Overview

URLwww.daocaorenjiaju.com/
IP 45.61.133.215 (United States)
ASN#46261 QUICKPACKET
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2023-01-28 17:27:44 UTC
StatusLoading report..
IDS alerts0
Blocklist alert1
urlquery alerts No alerts detected
Tags None

Domain Summary (30)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
www.daocaorenjiaju.com (12) 0 No data No data 45.61.133.215 Unknown ranking
fmlb.netlbtu.com (32) 187701 2021-09-14 11:57:06 UTC 2023-01-28 08:48:44 UTC 45.89.209.74
img.guoseapi.com (30) 0 2022-07-01 08:53:02 UTC 2023-01-26 22:19:36 UTC 172.67.198.36 Unknown ranking
api.share.baidu.com (1) 44629 2013-04-25 14:45:11 UTC 2023-01-28 04:09:17 UTC 182.61.240.101
sc02.alicdn.com (1) 46111 2015-09-19 14:30:56 UTC 2023-01-28 12:47:47 UTC 95.101.11.161
collect-v6.51.la (1) 91421 2021-03-08 16:03:54 UTC 2023-01-28 13:39:54 UTC 103.143.19.103
kkgif.oss-cn-hangzhou.aliyuncs.com (3) 0 2022-10-15 14:58:25 UTC 2023-01-27 06:17:57 UTC 47.110.177.134 Domain (aliyuncs.com) ranked at: 1959
r3.o.lencr.org (11) 344 2020-12-02 08:52:13 UTC 2023-01-28 04:09:13 UTC 23.36.77.32
u1044.com (1) 0 2021-02-01 01:45:41 UTC 2023-01-27 06:17:58 UTC 103.189.109.72 Unknown ranking
img.firefoxcartoon.com (3) 0 2022-06-01 18:35:17 UTC 2023-01-28 12:25:28 UTC 23.224.182.179 Unknown ranking
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2023-01-28 04:09:08 UTC 34.117.237.239
ocsp2.globalsign.com (1) 1544 2012-05-21 07:12:19 UTC 2023-01-28 04:09:09 UTC 104.18.21.226
ocsp.globalsign.com (1) 2075 2012-05-25 06:20:55 UTC 2023-01-28 04:09:17 UTC 104.18.20.226
ocsp.sectigo.com (6) 487 2018-12-17 11:31:55 UTC 2023-01-28 13:29:44 UTC 104.18.32.68
content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2023-01-28 04:11:17 UTC 34.160.144.191
api.safe-t-first.com (8) 0 2022-09-15 09:13:27 UTC 2023-01-27 06:17:56 UTC 107.164.49.70 Unknown ranking
img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2023-01-28 04:09:17 UTC 34.120.237.76
sdk.51.la (1) 88367 2021-03-08 16:03:51 UTC 2023-01-28 13:39:52 UTC 47.253.50.2
xinchacha2dv.ocsp-certum.com (1) 0 2022-07-28 10:58:17 UTC 2023-01-28 11:10:50 UTC 95.101.10.193 Domain (ocsp-certum.com) ranked at: 9356
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2023-01-28 04:12:05 UTC 52.33.66.202
xx-map.com (1) 0 2018-11-29 13:37:03 UTC 2023-01-27 06:17:57 UTC 104.21.52.79 Unknown ranking
225962tyy.com (1) 0 2022-10-27 21:28:10 UTC 2023-01-27 06:17:59 UTC 103.170.15.91 Unknown ranking
push.zhanzhang.baidu.com (1) 57139 2015-07-22 05:44:02 UTC 2023-01-28 04:09:16 UTC 182.61.240.101
lbfm.lbpictupian.com (1) 0 2022-10-09 16:47:38 UTC 2023-01-28 08:48:18 UTC 104.22.12.214 Unknown ranking
taiwtp1.com (1) 0 2022-04-08 07:06:08 UTC 2023-01-28 08:48:18 UTC 220.128.218.220 Unknown ranking
n0633.com (1) 0 2021-02-01 01:45:28 UTC 2023-01-27 06:17:58 UTC 20.196.216.223 Unknown ranking
firefox.settings.services.mozilla.com (2) 867 2020-05-25 20:06:39 UTC 2023-01-28 04:09:40 UTC 35.241.9.150
hm.baidu.com (2) 8254 2012-05-26 08:38:45 UTC 2023-01-28 12:57:50 UTC 103.235.46.191
ldbbs.ldmnq.com (1) 0 2022-01-01 15:20:18 UTC 2023-01-28 13:33:03 UTC 120.52.95.234 Domain (ldmnq.com) ranked at: 169338
dvcasha2.ocsp-certum.com (3) 71753 2014-11-27 08:04:42 UTC 2023-01-28 04:09:21 UTC 95.101.10.107

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
 No alerts detected

mnemonic secure dns
 No alerts detected

Quad9 DNS
Scan Date Severity Indicator Comment
2023-01-28 2 225962tyy.com Sinkholed

ThreatFox
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 1 reports on IP: 45.61.133.215
Date UQ / IDS / BL URL IP
2023-01-28 17:27:44 +0000 0 - 0 - 1 www.daocaorenjiaju.com/ 45.61.133.215


Last 5 reports on ASN: QUICKPACKET
Date UQ / IDS / BL URL IP
2023-03-30 06:20:59 +0000 0 - 4 - 0 www.asureware.com/our-work 162.223.29.234
2023-03-30 06:18:51 +0000 0 - 0 - 4 www656444.com/58907.html 185.213.18.208
2023-03-29 15:37:39 +0000 0 - 3 - 2 rhmediadesign.com/dok/caixa/particular/login.php 45.43.215.93
2023-03-27 14:41:56 +0000 0 - 8 - 1 ubsparta.com/images/Helpful-Links 79.110.182.171
2023-03-27 14:41:33 +0000 0 - 1 - 0 sevgipet.com/zz/archive.zip 172.82.162.249


Last 1 reports on domain: daocaorenjiaju.com
Date UQ / IDS / BL URL IP
2023-01-28 17:27:44 +0000 0 - 0 - 1 www.daocaorenjiaju.com/ 45.61.133.215


Last 1 reports with similar screenshot
Date UQ / IDS / BL URL IP
2023-02-18 07:50:19 +0000 0 - 0 - 1 www.91baodao.com/ 45.61.135.204

JavaScript

Executed Scripts (21)

Executed Evals (0)

