 08 Sep 2022 13:28:43 GMT
Date: Thu, 08 Sep 2022 12:44:12 GMT
Connection: keep-alive
kvkccc.top/6fb5deabda1e984b6bd49b2baa8dfa10.gif
104.21.28.152200 OK 919 kB URL HTTP/2 kvkccc.top/6fb5deabda1e984b6bd49b2baa8dfa10.gif
IP 104.21.28.152:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 919 kB (918679 bytes)
Hash 956582dd3aa22ca9b19bdd1d5e091e24
c2d80e05f59981f6ed58a8231f502bd990894d6b
88e686882e64a0e199c79bd83b7102885b67242b5d0b49a1f37674c0bb3ddd8e
GET /6fb5deabda1e984b6bd49b2baa8dfa10.gif HTTP/1.1
Host: kvkccc.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.chinadqwx.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:44:13 GMT
content-type: image/gif
content-length: 918679
last-modified: Sat, 02 Jul 2022 13:09:08 GMT
etag: "62c04374-e0497"
expires: Fri, 30 Sep 2022 15:19:49 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 681864
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=31YufCXcpJ5Lw%2BJcYJv8v2ePs6T6k4rDjbcA1mpG7XGCenWo5yFGwj4AYkco9V6%2FcrHOF%2BVZjb2vxbDupecEeRzWeonqB7Q7Ck1wxN%2BaYPIc8EpKCRcfv5wFjgRQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c6353cc31c12-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
n0233.com/faa5cb0ee4484ff881f4b12b798acae4.gif
20.205.46.45200 OK 252 kB URL HTTP/1.1 n0233.com/faa5cb0ee4484ff881f4b12b798acae4.gif
IP 20.205.46.45:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 650 x 200\012- data
Size 252 kB (251662 bytes)
Hash aee9e0e2d4e9d3b3b72e1b5884ab5811
4cb7adacc826ec3f5ba8795d99294f3e543a4374
969f70648db1f12ba7c6a5eb1ea7da44b5f7883db098a84d9e59463f11dc6371
GET /faa5cb0ee4484ff881f4b12b798acae4.gif HTTP/1.1
Host: n0233.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 12:44:12 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 30 May 2022 15:33:03 GMT
ETag: W/"6294e3af-3db4f"
Server: WAF/2.4-12.1
X-Cache-Status: HIT
Content-Encoding: gzip
e1.o.lencr.org/
23.36.76.226200 OK 344 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6edf0b8d7b352936f2a23acef8abd39e
16e24c4f0bb9496a37532239b33cc4d7a3ef718d
41e8073b86fe7872386d997b2b0b19514d44b1fdff661af5c605f10c863e499c
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "41E8073B86FE7872386D997B2B0B19514D44B1FDFF661AF5C605F10C863E499C"
Last-Modified: Wed, 07 Sep 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5975
Expires: Thu, 08 Sep 2022 14:23:48 GMT
Date: Thu, 08 Sep 2022 12:44:13 GMT
Connection: keep-alive
kvhccc.top/92f0c144d76dd785f7c04f84ae149b33.gif
104.21.233.190200 OK 1.0 MB URL HTTP/2 kvhccc.top/92f0c144d76dd785f7c04f84ae149b33.gif
IP 104.21.233.190:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 1.0 MB (1024160 bytes)
Hash 52748c8ca30fe48c822541046bceafc0
8640926f83b9c0d635fb28403505a7c0f0753857
2e292531362f37bf7a1cd01330efb234450b1f836e975c55f2b2179c0be32ae6
GET /92f0c144d76dd785f7c04f84ae149b33.gif HTTP/1.1
Host: kvhccc.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.chinadqwx.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:44:12 GMT
content-type: image/gif
content-length: 1024160
last-modified: Wed, 25 May 2022 13:49:10 GMT
etag: "628e33d6-fa0a0"
expires: Fri, 07 Oct 2022 18:02:04 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 67328
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TZowM0Tsqz0DvMZV1c7tUGqy73%2F7t9dnorDNV5F00ZR2P68UyKFOBRzWHh1%2Bwk1ncFha%2BOEGJu%2FF6v11y5UCulcppGLAmNXSMte12MR0%2FYLph9vnKT4cDlTGzi%2B4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c634db257302-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 68a3bc618d6620233c84093c66639ba2
f7f8d9b3e36335b42d714358b561f5efe42ad160
bddcb15981f519b8fdf29987e4ab0056baeb302919733507a9e4be85c55f1e17
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 12:44:13 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 05 Sep 2022 16:50:06 GMT
Expires: Mon, 12 Sep 2022 16:50:05 GMT
Etag: "f7f8d9b3e36335b42d714358b561f5efe42ad160"
Cache-Control: max-age=359751,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7477c634bbceb515-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 32f0ca1dcb267398cdf7d188709a11a8
e6fb902bc8e5b2160ae83ca9e00da8331385b232
58a26e85e0c41021cf36271eb2e53500f9b711fee666d3a227371183e763f0c6
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 12:44:13 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 07 Sep 2022 13:26:56 GMT
Expires: Wed, 14 Sep 2022 13:26:55 GMT
Etag: "e6fb902bc8e5b2160ae83ca9e00da8331385b232"
Cache-Control: max-age=520361,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7477c634b89cb51e-OSL
e1.o.lencr.org/
23.36.76.226200 OK 346 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1b05c24922015f2779281a59c9918539
