m.imomoe.in/player/189-0-40.html
162 B URL User Request GET m.imomoe.in/player/189-0-40.html
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /player/189-0-40.html HTTP/1.1
Host: m.imomoe.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 19 Nov 2023 09:40:36 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: http://www.yhdmba.org/player/189-0-40.html
www.yhdmba.org/template/mytheme/statics/css/mytheme-font.css?v=2.8
200 OK 7.8 kB URL GET HTTP/1.1 www.yhdmba.org/template/mytheme/statics/css/mytheme-font.css?v=2.8
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
File type ASCII text, with very long lines (30837)
Hash 269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
GET /template/mytheme/statics/css/mytheme-font.css?v=2.8 HTTP/1.1
Host: www.yhdmba.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/player/189-0-40.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Nov 2023 09:40:38 GMT
Content-Type: text/css
Last-Modified: Thu, 10 Mar 2022 07:17:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6229a600-7918"
Expires: Sun, 19 Nov 2023 21:40:38 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.yhdmba.org/player/189-0-40.html
54 kB URL User Request GET www.yhdmba.org/player/189-0-40.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (5374), with CRLF, LF line terminators
Hash 63b95968bd36ba19bc56d3a4ab027d49
f0613ed7143eb3728609017a007939323ef381cc
6db531fbe0ddc317fadefc90c5a58e04559dc662afd9edc92008aa1adf228333
GET /player/189-0-40.html HTTP/1.1
Host: www.yhdmba.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Nov 2023 09:40:37 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.yhdmba.org/template/mytheme/statics/css/mytheme-ui.css?v=2.8
200 OK 8.8 kB URL GET HTTP/1.1 www.yhdmba.org/template/mytheme/statics/css/mytheme-ui.css?v=2.8
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
File type assembler source, Unicode text, UTF-8 text, with very long lines (1893), with CRLF line terminators
Hash 308e4e7a186f6774c9754f3b09ffb071
418f6c422dd4bd8fcbe4ce89e4decf0b3f0f361f
82898adac54547756462b26a47b2151dd2a5eb26dfde4c7829e4a068bb29de0e
GET /template/mytheme/statics/css/mytheme-ui.css?v=2.8 HTTP/1.1
Host: www.yhdmba.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/player/189-0-40.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Nov 2023 09:40:38 GMT
Content-Type: text/css
Last-Modified: Thu, 17 Mar 2022 02:33:30 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62329dfa-8b70"
Expires: Sun, 19 Nov 2023 21:40:38 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.yhdmba.org/template/mytheme/statics/css/mytheme-color.css?v=2.8
200 OK 1.8 kB URL GET HTTP/1.1 www.yhdmba.org/template/mytheme/statics/css/mytheme-color.css?v=2.8
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
File type assembler source, Unicode text, UTF-8 text, with CRLF line terminators
Hash 5210adfb45b2985716298d2e6847374f
8dc981dc0f376a22a2b3cb1a06f3feaf37d2319e
b84a040fd55faaaf47283f1829aa8a90442bf0c1a30b9ff06f8cbee5636942eb
GET /template/mytheme/statics/css/mytheme-color.css?v=2.8 HTTP/1.1
Host: www.yhdmba.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/player/189-0-40.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Nov 2023 09:40:38 GMT
Content-Type: text/css
Last-Modified: Thu, 10 Mar 2022 07:17:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6229a600-15bc"
Expires: Sun, 19 Nov 2023 21:40:38 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.yhdmba.org/template/mytheme/statics/css/mytheme-site.css?v=2.8
200 OK 2.6 kB URL GET HTTP/1.1 www.yhdmba.org/template/mytheme/statics/css/mytheme-site.css?v=2.8
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 64855de43b7f1dd723d3f529f44d487f
583ada92cbdeb76050e1afd9444034b31660e3f4
2db821fc16102ecb25174adff1badee8676687e358fa611a70da1fb77e97bf22
GET /template/mytheme/statics/css/mytheme-site.css?v=2.8 HTTP/1.1