Executed Writes (93)
#1 JavaScript::Write (size: 80) - SHA256: a1fa3a240ba2d7575facb53fcec37be339abcdc0cc89e0aecf516f74232b9932
< div style = 'text-align: center;font-size:16px;color:red;padding-top:10px' > < /div>
#2 JavaScript::Write (size: 35) - SHA256: c2cef373e1ad3b1ca039051f564a9bae426cd23fbf192197ecef6a68b6ec9504
< ul class = "nav_menu nav clearfix" >
#3 JavaScript::Write (size: 109) - SHA256: b092dc78ef0edfe0df01702faeefe10af610201fce8f5b3999500510f5ed8111
< script type = "text/javascript"
language = "javascript"
src = "https://api.safe-t-first.com/dzt/SAPP.JS" > < /script>
#4 JavaScript::Write (size: 43) - SHA256: 1ed8b321d31cddc456695da0adc50a7bba0d8b47ad5e8be08c3315bb7cc2c533
    width: 100 % ;
#5 JavaScript::Write (size: 190) - SHA256: 626eda6d05daf30bb358cfd3f0d82b6b969e23668022ae7cc8b3d950577d41bb
< li > < a href = 'https://api.safe-t-first.com/ads/ads.html='
_blank ' rel='
nofollow '><img src='
https: //img.firefoxcartoon.com/image/im8.webp'><span>&#30343;&#20896;&#20307;&#32946;</span></a></li>
#6 JavaScript::Write (size: 25) - SHA256: 6648c3e905e26aec49888befaf550c6b2eafac552d09c6bd19e7bbd3220da967
 .need_grid_img ul li img
#7 JavaScript::Write (size: 19) - SHA256: f4311e64d53d6ad6f117a76d443dd530bb024355b57101f8e2d125dcee0f90e2
 .need_grid_img.ul
#8 JavaScript::Write (size: 16) - SHA256: 1645f4f6e9b93deb1ba651c4de53b8852b963ff915a93edcc5220158c7712adc
    float: left;
#9 JavaScript::Write (size: 25) - SHA256: 0cf2ed1e52788581f8203df80306ed8c40f1e702655456207394ba25b9668285
 @
 media(max - width: 768 px)
#10 JavaScript::Write (size: 211) - SHA256: 9ec99ea031d074c405a80ce6b34c1acef1432d1a750fb5f9ab3e4a91d9bb5d44
< li > < a href = 'https://api.safe-t-first.com/ads/ads.html'
target = '_blank'
rel = 'nofollow' > < img src = 'https://225962tyy.com/470ed5ee51fd4c618951406988fe976e.gif' > < span > & #23041;&# 23612; & #26031;&# 20154; < /span></a > < /li>
#11 JavaScript::Write (size: 107) - SHA256: caf40ae05e93ba07809d8c6119f6928d8d41034828869ba0e28e489dc71babb1
< script type = "text/javascript"
language = "javascript"
src = "https://api.safe-t-first.com/dzt/S4.JS" > < /script>
#12 JavaScript::Write (size: 6) - SHA256: aac32651b10f567c461b9b4f255d6fb1fa6859b5368d8bd9a51af920ab21cf23
< /div>
#13 JavaScript::Write (size: 113) - SHA256: 7b5cefefbe3d624541dc8cc66e79e5554220b2a231d5e92fbcba81bbfee137ee
< li > < a href = 'https://api.safe-t-first.com/ads/ads.html'
target = '_blank' > & #25805;&# 19977; & #20010;&# 22902; < /a></li >
#14 JavaScript::Write (size: 2) - SHA256: e2200f74356624e2e0b2a6e149922e8fd77b57481b1f6511c5f925f2c99d0821
{
#15 JavaScript::Write (size: 21) - SHA256: 84c8d2475bb278fd8c4abbf33baaabe65da730dbb558a567fc379a604755ab98
    margin: 20 px auto;
#16 JavaScript::Write (size: 25) - SHA256: dc00aa6bf354d64050ff622fc1f190db9ae073fb67ee1df852b6dd7f3a1a42a7
 }
#17 JavaScript::Write (size: 3) - SHA256: 93cc0030c162bdadb63ec4454ff6f32724a1c72738ca9ca71026995852055fd0
{
#18 JavaScript::Write (size: 19) - SHA256: c4714a4e945d5a071c2675d14cedd733e76d393f744375bb48610ac622ff6484
    display: block;
#19 JavaScript::Write (size: 21) - SHA256: fd752526d40b84af8e7d5183f9200264e81d11c60358bceef91010fb2f119d99
 .need_grid_img ul li
#20 JavaScript::Write (size: 72) - SHA256: 6cd608602872729353f5d4ff7f68bac386fcdd9d3aa7d0d55fb4261543af3f6e
< li > < a href = 'https://api.safe-t-first.com/ads/ads.html'
target = '_blank' >
#21 JavaScript::Write (size: 267) - SHA256: 9a44bc8ff4d4e58db97aa44f14d28982d322a6583e59f0667dcfbe8af3be14e1
			< img src = 'http://fmlb.netlbtu.com/upload/vod/2022/09-03/12/ukgyaqrvmsb1242ukgyaqrvmsb4523587.jpg'
			onerror = 'src='
			https: //api.safe-t-first.com/ads/ads.html/kf/Hf82983e650f140d4baccd79e3f84f3f1f.gif''><h3>&#x3010;&#x62DB;&#x79DF;&#x5E7F;&#x544A;&#x3011;</h3></a></li>
#22 JavaScript::Write (size: 276) - SHA256: 177370c0edbe45e4db6e31f95c97200582f6f1e77e5099154e1159c37e45e84a
< DIV id = 'duilianql'
class = 'duilian' > < a class = 'dlad'
href = 'https://api.safe-t-first.com/ads/ads.html'
target = '_blank' > < img src = 'https://taiwtp1.com/img/200200.gif' > < /a><a class='dlclose' href='javascript:void(0);' onclick='closedl();'>&#x4E00;&#x952E;&#x5173;&#x95ED;</a > < /div>
#23 JavaScript::Write (size: 113) - SHA256: 3874fe83372f55612e1f67cee54c86e388a64a8737e500a61666ec6139503e1c
< li > < a href = 'https://api.safe-t-first.com/ads/ads.html'
target = '_blank' > & # x5077; & # x62CD; & # x81EA; & # x62CD; < /a></li >
#24 JavaScript::Write (size: 14) - SHA256: ff875f790d0365b5144c3d15b1f998b7b9d108223ac171b3eabefdc13cab0540
    border: 0
#25 JavaScript::Write (size: 15) - SHA256: 85f0a6857b838e030c7fb5f49be83ec181b987d523cec7af0afda72b4cce686c
    width: 100 %
#26 JavaScript::Write (size: 18) - SHA256: dc01dc346471d9fecdaa7206fe9edd20e2c6bb31b6e9035407088fef1310afce
   margin: 0 auto;
#27 JavaScript::Write (size: 15) - SHA256: 999f3289383c33693d1055b7e45459d025b8f53d2db59891d9817e6c528265a9
   height: 56 px;
#28 JavaScript::Write (size: 113) - SHA256: 43ad13d894c7977c0e8794af6e35cacb09e33f9876f48dbe48a31f4b46123109
< li > < a href = 'https://api.safe-t-first.com/ads/ads.html'
target = '_blank' > & #21460;&# 23234; & #20849;&# 28020; < /a></li >
#29 JavaScript::Write (size: 21) - SHA256: 35d7cf94eeebb7af47c599833695c81a9baccf6a03bb08d04a9c11c04136bf9c
    overflow: hidden;
#30 JavaScript::Write (size: 17) - SHA256: 374f26981c7e78442a6b0aaa5a5be33a19587a824bfb73fd3b5505d806d79207
 .need_grid_img a
#31 JavaScript::Write (size: 19) - SHA256: 609cb2601f1606aa81b5b25b6960a695aaab9e3c840f8cf5b8b22d525cb4e485
    color: # FF5733;
#32 JavaScript::Write (size: 22) - SHA256: fa09385ad86d4d124a0bb11b2d4989be37f13d7043eca155d5dc1c4314601c6e
   border - radius: 15 px
#33 JavaScript::Write (size: 195) - SHA256: 4584d4a398dc4bec230c6c3a7c6167e50f97524887b076e6c755e9d2f20bc0b5
< li > < a href = 'https://api.safe-t-first.com/ads/ads.html'
target = '_blank'
rel = 'nofollow' > < img src = 'https://img.firefoxcartoon.com/image/a7.gif' > < span > & #51;&# 54; & #53;&# 20307; & #32946;</span></a></li>
#34 JavaScript::Write (size: 107) - SHA256: 1eb1db4c428442ff2a503abefedead86a6469550f7de6156cf312c7f7d269443
< script type = "text/javascript"
language = "javascript"
src = "https://api.safe-t-first.com/dzt/DL.JS" > < /script>
#35 JavaScript::Write (size: 19) - SHA256: 2640dc8a7673b0cfc8c9582681ea22ab685bc9725f257822225176eb7b88025d
 .need_grid_img img
#36 JavaScript::Write (size: 22) - SHA256: 43d914ee69b274e897a2d50d529c071279198b929d1d1422d1f859d9d4706875
www.daocaorenjiaju.com
#37 JavaScript::Write (size: 108) - SHA256: 17a4cff4d9da7c2ecc9bdf5b13515c58e337236942fd484ebea97dae11d1a678
< script type = "text/javascript"
language = "javascript"
src = "https://api.safe-t-first.com/dzt/SDH.JS" > < /script>
#38 JavaScript::Write (size: 113) - SHA256: 9e9bf882a914f48dbcb062a8d2c78c78797903b68019c0dc8ad663d469ec4775
< li > < a href = 'https://api.safe-t-first.com/ads/ads.html'
target = '_blank' > & #21307;&# 38498; & #39564;&# 36924; < /a></li >
#39 JavaScript::Write (size: 5) - SHA256: 348845d8804b5c895e2a2938423ed17b2dc4cd3aad9f966c13e0ed89223b2f90
< /ul>
#40 JavaScript::Write (size: 21) - SHA256: 22977feaf85ca0672abbfbf3fa8964b7db4d52af3acfcead490c31556488d5b9
    max - width: 1140 px;
#41 JavaScript::Write (size: 20) - SHA256: f4330a7bdff1b7db438902f3d2271e98f446158183d970f2061322426911f4a6
    margin - top: 0 px;
#42 JavaScript::Write (size: 23) - SHA256: 61120092e3f191f3eb9232c2301afb38990e22453a443e5e3e996c0cdc3b1578
    // background:red;
#43 JavaScript::Write (size: 2) - SHA256: 15715d5ca91fe9c1de7947083abca074bb304712ebf119996712abf31472579f
 }
#44 JavaScript::Write (size: 18) - SHA256: 97208b8aa855fc9befa09d28db64e1b0328b7a4675dd64dea0fb09948bd7a347
    padding: 5 px 0;
#45 JavaScript::Write (size: 227) - SHA256: c3d54324e7d60bc04cc487fa096e158383fec48b91b21d82ce1799a5e245faac
< li > < a href = 'https://api.safe-t-first.com/ads/ads.html'
target = '_blank'
rel = 'nofollow' > < img src = 'http://lbfm.lbpictupian.com/upload/vod/2022/10-27/13/ra4scrsa5rr1341ra4scrsa5rr142581.jpg' > < span > & # x7EA6; & # x8DD1; < /span></a > < /li>
#46 JavaScript::Write (size: 211) - SHA256: 011ceef7de03d5c114f39ae8f71326f8dfd2a10120288eaa3b9124953398e324
< a href = 'https://api.safe-t-first.com/ads/ads.html'
target = '_blank' > < img src = 'https://kkgif.oss-cn-hangzhou.aliyuncs.com/960x120-2.gif'
border = '0'
width = '100%'
height = '60'
style = 'border: 1px inset #00FF00' / > < /a>
#47 JavaScript::Write (size: 128) - SHA256: cc4671daf0e34727e64be3bb8df15741c818676893a84edc6ac7cdd7f98fdc34
< li class = 'active' > < a href = 'https://api.safe-t-first.com/ads/ads.html'
target = '_blank' > & #39640;&# 28165; & #19968;&# 21306; < /a></li >
#48 JavaScript::Write (size: 113) - SHA256: e34d07ed57eddcf3e0935bc09831c848750cd8bf4587be8d9f58ac490d225909
< li > < a href = 'https://api.safe-t-first.com/ads/ads.html'
target = '_blank' > & # x4E2D; & # x6587; & # x5B57; & # x5E55; < /a></li >
#49 JavaScript::Write (size: 113) - SHA256: 5379fd1fab244b9dc165a43017de2ba50806e663a035bd7e885e7afcde682aa0
< li > < a href = 'https://api.safe-t-first.com/ads/ads.html'
target = '_blank' > & # x9AD8; & # x6E05; & # x79D2; & # x64AD; < /a></li >
#50 JavaScript::Write (size: 3) - SHA256: 99db6e95a927608f8cb18cf59b80a395772b0f5af1aa217c85127544c9a563ef
 }
#51 JavaScript::Write (size: 1) - SHA256: 021fb596db81e6d02bf3d2586ee3981fe519f275c0ac9ca76bbcf2ebb4097d96
{
#52 JavaScript::Write (size: 207) - SHA256: 07a6ca173301b72989349f939b7cb1f6edf70be706d9ff5bdf90304eb6365a56
< li > < a href = 'https://api.safe-t-first.com/ads/ads.html'
target = '_blank'
rel = 'nofollow' > < img src = 'https://xx-map.com/storage/websites/June2022/i4v0YIEW1Rq1FlVqI9hv.gif' > < span > & # x7EA6; & # x8DD1; < /span></a > < /li>
#53 JavaScript::Write (size: 107) - SHA256: c641a95781337634db26a4fd4b919fe34aded6e6c1a5a83c10ed42bdde906e79
< script type = "text/javascript"
language = "javascript"
src = "https://api.safe-t-first.com/dzt/SP.JS" > < /script>
#54 JavaScript::Write (size: 508) - SHA256: 6c096534a55db969fd2d399f0a2bb3547767bcee19c530eb868d783197d35809
< script > ! function(p) {
    "use strict";
    ! function(t) {
        var s = window,
            e = document,
            i = p,
            c = "".concat("https:" === e.location.protocol ? "https://" : "http://", "sdk.51.la/js-sdk-pro.min.js"),
            n = e.createElement("script"),
            r = e.getElementsByTagName("script")[0];
        n.type = "text/javascript", n.setAttribute("charset", "UTF-8"), n.async = !0, n.src = c, n.id = "LA_COLLECT", i.d = n;
        var o = function() {
            s.LA.ids.push(i)
        };
        s.LA ? s.LA.ids && o() : (s.LA = p, s.LA.ids = [], o()), r.parentNode.insertBefore(n, r)
    }()
}({
    id: "JnwZHGIdaB4dKzMi",
    ck: "JnwZHGIdaB4dKzMi"
}); < /script>
#55 JavaScript::Write (size: 25) - SHA256: 2b4c4772c57551bfd139d002a72f873010de23183b5d56792b426cc5738d3440
 @
 media(max - width: 544 px)
#56 JavaScript::Write (size: 113) - SHA256: 4d35a0e713dfa2bf96362f07801ec182b03ec42bd7a232fe05211fbca2a5895a
< li > < a href = 'https://api.safe-t-first.com/ads/ads.html'
target = '_blank' > & #27597;&# 23376; & #23567;&# 39532; < /a></li >
#57 JavaScript::Write (size: 113) - SHA256: 9abb1c2fb6b54b8302edd477c2b10f5d8e858e626a7f37b92f7f77600fd1b063
< li > < a href = 'https://api.safe-t-first.com/ads/ads.html'
target = '_blank' > & #20599;&# 24773; & #23612;&# 22993; < /a></li >
#58 JavaScript::Write (size: 113) - SHA256: 7b139a5a083b1d0b8a796c7fce646fd6fa0d70ab4312886157e2c00aa1099334
< li > < a href = 'https://api.safe-t-first.com/ads/ads.html'
target = '_blank' > & #23381;&# 22919; & #20570;&# 29233; < /a></li >
#59 JavaScript::Write (size: 113) - SHA256: 32b0bc15b3903f6c20d29c63819482d9849e14bbef222ff8aad866cab73c869c
< li > < a href = 'https://api.safe-t-first.com/ads/ads.html'
target = '_blank' > & # x5E7C; & # x5973; & # x7834; & # x5904; < /a></li >
#60 JavaScript::Write (size: 113) - SHA256: 3e6e9fd8e02bd820d389ba9f129c0f77fb29264cfdeccafb3a45c7a4e7d0fc50
< li > < a href = 'https://api.safe-t-first.com/ads/ads.html'
target = '_blank' > & # x5267; & # x60C5; & # x8FF7; & # x5978; < /a></li >
#61 JavaScript::Write (size: 113) - SHA256: 6191b5395ce49517d900c3188f279d879c7d33e3ab8ad0802032a702fbb811bc
< li > < a href = 'https://api.safe-t-first.com/ads/ads.html'
target = '_blank' > & # x4E09; & # x7EA7; & # x81EA; & # x6170; < /a></li >
#62 JavaScript::Write (size: 16) - SHA256: d5e28039b34ba413db89a0d48028dfb6199c53bb41026dff8916c0b5e3d309d5
    width: 10 % ;
#63 JavaScript::Write (size: 0) - SHA256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
#64 JavaScript::Write (size: 276) - SHA256: d9ca1515e113b18ad498d8d00f7fb183caabacb6e1d489ac7fbcd4785583bf0d
< DIV id = 'duilianqr'
class = 'duilian' > < a class = 'dlad'
href = 'https://api.safe-t-first.com/ads/ads.html'
target = '_blank' > < img src = 'https://taiwtp1.com/img/200200.gif' > < /a><a class='dlclose' href='javascript:void(0);' onclick='closedl();'>&#x4E00;&#x952E;&#x5173;&#x95ED;</a > < /div>
#65 JavaScript::Write (size: 113) - SHA256: 77ce7a6a9d9ede60219598017d1d3a0678ad9ba006ffbd94880392e45d7441fd
< li > < a href = 'https://api.safe-t-first.com/ads/ads.html'
target = '_blank' > & #21518;&# 20837; & #23234;&# 23376; < /a></li >
#66 JavaScript::Write (size: 7) - SHA256: 7681f551e91f891fa8988f41eb7adccf9fa9de61d337d05632bf6275b26f5c70
< style >
#67 JavaScript::Write (size: 15) - SHA256: 01ba0f71a69b85bae591c44bbfbbab4c0835b357160ad396dd45c923f62f9c50
 .need_grid_img
#68 JavaScript::Write (size: 24) - SHA256: d73338e847253fe605002fe2dae7dfcc9660d9cade412d834a7f84e52a32052a
 }
#69 JavaScript::Write (size: 8) - SHA256: 5e4117ea8905b4866062cf8ae840cc520d1cd0403399e0b7342ea8485ef9a37d
< /style>
#70 JavaScript::Write (size: 14) - SHA256: 201d144df04052c9fad54602b5df168df2b3c68b983bb89e1e4a718bb18917e9
   width: 56 px;
#71 JavaScript::Write (size: 25) - SHA256: 5930535a7b1dda68e6ff2f525916c1e6d0b8dc9bf9f25496324505217f0a8159
< /ul>
#72 JavaScript::Write (size: 140) - SHA256: b0fea6724d7caaefaa828bf7f0911e20929657d561ab93301f84a9b9c181fb20
< div style = 'text-align: center;font-size:16px;color:red;padding-top:10px' > & # x5E7F; & # x544A; & # x5408; & # x4F5C; & # xFF1A;
TG & # xFF1A;@
XPG123123 < /div>
#73 JavaScript::Write (size: 26) - SHA256: b3a5c601c32d72cd259d5a1b8595d23f6307137cf6f0a4e146355b4bc18da5d4
    display: inline - block;
#74 JavaScript::Write (size: 22) - SHA256: 4c30ded538f599b82388fcd7a6f63a39087c01db1d6c69d63add77449153021b
    text - align: center
#75 JavaScript::Write (size: 13) - SHA256: f06fc2ba7018669ca757c2486487ba5582a43b754b0404cdb9bdfe38729221b0
   width: 25 %
#76 JavaScript::Write (size: 499) - SHA256: 9a8b808ab7947e38bae770de004bdaf78cf40682f8299bfb0996a6427f728d42
< style > .duilian {
    z - index: 9998;
    position: fixed;
    border - bottom: 1 px dashed white;
    border - right: 1 px dashed white;
    border - left: 1 px dashed white;
}.dlclose {
    height: 30 px;line - height: 30 px;text - align: center;display: block;background - color: white;color: # f00;
}.dlad {
    display: block;
}@
media screen and(min - width: 768 px) {.dlad img {
        width: 120 px;
    }.duilian {
        top: 350 px;
    }
}@
media screen and(max - width: 767 px) {.dlad img {
        width: 120 px;
    }.duilian {
        top: 350 px;
    }
}
# duilianql {
    float: left;left: 0 px;
}
# duilianqr {
    float: right;right: 0 px;
} < /style>
#77 JavaScript::Write (size: 31) - SHA256: 7bd6ae536b48143f43b32f500e2fd62cb9f62934a539d8f733892245533af65e
< div class = 'need_grid_img' > < ul >
#78 JavaScript::Write (size: 107) - SHA256: c31dcfc888782a16ddfcfca70cf53080666f5aa0c4b47dfc75414ca3d595e600
< script type = "text/javascript"
language = "javascript"
src = "https://api.safe-t-first.com/dzt/S1.JS" > < /script>
#79 JavaScript::Write (size: 190) - SHA256: 00784fe2e8759639a264c1456f3aa0bc85eb017f17796e308c4f203358be3098
< a href = 'https://v6132.com:5698'
target = '_blank' > < img src = 'https://n0633.com/6b5d90373420481eb967eb739d7ed50f.gif'
border = '0'
width = '100%'
height = '60'
style = 'border: 1px inset #00FF00' / > < /a>
#80 JavaScript::Write (size: 244) - SHA256: 13a098c5fa3be95b500d4b5245d11a5b7c07f8272b8555ec8a0e31808486e268
< a href = 'https://api.safe-t-first.com/ads/ads.html'
target = '_blank' > < img src = 'https://ldbbs.ldmnq.com/bbs/topic/images/2022-12/78fb8314-2121-440b-b224-da2aef721f77.gif'
border = '0'
width = '100%'
height = '60'
style = 'border: 1px inset #00FF00' / > < /a>
#81 JavaScript::Write (size: 113) - SHA256: 2279ecd56b9b86af29cb80ce24aa129e47ba737dd95ad123377d0e62f601587a
< li > < a href = 'https://api.safe-t-first.com/ads/ads.html'
target = '_blank' > & # x4E9A; & # x6D32; & # x4E13; & # x533A; < /a></li >
#82 JavaScript::Write (size: 113) - SHA256: db995fc03ad2a7c2b8519f71a24fe693b62fa5489afd8d44d1664a20dfed8c12
< li > < a href = 'https://api.safe-t-first.com/ads/ads.html'
target = '_blank' > & # x65E5; & # x97E9; & # x7CBE; & # x54C1; < /a></li >
#83 JavaScript::Write (size: 16) - SHA256: 918b232d4c983189e5b53ac753753df30a3a5ac48f8d3dffb679bcce6f44bbdd
   padding: 4 px;
#84 JavaScript::Write (size: 12) - SHA256: 66e2963b0573857ee4ca749ecec79c52bcad9914af01580bc2aa705d6239aa7b
   width: 20 %
#85 JavaScript::Write (size: 107) - SHA256: 91201c536353a87a3a38a603315360b568378eba81a9ef8d978a229a228ee0af
< script type = "text/javascript"
language = "javascript"
src = "https://api.safe-t-first.com/dzt/S3.JS" > < /script>
#86 JavaScript::Write (size: 113) - SHA256: d0d98e13fd6cec3037e32dc7303e3cecbd01767ee232c8e6ae7930d6234fa649
< script type = "text/javascript"
language = "javascript"
src = "https://api.safe-t-first.com/dzt/DINGPIAO.JS" > < /script>
#87 JavaScript::Write (size: 209) - SHA256: 9200722707223a89c34f2e5c556f01b0f104cf2fa0e19b2d9d10b0660441bffe
< a href = 'https://api.safe-t-first.com/ads/ads.html'
target = '_blank' > < img src = 'https://u1044.com/7e7ff64c2a224d31b3316a3a83786276.gif'
border = '0'
width = '100%'
height = '60'
style = 'border: 1px inset #00FF00' / > < /a>
#88 JavaScript::Write (size: 113) - SHA256: a3a37d5f7a84b469a27a8af1ab4ef75d65e0dee604bd2e7ca986043cfe8f6995
< li > < a href = 'https://api.safe-t-first.com/ads/ads.html'
target = '_blank' > & #20799;&# 23376; & #25805;&# 22920; < /a></li >
#89 JavaScript::Write (size: 112) - SHA256: a35545143756eafedd97f7d0c5527f88bc92846f5e958992e1afdbfc02e29ec9
< li class = 'active' > < a href = 'https://api.safe-t-first.com/ads/ads.html'
target = '_blank' > & # x8DA3; & # x64AD; < /a></li >
#90 JavaScript::Write (size: 107) - SHA256: 685aa02667f7d6ef2c123ad8fa94873fb3e4b9924fcbe67786c7345c911e4427
< script type = "text/javascript"
language = "javascript"
src = "https://api.safe-t-first.com/dzt/S2.JS" > < /script>
#91 JavaScript::Write (size: 24) - SHA256: ccc4d4567ba902024a5184a563df7cd93eac96ab0feda674cedfabb88f879395
 }
 }
#92 JavaScript::Write (size: 188) - SHA256: 90e148e83410c43350c9337e1a4d88e256ded6fe24bae97f598baaba972d0bca
< li > < a href = 'https://v6132.com:5698'
target = '_blank'
rel = 'nofollow' > < img src = 'https://n0611.com/a93e1206f6f94c86a27e53bdbe3863f4.gif' > < span > & #23041;&# 23612; & #26031;&# 20154; < /span></a > < /li>
#93 JavaScript::Write (size: 190) - SHA256: b8b37710b0751e0ae442396a0220c1c55faeed1b02abd8dc83dee1b7c5cafb77
< li > < a href = 'https://api.safe-t-first.com/ads/ads.html'
target = '_blank'
rel = 'nofollow' > < img src = 'https://img.firefoxcartoon.com/image/22cc.gif' > < span > & #26032;&# 33889; & #20140;</span></a></li>