c2e3e16c8890ddbae49b4fd088f39a8fe0f8d98f
b1bbbe8a6d005ca9a41d235214c3b50c25158ace4174c75a00dc17f94e650ccf
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "B1BBBE8A6D005CA9A41D235214C3B50C25158ACE4174C75A00DC17F94E650CCF"
Last-Modified: Tue, 06 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2670
Expires: Thu, 08 Sep 2022 13:28:43 GMT
Date: Thu, 08 Sep 2022 12:44:13 GMT
Connection: keep-alive
kvtaaa.top/d816a0142aeb37814a5d77cfd510e67b.gif
172.67.173.230200 OK 186 kB URL HTTP/2 kvtaaa.top/d816a0142aeb37814a5d77cfd510e67b.gif
IP 172.67.173.230:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 186 kB (185463 bytes)
Hash 07d436db9009e187330d91ffc5c77745
a7944de8f44192fe6bee6e6584d03966d0ffe8b8
75e2ad510799f05ddf20510e09f538233254217314fc7b301370407112eab0e2
GET /d816a0142aeb37814a5d77cfd510e67b.gif HTTP/1.1
Host: kvtaaa.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.chinadqwx.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:44:13 GMT
content-type: image/gif
content-length: 185463
last-modified: Mon, 13 Jun 2022 10:10:31 GMT
etag: "62a70d17-2d477"
expires: Mon, 12 Sep 2022 15:04:28 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 2237985
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4ab3COFT4emqfiiiIq1sEpTJIogYULQOjaZ8nyLHwVWu3gtGOoJn42PfA3ZlWnyg1UrnLA2twwk9Tnl1k6525xy367a%2FmLxzzP3R2Lm2G1nfBBEeFNWgOJqVFYlw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c6365899b4ff-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
kvtaaa.top/452fea0784d3b43013168a3ab40d787d.gif
172.67.173.230200 OK 174 kB URL HTTP/2 kvtaaa.top/452fea0784d3b43013168a3ab40d787d.gif
IP 172.67.173.230:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 174 kB (173866 bytes)
Hash ac1fee4aaccf483d355f50ef8a605230
d06097961d5b0f1e885ed02f73f47e3f33d37371
d33ce62c203e646ae72e379370df770446f8687788ab23116ca1bea162059672
GET /452fea0784d3b43013168a3ab40d787d.gif HTTP/1.1
Host: kvtaaa.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.chinadqwx.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:44:13 GMT
content-type: image/gif
content-length: 173866
last-modified: Thu, 19 May 2022 10:09:59 GMT
etag: "62861777-2a72a"
expires: Tue, 20 Sep 2022 10:11:39 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 1564354
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IRd4K5RSNTh5YuouT6QN5JHdz1iFmJY%2FCQDZWxiZX2P206WqDG9IkrD8n48vThCABAzm5AHo1SJ0x5yIL6SCWvs28ZqSmrnh5Hk3VAB54Fdncu%2BlTwOvhMzJNLNL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c6365888b4ff-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
kvhiii.top/3ee137247160c51791bfbc62b7f35def.gif
104.21.234.203200 OK 1.2 MB URL HTTP/2 kvhiii.top/3ee137247160c51791bfbc62b7f35def.gif
IP 104.21.234.203:0
File type GIF image data, version 89a, 1280 x 60\012- data
Size 1.2 MB (1204912 bytes)
Hash 99b1e181b956143555f7f71d575051a7
3ddb4415b1651fd55ddfc8e8483ba6155d5db023
81d27dbfad0530074c788872d76374a2d798ec2eecef83f410bde6f3eac0748b
GET /3ee137247160c51791bfbc62b7f35def.gif HTTP/1.1
Host: kvhiii.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.chinadqwx.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:44:12 GMT
content-type: image/gif
content-length: 1204912
last-modified: Sat, 12 Mar 2022 15:20:18 GMT
etag: "622cba32-1262b0"
expires: Tue, 04 Oct 2022 13:15:05 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 343747
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6lRDRjBLI89iwMGIIoV9LIxpKfyfL6OKQBKy2oNAqrFhT2gsUlWHsOdFlYre%2FFNLB5SasmiPwTyiIvPwlQuNZnTLPrYOBcoFfs%2BzQk8jB43hfM3UmKmmXl9yT6hG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c634f82171a4-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
kvhqqq.top/99462c01e85acc1311bebac224df6cce.gif
104.21.235.198200 OK 845 kB URL HTTP/2 kvhqqq.top/99462c01e85acc1311bebac224df6cce.gif
IP 104.21.235.198:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 845 kB (845326 bytes)
Hash c3e13dfb200737af2e68b42c07f28465
4d8262aecd8d789494afca5d63b5dd50600870dc
3e962d14b678808967d50df163581b65c6052144cb6239d72da58cceb7bf04ac
GET /99462c01e85acc1311bebac224df6cce.gif HTTP/1.1
Host: kvhqqq.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.chinadqwx.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:44:13 GMT
content-type: image/gif
content-length: 845326
last-modified: Mon, 15 Aug 2022 06:10:27 GMT
etag: "62f9e353-ce60e"
expires: Wed, 05 Oct 2022 12:23:28 GMT
cache-control: max-age=2678400
cf-cache-status: HIT
age: 260445
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nwuvWdI1xa8ioA446I8HIOJLqlMOHAcIO2Sms8CfPWs35CE9LhHAo4DS3zh8XDRAS3IP6TXXOuaRtBzfNyNqxbGBGBvnlN5KNIz4YTpD8Vn5DKnRfAvepb%2FopRei"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c6356ff474f9-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