Host: www.yhdmba.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/player/189-0-40.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Nov 2023 09:40:38 GMT
Content-Type: text/css
Last-Modified: Thu, 10 Mar 2022 07:17:21 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6229a601-2775"
Expires: Sun, 19 Nov 2023 21:40:38 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.yhdmba.org/template/mytheme/statics/css/mytheme-color1.css?v=2.8
200 OK 1.8 kB URL GET HTTP/1.1 www.yhdmba.org/template/mytheme/statics/css/mytheme-color1.css?v=2.8
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
File type assembler source, Unicode text, UTF-8 text, with CRLF line terminators
Hash 810abb75426c770b9a9bd9c3217c0e22
5dc67160305600cc1d6107f1abe978db77e16c0b
43bff9d0f3f151303c9255bc38f0b4e107785ceb09adef04c2b61430bdf64a62
GET /template/mytheme/statics/css/mytheme-color1.css?v=2.8 HTTP/1.1
Host: www.yhdmba.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/player/189-0-40.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Nov 2023 09:40:38 GMT
Content-Type: text/css
Last-Modified: Thu, 10 Mar 2022 07:17:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6229a600-15b3"
Expires: Sun, 19 Nov 2023 21:40:38 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.yhdmba.org/template/mytheme/statics/css/mytheme-color2.css?v=2.8
200 OK 1.8 kB URL GET HTTP/1.1 www.yhdmba.org/template/mytheme/statics/css/mytheme-color2.css?v=2.8
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
File type assembler source, Unicode text, UTF-8 text, with CRLF line terminators
Hash 82b7935d4453fc71df1e8304c4b1c304
f3302f98f0eaae3277e9d461d5e2d38f5c22eb21
e287d2012e677798fae823bd1d481cd935ffb35314d21bbe560b77925fa16433
GET /template/mytheme/statics/css/mytheme-color2.css?v=2.8 HTTP/1.1
Host: www.yhdmba.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/player/189-0-40.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Nov 2023 09:40:38 GMT
Content-Type: text/css
Last-Modified: Thu, 10 Mar 2022 07:17:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6229a600-15a7"
Expires: Sun, 19 Nov 2023 21:40:38 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.yhdmba.org/template/mytheme/statics/js/jquery.min.js?v=3.3.1
200 OK 34 kB URL GET HTTP/1.1 www.yhdmba.org/template/mytheme/statics/js/jquery.min.js?v=3.3.1
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
File type ASCII text, with very long lines (65451)
Hash a09e13ee94d51c524b7e2a728c7d4039
0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae
160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef
GET /template/mytheme/statics/js/jquery.min.js?v=3.3.1 HTTP/1.1
Host: www.yhdmba.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/player/189-0-40.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Nov 2023 09:40:38 GMT
Content-Type: application/javascript
Last-Modified: Thu, 10 Mar 2022 07:17:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6229a608-1538f"
Expires: Sun, 19 Nov 2023 21:40:38 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.yhdmba.org/template/mytheme/statics/js/layer/layer.js?v3.1.1
200 OK 8.4 kB URL GET HTTP/1.1 www.yhdmba.org/template/mytheme/statics/js/layer/layer.js?v3.1.1
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
File type Unicode text, UTF-8 text, with very long lines (22032)
Hash 6e80f0cff749c82653b9cdde9eeab937
7034e797787919a6742525a69723bf9dfda13790
1ce6649d82d2db0f8e4823f701ddfcfd9c7f107cb446c907e46ec7e57171a2a3
GET /template/mytheme/statics/js/layer/layer.js?v3.1.1 HTTP/1.1
Host: www.yhdmba.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/player/189-0-40.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Nov 2023 09:40:38 GMT
Content-Type: application/javascript
Last-Modified: Thu, 10 Mar 2022 07:17:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6229a609-5664"