HTTP Transactions (136)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "184D3E4DF4BCE559B4D7C4836372F5FD2DE9782A96B04D364230B7D695D737D8"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5596
Expires: Sat, 28 Jan 2023 19:00:48 GMT
Date: Sat, 28 Jan 2023 17:27:32 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "41736C303AFDB3D31E48724B107DCB22883CAE02F3562308EB52D9164001A2DE"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5139
Expires: Sat, 28 Jan 2023 18:53:11 GMT
Date: Sat, 28 Jan 2023 17:27:32 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E81C685B2D8F0E31B89E5CFC911A2C5A99A556646830AC5A8468D991B5E871A3"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8554
Expires: Sat, 28 Jan 2023 19:50:06 GMT
Date: Sat, 28 Jan 2023 17:27:32 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         35.241.9.150
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 28 Jan 2023 16:35:30 GMT
age: 3122
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    bf0c602d32b3c14606f22a86183b5e3c
Sha1:   6eabd8d83475eba731968abe1a05a8bfd272f160
Sha256: 6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: ri7M+yE7Jy6fsqF9br4dw5i3eQAsquPAGH9T3u89cn9/wj99gJFPO1yBFfp7Vbw3KqQrKAbj2tA=
x-amz-request-id: HV86FFAXRY4PXAK7
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 28 Jan 2023 16:49:58 GMT
age: 2254
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    7b922915ebf1fa3639b333f994c74f24
Sha1:   144a3f80b98fd0652d4614f24cf6cbbee40f8938
Sha256: adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Sat, 28 Jan 2023 17:27:33 GMT
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET / HTTP/1.1 
Host: www.daocaorenjiaju.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         45.61.133.215
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Content-Encoding: gzip
Last-Modified: Sun, 04 Sep 2022 16:30:38 GMT
Accept-Ranges: bytes
ETag: "0cb69aa7bc0d81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 28 Jan 2023 17:27:32 GMT
Content-Length: 5415


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Non-ISO extended-ASCII text, with very long lines (372), with CRLF line terminators
Size:   5415
Md5:    0b2c523fabb83049b1eb87a0da2876ac
Sha1:   227a50cf71e2ecb10d4d9a848ace0a1ae86a83d4
Sha256: b01958d04dee2a57cbf75c45df96568b1f5b18cbe9cfeacdc8166e2845fadbdc
                                        
                                            GET /ggvip/shang.js HTTP/1.1 
Host: www.daocaorenjiaju.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         45.61.133.215
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Last-Modified: Sun, 04 Sep 2022 07:58:59 GMT
Accept-Ranges: bytes
ETag: "8930803034c0d81:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 28 Jan 2023 17:27:32 GMT
Content-Length: 127


--- Additional Info ---
Magic:  HTML document, ASCII text, with no line terminators
Size:   127
Md5:    37c556ac04a5f5cadb6c241a4ae8d33c
Sha1:   fd2005426212abc958bb547db1b4431ec248d8d1
Sha256: 02c7ae6783a11b627a1786042c000cc1543fa14d4f444fb1c5d71eb026bd0526
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         35.241.9.150
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Last-Modified, ETag, Expires, Backoff, Content-Length, Cache-Control, Alert, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 28 Jan 2023 16:49:03 GMT
age: 2310
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /ggvip/sp.js HTTP/1.1 
Host: www.daocaorenjiaju.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         45.61.133.215
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Last-Modified: Sun, 04 Sep 2022 07:59:09 GMT
Accept-Ranges: bytes
ETag: "a32bec3634c0d81:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 28 Jan 2023 17:27:33 GMT
Content-Length: 127


--- Additional Info ---
Magic:  HTML document, ASCII text, with no line terminators
Size:   127
Md5:    077359a6f600f6603c9b05e5a692c692
Sha1:   78bb3067655fbacb12ad65102f03e0125011906d
Sha256: 1be76d46ec17d20873c26476027e7d73e20f564b9cc09d19e0a0838f23ed34b1
                                        
                                            GET /ggvip/xxx3.js HTTP/1.1 
Host: www.daocaorenjiaju.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         45.61.133.215
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Last-Modified: Sun, 04 Sep 2022 07:59:40 GMT
Accept-Ranges: bytes
ETag: "dcaffa4834c0d81:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 28 Jan 2023 17:27:33 GMT
Content-Length: 135


--- Additional Info ---
Magic:  HTML document, ASCII text, with CRLF line terminators
Size:   135
Md5:    0b9733ec2d7643808987165f41fd2046
Sha1:   ec3b3bf6b9e881d1418b766b3af83df2020e6afb
Sha256: 9049eaa99c1e3161be8ab147b11e56e6fb4506da27fdc417520c45050e548348
                                        
                                            GET /ggvip/dibu.js HTTP/1.1 
Host: www.daocaorenjiaju.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         45.61.133.215
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Last-Modified: Sat, 17 Sep 2022 14:38:28 GMT
Accept-Ranges: bytes
ETag: "b637a26a3cad81:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 28 Jan 2023 17:27:33 GMT
Content-Length: 951


--- Additional Info ---
Magic:  HTML document text\012- HTML document, ASCII text, with very long lines (554), with CRLF line terminators
Size:   951
Md5:    2f0753de049179b2e3db89f74c1557a9
Sha1:   19c311b06e3f09f7c6b50361c40ea216bb9e632c
Sha256: 18bc9e82631df2723502f57e689dd73c2f7364f13277e56acade536c7e71d751
                                        
                                            GET /template/default/images/style.css HTTP/1.1 
Host: www.daocaorenjiaju.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         45.61.133.215
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Last-Modified: Sat, 03 Sep 2022 12:11:53 GMT
Accept-Ranges: bytes
ETag: "c4abf25a8ebfd81:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 28 Jan 2023 17:27:32 GMT
Content-Length: 15321


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (1249), with CRLF line terminators
Size:   15321
Md5:    1729b6c8eff370869c022937f8168adb
Sha1:   5f49b429ed6acbcf4b50d12bb3dd67d26331787e
Sha256: a621467c6daff99704c13d41786bc2f7906b4da6ab4e452fdd905d232c2e7eb0
                                        
                                            GET /ggvip/dh.js HTTP/1.1 
Host: www.daocaorenjiaju.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         45.61.133.215
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Last-Modified: Sun, 04 Sep 2022 07:57:47 GMT
Accept-Ranges: bytes
ETag: "73daa8534c0d81:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 28 Jan 2023 17:27:33 GMT
Content-Length: 128


--- Additional Info ---
Magic:  HTML document, ASCII text, with no line terminators
Size:   128
Md5:    15179ef7a51cf01bcfa62c26f053ba03
Sha1:   83fccea4f10371803de0d124be613daf0b6ca21d
Sha256: 5712dc8eb13199d4b1673a8f74bf281a29ae342ce3a804e69357f807695ae2d8
                                        
                                            GET /ggvip/zhong.js HTTP/1.1 
Host: www.daocaorenjiaju.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         45.61.133.215
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Last-Modified: Sun, 04 Sep 2022 08:00:36 GMT
Accept-Ranges: bytes
ETag: "9bb4a76a34c0d81:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 28 Jan 2023 17:27:33 GMT
Content-Length: 258


--- Additional Info ---
Magic:  HTML document, ASCII text, with CRLF line terminators
Size:   258
Md5:    b98e12c63a82568ac37c45acfbbf9b10
Sha1:   64ae7e8ab2297fa3975fb646c0afdeef98bee922
Sha256: f672fceda5a1db2bf1c88201fe9a3cfde5527ab18621049a2ca1216297982631
                                        
                                            GET /ggvip/dl.js HTTP/1.1 
Host: www.daocaorenjiaju.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         45.61.133.215
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Last-Modified: Sun, 04 Sep 2022 07:58:33 GMT
Accept-Ranges: bytes
ETag: "5cb3fa2034c0d81:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 28 Jan 2023 17:27:33 GMT
Content-Length: 268


--- Additional Info ---
Magic:  HTML document, ASCII text, with CRLF line terminators
Size:   268
Md5:    8bb842688c46e8a112377acca9fa43b0
Sha1:   68d7421d58afeb7a86aa9fd668f04fd0a90786fe
Sha256: 7421bbd18febccfa4870a4c4a44e6b0ed66b21556791cfb0dc1a70b3c4c9d245
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18212
Expires: Sat, 28 Jan 2023 22:31:05 GMT
Date: Sat, 28 Jan 2023 17:27:33 GMT
Connection: keep-alive

                                        
                                            GET /upload/vod/2022/09-04/14/kkmbkym1rpf1459kkmbkym1rpf5387.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         45.89.209.74
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: Tengine
Date: Sun, 29 Jan 2023 01:25:51 GMT
Content-Length: 239
Connection: keep-alive
Location: https://fmlb.netlbtu.com/upload/vod/2022/09-04/14/kkmbkym1rpf1459kkmbkym1rpf5387.jpg


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   239
Md5:    67194376ec810b1466000b45b043ab94
Sha1:   b5b0840425f5602244750801336e7e8b9efd022f
Sha256: 39e3595d59216b98e54c6f089954d1397d9eb7f75a2a85914881cec2eef07164
                                        
                                            GET /upload/vod/2021/06-22/17/dfygq50jx0e1748dfygq50jx0e454707.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         45.89.209.74
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: Tengine
Date: Sun, 29 Jan 2023 01:25:51 GMT
Content-Length: 239
Connection: keep-alive
Location: https://fmlb.netlbtu.com/upload/vod/2021/06-22/17/dfygq50jx0e1748dfygq50jx0e454707.jpg


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   239
Md5:    67194376ec810b1466000b45b043ab94
Sha1:   b5b0840425f5602244750801336e7e8b9efd022f
Sha256: 39e3595d59216b98e54c6f089954d1397d9eb7f75a2a85914881cec2eef07164
                                        
                                            GET /images/bg.jpg HTTP/1.1 
Host: www.daocaorenjiaju.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/template/default/images/style.css

search
                                         45.61.133.215
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Sun, 05 Apr 2015 12:43:57 GMT
Accept-Ranges: bytes
ETag: "b8c0a52e9e6fd01:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 28 Jan 2023 17:27:33 GMT
Content-Length: 481


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 40x40, components 3\012- data
Size:   481
Md5:    fc45958c2a7937a709273cbbeb51821e
Sha1:   84d3ef6479ce1070ac197f6bac8f2e4f01f7056e
Sha256: ef9a6bf14c6822f24ffdfe2ee625ab0b065bdcbc6c0aeaa040ee27bf27bc7d02
                                        
                                            GET /upload/vod/2022/09-04/14/32cledzlsjq145932cledzlsjq5285.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         45.89.209.74
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: Tengine
Date: Sun, 29 Jan 2023 01:25:51 GMT
Content-Length: 239
Connection: keep-alive
Location: https://fmlb.netlbtu.com/upload/vod/2022/09-04/14/32cledzlsjq145932cledzlsjq5285.jpg


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   239
Md5:    67194376ec810b1466000b45b043ab94
Sha1:   b5b0840425f5602244750801336e7e8b9efd022f
Sha256: 39e3595d59216b98e54c6f089954d1397d9eb7f75a2a85914881cec2eef07164
                                        
                                            GET /upload/vod/2022/09-04/14/0no20n5s3a214590no20n5s3a24877.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         45.89.209.74
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: Tengine
Date: Sun, 29 Jan 2023 01:25:51 GMT
Content-Length: 239
Connection: keep-alive
Location: https://fmlb.netlbtu.com/upload/vod/2022/09-04/14/0no20n5s3a214590no20n5s3a24877.jpg


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   239
Md5:    67194376ec810b1466000b45b043ab94
Sha1:   b5b0840425f5602244750801336e7e8b9efd022f
Sha256: 39e3595d59216b98e54c6f089954d1397d9eb7f75a2a85914881cec2eef07164
                                        