kvhiii.top/c70f7dd4a4c94432f7e7dfd8886c435b.gif
104.21.234.203200 OK 1.6 MB URL HTTP/2 kvhiii.top/c70f7dd4a4c94432f7e7dfd8886c435b.gif
IP 104.21.234.203:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 1.6 MB (1590489 bytes)
Hash 59648e1a4d52551c26255ff6bc625648
165fbacafad21065e9faa33c5e3752cd463549ad
eb53352fe423b9358ba49249e57fe3d55746d854c681f6c45baedb23eb2196e5
GET /c70f7dd4a4c94432f7e7dfd8886c435b.gif HTTP/1.1
Host: kvhiii.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.chinadqwx.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:44:12 GMT
content-type: image/gif
content-length: 1590489
last-modified: Sun, 26 Jun 2022 12:04:30 GMT
etag: "62b84b4e-1844d9"
expires: Fri, 07 Oct 2022 02:23:54 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 123618
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=P9lZovH1kTzR99FJc2MYKhLITmTbsiKBv2olrbSCuTuL%2FIaT1Zpx87rxFpiT3Sk32U7yEKln5%2FNdvrLVpKmJQxsRdzpi%2BjwYiEZTd4gSV3Kx5xwjSUHA7f%2F5vi3V"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c634cfcd71a4-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
acooss.com/8fdce7479dd03f1ee73805e8d2e9bab8.gif
104.21.235.95200 OK 864 kB URL HTTP/2 acooss.com/8fdce7479dd03f1ee73805e8d2e9bab8.gif
IP 104.21.235.95:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 864 kB (864004 bytes)
Hash d2c820747a9b9b8c3abaab0775436ab7
99651afd10bd3874fb84d7973845482cd2c81f23
8aa3c7b05ba9bb5176a7155ead2a0ea562b07fb0dd7b27a9cf91c38e95ed43ed
GET /8fdce7479dd03f1ee73805e8d2e9bab8.gif HTTP/1.1
Host: acooss.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.chinadqwx.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:44:13 GMT
content-type: image/gif
content-length: 864004
last-modified: Sun, 04 Sep 2022 09:11:53 GMT
etag: "63146bd9-d2f04"
expires: Sat, 08 Oct 2022 09:48:13 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 10560
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=A1rx9uMEJxuEOEmIWEBgBIpzS4ib4uqKe7j%2BEQxXDw4qEAlHwIUe98pQSKFQc3%2Fo3KirMuU9f%2FQUsrI1df8XNv55qfwLCo2hWHmU4%2B%2BrgeBFX9cI5OeYfbVLHify"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c6364c9d7753-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
u0079.com/239793e8f80f484492e5a01d670ff992.gif
20.205.46.66200 OK 102 kB URL HTTP/1.1 u0079.com/239793e8f80f484492e5a01d670ff992.gif
IP 20.205.46.66:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 960 x 60\012- data
Size 102 kB (101585 bytes)
Hash 64cda08ea65c9943d5845a1adc31d6d4
42ca850bcd7005d07518c4d91fd1ab06e4f78149
bc1f0fa9a3ef28d617e86f661cb7a0b6d6189ac5274dd5c7201bd3be2506c970
GET /239793e8f80f484492e5a01d670ff992.gif HTTP/1.1
Host: u0079.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 12:44:12 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 25 Aug 2022 11:33:06 GMT
ETag: W/"63075df2-39cbe"
Server: WAF/2.4-12.1
X-Cache-Status: HIT
Content-Encoding: gzip
u0062.com/0cca214d9702446d90008f7bb3b1382f.gif
20.24.205.22200 OK 106 kB URL HTTP/1.1 u0062.com/0cca214d9702446d90008f7bb3b1382f.gif
IP 20.24.205.22:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 960 x 60\012- data
Size 106 kB (105624 bytes)
Hash fed1644bf2ac138565e67fb6dc3201bd
3da83963c94b06617fcac1c33895a640f8652092
af629ac538d9a4e11f58e82873720825df4df836b683f4d42b69c97ac40f0038
GET /0cca214d9702446d90008f7bb3b1382f.gif HTTP/1.1
Host: u0062.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 12:44:12 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 25 Aug 2022 11:33:41 GMT
ETag: W/"63075e15-3d745"
Server: WAF/2.4-12.1
X-Cache-Status: HIT
Content-Encoding: gzip
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash dd3d6a2b96c38854b8153116764f9548
1c1b48853908d0a1e2c54283f603c3b05ef1b9e0
0d7b3b146fcf7fd34f2e888606c5c22d75964f3f6954311a93fd011df541228c
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 12:44:13 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Mon, 12 Sep 2022 09:00:46 GMT
ETag: "1c1b48853908d0a1e2c54283f603c3b05ef1b9e0"
Last-Modified: Thu, 08 Sep 2022 09:00:47 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2228
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7477c637e8ffb505-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash dd3d6a2b96c38854b8153116764f9548
1c1b48853908d0a1e2c54283f603c3b05ef1b9e0
0d7b3b146fcf7fd34f2e888606c5c22d75964f3f6954311a93fd011df541228c
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 12:44:13 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Mon, 12 Sep 2022 09:00:46 GMT
ETag: "1c1b48853908d0a1e2c54283f603c3b05ef1b9e0"