Expires: Sun, 19 Nov 2023 21:40:38 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.yhdmba.org/template/mytheme/statics/js/mytheme-cms.js?v=2.8
200 OK 2.7 kB URL GET HTTP/1.1 www.yhdmba.org/template/mytheme/statics/js/mytheme-cms.js?v=2.8
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash d252e88d0714d34e6c2bc046a571c7ee
c3fc07c0f5cd6dbb4937f46cf323c5c8fa30ba5d
74ca965386669eb824dcdb9b1fe2f35b776f099e63034533734818b33f11bd59
GET /template/mytheme/statics/js/mytheme-cms.js?v=2.8 HTTP/1.1
Host: www.yhdmba.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/player/189-0-40.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Nov 2023 09:40:38 GMT
Content-Type: application/javascript
Last-Modified: Thu, 10 Mar 2022 07:17:30 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6229a60a-21c2"
Expires: Sun, 19 Nov 2023 21:40:38 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.yhdmba.org/static/js/home.js
200 OK 10 kB URL GET HTTP/1.1 www.yhdmba.org/static/js/home.js
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
File type Unicode text, UTF-8 text, with very long lines (2677)
Hash 97e311d35a4aa0ba09575a8dc989660b
8166b5f8ba52aa57ab23321a8ddc8d0118f1e590
1a52c16e5a7fc905630d52185ca457108cb0a65a4567cf6157709c1c5eceb311
GET /static/js/home.js HTTP/1.1
Host: www.yhdmba.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/player/189-0-40.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Nov 2023 09:40:38 GMT
Content-Type: application/javascript
Last-Modified: Tue, 24 Aug 2021 06:28:32 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61249190-95a5"
Expires: Sun, 19 Nov 2023 21:40:38 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.yhdmba.org/template/mytheme/statics/js/mytheme-ui.js?v=2.8
200 OK 7.1 kB URL GET HTTP/1.1 www.yhdmba.org/template/mytheme/statics/js/mytheme-ui.js?v=2.8
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash aabd03c59368c601fe8130897c890ae7
f50d9b26b0c89cefbabd5a0d4befddf53e13a416
1330e956fe0b880273ddfd43a4fb38b36f22db25e9f83514330d9dd3e88a0e67
GET /template/mytheme/statics/js/mytheme-ui.js?v=2.8 HTTP/1.1
Host: www.yhdmba.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/player/189-0-40.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Nov 2023 09:40:38 GMT
Content-Type: application/javascript
Last-Modified: Sun, 15 Jan 2023 07:42:47 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63c3ae77-5504"
Expires: Sun, 19 Nov 2023 21:40:38 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.yhdmba.org/static/js/playerconfig.js?t=20231119
200 OK 714 B URL GET HTTP/1.1 www.yhdmba.org/static/js/playerconfig.js?t=20231119
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
File type Unicode text, UTF-8 text, with very long lines (1556), with CRLF, LF line terminators
Hash 829a46972272f0a1adafe66a05d8023b
92fa057c97fe6cda6c4165ec523a21537e17a0f0
130c99616322c4f09338314dc40feffb782987be9d5453b3078ca031823e6645
GET /static/js/playerconfig.js?t=20231119 HTTP/1.1
Host: www.yhdmba.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/player/189-0-40.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Nov 2023 09:40:39 GMT
Content-Type: application/javascript
Last-Modified: Fri, 10 Nov 2023 09:07:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"654df2c8-7bf"
Expires: Sun, 19 Nov 2023 21:40:39 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.yhdmba.org/static/js/player.js?t=a20231119
200 OK 2.9 kB URL GET HTTP/1.1 www.yhdmba.org/static/js/player.js?t=a20231119
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
File type Unicode text, UTF-8 text, with very long lines (4210)
Hash f0d0377f321e97b4a07491e4dea37600
e51b1d894a77574d67727cbf85b3357027976460
858d55be197997efdabcdc0954d8c7bf99817ed081a8f9112aa8533e48e35bef
GET /static/js/player.js?t=a20231119 HTTP/1.1
Host: www.yhdmba.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/player/189-0-40.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Nov 2023 09:40:39 GMT