                                            GET /upload/vod/20220726-1/2eec9c469e4e5f5d5dc06360c12476fe.jpg HTTP/1.1 
Host: img.guoseapi.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         172.67.198.36
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 28 Jan 2023 17:27:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MjXcLz0adb%2BwFsWh8mz1XEIbLkQavcSGXrSen4j05VrXOc674fVfZsqLEJhS4LBt1qNuixxEfj%2BnGl8IS%2B3ndH1%2BCAdCxJxNR8W2QDhnFXDcf9dadPdu8FRVNFb0wBgpqxHZ"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 790b70838834b4eb-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   109
Md5:    3bf8e5b194e806e33f65dfafeb99b824
Sha1:   e47321a5ce2bd7d63c3981c10dff614b0a449ba7
Sha256: 10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
                                        
                                            GET /upload/vod/20220726-1/a2430851a591243448289a874e8a1430.jpg HTTP/1.1 
Host: img.guoseapi.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         172.67.198.36
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 28 Jan 2023 17:27:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TYc7WCyOIhgfc8WMYUQcxH5gabG2pcxGJg5uxeT88IPLrpl6tj%2BlQoJFRjvhYVAqH09LFKKp9bRptneR3HrdbndlqlRLK269d6EfwoxVA68yKtFyQAcJfgO3WCNWlhANq%2Bga"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 790b70838b67b51d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   109
Md5:    3bf8e5b194e806e33f65dfafeb99b824
Sha1:   e47321a5ce2bd7d63c3981c10dff614b0a449ba7
Sha256: 10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
                                        
                                            GET /upload/vod/20220726-1/a5a082af3add384b5ac7fc3cdc9c612c.jpg HTTP/1.1 
Host: img.guoseapi.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         172.67.198.36
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 28 Jan 2023 17:27:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=or93w5vfiaLo2L6mG9nPGipAZLpKjHPqYr0P3WHup1w7EvUouhm9A9M7DuOY1S78YO6URVY8nvRdvbQen8plDebBlR8UXEDmrERmhDI9jQDJMAAYI8Rl8Ub3ED9%2FjYBsahBc"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 790b70838dd9b527-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   109
Md5:    3bf8e5b194e806e33f65dfafeb99b824
Sha1:   e47321a5ce2bd7d63c3981c10dff614b0a449ba7
Sha256: 10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
                                        
                                            GET /upload/vod/20220726-1/af95dfba090cfdb83eb36fc2b9dbc27c.jpg HTTP/1.1 
Host: img.guoseapi.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         172.67.198.36
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 28 Jan 2023 17:27:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0EVmEGyGwWvln%2BnBnLKbQ%2BFxTD5VyFghGa%2BuMD%2F90Z%2FbFx12bvrmqOyLLKagJq1xQFpLwslw2XuPQLRi9pQXQPq79SqYprM0E0zyd55ms3pu16D%2BW55CGQ01RgxA5UdWGU5V"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 790b70838d71b521-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   109
Md5:    3bf8e5b194e806e33f65dfafeb99b824
Sha1:   e47321a5ce2bd7d63c3981c10dff614b0a449ba7
Sha256: 10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
                                        
                                            GET /upload/vod/20220726-1/8491ea6348fe266ef2af9abea759725b.jpg HTTP/1.1 
Host: img.guoseapi.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         172.67.198.36
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 28 Jan 2023 17:27:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iTN2NhkpDlFVNvJ%2FSEpineG05pmgEg0CgNJCPeWfqUI1mA2ktZ%2BG7rhpUsYdf%2Bl0%2BzNgq0y4jLJiDXK%2FFnycvZhK7VDgh6zu18CDAqHOchrtWOB7xpCMW2oHPM%2BIb11uNDgl"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 790b7083899a1c0a-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   109
Md5:    3bf8e5b194e806e33f65dfafeb99b824
Sha1:   e47321a5ce2bd7d63c3981c10dff614b0a449ba7
Sha256: 10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
                                        
                                            GET /upload/vod/20220726-1/543db11155c7630375b17f56d9bc7b47.jpg HTTP/1.1 
Host: img.guoseapi.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         172.67.198.36
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 28 Jan 2023 17:27:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DtZ4wKb7FdfGVF2qmfrdlUUqTCS%2BX%2FB4LoC8SrE%2FjGBoJdVmGP%2ByvUxSzR5WncTbqYZWCuQN%2FMqj3H5cdkGsXyFVVf%2FBk8IRvobLTTm9W56OAL0W%2F66eQe%2BsBoHuVTZS7XZH"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 790b70838997b523-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   109
Md5:    3bf8e5b194e806e33f65dfafeb99b824
Sha1:   e47321a5ce2bd7d63c3981c10dff614b0a449ba7
Sha256: 10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
                                        
                                            GET /upload/vod/2022/09-04/14/3mdqoloas0a14593mdqoloas0a4979.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         45.89.209.74
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: Tengine
Date: Sun, 29 Jan 2023 01:25:51 GMT
Content-Length: 239
Connection: keep-alive
Location: https://fmlb.netlbtu.com/upload/vod/2022/09-04/14/3mdqoloas0a14593mdqoloas0a4979.jpg


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   239
Md5:    67194376ec810b1466000b45b043ab94
Sha1:   b5b0840425f5602244750801336e7e8b9efd022f
Sha256: 39e3595d59216b98e54c6f089954d1397d9eb7f75a2a85914881cec2eef07164
                                        
                                            GET /upload/vod/2021/06-22/17/onypywdrezv1748onypywdrezv434702.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         45.89.209.74
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: Tengine
Date: Sun, 29 Jan 2023 01:25:51 GMT
Content-Length: 239
Connection: keep-alive
Location: https://fmlb.netlbtu.com/upload/vod/2021/06-22/17/onypywdrezv1748onypywdrezv434702.jpg


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   239
Md5:    67194376ec810b1466000b45b043ab94
Sha1:   b5b0840425f5602244750801336e7e8b9efd022f
Sha256: 39e3595d59216b98e54c6f089954d1397d9eb7f75a2a85914881cec2eef07164
                                        
                                            GET /upload/vod/2022/09-04/14/sfjnx0pub1t1459sfjnx0pub1t4673.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         45.89.209.74
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: Tengine
Date: Sun, 29 Jan 2023 01:25:51 GMT
Content-Length: 239
Connection: keep-alive
Location: https://fmlb.netlbtu.com/upload/vod/2022/09-04/14/sfjnx0pub1t1459sfjnx0pub1t4673.jpg


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   239
Md5:    67194376ec810b1466000b45b043ab94
Sha1:   b5b0840425f5602244750801336e7e8b9efd022f
Sha256: 39e3595d59216b98e54c6f089954d1397d9eb7f75a2a85914881cec2eef07164
                                        
                                            GET /upload/vod/2022/09-04/14/3cif1ukffsf14593cif1ukffsf4775.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         45.89.209.74
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: Tengine
Date: Sun, 29 Jan 2023 01:25:51 GMT
Content-Length: 239
Connection: keep-alive
Location: https://fmlb.netlbtu.com/upload/vod/2022/09-04/14/3cif1ukffsf14593cif1ukffsf4775.jpg


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   239
Md5:    67194376ec810b1466000b45b043ab94
Sha1:   b5b0840425f5602244750801336e7e8b9efd022f
Sha256: 39e3595d59216b98e54c6f089954d1397d9eb7f75a2a85914881cec2eef07164
                                        
                                            GET /upload/vod/2022/09-04/14/g1jpdwofwfj1459g1jpdwofwfj5183.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         45.89.209.74
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: Tengine
Date: Sun, 29 Jan 2023 01:25:51 GMT
Content-Length: 239
Connection: keep-alive
Location: https://fmlb.netlbtu.com/upload/vod/2022/09-04/14/g1jpdwofwfj1459g1jpdwofwfj5183.jpg


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   239
Md5:    67194376ec810b1466000b45b043ab94
Sha1:   b5b0840425f5602244750801336e7e8b9efd022f
Sha256: 39e3595d59216b98e54c6f089954d1397d9eb7f75a2a85914881cec2eef07164
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: LzlaOQ3FBTGJ60J24hN9cQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         52.33.66.202
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 1om8gJ+WD7/+u0RX1di/JT7RN4c=

                                        
                                            GET /upload/vod/2022/09-04/14/2tpvyjnriwq14592tpvyjnriwq3549.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         45.89.209.74
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: Tengine
Date: Sun, 29 Jan 2023 01:25:51 GMT
Content-Length: 239
Connection: keep-alive
Location: https://fmlb.netlbtu.com/upload/vod/2022/09-04/14/2tpvyjnriwq14592tpvyjnriwq3549.jpg


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   239
Md5:    67194376ec810b1466000b45b043ab94
Sha1:   b5b0840425f5602244750801336e7e8b9efd022f
Sha256: 39e3595d59216b98e54c6f089954d1397d9eb7f75a2a85914881cec2eef07164
                                        
                                            GET /upload/vod/2022/09-04/14/dszvles2oq11459dszvles2oq14571.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         45.89.209.74
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: Tengine
Date: Sun, 29 Jan 2023 01:25:51 GMT
Content-Length: 239
Connection: keep-alive
Location: https://fmlb.netlbtu.com/upload/vod/2022/09-04/14/dszvles2oq11459dszvles2oq14571.jpg


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   239
Md5:    67194376ec810b1466000b45b043ab94
Sha1:   b5b0840425f5602244750801336e7e8b9efd022f
Sha256: 39e3595d59216b98e54c6f089954d1397d9eb7f75a2a85914881cec2eef07164
                                        
                                            GET /upload/vod/2022/09-04/14/3cn4y55tzza14593cn4y55tzza3753.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         45.89.209.74
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: Tengine
Date: Sun, 29 Jan 2023 01:25:51 GMT
Content-Length: 239
Connection: keep-alive
Location: https://fmlb.netlbtu.com/upload/vod/2022/09-04/14/3cn4y55tzza14593cn4y55tzza3753.jpg


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   239
Md5:    67194376ec810b1466000b45b043ab94
Sha1:   b5b0840425f5602244750801336e7e8b9efd022f
Sha256: 39e3595d59216b98e54c6f089954d1397d9eb7f75a2a85914881cec2eef07164
                                        
                                            GET /upload/vod/2022/09-04/14/cnxabsn4stj1459cnxabsn4stj3651.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         45.89.209.74
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: Tengine
Date: Sun, 29 Jan 2023 01:25:51 GMT
Content-Length: 239
Connection: keep-alive
Location: https://fmlb.netlbtu.com/upload/vod/2022/09-04/14/cnxabsn4stj1459cnxabsn4stj3651.jpg


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   239
Md5:    67194376ec810b1466000b45b043ab94
Sha1:   b5b0840425f5602244750801336e7e8b9efd022f
Sha256: 39e3595d59216b98e54c6f089954d1397d9eb7f75a2a85914881cec2eef07164
                                        
                                            GET /upload/vod/2022/09-04/14/nozetqcqpgw1459nozetqcqpgw4265.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         45.89.209.74
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: Tengine
Date: Sun, 29 Jan 2023 01:25:51 GMT
Content-Length: 239
Connection: keep-alive
Location: https://fmlb.netlbtu.com/upload/vod/2022/09-04/14/nozetqcqpgw1459nozetqcqpgw4265.jpg


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   239
Md5:    67194376ec810b1466000b45b043ab94
Sha1:   b5b0840425f5602244750801336e7e8b9efd022f
Sha256: 39e3595d59216b98e54c6f089954d1397d9eb7f75a2a85914881cec2eef07164
                                        
                                            GET /upload/vod/2022/09-04/14/w43n41w1ft51459w43n41w1ft55081.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         45.89.209.74
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: Tengine
Date: Sun, 29 Jan 2023 01:25:51 GMT
Content-Length: 239
Connection: keep-alive
Location: https://fmlb.netlbtu.com/upload/vod/2022/09-04/14/w43n41w1ft51459w43n41w1ft55081.jpg


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   239
Md5:    67194376ec810b1466000b45b043ab94
Sha1:   b5b0840425f5602244750801336e7e8b9efd022f
Sha256: 39e3595d59216b98e54c6f089954d1397d9eb7f75a2a85914881cec2eef07164
                                        
                                            POST / HTTP/1.1 
Host: dvcasha2.ocsp-certum.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         95.101.10.107
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=808
Date: Sat, 28 Jan 2023 17:27:34 GMT
Connection: keep-alive
X-N: S


--- Additional Info ---
Magic:  data
Size:   1599
Md5:    fb672c85a3e0600bf600b1a6f63ad2ae
Sha1:   7a27883ed2db24caa522436b3e447b729d9ab84e
Sha256: d3e1535ea2fb94e88b47d0d3798767627e4c36b591b96db63a11984279a81a61
                                        
                                            POST / HTTP/1.1 
Host: dvcasha2.ocsp-certum.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         95.101.10.107
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=808
Date: Sat, 28 Jan 2023 17:27:34 GMT
Connection: keep-alive
X-N: S


--- Additional Info ---
Magic:  data
Size:   1599
Md5:    fb672c85a3e0600bf600b1a6f63ad2ae
Sha1:   7a27883ed2db24caa522436b3e447b729d9ab84e
Sha256: d3e1535ea2fb94e88b47d0d3798767627e4c36b591b96db63a11984279a81a61
                                        
                                            POST / HTTP/1.1 
Host: dvcasha2.ocsp-certum.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         95.101.10.107
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=875
Date: Sat, 28 Jan 2023 17:27:34 GMT
Connection: keep-alive
X-N: S


--- Additional Info ---
Magic:  data
Size:   1599
Md5:    25d15e4fe09eb085782b85b1e4addb5f
Sha1:   b615b797bf903d63d8ca4d957067c5784e9e7564
Sha256: 874fcaf55ea8e25f403153f5f0f5bc201b498aff098c0726686709c70481b0ec
                                        
                                            GET /upload/vod/20220726-1/6a930f6a23b3124d2ff5aa97be2f83b7.jpg HTTP/1.1 
Host: img.guoseapi.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         172.67.198.36
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 28 Jan 2023 17:27:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2FumII0mQ7H3inNLD4FSFB9PPRQE%2Fu86TgnfXdFbs9FZwTB%2B%2BFMUeGVjHUFWuXqeJIiJJAPpFD41PGBpb5H9i8KxinPBYVHa2RKZk514TxbBBy12rYNy5FAOM9p9f8PFoQsT"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 790b7085e8d0b521-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   109
Md5:    3bf8e5b194e806e33f65dfafeb99b824
Sha1:   e47321a5ce2bd7d63c3981c10dff614b0a449ba7
Sha256: 10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
                                        