Last-Modified: Thu, 08 Sep 2022 09:00:47 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2228
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7477c637eb2b0b45-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash dd3d6a2b96c38854b8153116764f9548
1c1b48853908d0a1e2c54283f603c3b05ef1b9e0
0d7b3b146fcf7fd34f2e888606c5c22d75964f3f6954311a93fd011df541228c
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 12:44:13 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Mon, 12 Sep 2022 09:00:46 GMT
ETag: "1c1b48853908d0a1e2c54283f603c3b05ef1b9e0"
Last-Modified: Thu, 08 Sep 2022 09:00:47 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2228
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7477c637e9d7b52d-OSL
e1.o.lencr.org/
23.36.76.226200 OK 344 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6edf0b8d7b352936f2a23acef8abd39e
16e24c4f0bb9496a37532239b33cc4d7a3ef718d
41e8073b86fe7872386d997b2b0b19514d44b1fdff661af5c605f10c863e499c
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "41E8073B86FE7872386D997B2B0B19514D44B1FDFF661AF5C605F10C863E499C"
Last-Modified: Wed, 07 Sep 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5975
Expires: Thu, 08 Sep 2022 14:23:48 GMT
Date: Thu, 08 Sep 2022 12:44:13 GMT
Connection: keep-alive
de88deggtp89.com/235tp/960x60.gif
23.224.145.233200 OK 590 kB URL HTTP/1.1 de88deggtp89.com/235tp/960x60.gif
IP 23.224.145.233:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 590 kB (590255 bytes)
Hash d9d8d54236add0a03997175e250e51ef
b65ebc88346d3a308dbf4791ade0637330df8895
81954cd3768276219bbf7aca8ce82881fbda51a1721ef78d559cdd7772800571
GET /235tp/960x60.gif HTTP/1.1
Host: de88deggtp89.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chinadqwx.com/
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 12:44:12 GMT
Content-Type: image/gif
Content-Length: 590255
Connection: keep-alive
Last-Modified: Wed, 15 Jun 2022 13:02:58 GMT
ETag: "62a9d882-901af"
Expires: Thu, 06 Oct 2022 08:21:26 GMT
Cache-Control: max-age=2592000
Server: cdn-ddos-cc
X-Cache-Status: HIT
Accept-Ranges: bytes
xpj08.oss-cn-beijing.aliyuncs.com/vip80.gif
59.110.185.220200 OK 264 kB URL HTTP/1.1 xpj08.oss-cn-beijing.aliyuncs.com/vip80.gif
IP 59.110.185.220:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type GIF image data, version 89a, 960 x 80\012- data
Size 264 kB (264494 bytes)
Hash 672b95e7b6ab24b5606b8287db85dbb4
98f1f1b06b3cb318d7f7a1bf7add76fa0a30c112
4203e1ae18bb06c6e719832987e87e838d8001fd6154e56a8b79c4c0678e7b54
GET /vip80.gif HTTP/1.1
Host: xpj08.oss-cn-beijing.aliyuncs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Thu, 08 Sep 2022 12:44:12 GMT
Content-Type: image/gif
Content-Length: 264494
Connection: keep-alive
x-oss-request-id: 6319E39CB66B4B37365CE6B9
Accept-Ranges: bytes
ETag: "672B95E7B6AB24B5606B8287DB85DBB4"
Last-Modified: Mon, 08 Aug 2022 07:28:40 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 8762574589038276875
x-oss-storage-class: Standard
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: ZyuV57arJLVga4KH24XbtA==
x-oss-server-time: 1
ocsp.digicert.cn/
47.246.44.205200 OK 471 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 78503109d7a5bcf6c743a2f14fa30ff6
f86e3065f41d0bebfb8f65cf09865d8eeefef8c9
6257349c0cba8993e144cecf2875b7ff111c32326144e4fa5e7ded0dd1406370
POST / HTTP/1.1
Host: ocsp.digicert.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Thu, 08 Sep 2022 12:44:13 GMT
Ali-Swift-Global-Savetime: 1662641053
Via: cache15.l2de2[192,192,200-0,M], cache15.l2de2[194,0], cache7.se1[214,214,200-0,M], cache7.se1[216,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Thu, 08 Sep 2022 12:44:13 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9b16626410534193668e
imglf5.lf127.net/img/WjNSY05nczU5OWg2U3lKb0dnT2RWVVlIMDRpQ2VaVDdKQ1ppRkRMcEhFSVhhSm1oci9BZnJRPT0.jpg
47.246.44.226200 OK 1.5 kB URL HTTP/2 imglf5.lf127.net/img/WjNSY05nczU5OWg2U3lKb0dnT2RWVVlIMDRpQ2VaVDdKQ1ppRkRMcEhFSVhhSm1oci9BZnJRPT0.jpg
IP 47.246.44.226:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 64x64, components 3\012- data
Hash b4e27b3853ed799500e579761c8f00e7
ed4fecb708318ef46b3075926a9d33ea7209c276
58f32fe58ceed46c3a1e8c5404f6bad35e640c09c3cb554c39a3f5b47edd3452
GET /img/WjNSY05nczU5OWg2U3lKb0dnT2RWVVlIMDRpQ2VaVDdKQ1ppRkRMcEhFSVhhSm1oci9BZnJRPT0.jpg HTTP/1.1
Host: imglf5.lf127.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/jpeg;charset=UTF-8
content-length: 1541
date: Wed, 07 Sep 2022 15:02:43 GMT
content-disposition: inline; filename="img%2FWjNSY05nczU5OWg2U3lKb0dnT2RWVVlIMDRpQ2VaVDdKQ1ppRkRMcEhFSVhhSm1oci9BZnJRPT0.jpg"
etag: b4e27b3853ed799500e579761c8f00e7