Content-Type: application/javascript
Last-Modified: Thu, 14 Sep 2023 08:32:19 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6502c513-1fe6"
Expires: Sun, 19 Nov 2023 21:40:39 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.yhdmba.org/template/mytheme/statics/css/mytheme-color3.css?v=2.8
200 OK 1.8 kB URL GET HTTP/1.1 www.yhdmba.org/template/mytheme/statics/css/mytheme-color3.css?v=2.8
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
File type assembler source, Unicode text, UTF-8 text, with CRLF line terminators
Hash 7328809d83e34d7307b1644ec69cd5f6
cf35420e51636ff30351e1818d2805a07a485225
8144b8309e781eac9363366e1a92f63aaf0728db8cd6cc19ce58347eedf6a896
GET /template/mytheme/statics/css/mytheme-color3.css?v=2.8 HTTP/1.1
Host: www.yhdmba.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/player/189-0-40.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Nov 2023 09:40:39 GMT
Content-Type: text/css
Last-Modified: Thu, 10 Mar 2022 07:17:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6229a600-159f"
Expires: Sun, 19 Nov 2023 21:40:39 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.yhdmba.org/template/mytheme/statics/js/layer/theme/default/layer.css?v=3.1.1
200 OK 3.2 kB URL GET HTTP/1.1 www.yhdmba.org/template/mytheme/statics/js/layer/theme/default/layer.css?v=3.1.1
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
File type ASCII text, with very long lines (14367), with no line terminators
Hash 3d2e0d91c5c0b96abb8dbdc2234aba77
9d55e153b30fd7414fada5718e20918e9c7f65e7
e3144d018a6a24f733c6fc2a2ee603fb583f0030585e9d4b71bec471b78e31fc
GET /template/mytheme/statics/js/layer/theme/default/layer.css?v=3.1.1 HTTP/1.1
Host: www.yhdmba.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/player/189-0-40.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Nov 2023 09:40:39 GMT
Content-Type: text/css
Last-Modified: Thu, 10 Mar 2022 07:17:30 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6229a60a-381f"
Expires: Sun, 19 Nov 2023 21:40:39 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.yhdmba.org/template/mytheme/statics/js/mytheme-site.js?v=2.8
200 OK 41 kB URL GET HTTP/1.1 www.yhdmba.org/template/mytheme/statics/js/mytheme-site.js?v=2.8
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
File type ASCII text, with very long lines (8746)
Hash 5972a478bec0b909aecf7c3c86b1d8d6
701e983304ef64cb6026bcdd3d353b20d9488283
e1996dbe087689523dd4e8eceb547ab151db5ff6eb1103e29a14d1c40ed0e1fb
GET /template/mytheme/statics/js/mytheme-site.js?v=2.8 HTTP/1.1
Host: www.yhdmba.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/player/189-0-40.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Nov 2023 09:40:38 GMT
Content-Type: application/javascript
Last-Modified: Thu, 10 Mar 2022 07:17:30 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6229a60a-1f8cf"
Expires: Sun, 19 Nov 2023 21:40:38 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.yhdmba.org/template/mytheme/statics/img/favicon.ico
200 OK 1.2 kB URL GET HTTP/1.1 www.yhdmba.org/template/mytheme/statics/img/favicon.ico
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 1b0df741ee3c88b28c8e8d4ba283251f
cdbce2836b5d9fedbe5f1c5de86ff77249d7b3c9
ad6aea85ccfa45dee77ae0b06c0199bed77d5fcb131a896c12c5fc35e030b0dd
GET /template/mytheme/statics/img/favicon.ico HTTP/1.1
Host: www.yhdmba.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/player/189-0-40.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Nov 2023 09:40:39 GMT
Content-Type: image/x-icon
Content-Length: 1150
Last-Modified: Tue, 15 Mar 2022 07:30:50 GMT
Connection: keep-alive
ETag: "623040aa-47e"
Accept-Ranges: bytes
www.yhdmba.org/template/mytheme/statics/img/logo.png
200 OK 3.2 kB URL GET HTTP/1.1 www.yhdmba.org/template/mytheme/statics/img/logo.png
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