                                            GET /upload/vod/20220726-1/36e80c8b098e493e344ad71891b5363c.jpg HTTP/1.1 
Host: img.guoseapi.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         172.67.198.36
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 28 Jan 2023 17:27:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wf0ySNzGGQ8hZ18aLiFb6on9iMz07x%2BxJiDIq1f79csw9wK9Dg9EWWW%2F24dvkGgrEpfk9Q%2FpjS5mBwcmKBlHXDIq1qDlyQKgsUuvMQtTJvU83X1yjs2ud2l8kZlVCMO%2BJq6y"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 790b7085db52b4eb-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   109
Md5:    3bf8e5b194e806e33f65dfafeb99b824
Sha1:   e47321a5ce2bd7d63c3981c10dff614b0a449ba7
Sha256: 10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "16E7CA275C8597A06A2F3C83DC2C6DD09D34E9A6D3B7B66029D58B9F80BAF5B2"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sat, 28 Jan 2023 23:27:34 GMT
Date: Sat, 28 Jan 2023 17:27:34 GMT
Connection: keep-alive

                                        
                                            GET /upload/vod/20220726-1/c1105dabfe33471628d52e5f7330bcef.jpg HTTP/1.1 
Host: img.guoseapi.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         172.67.198.36
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 28 Jan 2023 17:27:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CLnkqHTPd15KEsSTRL68GT%2BQEua2zuWR%2BlGT5BPnRWxiVsxHVj2ib4PXOJPKOdFmDkuBoBEFMEjqKo5jNY%2BIcwTqI1hVWbQ69Gh0CR27Fs%2B7Y%2BdWh%2B7AU%2Bt1Scctzj2g1tcA"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 790b7085e8f9b527-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   109
Md5:    3bf8e5b194e806e33f65dfafeb99b824
Sha1:   e47321a5ce2bd7d63c3981c10dff614b0a449ba7
Sha256: 10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
                                        
                                            GET /upload/vod/20220726-1/4d7c49e3ff6a0dcbd58f1597f5927513.jpg HTTP/1.1 
Host: img.guoseapi.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         172.67.198.36
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 28 Jan 2023 17:27:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZygMRqAvaETAPCFzv5wlknxIgaC5zRYWDGnBX%2Fl%2FTRzoCOfr5bJ%2BuBgs1nTUXnZypt0YwGM%2Fk1uQr1bDPbMBMxml4gOnco2sIGUxInDph2SRq1Tgn7QeIa5oKO0gJAXu7j6q"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 790b7085fcf2b523-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   109
Md5:    3bf8e5b194e806e33f65dfafeb99b824
Sha1:   e47321a5ce2bd7d63c3981c10dff614b0a449ba7
Sha256: 10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
                                        
                                            GET /upload/vod/20220726-1/f6e7fbf4aa627c0dde88ce47f339a9ee.jpg HTTP/1.1 
Host: img.guoseapi.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         172.67.198.36
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 28 Jan 2023 17:27:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=n8%2FyUI0Azc0lKbvpN1vwmsw4Z02RXpLfSmd1S%2B0NcK21VgYdgxACUFopCNFDhPtT7IirqhpRp73%2FYxIuOpkB9mmD7oPAhqXsYJCuXgnfPnva9cl9hPk6tUn3ALie3hlP4xgz"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 790b7085eec0b51d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   109
Md5:    3bf8e5b194e806e33f65dfafeb99b824
Sha1:   e47321a5ce2bd7d63c3981c10dff614b0a449ba7
Sha256: 10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
                                        
                                            GET /upload/vod/20220726-1/53326dd3c96d25897c093843012902ef.jpg HTTP/1.1 
Host: img.guoseapi.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         172.67.198.36
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 28 Jan 2023 17:27:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2F2h4ReRN9TwXtSuPfNNBuYcmEZOMkL6%2BDUJ7DXTQjdIHpYmqakd6O6BJAWn%2BbuOaTypkPkjbqMmCtdBf%2B7kTmNOI6hDomF19e3%2FyPfBaYgPf1O7II7RhEeRj3J8ypv6FzR1m"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 790b7085ebec1c0a-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   109
Md5:    3bf8e5b194e806e33f65dfafeb99b824
Sha1:   e47321a5ce2bd7d63c3981c10dff614b0a449ba7
Sha256: 10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
                                        
                                            GET /upload/vod/2022/09-04/14/32cledzlsjq145932cledzlsjq5285.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.daocaorenjiaju.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         45.89.209.74
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Tengine
Date: Sun, 29 Jan 2023 01:25:51 GMT
Content-Length: 6612
Last-Modified: Fri, 25 Nov 2022 12:43:34 GMT
Connection: keep-alive
ETag: "6380b876-19d4"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   6612
Md5:    5c6769f3df7609da570824a6dbcf086d
Sha1:   887e92e93f03af380a0fc9b0dc01088f55eda26c
Sha256: 6a87b1de31c146cc93391ce7842d52516f32abf9b1ce0ea1f0b60731a18c9fbc
                                        
                                            GET /upload/vod/2022/09-04/14/kkmbkym1rpf1459kkmbkym1rpf5387.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.daocaorenjiaju.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         45.89.209.74
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Tengine
Date: Sun, 29 Jan 2023 01:25:51 GMT
Content-Length: 11475
Last-Modified: Fri, 25 Nov 2022 12:43:34 GMT
Connection: keep-alive
ETag: "6380b876-2cd3"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   11475
Md5:    c2fd895cf3ac06ac64e398ff6992ca98
Sha1:   4ee50325a91303e218a659ae408180353bec6273
Sha256: ba571945ce99699a737bf0ab85733ed93fa76b3a348dec90b37a0bfe1dd453b7
                                        
                                            GET /upload/vod/20220726-1/2758820573dbdbe7e4175ecad76ae726.jpg HTTP/1.1 
Host: img.guoseapi.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         172.67.198.36
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 28 Jan 2023 17:27:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=87M1GhlCXLYto%2FNJL%2BPA3YQi%2FRTTIxNKSJLvmQEruzzs%2FlG8ytzCWrJiFqgHWj1MZdFp1T%2FUobPVSFMjFaCh%2BvT%2FIoamXpKdLKbg0yyXim62CidGe%2FLxESPyRER2YekewsFb"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 790b70883eaab4eb-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   109
Md5:    3bf8e5b194e806e33f65dfafeb99b824
Sha1:   e47321a5ce2bd7d63c3981c10dff614b0a449ba7
Sha256: 10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
                                        
                                            GET /upload/vod/2021/06-22/17/dfygq50jx0e1748dfygq50jx0e454707.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.daocaorenjiaju.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         45.89.209.74
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Tengine
Date: Sun, 29 Jan 2023 01:25:51 GMT
Content-Length: 8624
Last-Modified: Fri, 25 Nov 2022 12:37:03 GMT
Connection: keep-alive
ETag: "6380b6ef-21b0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   8624
Md5:    9f4eb9424327cd5c666b8610a47e062d
Sha1:   128795c77609d677d22b8282f85bb986e3ee3515
Sha256: bfa101c8fe7bb3bcd5e9af17a783484b59cd87c82739add0e2c51523e7cdb916
                                        
                                            GET /upload/vod/2022/09-04/14/0no20n5s3a214590no20n5s3a24877.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.daocaorenjiaju.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         45.89.209.74
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Tengine
Date: Sun, 29 Jan 2023 01:25:51 GMT
Content-Length: 9049
Last-Modified: Fri, 25 Nov 2022 12:41:07 GMT
Connection: keep-alive
ETag: "6380b7e3-2359"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   9049
Md5:    8718225c23ac90d639e0611eef2c4b90
Sha1:   5dad0e9d9913bb96323b7759ebf926e7a3bb0f86
Sha256: ea0abf168a4a4a65248ed610ba4e3b433e9d1bbaec7a0a8b28ae9e6b8f72338a
                                        
                                            GET /upload/vod/2022/09-04/14/3mdqoloas0a14593mdqoloas0a4979.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.daocaorenjiaju.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         45.89.209.74
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Tengine
Date: Sun, 29 Jan 2023 01:25:51 GMT
Content-Length: 8155
Last-Modified: Fri, 25 Nov 2022 12:43:34 GMT
Connection: keep-alive
ETag: "6380b876-1fdb"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   8155
Md5:    263a6c573edd5625d080985fd889bef9
Sha1:   4af7f8f02d51546141a7ce09604b126646366d59
Sha256: 802e6c2e5af31821490b2e5cec282c191f1bb27296549c4b5017856e0ddde5b0
                                        
                                            GET /upload/vod/2022/09-04/14/sfjnx0pub1t1459sfjnx0pub1t4673.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.daocaorenjiaju.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         45.89.209.74
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Tengine
Date: Sun, 29 Jan 2023 01:25:51 GMT
Content-Length: 6426
Last-Modified: Fri, 25 Nov 2022 12:43:35 GMT
Connection: keep-alive
ETag: "6380b877-191a"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   6426
Md5:    4864c6a34bd8d59804dfb8c16a7bdcce
Sha1:   c87123793be85f9a847daa06f4e7f9d65877552f
Sha256: c0a8389982608c13b77910a1bebf5630628f45ff85c5acb32353c810783dd541
                                        
                                            GET /upload/vod/20220726-1/33d3ea6c401d3530a23c7c6fb0472ae7.jpg HTTP/1.1 
Host: img.guoseapi.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         172.67.198.36
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 28 Jan 2023 17:27:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PRhJM6SBKIbTlZMCqHgLElNHdrSxnMFR9fD%2BOQhCis7EVTELxzW9NW2mnPqhdBMZhFJNM%2FE7jm4BLAH32nVobsSwbpBKm%2FIq%2FDG59Nq87g%2B21%2FALOGAKVNk49h72RpnoyuXp"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 790b70883c06b521-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   109
Md5:    3bf8e5b194e806e33f65dfafeb99b824
Sha1:   e47321a5ce2bd7d63c3981c10dff614b0a449ba7
Sha256: 10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
                                        
                                            GET /upload/vod/2021/06-22/17/onypywdrezv1748onypywdrezv434702.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.daocaorenjiaju.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         45.89.209.74
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Tengine
Date: Sun, 29 Jan 2023 01:25:51 GMT
Content-Length: 12631
Last-Modified: Fri, 25 Nov 2022 12:36:42 GMT
Connection: keep-alive
ETag: "6380b6da-3157"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   12631
Md5:    237bfba9436391fe5b2c3a2168877877
Sha1:   1c6a374d7c745d1c3288177ca32405ed28ee22aa
Sha256: f2f1f9495e4d3a03adbd182cd55cbc6d80c81c45cde7cd9bec6833f1c0d754d5
                                        
                                            GET /upload/vod/20220726-1/0df9f05473ff1f8d019a5b01fa0936ab.jpg HTTP/1.1 
Host: img.guoseapi.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         172.67.198.36
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 28 Jan 2023 17:27:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WMSKC4vmJB%2Bwo8dG9DEpKE3fR8gypcIx85E0FinC7adrpv2foh5DL1Kr0QKs1IbTUpahtg3oczzlE56wykC8prleSBXS8hYLd1%2F95oYGnEIaiFWEncG%2Fevzm%2FmBgqOj7KIRc"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 790b70884c34b527-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   109
Md5:    3bf8e5b194e806e33f65dfafeb99b824
Sha1:   e47321a5ce2bd7d63c3981c10dff614b0a449ba7
Sha256: 10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
                                        
                                            GET /upload/vod/2022/09-04/14/g1jpdwofwfj1459g1jpdwofwfj5183.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.daocaorenjiaju.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         45.89.209.74
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Tengine
Date: Sun, 29 Jan 2023 01:25:51 GMT
Content-Length: 7930
Last-Modified: Fri, 25 Nov 2022 12:43:34 GMT
Connection: keep-alive
ETag: "6380b876-1efa"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   7930
Md5:    3443fb318caf862a9debd9335fc25468
Sha1:   0787c66245eccd6791c6e09e19e69a6c1ec2ff00
Sha256: 92e7515f93cd4f88d3ef20ad4cebc93c9374e2b50e03fbdf6269a9c59e089769
                                        
                                            GET /upload/vod/2022/09-04/14/3cif1ukffsf14593cif1ukffsf4775.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.daocaorenjiaju.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         45.89.209.74
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Tengine
Date: Sun, 29 Jan 2023 01:25:51 GMT
Content-Length: 8607
Last-Modified: Fri, 25 Nov 2022 12:43:35 GMT
Connection: keep-alive
ETag: "6380b877-219f"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   8607
Md5:    f7620194ccc51ce6bbe622fd849d3ae0
Sha1:   871bea122e0a4ac503b408135e62d04145195715
Sha256: db9dad860a3c5bb024bb1147e1fc15d56c1e5bb3c44e5103231e54b2da7e8464
                                        
                                            GET /upload/vod/2022/09-04/14/2tpvyjnriwq14592tpvyjnriwq3549.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.daocaorenjiaju.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         45.89.209.74
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Tengine
Date: Sun, 29 Jan 2023 01:25:52 GMT
Content-Length: 9744
Last-Modified: Fri, 25 Nov 2022 12:46:18 GMT
Connection: keep-alive
ETag: "6380b91a-2610"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   9744
Md5:    60573b859ec466fef551a1a061417e92
Sha1:   dea9f581ad37b196576b1c361bf8f64728c59b1c
Sha256: b592b8b695147c0c12e9097e4792841f4a9fe2e7487cbe6cca951c4f0c6e996b
                                        
                                            GET /dzt/S2.JS HTTP/1.1 
Host: api.safe-t-first.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         107.164.49.70
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Sat, 28 Jan 2023 17:27:34 GMT
content-length: 516
last-modified: Wed, 11 Jan 2023 04:23:58 GMT
etag: "63be39de-204"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   516
Md5:    cce9b9b0f5553c835eebcf077f989c9d
Sha1:   8269aff775feb4d70af608111e4d3ec0a20f2f55
Sha256: 3defa1cb4234f5a8e2946aa44ffb7c9572965b079dc384317552987c1aa45e1d
                                        
                                            GET /upload/vod/2022/09-04/14/dszvles2oq11459dszvles2oq14571.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.daocaorenjiaju.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         45.89.209.74
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Tengine
Date: Sun, 29 Jan 2023 01:25:52 GMT
Content-Length: 9111
Last-Modified: Fri, 25 Nov 2022 12:43:35 GMT
Connection: keep-alive
ETag: "6380b877-2397"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   9111
Md5:    a6dc1deaa0cf7a7755c76977c6c8863d
Sha1:   f3c42f46eff84218016f8ed9303b861bfb930df4
Sha256: 905b17dd217f7ef64d84b9412f1cbd53f62f23fa26c789ebb1f84533de757782
                                        
                                            GET /upload/vod/2022/09-04/14/3cn4y55tzza14593cn4y55tzza3753.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.daocaorenjiaju.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         45.89.209.74
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Tengine
Date: Sun, 29 Jan 2023 01:25:52 GMT
Content-Length: 9145
Last-Modified: Fri, 25 Nov 2022 12:46:18 GMT
Connection: keep-alive
ETag: "6380b91a-23b9"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   9145
Md5:    68e8148a048b4e58774617639a56dccf
Sha1:   a7d1fa058a243be0f0e79bc73b974f909de14a91
Sha256: 9545741c830d93de18bf98037a031e01bd08ac7997d6543fd4da06adad7f75eb
                                        