last-modified: Wed, 20 Oct 2021 20:02:02 Asia/Shanghai
x-nos-object-name: img%2FWjNSY05nczU5OWg2U3lKb0dnT2RWVVlIMDRpQ2VaVDdKQ1ppRkRMcEhFSVhhSm1oci9BZnJRPT0.jpg
x-nos-request-id: 897689c7-1f05-4452-813a-b1ffbdf48ad7
x-nos-requesttype: GetObject
x-nos-storage-class: STANDARD
ali-swift-global-savetime: 1662562963
via: cache2.l2st3-1[149,148,304-0,M], cache4.l2st3-1[150,0], cache31.l2hk2[154,154,304-0,M], cache14.l2hk2[157,0], cache5.l2de2[0,0,304-0,H], cache19.l2de2[1,0], cache4.se1[0,0,200-0,H], cache5.se1[1,0]
age: 78090
x-cache: HIT TCP_MEM_HIT dirn:11:356327573
x-swift-savetime: Wed, 07 Sep 2022 15:21:51 GMT
x-swift-cachetime: 2590852
cdn-user-ip: 91.90.42.154
cdn-source: Ali
cdn-ip: 47.246.44.226
timing-allow-origin: *
eagleid: 2ff62c9916626410536447014e
X-Firefox-Spdy: h2
tpcdnde88de.com/79tp/960x60-2.gif
23.224.145.235200 OK 322 kB URL HTTP/2 tpcdnde88de.com/79tp/960x60-2.gif
IP 23.224.145.235:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 322 kB (322376 bytes)
Hash c41a909fa1e62a4ebc583626a93c05c1
10adfd5b6d78d04cc93c76b14a29fc93ce4f2708
b60310fa346cdc56ed271a244d9c4f1e137e0fd46571802f25c0c8e09131aa4e
GET /79tp/960x60-2.gif HTTP/1.1
Host: tpcdnde88de.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:44:13 GMT
content-type: image/gif
content-length: 322376
last-modified: Sat, 25 Jun 2022 12:15:37 GMT
etag: "62b6fc69-4eb48"
expires: Sat, 08 Oct 2022 08:20:47 GMT
cache-control: max-age=2592000
server: cdn-ddos-cc
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
img.jialiimg.com/upload/vod/20220324-6/0d528881d9f3b591e4e9a13f5d5e63b2.jpg
108.186.171.14200 OK 21 kB URL HTTP/2 img.jialiimg.com/upload/vod/20220324-6/0d528881d9f3b591e4e9a13f5d5e63b2.jpg
IP 108.186.171.14:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 3x4, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash b4eff63ed7d69ef6e825ecccd6dd0717
b6ba1520a6edc642f4e5526ee930c7ea9b75b359
8155db8c0f77f6d49d5c5822c25164a3231ecca7af73a661b1a82367b6cf87f3
GET /upload/vod/20220324-6/0d528881d9f3b591e4e9a13f5d5e63b2.jpg HTTP/1.1
Host: img.jialiimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 12:45:40 GMT
content-type: image/jpeg
content-length: 20885
last-modified: Wed, 23 Mar 2022 22:16:04 GMT
etag: "623b9c24-5195"
expires: Sat, 08 Oct 2022 12:45:40 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
kyhd.oss-cn-hangzhou.aliyuncs.com/GG/0.1-.gif
47.110.23.210200 OK 199 kB URL HTTP/1.1 kyhd.oss-cn-hangzhou.aliyuncs.com/GG/0.1-.gif
IP 47.110.23.210:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type GIF image data, version 89a, 960 x 60\012- data
Size 199 kB (199333 bytes)
Hash 4cee9e6c5a9d9766f1ff18718e213636
b8d0e49a22b6eaac3978a8d85492ded2ef4d409f
6eadd35337d078afa4145f96643d77f8d1c90864026283c39c17274600637e65
GET /GG/0.1-.gif HTTP/1.1
Host: kyhd.oss-cn-hangzhou.aliyuncs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Thu, 08 Sep 2022 12:44:13 GMT
Content-Type: image/gif
Content-Length: 199333
Connection: keep-alive
x-oss-request-id: 6319E39D94C77F30373DE0AF
Accept-Ranges: bytes
ETag: "4CEE9E6C5A9D9766F1FF18718E213636"
Last-Modified: Sat, 25 Jun 2022 05:26:26 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 12750330762955313486
x-oss-storage-class: Standard
x-oss-version-id: CAEQZhiBgICa3KbljBgiIDc4NThjOWYzNDcwODQyYjliZTYxZmVkOWUwYzE0OTkz
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: TO6ebFqdl2bx/xhxjiE2Ng==
x-oss-server-time: 3
jsoctn9.com/03d39ba0ce18456aa039318cbc96824a.gif
45.61.212.221200 OK 725 kB URL HTTP/1.1 jsoctn9.com/03d39ba0ce18456aa039318cbc96824a.gif
IP 45.61.212.221:0
File type GIF image data, version 89a, 960 x 80\012- data
Size 725 kB (724869 bytes)
Hash 17d7276bec51de6123854892f5d1d4ec
2f4954866443fcb402a5ee33f78c61cffe22eae8
c677f7601d68004a5c0af802407899ba001333fd3c69e8993a8a757a8521b20d
GET /03d39ba0ce18456aa039318cbc96824a.gif HTTP/1.1
Host: jsoctn9.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "62696896-b0f85"
Date: Fri, 02 Sep 2022 22:32:49 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Wed, 27 Apr 2022 16:00:22 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us3-cdnb-21
Content-Length: 724869
img.jialiimg.com/upload/vod/20220523-1/774df65a8ebdb6165a6c8ea849c6618b.jpg
108.186.171.14200 OK 6.4 kB URL HTTP/2 img.jialiimg.com/upload/vod/20220523-1/774df65a8ebdb6165a6c8ea849c6618b.jpg
IP 108.186.171.14:0
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash 0a031a91e314e364cb443580a2752447
6b7c44e29b007e40fc557b96b1f1e25abee69808
f72053a40fb43e42cd38effefdd100e52cf6ab11f14bb50d5602c9f845fce420
GET /upload/vod/20220523-1/774df65a8ebdb6165a6c8ea849c6618b.jpg HTTP/1.1
Host: img.jialiimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 12:45:40 GMT
content-type: image/jpeg
content-length: 6409
last-modified: Mon, 23 May 2022 13:19:12 GMT
etag: "628b89d0-1909"
expires: Sat, 08 Oct 2022 12:45:40 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
93261587768.com/4fe2b2a7d33f4c66a1aa0bd1ae2b2824.gif
45.61.212.55200 OK 1.0 MB URL HTTP/1.1 93261587768.com/4fe2b2a7d33f4c66a1aa0bd1ae2b2824.gif
IP 45.61.212.55:0
File type GIF image data, version 89a, 960 x 120\012- data
Size 1.0 MB (1020091 bytes)
Hash b3aedc862671b2fa2e2922fadaa38add
8134113e40aa47b7b0508e81c447ccea8c10e7c0
d60a38f60cbd8cc782d6ecaf7c076dea16bf5eddfdc064d0aa4c03a440d236aa
GET /4fe2b2a7d33f4c66a1aa0bd1ae2b2824.gif HTTP/1.1
Host: 93261587768.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "62ef736b-f90bb"
Date: Fri, 02 Sep 2022 04:22:24 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Sun, 07 Aug 2022 08:10:19 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us1-cdnb-25
Content-Length: 1020091
38qptu4.oss-cn-hangzhou.aliyuncs.com/kyr87633.gif
47.110.177.110200 OK 299 kB URL HTTP/1.1 38qptu4.oss-cn-hangzhou.aliyuncs.com/kyr87633.gif
IP 47.110.177.110:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type GIF image data, version 89a, 960 x 80\012- data
Size 299 kB (299398 bytes)
Hash f4b7967855549e81f65598b93a43d9db
6ab53e8a9af687c1dddad236af323080a04499cf
2e95dc2082af7cc833e0aef825efc261c04b69e3ec4350203854008cc4a12dc6
GET /kyr87633.gif HTTP/1.1
Host: 38qptu4.oss-cn-hangzhou.aliyuncs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Thu, 08 Sep 2022 12:44:13 GMT
Content-Type: image/gif
Content-Length: 299398
Connection: keep-alive
x-oss-request-id: 6319E39DEE8521343144D2F4
Accept-Ranges: bytes
ETag: "F4B7967855549E81F65598B93A43D9DB"
Last-Modified: Sun, 05 Jun 2022 13:03:04 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 8810428828543929982
x-oss-storage-class: Standard
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: 9LeWeFVUnoH2VZi5OkPZ2w==
x-oss-server-time: 3
statuse.digitalcertvalidation.com/
93.184.220.29200 OK 471 B URL HTTP/1.1 statuse.digitalcertvalidation.com/
IP 93.184.220.29:0
Hash 06535da79142bcc0948b6a3e54ac8717
826a25ae413822cf189b8aae998d644ba3a74235
0b2aefab5f4eb7dce17490cdf62b44a11c208fe2723de800cf552d7d4bb019f1
POST / HTTP/1.1
Host: statuse.digitalcertvalidation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2556
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 12:44:14 GMT
Last-Modified: Thu, 08 Sep 2022 12:01:39 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
1111349.oss-cn-hongkong.aliyuncs.com/ZJhx8JQgQBqkbIMQwMsR-128060.gif
47.75.19.77200 OK 327 kB URL HTTP/1.1 1111349.oss-cn-hongkong.aliyuncs.com/ZJhx8JQgQBqkbIMQwMsR-128060.gif
IP 47.75.19.77:0
ASN #45102 Alibaba US Technology Co., Ltd.
File type GIF image data, version 89a, 1280 x 60\012- data
Size 327 kB (327012 bytes)
Hash d0c3c3bbaa625a319709877c062f695d
7c569d476bcd6b37e33ac3da47b13a99971b9df2
2f5760ff0393c5f7dadfedc1bab3429f91273541bcba6e5aa8738fcc982aba6c
GET /ZJhx8JQgQBqkbIMQwMsR-128060.gif HTTP/1.1
Host: 1111349.oss-cn-hongkong.aliyuncs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Thu, 08 Sep 2022 12:44:13 GMT
Content-Type: image/gif
Content-Length: 327012
Connection: keep-alive
x-oss-request-id: 6319E39D4C8B3734319755EB
Accept-Ranges: bytes
ETag: "D0C3C3BBAA625A319709877C062F695D"
Last-Modified: Tue, 31 May 2022 07:48:44 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 11758244341292412031
x-oss-storage-class: Standard
Content-MD5: 0MPDu6piWjGXCYd8Bi9pXQ==
x-oss-server-time: 1
pic.rmb.bdstatic.com/bjh/400c9be56a98077b42152906493ac1a6.gif
185.10.104.115200 OK 1.0 MB URL HTTP/2 pic.rmb.bdstatic.com/bjh/400c9be56a98077b42152906493ac1a6.gif
IP 185.10.104.115:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 360 x 360\012- data
Size 1.0 MB (1025485 bytes)
Hash 400c9be56a98077b42152906493ac1a6
709e845e4231d9e7ecea1b42b0a412b0170307cf
a8be1fe1bc8d750fd534173dc8f6a1819417dd78f3dbff13411a34a1bced7122
GET /bjh/400c9be56a98077b42152906493ac1a6.gif HTTP/1.1
Host: pic.rmb.bdstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: JSP3/2.0.14
date: Thu, 08 Sep 2022 12:44:14 GMT
content-type: image/gif
content-length: 1025485
expires: Fri, 19 Aug 2022 14:45:33 GMT
last-modified: Wed, 25 May 2022 10:06:40 GMT
etag: "400c9be56a98077b42152906493ac1a6"
age: 1135098
accept-ranges: bytes
content-md5: QAyb5WqYB3tCFSkGSTrBpg==
x-bce-content-crc32: 539369125
x-bce-debug-id: rvddnlGRe9y3ux3kzr0AY+ZzQfY+TEmkR1eEDSXKLXN2coyF+iYLkLwHfcnaaWNa6BTa6+L2gns0bof4j3c8Sw==
x-bce-request-id: 2aad352a-55bc-477c-8e52-202203676443
x-bce-storage-class: STANDARD