                                            GET /upload/vod/2022/09-04/14/cnxabsn4stj1459cnxabsn4stj3651.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.daocaorenjiaju.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         45.89.209.74
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Tengine
Date: Sun, 29 Jan 2023 01:25:52 GMT
Content-Length: 10247
Last-Modified: Fri, 25 Nov 2022 12:46:18 GMT
Connection: keep-alive
ETag: "6380b91a-2807"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   10247
Md5:    dbcd7086e90d0dc1a9b162e66f723ed8
Sha1:   9d0fd086f20b78c0514612055016cf62b955fcad
Sha256: 05acfb305c3b6f432d4b8b66bee3319a70ef09ba56df135c71a59078193b392a
                                        
                                            GET /upload/vod/2022/09-04/14/w43n41w1ft51459w43n41w1ft55081.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.daocaorenjiaju.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         45.89.209.74
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Tengine
Date: Sun, 29 Jan 2023 01:25:52 GMT
Content-Length: 7733
Last-Modified: Fri, 25 Nov 2022 12:43:34 GMT
Connection: keep-alive
ETag: "6380b876-1e35"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   7733
Md5:    d76f7417a137e4677dd92852500e4371
Sha1:   634c0534af667bcc460a7c8a0e63bae21170b1aa
Sha256: ae7d6e2c9c85793c746ebd8533cb3ca694d295135e9bcf26cee1bbd1e72c9694
                                        
                                            GET /upload/vod/2022/09-04/14/nozetqcqpgw1459nozetqcqpgw4265.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.daocaorenjiaju.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         45.89.209.74
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Tengine
Date: Sun, 29 Jan 2023 01:25:52 GMT
Content-Length: 10038
Last-Modified: Fri, 25 Nov 2022 12:46:34 GMT
Connection: keep-alive
ETag: "6380b92a-2736"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   10038
Md5:    6db6ac8e51aa8a830dabae99acb046e9
Sha1:   528c1eaa5f81ec7ff929fe0f09ac076834e158ed
Sha256: 97e4efaa4926d04b62b1204354626beb2d7f9256f150701d2ea8213bfbf873b0
                                        
                                            GET /storage/websites/June2022/i4v0YIEW1Rq1FlVqI9hv.gif HTTP/1.1 
Host: xx-map.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.21.52.79
HTTP/2 200 OK
content-type: image/gif
                                        
date: Sat, 28 Jan 2023 17:27:35 GMT
content-length: 104099
last-modified: Thu, 13 Oct 2022 14:31:05 GMT
etag: "63482129-196a3"
expires: Sat, 18 Feb 2023 14:25:55 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 788500
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FxEqBz2oUNDnkjH3jamgkjp7me8ZZpVLXShfKzujmSDVqp5xFsmE%2Fo1JYakhu%2BjjpbLJ8uMlgImw3WIIpwSrYirF0iqUKaxsraxVIyT5o5aZ95fFyh0Zkihm6QIv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790b708c0c25b4f7-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 200 x 200\012- data
Size:   104099
Md5:    d93ca83077660fbae7839fa5837af88d
Sha1:   9d6a01bfa19c4cdd6f8f9e9d87864a3eb76b79d6
Sha256: 58aaf2652b398cfe64c8ab1014f021a1cd15a89f10e89f902182615969466207
                                        
                                            GET /dzt/SP.JS HTTP/1.1 
Host: api.safe-t-first.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         107.164.49.70
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Sat, 28 Jan 2023 17:27:35 GMT
content-length: 392
last-modified: Sat, 17 Sep 2022 15:14:35 GMT
etag: "6325e45b-188"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with CRLF line terminators
Size:   392
Md5:    a819d9f803d2813eb3cf31546fe0bc42
Sha1:   dc71e88cc902f54ce7e33b0f10ddda0144b46f90
Sha256: 152c8f1a9ea0a88c5b89891ddf1dae5bcb3737fc02f2ca7feab953f0f73a1b1b
                                        
                                            GET /template/default/images/ico.png HTTP/1.1 
Host: www.daocaorenjiaju.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/template/default/images/style.css

search
                                         45.61.133.215
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Sun, 24 Apr 2016 09:24:04 GMT
Accept-Ranges: bytes
ETag: "822265bb9ed11:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 28 Jan 2023 17:27:34 GMT
Content-Length: 903


--- Additional Info ---
Magic:  PNG image data, 30 x 102, 8-bit colormap, non-interlaced\012- data
Size:   903
Md5:    cc584c48bdea33f64498bcc859885375
Sha1:   1c092c63a09440c9632aef2868449eda772949fa
Sha256: 9c9453da37e3ed5e631977ce6843ac850d213fc67894d3c7c6a1d66c2335ed1f
                                        
                                            GET /upload/vod/20220726-1/c1105dabfe33471628d52e5f7330bcef.jpg HTTP/1.1 
Host: img.guoseapi.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         172.67.198.36
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 28 Jan 2023 17:27:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 1
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1Hy3TIyQxaJZKOWj3hKScV8Hghz9Y9TB3zSr31l3i0e8BPq%2FgGKZpmejE9bMWMbGzbEH57CIzQOGd%2FyCk7NbCb%2B6B9unibi%2BjIBzkql1AMIjAubGx1wY622PxsyPx5o8WFf7"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 790b708cc8d7b51d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   109
Md5:    3bf8e5b194e806e33f65dfafeb99b824
Sha1:   e47321a5ce2bd7d63c3981c10dff614b0a449ba7
Sha256: 10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
                                        
                                            GET /upload/vod/20220726-1/f6e7fbf4aa627c0dde88ce47f339a9ee.jpg HTTP/1.1 
Host: img.guoseapi.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         172.67.198.36
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 28 Jan 2023 17:27:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 1
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HK%2F03oVb0V%2BRZ8m0YPbOgGTTxr8903S7fL8sjizM0AXoacPSdhZuXkBx3m%2BQR1RMf%2FhAuZTkNgd1QAZ33HezRy5%2FRi806gDa7SrHBLKjH%2FZk8sxRFZdMJLqDZoA0Qrz29N5H"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 790b708cc95f1c0a-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   109
Md5:    3bf8e5b194e806e33f65dfafeb99b824
Sha1:   e47321a5ce2bd7d63c3981c10dff614b0a449ba7
Sha256: 10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
                                        
                                            GET /upload/vod/20220726-1/6a930f6a23b3124d2ff5aa97be2f83b7.jpg HTTP/1.1 
Host: img.guoseapi.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         172.67.198.36
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 28 Jan 2023 17:27:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 1
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iT4b4ieAAcjkizYXxh6Cisbi5fVLbP9nehDmtGMfv11AIAW5JAuDVlAqYya1IOgPZ3ygB1YCodEP1OYT0EJP4lyzTdujTgTq9ExCMwEoITCv%2FfAly2zJwL9ojEGh6nCx1fGG"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 790b708ccd85b523-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   109
Md5:    3bf8e5b194e806e33f65dfafeb99b824
Sha1:   e47321a5ce2bd7d63c3981c10dff614b0a449ba7
Sha256: 10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
                                        
                                            GET /upload/vod/20220726-1/0df9f05473ff1f8d019a5b01fa0936ab.jpg HTTP/1.1 
Host: img.guoseapi.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         172.67.198.36
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 28 Jan 2023 17:27:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 1
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WwyWuWKzyACzWXh1wPNqP7pkPLh9nk4cMH9XvIAPXxvtzf0%2Fb4irGddXMj8sITzkNcBdzYWIqYQp%2BciP01w16yxQtEiKv%2FUzvqtvwzhGmmnkgLFqOcPrmkRiyRNpWw4pNZLs"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 790b708cca97b527-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   109
Md5:    3bf8e5b194e806e33f65dfafeb99b824
Sha1:   e47321a5ce2bd7d63c3981c10dff614b0a449ba7
Sha256: 10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
                                        
                                            GET /upload/vod/20220726-1/36e80c8b098e493e344ad71891b5363c.jpg HTTP/1.1 
Host: img.guoseapi.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         172.67.198.36
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 28 Jan 2023 17:27:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 1
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0Z0J320Dh1UXPfelsKNxP5JHVcl6GVihoZIbmhvg7WQ32dQC0VdHBsJGvQnaPiW3zLevYQS0oqnjgapO79tD3kkjZzgblzFL7BGCRfmn1hulcbAlYv%2Bn5yr7%2FT%2BTxYuCn1IA"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 790b708ccd46b4eb-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   109
Md5:    3bf8e5b194e806e33f65dfafeb99b824
Sha1:   e47321a5ce2bd7d63c3981c10dff614b0a449ba7
Sha256: 10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
                                        
                                            GET /upload/vod/20220726-1/a2430851a591243448289a874e8a1430.jpg HTTP/1.1 
Host: img.guoseapi.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         172.67.198.36
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 28 Jan 2023 17:27:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 1
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SJn07ABCvqTh74W8aroC5qJkFloYKcQ6P1lf3zqThhH%2FcdO%2BVY%2BrVl%2BalQJgTTSYZfDz2hRZRI9mDTfAaHSfNQvEDE4Jc9RYSccu%2FKBiPZgmGAa2v%2BOstCgpThgq%2BHs%2F8LZt"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 790b708ccba6b521-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   109
Md5:    3bf8e5b194e806e33f65dfafeb99b824
Sha1:   e47321a5ce2bd7d63c3981c10dff614b0a449ba7
Sha256: 10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
                                        
                                            GET /upload/vod/20220726-1/2758820573dbdbe7e4175ecad76ae726.jpg HTTP/1.1 
Host: img.guoseapi.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         172.67.198.36
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 28 Jan 2023 17:27:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 1
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3krq2YDhhSYFuFVScvL80Q%2BdJTEzzLInHHkA0Q3oB811GCh1J8YA516qXoRtuRDKQDpVIIp0k8Z4gHa4L8p7uDP7yvYdAvdnulzLrhy%2FDYF9amzDzmBC7I07%2FOyurOs%2B6xNH"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 790b708ce8e9b51d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   109
Md5:    3bf8e5b194e806e33f65dfafeb99b824
Sha1:   e47321a5ce2bd7d63c3981c10dff614b0a449ba7
Sha256: 10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
                                        
                                            GET /upload/vod/20220726-1/af95dfba090cfdb83eb36fc2b9dbc27c.jpg HTTP/1.1 
Host: img.guoseapi.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         172.67.198.36
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 28 Jan 2023 17:27:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 1
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dI3QTNenwYJM46uOVQFywB%2BuVmbFmh3Wt6oFxvWqIDtQ%2BxmLmVG8q%2BOjStOXxmX%2BrIqj%2BsMDYB1Dj6%2BEPOvEnCW%2FLp1S9JiRRhOggz8UzGXklLFELlDHQrW2%2F%2FEmJWrxBGoS"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 790b708ced5bb4eb-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   109
Md5:    3bf8e5b194e806e33f65dfafeb99b824
Sha1:   e47321a5ce2bd7d63c3981c10dff614b0a449ba7
Sha256: 10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
                                        
                                            GET /upload/vod/20220726-1/33d3ea6c401d3530a23c7c6fb0472ae7.jpg HTTP/1.1 
Host: img.guoseapi.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         172.67.198.36
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 28 Jan 2023 17:27:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 1
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7l2YgAb7jpbBQxA%2Fcmee%2FXxIALz6XrzYEPzCMuX4EQGAYeH9NW21ACK0XNOZWO6MPW1XBjAAlhfr3UkLqLAkwKbBRMr59%2FZpmqJpf6GMKv3jQR64kBw0W2kW7JU9kCXl%2BO7T"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 790b708ce98b1c0a-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   109
Md5:    3bf8e5b194e806e33f65dfafeb99b824
Sha1:   e47321a5ce2bd7d63c3981c10dff614b0a449ba7
Sha256: 10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
                                        
                                            GET /upload/vod/20220726-1/53326dd3c96d25897c093843012902ef.jpg HTTP/1.1 
Host: img.guoseapi.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         172.67.198.36
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 28 Jan 2023 17:27:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 1
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3meRWqrACgxmes1%2BnpghxtSFngXsp%2B55qe%2FpgSQI1ZtMxajV0WUawFd6kn%2Fo8EecmyIyUpNG9hI68l%2BdJZHkx1YtPCvocTAvX8Cf6Fq0253unti8%2BoicGqD8gPl63dlZFd4E"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 790b708ceac7b527-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   109
Md5:    3bf8e5b194e806e33f65dfafeb99b824
Sha1:   e47321a5ce2bd7d63c3981c10dff614b0a449ba7
Sha256: 10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
                                        
                                            GET /upload/vod/20220726-1/4d7c49e3ff6a0dcbd58f1597f5927513.jpg HTTP/1.1 
Host: img.guoseapi.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         172.67.198.36
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 28 Jan 2023 17:27:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 1
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vTD3Fm9UWDHZR5jX86tg84Adn93IMHHMNQcJS3CVDlDjBVx5idMZR0%2B7CUTQW5oqcnhFNgBLBbe6Pa%2BUivFLOCG%2FzW5FRO5rMSLns5%2FwT%2FvOLeNuPj8sQeAIjVXwqdtsbLXM"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 790b708ceda9b523-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   109
Md5:    3bf8e5b194e806e33f65dfafeb99b824
Sha1:   e47321a5ce2bd7d63c3981c10dff614b0a449ba7
Sha256: 10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
                                        
                                            GET /push.js HTTP/1.1 
Host: push.zhanzhang.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         182.61.240.101
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Content-Encoding: gzip
Content-Length: 227
Date: Sat, 28 Jan 2023 17:27:35 GMT
Etag: "4078521116"
Expires: Sun, 28 Jan 2024 17:27:35 GMT
Last-Modified: Wed, 25 Nov 2015 07:47:55 GMT
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: apache
Set-Cookie: BAIDUID=B8D2A59EE667FB1F495A6C6B5F2D8395:FG=1; max-age=31536000; expires=Sun, 28-Jan-24 17:27:35 GMT; domain=.baidu.com; path=/; version=1
Vary: Accept-Encoding


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   227
Md5:    e548b6ce15bb616c2bfba36e9cfbf307
Sha1:   a348285d9928a6548a57569f1fb9d62bdd747f33
Sha256: 7be3e4c53cc47ce5cfa40a5e79b42848a90acee0d7ff71f10ac31a49c81aead5
                                        
                                            GET /upload/vod/20220726-1/2eec9c469e4e5f5d5dc06360c12476fe.jpg HTTP/1.1 
Host: img.guoseapi.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         172.67.198.36
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 28 Jan 2023 17:27:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 1
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mEQEguCI7BjNJpNF0ha5sJA%2FXjjfbvju5Mn4EWAzAspBUQeeMHarymYBRgczB9zafXt7RV8fzS0T5LKNZY7rixccj9tSW4Gu8ERddyKnlavnyy6fVt6XMp5tdjjOczMHcXvg"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 790b708cfbdab521-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   109
Md5:    3bf8e5b194e806e33f65dfafeb99b824
Sha1:   e47321a5ce2bd7d63c3981c10dff614b0a449ba7
Sha256: 10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
                                        