timing-allow-origin: *
ohc-cache-hit: fra01-sys-jomo3.fra01.baidu.com [2], zhuzuncache83 [3], bdix206 [2]
ohc-file-size: 1025485
x-cache-status: HIT
X-Firefox-Spdy: h2
img.jialiimg.com/upload/vod/20220523-1/e7cbea827ccd6823a4fad0238e5cafb8.jpg
108.186.171.14200 OK 7.0 kB URL HTTP/2 img.jialiimg.com/upload/vod/20220523-1/e7cbea827ccd6823a4fad0238e5cafb8.jpg
IP 108.186.171.14:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 553b4d95eec2151292330c2302a8cbdf
be5fc4edd25180cbdca785111c3fd89a71446a52
37195d41a2203e9079e67a340fdf85402fe4e02a37cd260dba3be4b3395fb740
GET /upload/vod/20220523-1/e7cbea827ccd6823a4fad0238e5cafb8.jpg HTTP/1.1
Host: img.jialiimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 12:45:40 GMT
content-type: image/jpeg
content-length: 7021
last-modified: Mon, 23 May 2022 10:57:27 GMT
etag: "628b6897-1b6d"
expires: Sat, 08 Oct 2022 12:45:40 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.jialiimg.com/upload/vod/20220324-6/6f15d40ec20b196453260917900e47e9.jpg
108.186.171.14200 OK 16 kB URL HTTP/2 img.jialiimg.com/upload/vod/20220324-6/6f15d40ec20b196453260917900e47e9.jpg
IP 108.186.171.14:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 4b07775da52a91b02cc8f6785c929322
85fa06ee5fc9e7d9a16d5f2b9bdabd088f127086
22827b7799e2318333c018512d1da6179c4d618ac2399551983fe6a040f01c65
GET /upload/vod/20220324-6/6f15d40ec20b196453260917900e47e9.jpg HTTP/1.1
Host: img.jialiimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 12:45:40 GMT
content-type: image/jpeg
content-length: 15949
last-modified: Wed, 23 Mar 2022 22:10:09 GMT
etag: "623b9ac1-3e4d"
expires: Sat, 08 Oct 2022 12:45:40 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.jialiimg.com/upload/vod/20220425-1/65ead6f97745e0c3b41301fa5550c3af.jpg
108.186.171.14200 OK 75 kB URL HTTP/2 img.jialiimg.com/upload/vod/20220425-1/65ead6f97745e0c3b41301fa5550c3af.jpg
IP 108.186.171.14:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 800x536, components 3\012- data
Hash c0eaf696602eab8818223c87a821144b
c1e81352ce210d89860600a897c964fe808fd7ad
8100387b65767757babd461363307c743a765983db909dc94d57d9c8a838901a
GET /upload/vod/20220425-1/65ead6f97745e0c3b41301fa5550c3af.jpg HTTP/1.1
Host: img.jialiimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 12:45:40 GMT
content-type: image/jpeg
content-length: 75023
last-modified: Mon, 25 Apr 2022 08:27:53 GMT
etag: "62665b89-1250f"
expires: Sat, 08 Oct 2022 12:45:40 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
p.qlogo.cn/hy_personal/3e28f14aa05168424fa80afa512d47670c98e6ee97c11a60ad0f9c35a38b4b7f/0.png
43.129.255.47200 OK 989 kB URL HTTP/2 p.qlogo.cn/hy_personal/3e28f14aa05168424fa80afa512d47670c98e6ee97c11a60ad0f9c35a38b4b7f/0.png
IP 43.129.255.47:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type GIF image data, version 89a, 960 x 60\012- data
Size 989 kB (988610 bytes)
Hash 4145292e4c977dcbc7b371f460e08cf2
c8025e36c672a4240da49f73e80295b42a71b274
3f8ad1230a54a7c36522b11dd277ff02b878dde5384334dfd98359759c0a7fba
GET /hy_personal/3e28f14aa05168424fa80afa512d47670c98e6ee97c11a60ad0f9c35a38b4b7f/0.png HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Qnginx/1.4.4
date: Thu, 08 Sep 2022 12:44:13 GMT
content-type: image/gif
content-length: 988610
vary: Accept,Origin
last-modified: Mon, 18 Jul 2022 15:22:35 GMT
cache-control: max-age=2592000
x-delay: 492 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 2
x-reqgue: 0
size: 988610
chid: 0
fid: 0
x-nws-log-uuid: e4854bd8-0098-41dd-ad5c-21d366c1b903
X-Firefox-Spdy: h2
img.jialiimg.com/upload/vod/20220326-1/186f5f9ae39aed3ca9e742e613a35616.jpg
108.186.171.14200 OK 86 kB URL HTTP/2 img.jialiimg.com/upload/vod/20220326-1/186f5f9ae39aed3ca9e742e613a35616.jpg
IP 108.186.171.14:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 800x536, components 3\012- data
Hash f1f763a3cae6c9e5c8d45c6cbe52bbc2
ae44c8048655278228dcff3b6ab5e0869ebcd54c
0d934717c17dd7669a19702ee94175cd07c87a7e0719452b3e78225153cdb492
GET /upload/vod/20220326-1/186f5f9ae39aed3ca9e742e613a35616.jpg HTTP/1.1
Host: img.jialiimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 12:45:40 GMT
content-type: image/jpeg
content-length: 85665
last-modified: Fri, 25 Mar 2022 18:54:32 GMT
etag: "623e0fe8-14ea1"
expires: Sat, 08 Oct 2022 12:45:40 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
p.qlogo.cn/hy_personal/3e28f14aa051684245c4e0cfebfbd4b5ae29f1c75b96bd0a83bebaafdd18bfca/0.png
43.129.255.47200 OK 1.3 MB URL HTTP/2 p.qlogo.cn/hy_personal/3e28f14aa051684245c4e0cfebfbd4b5ae29f1c75b96bd0a83bebaafdd18bfca/0.png
IP 43.129.255.47:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type GIF image data, version 89a, 960 x 60\012- data