                                            GET /upload/vod/20220726-1/8491ea6348fe266ef2af9abea759725b.jpg HTTP/1.1 
Host: img.guoseapi.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         172.67.198.36
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 28 Jan 2023 17:27:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 1
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HTzPDvL52gh0%2BvjVPj9VzvCGWMMla2Eg5OabNjH14gVgeTjXXNp1YUjNMAbUwPWLE8WUbDYOmiei9HrmzLRmrzRPuxwyF1XWozt6xgm%2B74d9II4qMDqWmQPYW3vohQbb6A5B"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 790b708cf909b51d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   109
Md5:    3bf8e5b194e806e33f65dfafeb99b824
Sha1:   e47321a5ce2bd7d63c3981c10dff614b0a449ba7
Sha256: 10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
                                        
                                            GET /upload/vod/20220726-1/a5a082af3add384b5ac7fc3cdc9c612c.jpg HTTP/1.1 
Host: img.guoseapi.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         172.67.198.36
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 28 Jan 2023 17:27:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 1
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1XRxc5YU585rGqijWzVuxr7ILNEop0Y5UOgwDqKi05TtbhPRSmO0jgnqwImH8IQJasjaBMMMV2u8TZAnCZmY%2BdvuYH%2B1pNNEqIjF5JtUv3Zp2leLlGTbunP2sfHK3vGjn6qH"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 790b708cfd6fb4eb-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   109
Md5:    3bf8e5b194e806e33f65dfafeb99b824
Sha1:   e47321a5ce2bd7d63c3981c10dff614b0a449ba7
Sha256: 10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
                                        
                                            GET /upload/vod/20220726-1/543db11155c7630375b17f56d9bc7b47.jpg HTTP/1.1 
Host: img.guoseapi.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         172.67.198.36
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 28 Jan 2023 17:27:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 1
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gcXS3U8%2BlQmbVARZPIaQfbC7%2B011OBOiFDh9cCbLjQivSVaCRZKqe%2FUuCEnug1kZadeqQGNif0NvMdZwmmbO2S9%2BQlt%2F6pMUJpYcu8dDgEMNbkdrSdabebkU%2BRNRaMsB%2Bm1a"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 790b708d09a81c0a-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   109
Md5:    3bf8e5b194e806e33f65dfafeb99b824
Sha1:   e47321a5ce2bd7d63c3981c10dff614b0a449ba7
Sha256: 10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
                                        
                                            GET /upload/vod/2022/09-03/12/ukgyaqrvmsb1242ukgyaqrvmsb4523587.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         45.89.209.74
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: Tengine
Date: Sun, 29 Jan 2023 01:25:52 GMT
Content-Length: 239
Connection: keep-alive
Location: https://fmlb.netlbtu.com/upload/vod/2022/09-03/12/ukgyaqrvmsb1242ukgyaqrvmsb4523587.jpg


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   239
Md5:    67194376ec810b1466000b45b043ab94
Sha1:   b5b0840425f5602244750801336e7e8b9efd022f
Sha256: 39e3595d59216b98e54c6f089954d1397d9eb7f75a2a85914881cec2eef07164
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3778
Expires: Sat, 28 Jan 2023 18:30:33 GMT
Date: Sat, 28 Jan 2023 17:27:35 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3778
Expires: Sat, 28 Jan 2023 18:30:33 GMT
Date: Sat, 28 Jan 2023 17:27:35 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7585
x-amzn-requestid: bfb52acb-e0d7-482d-8be9-be5db1c16cac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_vkE5roAMF0Hw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d44663-2d38d314177e0ac40d4c8240;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:47:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 1WE1zQwrCGVy8HLT9_BFkAr6rQE_ROyttMOByR32KeT0w2Hd_ylvYQ==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 22:16:00 GMT
age: 69095
etag: "b9d37c2b14f890d41983a59f352e8f7caa9c94bb"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7585
Md5:    ea24bcba583bd8bd139559448a343e68
Sha1:   b9d37c2b14f890d41983a59f352e8f7caa9c94bb
Sha256: e5ef5975eec964ae1684deb424f00833f2d217bdc7e6c385320ed3adeb6bc1c4
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11568
x-amzn-requestid: 2e85f75e-ab9d-4d45-adad-7313950a9647
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fSWbxGwnoAMFejw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d0d117-68f1a9e71a07a0453311fd32;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 06:49:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: dbz3wXGNaetf6xvRE98rshyHy-FVfDo8co-4VDL0a4Qe3E4U8A82Og==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 18:36:01 GMT
age: 82294
etag: "a05cfaad16078f42218dae233da38f6f5dff8487"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11568
Md5:    b7a0759c043594fbe85af422b59b8227
Sha1:   a05cfaad16078f42218dae233da38f6f5dff8487
Sha256: e898d6ef1b3998fb9322a8fc190069ec5f7b3582bfe8397a2367497d84a27549
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3778
Expires: Sat, 28 Jan 2023 18:30:33 GMT
Date: Sat, 28 Jan 2023 17:27:35 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33ce0741-fcf6-4205-8b3a-016953553eaf.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 13376
x-amzn-requestid: 64d0092e-1f1a-4183-a4a6-805e0bf37d32
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa-DvHIyoAMF6fA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d443b1-6387770232ddca74531bce91;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:35:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Jqb6G21QeTDiI0HWT9Fd87D-HkAOiesyfN9vr7vMxrOUADBxV-_Fug==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:55:42 GMT
age: 70313
etag: "4aeca24ad4702f87feaf9674ea0c1ff6d71826a3"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   13376
Md5:    195316042e7f798eeeb7993fecb3a383
Sha1:   4aeca24ad4702f87feaf9674ea0c1ff6d71826a3
Sha256: b7e0a61060455241fce844d2c91eca500d409804361063ddb61053cbc9c7b1c1
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3778
Expires: Sat, 28 Jan 2023 18:30:33 GMT
Date: Sat, 28 Jan 2023 17:27:35 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3778
Expires: Sat, 28 Jan 2023 18:30:33 GMT
Date: Sat, 28 Jan 2023 17:27:35 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2d9747a7-0b4d-40bd-8d53-7702f8df2966.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5746
x-amzn-requestid: 8ab00078-cdf9-465a-a493-64a488c9e634
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa-CwEIJIAMFutA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d443ab-3f9b5f031812e32f6625f1e6;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:35:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: jUVP5rlieH6mUh_fgVz4D636AIMAo2JXJqBgzGSI_CyY2-8Pza4IKw==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 01:37:10 GMT
age: 57025
etag: "05aed76d3966ea8a02d4bbbeff7b41c8a5aac907"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5746
Md5:    25fd26625a6c5339389faf4f6aa8fc6a
Sha1:   05aed76d3966ea8a02d4bbbeff7b41c8a5aac907
Sha256: 9a29ad65cb7a8632a2c454a4caeb43a10c5152ccf3dbab22d584276bdeeb0dbb
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a2033b2-0708-4731-82a4-5bbc9f000ae2.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10863
x-amzn-requestid: db873091-be76-4276-aa3e-f9bd44051508
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fbAMbHCMoAMFsYg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d4471c-57f14d6a3ebcc8a1788bae80;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:50:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 00zN6NcdSHaq-4mWQeizXw9SDgUZJOFnB_6dTo6skjlytfBuz8ud3w==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:57:22 GMT
age: 70213
etag: "105d8d675aaafce5602e4015aee2d1659553d1b1"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10863
Md5:    a2881cea3ae511d3dfd2f6b7cd598a4e
Sha1:   105d8d675aaafce5602e4015aee2d1659553d1b1
Sha256: 0993ef71c2af9e07ed09e0e2ba40a4d9fdd01444154c2f39f8fc48a4dfef1730
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4475
x-amzn-requestid: b7b272d6-3089-4f33-89b5-5cb388640e10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_e6HsaIAMF5Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445f8-1789f7f4264270916da323db;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hAzO-IMqc1CFpiBAlRl8seIYL9UonyrBMATibovyFq5kEuaweY_VyA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:56:46 GMT
age: 70249
etag: "ab4f6528594a1725934727dc7d834c028a79c609"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4475
Md5:    4205d8106659e00fff1cbe9262918b8c
Sha1:   ab4f6528594a1725934727dc7d834c028a79c609
Sha256: 31f1a28602a194bd0856495d4d81d5c72cd7ff4e5bad6bdd1a31ec3041f4a2cc
                                        
                                            POST /gsorganizationvalsha2g2 HTTP/1.1 
Host: ocsp2.globalsign.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         104.18.21.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 28 Jan 2023 17:27:35 GMT
Content-Length: 1459
Connection: keep-alive
Expires: Wed, 01 Feb 2023 14:48:39 GMT
ETag: "83b3ac955ab5cf22f70fa8ec0288fb78c7486f47"
Last-Modified: Sat, 28 Jan 2023 14:48:40 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 70
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 790b708eaeb5b521-OSL


--- Additional Info ---
Magic:  data
Size:   1459
Md5:    1230cce5b0416a1c60ec58453037da7c
Sha1:   83b3ac955ab5cf22f70fa8ec0288fb78c7486f47
Sha256: 32482585afa05b96e1d7b9af75da7e8713b2e6207041c9f36704514995a7b0e3
                                        
                                            GET /dzt/S4.JS HTTP/1.1 
Host: api.safe-t-first.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         107.164.49.70
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Sat, 28 Jan 2023 17:27:35 GMT
content-length: 0
last-modified: Fri, 16 Sep 2022 14:01:47 GMT
etag: "632481cb-0"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

                                        
                                            GET /template/default/images/text.png HTTP/1.1 
Host: www.daocaorenjiaju.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/template/default/images/style.css

search
                                         45.61.133.215
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Sat, 07 Jan 2017 10:08:44 GMT
Accept-Ranges: bytes
ETag: "56bba47ce68d21:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 28 Jan 2023 17:27:34 GMT
Content-Length: 646


--- Additional Info ---
Magic:  PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size:   646
Md5:    ea04ca125b03bd020bded6a3ecba1c0a
Sha1:   d6e7e93180689b11ee0e2674c41f5585e688d62d
Sha256: 659f4cdc53e8585ed6e606f0575c03e66e83590e4e2adaa44db2ae539e25a77a
                                        
                                            GET /upload/vod/2022/09-03/12/ukgyaqrvmsb1242ukgyaqrvmsb4523587.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.daocaorenjiaju.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         45.89.209.74
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Tengine
Date: Sun, 29 Jan 2023 01:25:52 GMT
Content-Length: 10589
Last-Modified: Fri, 25 Nov 2022 12:36:09 GMT
Connection: keep-alive
ETag: "6380b6b9-295d"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   10589
Md5:    8f6f03541b1694ba4a55cb8e755295e6
Sha1:   e3e6af7cd5c1068aab2b3bed7f58a60e9699290e
Sha256: dc4108bf5c109dff942e6b8d0fe4e0f170574f870bea9a0a11e440b17ab4c565
                                        
                                            GET /dzt/DL.JS HTTP/1.1 
Host: api.safe-t-first.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         107.164.49.70
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Sat, 28 Jan 2023 17:27:35 GMT
content-length: 0
last-modified: Thu, 15 Sep 2022 10:05:18 GMT
etag: "6322f8de-0"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

                                        
                                            GET /upload/vod/2022/10-27/13/ra4scrsa5rr1341ra4scrsa5rr142581.jpg HTTP/1.1 
Host: lbfm.lbpictupian.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         104.22.12.214
HTTP/1.1 200 OK
Content-Type: image/webp
                                        
Date: Sat, 28 Jan 2023 17:27:35 GMT
Content-Length: 8766
Connection: keep-alive
Cf-Bgj: imgq:85,h2pri
Cf-Polished: qual=85, origFmt=jpeg, origSize=9431
Content-Disposition: inline; filename="ra4scrsa5rr1341ra4scrsa5rr142581.webp"
ETag: "635a19fa-24d7"
Last-Modified: Thu, 27 Oct 2022 05:41:14 GMT
Vary: Accept
Cache-Control: max-age=31536000
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 790b708b98770b45-OSL


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   8766
Md5:    bff53bae6954e8ffaef32fc565762c3e
Sha1:   7375cfb3367ee6ce8668b6895587bad3002f66c3
Sha256: d41bc1bfb54fb2c675b911ea1c221f29adbe79f568b1d73cc5d28ca0e19632d5
                                        
                                            GET /s.gif?l=http://www.daocaorenjiaju.com/ HTTP/1.1 
Host: api.share.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         182.61.240.101
HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
                                        
Content-Length: 0
Date: Sat, 28 Jan 2023 17:27:35 GMT

                                        
                                            POST /gsrsaovsslca2018 HTTP/1.1 
Host: ocsp.globalsign.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         104.18.20.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 28 Jan 2023 17:27:35 GMT
Content-Length: 1432
Connection: keep-alive
Expires: Wed, 01 Feb 2023 15:19:54 GMT
ETag: "ccd1726dfda4eef6dc4279096856c71c32da8854"
Last-Modified: Sat, 28 Jan 2023 15:19:55 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 485
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 790b709158981c12-OSL


--- Additional Info ---
Magic:  data
Size:   1432
Md5:    d91cec8e668ce036a484110723eb1cba
Sha1:   ccd1726dfda4eef6dc4279096856c71c32da8854
Sha256: ed0a1c7a898e7d6158b3c4872b669f923ee4e6e20a1caeed546725bc8e519c67
                                        
                                            GET /js-sdk-pro.min.js HTTP/1.1 
Host: sdk.51.la
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         47.253.50.2
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Server: openresty
Date: Sat, 28 Jan 2023 17:27:35 GMT
Last-Modified: Tue, 10 Jan 2023 04:34:55 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"63bceaef-861a"
Cache-Control: max-age=1296000
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Content-Encoding: gzip


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (34110)
Size:   12853
Md5:    29243483fe441404931c046d27be80a6
Sha1:   92a0c68b0169eff0addb8cc05a53f6e009d41d47
Sha256: 4865f22b0a68c6a0a6c2d3cbedb9a190ffbea105c4f1e2a5806172919456f3b1
                                        
                                            GET /kf/Hf82983e650f140d4baccd79e3f84f3f1f.gif HTTP/1.1 
Host: sc02.alicdn.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         95.101.11.161
HTTP/2 200 OK
content-type: image/gif
                                        
server: Tengine
content-length: 24524
traceid: 2f59420516669704581156163e
x-application-context: fileserver2-download:prod,hz:7001
last-modified: Fri, 28 Oct 2022 15:20:58 GMT
access-control-allow-origin: *
strict-transport-security: max-age=0
eagleid: 2f59420516669704581156163e, 082d349516703630330944665e
server-timing: rt;dur=1.292,eagleid;desc=2f59420516669704581156163e
ali-swift-global-savetime: 1666970459
x-swift-savetime: Tue, 06 Dec 2022 21:43:53 GMT
x-swift-cachetime: 83007426
served-from: 23.62.98.103
cache-control: max-age=84037072
expires: Sat, 27 Sep 2025 09:05:27 GMT
date: Sat, 28 Jan 2023 17:27:35 GMT
network_info: NO_OSLO_50304
timing-allow-origin: *, *, *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 200 x 260\012- data
Size:   24524
Md5:    39202890b8a45718c94d001113e9b4ae
Sha1:   5be1ffe30a5384abc0be6ad69cc5137bcd069870
Sha256: fc3337d5ddd7f57c17481f1d3a60aaf82cd0f17643df3397b44261d77e7202cc
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4D869D8A91347647B652F8B3C7C568E953A765421E7FEFD66B117BA26FF65639"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6528
Expires: Sat, 28 Jan 2023 19:16:23 GMT
Date: Sat, 28 Jan 2023 17:27:35 GMT
Connection: keep-alive

                                        
                                            GET /dzt/DINGPIAO.JS HTTP/1.1 
Host: api.safe-t-first.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         107.164.49.70
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Sat, 28 Jan 2023 17:27:35 GMT
last-modified: Mon, 31 Oct 2022 11:27:49 GMT
vary: Accept-Encoding
etag: W/"635fb135-6b1"
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   1150
Md5:    a795ec13c5cad1c87797eba0db834e1a
Sha1:   2e520d15c7fb6cf1f4ae3a08c30959462cc24e61
Sha256: 2c187716afa8c1a703f4209ed9d4daac28c14e97a9f6f82cd20dbabd8bbd7c48
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 28 Jan 2023 17:27:36 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 27 Jan 2023 08:12:34 GMT
Expires: Fri, 03 Feb 2023 08:12:33 GMT
Etag: "d38c169f927fc3d3ae5a91a2d727102a7ad760ac"
Cache-Control: max-age=484496,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 790b70917e41b506-OSL

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 28 Jan 2023 17:27:36 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 27 Jan 2023 08:12:34 GMT
Expires: Fri, 03 Feb 2023 08:12:33 GMT
Etag: "d38c169f927fc3d3ae5a91a2d727102a7ad760ac"
Cache-Control: max-age=484496,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 790b7091787bb4e8-OSL

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 28 Jan 2023 17:27:36 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 28 Jan 2023 15:57:13 GMT
Expires: Sat, 04 Feb 2023 15:57:12 GMT
Etag: "bd8c2c4bc578825574a217dc0f544ac90c89aa1e"
Cache-Control: max-age=598775,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 790b7094dab2b506-OSL

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 28 Jan 2023 17:27:36 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 06:50:24 GMT
Expires: Wed, 01 Feb 2023 06:50:23 GMT
Etag: "3c0161cfe732591fec4e7b3d8701181e1b895892"
Cache-Control: max-age=306766,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 790b7094cf1b0b4d-OSL

                                        
                                            GET /img/200200.gif HTTP/1.1 
Host: taiwtp1.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         220.128.218.220
HTTP/2 200 OK
content-type: image/gif
                                        
server: nginx
date: Sat, 28 Jan 2023 17:20:38 GMT
content-length: 75259
last-modified: Wed, 09 Mar 2022 04:51:10 GMT
etag: "6228323e-125fb"
expires: Mon, 27 Feb 2023 17:20:38 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 200 x 200\012- data
Size:   75259
Md5:    03c13356e00c2033df2c88cb919251eb
Sha1:   f3a334a0366ddda6a87034f7d6c889c4d159dc8d
Sha256: 0c184e206259e8d0c54d3fc12d3d5332e9f6ff5f0404630fcb2daefe65fe1bfe
                                        
                                            GET /hm.js?0e4c69192bebb536fa43c8edf6654341 HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11267
Date: Sat, 28 Jan 2023 17:27:36 GMT
Etag: ed7009c9f8e479af7e1d22ad913a2fa7
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=D0B8769F1BD7DCB5; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800


--- Additional Info ---
Magic:  ASCII text, with very long lines (629)
Size:   11267
Md5:    f847a0892d34a59b6985d14153d215bc
Sha1:   9a9b49d4f28632f3de7f5733bdabaa0eae2fdb51
Sha256: 9b555d6c4680849515da4e909cdfb230a19ef38e00e6872e4cb8758a59c8210c
                                        
                                            GET /image/a7.gif HTTP/1.1 
Host: img.firefoxcartoon.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         23.224.182.179
HTTP/2 200 OK
content-type: image/gif
                                        
server: nginx
date: Sat, 28 Jan 2023 17:27:36 GMT
content-length: 1264586
last-modified: Thu, 21 Jul 2022 11:37:53 GMT
etag: "62d93a91-134bca"
expires: Mon, 27 Feb 2023 17:27:36 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 200 x 200\012- data
Size:   1264586
Md5:    24276ed40d33cdc7c91be6aee4a5c649
Sha1:   406a93691820e9768a0190f7a216c61b939ce22c
Sha256: e6ed2d7c48fa4150292f76a06067d50597c16e7f402b030c9d2d22d8540ff733
                                        
                                            GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=590291464&si=0e4c69192bebb536fa43c8edf6654341&v=1.3.0&lv=1&sn=48866&r=0&ww=1280&u=http%3A%2F%2Fwww.daocaorenjiaju.com%2F&tt=%E6%B5%AA%E6%BD%AEAV%E8%89%B2%E7%BB%BC%E5%90%88%E4%B9%85%E4%B9%85%E5%A4%A9%E5%A0%82_%E7%8B%BC%E4%BA%BA%E7%BB%BC%E5%90%88%E4%BC%8A%E4%BA%BA%E4%BA%94%E6%9C%88%E5%A4%A9_%E7%8B%BC%E4%BA%BA%E7%BB%BC%E5%90%88%E7%A4%BE%E5%8C%BA%E4%BA%94%E6%9C%88%E5%A4%A9%E8%89%B2%E5%A9%B7%E5%A9%B7_%E7%8B%BC%E4%BA%BA%E4%BE%9D%E4%BA%BA%E4%B8%93%E5%8C%BA%E5%9C%A8%E7%BA%BF HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Date: Sat, 28 Jan 2023 17:27:37 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=B419BA1E82EAB0AC; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /image/22cc.gif HTTP/1.1 
Host: img.firefoxcartoon.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         23.224.182.179
HTTP/2 200 OK
content-type: image/gif
                                        
server: nginx
date: Sat, 28 Jan 2023 17:27:36 GMT
content-length: 840352
last-modified: Sun, 23 Oct 2022 07:47:52 GMT
etag: "6354f1a8-cd2a0"
expires: Mon, 27 Feb 2023 17:27:36 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 128 x 128\012- data
Size:   840352
Md5:    367441fd0f9cc373d70d8fc69e97d46a
Sha1:   fb39591de5c3e2692f952801ffb34e88f4765c47
Sha256: b22f3ed319624e493ebe8e41e7ef367fe86e9bc5b0ddbcc22d1ab75deafe05a3
                                        
                                            GET /image/im8.webp HTTP/1.1 
Host: img.firefoxcartoon.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         23.224.182.179
HTTP/2 200 OK
content-type: image/webp
                                        
server: nginx
date: Sat, 28 Jan 2023 17:27:36 GMT
content-length: 1324517
last-modified: Mon, 14 Nov 2022 08:14:21 GMT
etag: "6371f8dd-1435e5"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 225 x 225\012- data
Size:   1324517
Md5:    570ead008ba41f4b6dbda76cd5f4f928
Sha1:   d7f99ac7f3a3c7b4b2bbb11b73f28c5487171829
Sha256: 7a911fb4c82c82d2fd0afcf9fc87a282157aec861cc197e1e0fcc5a940f57c5b
                                        
                                            POST /v6/collect?dt=4 HTTP/1.1 
Host: collect-v6.51.la
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Length: 362
Origin: http://www.daocaorenjiaju.com
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/

search
                                         103.143.19.103
HTTP/1.1 403
                                        
Server: CloudWAF
Date: Sat, 28 Jan 2023 17:27:37 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: HWWAFSESID=57b5b81a13cc6060267; path=/ HWWAFSESTIME=1674926855772; path=/
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Access-Control-Allow-Origin: http://www.daocaorenjiaju.com
Access-Control-Allow-Credentials: true

                                        
                                            GET /6b5d90373420481eb967eb739d7ed50f.gif HTTP/1.1 
Host: n0633.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         20.196.216.223
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Sat, 28 Jan 2023 17:27:36 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sun, 08 Jan 2023 13:55:09 GMT
ETag: W/"63bacb3d-433f6"
Server: WAF/2.4-12.1
X-Cache-Status: HIT
Content-Encoding: gzip


--- Additional Info ---
Magic:  GIF image data, version 89a, 960 x 60\012- data
Size:   100964
Md5:    27d1de97ac93e08c23d38839c165962c
Sha1:   020372b65036c38287bf286a45dafd0cbd3a0538
Sha256: 57d082becc6ff907404430333320f5d87607b761c5b8647a13f339a20ca2f30d
                                        
                                            POST / HTTP/1.1 
Host: xinchacha2dv.ocsp-certum.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         95.101.10.193
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 1538
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=129
Date: Sat, 28 Jan 2023 17:27:37 GMT
Connection: keep-alive
X-N: S


--- Additional Info ---
Magic:  data
Size:   1538
Md5:    7fc57b408c415e9efdbec8bde4f16310
Sha1:   f255bd67578eb7771fcc16cd4e76a72bc74e1130
Sha256: 854824ee1c05480f18761a02ad1ee02d9bf6af8ba9603c2dfa988d0a60ab00a3
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 28 Jan 2023 17:27:37 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 26 Jan 2023 21:55:20 GMT
Expires: Thu, 02 Feb 2023 21:55:19 GMT
Etag: "2defe0a8ef09a90919521c308920f602fbfa2243"
Cache-Control: max-age=447461,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 790b709d2d07b506-OSL

                                        
                                            GET /960x120-2.gif HTTP/1.1 
Host: kkgif.oss-cn-hangzhou.aliyuncs.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         47.110.177.134
HTTP/1.1 200 OK
Content-Type: image/jpg
                                        
Server: AliyunOSS
Date: Sat, 28 Jan 2023 17:27:36 GMT
Content-Length: 318990
Connection: keep-alive
x-oss-request-id: 63D55B089BB92030302DA8CC
Accept-Ranges: bytes
ETag: "AA24656F40E8051BC01AB3B7B54BA39C"
Last-Modified: Fri, 14 Oct 2022 13:04:46 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 11367310566151348241
x-oss-storage-class: Standard
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: qiRlb0DoBRvAGrO3tUujnA==
x-oss-server-time: 3


--- Additional Info ---
Magic:  GIF image data, version 89a, 960 x 120\012- data
Size:   318990
Md5:    aa24656f40e8051bc01ab3b7b54ba39c
Sha1:   c79fad7ee2056cbc38a2934b5836ace69855b335
Sha256: dd7d9844bcdd274145914d077c70c51a5c873539c6259e5855c367d9ac7e2000
                                        
                                            GET /bbs/topic/images/2022-12/78fb8314-2121-440b-b224-da2aef721f77.gif HTTP/1.1 
Host: ldbbs.ldmnq.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         120.52.95.234
HTTP/1.1 429 Too Many Requests
                                        
Date: Sat, 28 Jan 2023 17:27:38 GMT
Content-Length: 306
Connection: keep-alive
Server: openresty
X-Request-Id: 00000185F96B9F269416873F0007F3ED
x-reserved-indicator: 612
X-CCDN-Origin-Time: 121
Age: 1
via: CHN-HElangfang-AREACUCC1-CACHE23[236],CHN-HElangfang-AREACUCC1-CACHE3[233,TCP_MISS,235],CHN-TJ-GLOBAL1-CACHE3[228],CHN-TJ-GLOBAL1-CACHE3[121,TCP_MISS,226]
x-hcs-proxy-type: 0
X-CCDN-CacheTTL: 2592000


--- Additional Info ---
Magic:  XML 1.0 document text\012- XML document, ASCII text, with very long lines (306), with no line terminators
Size:   306
Md5:    b83b4ed78a9d836d0891114a56acec2a
Sha1:   b197e33691b11821f37f165ad433c7f0b1475dea
Sha256: f0ee03f4f7d010343918c6522614d66678bbbe7035c3cae8fa1a1bc1aa86e9d8
                                        
                                            GET /dzt/SDH.JS HTTP/1.1 
Host: api.safe-t-first.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         107.164.49.70
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Sat, 28 Jan 2023 17:27:34 GMT
last-modified: Sun, 04 Dec 2022 13:29:13 GMT
vary: Accept-Encoding
etag: W/"638ca0a9-aa4"
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   248320
Md5:    5ebe62eb8c0cd6aaa5a97dc4a334e97e
Sha1:   08ec2b18f6283a13424e1713ca3e06e4e95c5e6b
Sha256: bc6150a581fed4048d738338e398a8cfac0b1e825c80832def54830e2fc371f6
                                        
                                            GET /470ed5ee51fd4c618951406988fe976e.gif HTTP/1.1 
Host: 225962tyy.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         103.170.15.91
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: max-age=604800
ETag: "6378f199-43545"
Date: Thu, 05 Jan 2023 18:22:57 GMT
Server: nginx
Last-Modified: Sat, 19 Nov 2022 15:09:13 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-21
Content-Length: 275781


--- Additional Info ---
Magic:  GIF image data, version 89a, 180 x 180\012- data
Size:   275781
Md5:    e6b935405a2f267592cd1d81fbe51897
Sha1:   475f77009b099e3edfe16b9fa4b3105fab4b62ea
Sha256: eb05ec6c95dddb68b7615d26c68820ab928b9c32f534b2e3eee12e1c8b97f6f3

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 28 Jan 2023 17:27:38 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 27 Jan 2023 11:18:41 GMT
Expires: Fri, 03 Feb 2023 11:18:40 GMT
Etag: "87c40d3269cae12c1b96518131cbdf3a49624d81"
Cache-Control: max-age=495661,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 790b70a23ba80b4d-OSL

                                        
                                            GET /7e7ff64c2a224d31b3316a3a83786276.gif HTTP/1.1 
Host: u1044.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.daocaorenjiaju.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         103.189.109.72
HTTP/2 200 OK
content-type: image/gif
                                        
cache-control: max-age=86400
etag: "63a96ba3-4b76c"
server: nginx
date: Thu, 05 Jan 2023 02:44:03 GMT
last-modified: Mon, 26 Dec 2022 09:38:43 GMT
accept-ranges: bytes
x-cache: HIT from ty8-cdn109-062
content-length: 309100
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 960 x 60\012- data
Size:   309100
Md5:    85a34441173f1ad7d14a35ca78a4ca92
Sha1:   5d6216548b65b8ac46382cdc4b52c01305c5c1f8
Sha256: ad6bfce666abcdf98e9ba0b238269d0b1b708c870bc21b0d066fcc57264b965f
                                        
                                            GET /960X60.gif HTTP/1.1 
Host: kkgif.oss-cn-hangzhou.aliyuncs.com