Size 1.3 MB (1296026 bytes)
Hash 5f356028e5e94176f56a75568e49ae20
3796c4c950687811a1d1f80fd9e31e718bda0f85
c6d85123315be8a70786b6699f59eecff590bc8fbf1a48a477bcb2cacd660320
GET /hy_personal/3e28f14aa051684245c4e0cfebfbd4b5ae29f1c75b96bd0a83bebaafdd18bfca/0.png HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Qnginx/1.4.4
date: Thu, 08 Sep 2022 12:44:13 GMT
content-type: image/gif
content-length: 1296026
vary: Accept,Origin
last-modified: Mon, 18 Jul 2022 17:08:22 GMT
cache-control: max-age=2592000
x-delay: 541 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 2
x-reqgue: 0
size: 1296026
chid: 0
fid: 0
x-nws-log-uuid: 065561df-f081-4c8a-b1fd-17ef99678aea
X-Firefox-Spdy: h2
p.qlogo.cn/hy_personal/3e28f14aa051684245c4e0cfebfbd4b50a56a24a513385a602ad3f28c6b7e75d/0.png
43.129.255.47200 OK 689 kB URL HTTP/2 p.qlogo.cn/hy_personal/3e28f14aa051684245c4e0cfebfbd4b50a56a24a513385a602ad3f28c6b7e75d/0.png
IP 43.129.255.47:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type GIF image data, version 89a, 960 x 60\012- data
Size 689 kB (688878 bytes)
Hash 38adb06da8d7db34d62dfc1760cda2dd
862c5ecedd5add094b8dfb22c3087b09493a312a
89521c87c1fe061e63fb523bb11f2a328e9202574d73aa4c4e17de8a8f301c58
GET /hy_personal/3e28f14aa051684245c4e0cfebfbd4b50a56a24a513385a602ad3f28c6b7e75d/0.png HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Qnginx/1.4.4
date: Thu, 08 Sep 2022 12:44:13 GMT
content-type: image/gif
content-length: 688878
vary: Accept,Origin
last-modified: Mon, 18 Jul 2022 16:38:19 GMT
cache-control: max-age=2592000
x-delay: 306 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 2
x-reqgue: 0
size: 688878
chid: 0
fid: 0
x-nws-log-uuid: 553b1cff-c52d-4217-80cb-2e8bae1ca6c6
X-Firefox-Spdy: h2
img.jialiimg.com/upload/vod/20220510-1/c7691794762d3e22f492787e76ca8ff8.jpg
108.186.171.14200 OK 105 kB URL HTTP/2 img.jialiimg.com/upload/vod/20220510-1/c7691794762d3e22f492787e76ca8ff8.jpg
IP 108.186.171.14:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 800x450, components 3\012- data
Size 105 kB (104907 bytes)
Hash af98d11b463929d77d3acef51b6df1c1
f696fadc597b5aa56c6958fdf1bc137cc439fb4f
3d96b88ac2154cfec5e1b3606602124ad876c9db7d8c0582064fbabaca05575d
GET /upload/vod/20220510-1/c7691794762d3e22f492787e76ca8ff8.jpg HTTP/1.1
Host: img.jialiimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 12:45:40 GMT
content-type: image/jpeg
content-length: 104907
last-modified: Tue, 10 May 2022 01:49:21 GMT
etag: "6279c4a1-199cb"
expires: Sat, 08 Oct 2022 12:45:40 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.jialiimg.com/upload/vod/20220402-1/ddb6b61382800cc5e38bee8b8760e1d8.jpg
108.186.171.14200 OK 0 B URL HTTP/2 img.jialiimg.com/upload/vod/20220402-1/ddb6b61382800cc5e38bee8b8760e1d8.jpg
IP 108.186.171.14:0
GET /upload/vod/20220402-1/ddb6b61382800cc5e38bee8b8760e1d8.jpg HTTP/1.1
Host: img.jialiimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 12:45:40 GMT
content-type: image/jpeg
content-length: 208555
last-modified: Fri, 01 Apr 2022 19:10:05 GMT
etag: "62474e0d-32eab"
expires: Sat, 08 Oct 2022 12:45:40 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.jialiimg.com/upload/vod/20220426-1/131cf31ed54ff67ee9b2fb0fdd66140b.jpg
108.186.171.14200 OK 0 B URL HTTP/2 img.jialiimg.com/upload/vod/20220426-1/131cf31ed54ff67ee9b2fb0fdd66140b.jpg
IP 108.186.171.14:0
GET /upload/vod/20220426-1/131cf31ed54ff67ee9b2fb0fdd66140b.jpg HTTP/1.1
Host: img.jialiimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 12:45:40 GMT
content-type: image/jpeg
content-length: 140723
last-modified: Tue, 26 Apr 2022 05:23:43 GMT
etag: "626781df-225b3"
expires: Sat, 08 Oct 2022 12:45:40 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
fmtu.netfhtu.com/upload/vod/20210904-1/70d4506e65af5859a04fe1f4872be1db.jpg
104.21.235.63200 OK 0 B URL HTTP/2 fmtu.netfhtu.com/upload/vod/20210904-1/70d4506e65af5859a04fe1f4872be1db.jpg
IP 104.21.235.63:0
GET /upload/vod/20210904-1/70d4506e65af5859a04fe1f4872be1db.jpg HTTP/1.1
Host: fmtu.netfhtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.chinadqwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Sep 2022 12:44:08 GMT
content-type: image/jpeg
content-length: 688015
cf-bgj: h2pri
etag: "6132740e-a7f8f"
last-modified: Fri, 03 Sep 2021 19:14:22 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=06FNNAiBSpbGEanyNrAegDAG7tO04QMlw7L6hbe6wX4TtccSChGiZor4EwiLXPktsNB5MiMOQFJP2PodBgLiAbIQcPIB2zuGZNkv8naNeNEUJ4sqnprMXSQ2e68TXfPG2v%2FO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7477c618ee4206f9-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2