File type PNG image data, 162 x 58, 8-bit/color RGBA, non-interlaced\012- data
Hash a47f1d6383c7bacbcdde49cc9c412d18
086c392bd68070b2a7ac0478458832d825dc68f1
9d1b9922da2ace066a7172d54fc87f70cb61bbc35c0eafaf832e211252782538
GET /template/mytheme/statics/img/logo.png HTTP/1.1
Host: www.yhdmba.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/player/189-0-40.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Nov 2023 09:40:39 GMT
Content-Type: image/png
Content-Length: 3157
Last-Modified: Tue, 15 Mar 2022 07:51:41 GMT
Connection: keep-alive
ETag: "6230458d-c55"
Expires: Tue, 19 Dec 2023 09:40:39 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
www.yhdmba.org/template/mytheme/statics/img/logo_min.png
200 OK 2.7 kB URL GET HTTP/1.1 www.yhdmba.org/template/mytheme/statics/img/logo_min.png
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
File type PNG image data, 120 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash 3bc2d2ced3b4a0d7503c5a28e2b99ce3
d0a0beb579bbe40b14a48ac562a67d8bd13f756d
961b90fa4035120d59fc10c8a0b678eb9682d314d95bb5a32057352d0b3eb6cb
GET /template/mytheme/statics/img/logo_min.png HTTP/1.1
Host: www.yhdmba.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/player/189-0-40.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Nov 2023 09:40:39 GMT
Content-Type: image/png
Content-Length: 2708
Last-Modified: Tue, 15 Mar 2022 07:55:33 GMT
Connection: keep-alive
ETag: "62304675-a94"
Expires: Tue, 19 Dec 2023 09:40:39 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
www.yhdmba.org/verify/index.html
200 OK 445 B URL GET HTTP/1.1 www.yhdmba.org/verify/index.html
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
File type PNG image data, 128 x 40, 4-bit colormap, non-interlaced\012- data
Hash 3fad30986036947ac6d2bf67160ee043
92399974d054fcd5c00e01ad9a3affd1fee1e758
ee3a2e918b191da78feff7460b89e290b7e75246d3dc6a60c9ba5780c3eaf828
GET /verify/index.html HTTP/1.1
Host: www.yhdmba.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/player/189-0-40.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Nov 2023 09:40:39 GMT
Content-Type: image/png; charset=utf-8
Content-Length: 445
Connection: keep-alive
Set-Cookie: PHPSESSID=3ggaovrq45971hlf6oe2f69i03; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
www.yhdmba.org/static/player/bdhd.js
200 OK 244 B URL GET HTTP/1.1 www.yhdmba.org/static/player/bdhd.js
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
File type ASCII text, with CRLF line terminators
Hash 6ed419b8a4cff5500ebbec479deaa4a8
b7a8b637a389b013a4ff7aae9c2abeae4560e829
915b82f200fb6c0e96667214ff3f203f1f8c2380ec3f5cc052be423e617412f8
GET /static/player/bdhd.js HTTP/1.1
Host: www.yhdmba.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/player/189-0-40.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Nov 2023 09:40:39 GMT
Content-Type: application/javascript
Content-Length: 244
Last-Modified: Fri, 10 Nov 2023 07:38:49 GMT
Connection: keep-alive
ETag: "654dde09-f4"
Expires: Sun, 19 Nov 2023 21:40:39 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes
www.yhdmba.org/static/player/dplayer.html
200 OK 807 B URL GET HTTP/1.1 www.yhdmba.org/static/player/dplayer.html
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash a55ae5dd1e2ff3d69117fa106380c48f
dba6cc334a506c721e281d0930c7341af2411f25
40873a4ab328694c84b546a66d5ff59f6fdcd14c11b1dc198047072e88fda0a1
GET /static/player/dplayer.html HTTP/1.1
Host: www.yhdmba.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/player/189-0-40.html
Cookie: PHPSESSID=3ggaovrq45971hlf6oe2f69i03
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Nov 2023 09:40:40 GMT
Content-Type: text/html
Last-Modified: Sun, 01 Jan 2023 15:45:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63b1aa8a-801"
Content-Encoding: gzip
www.yhdmba.org/template/mytheme/statics/fonts/fontawesome-webfont.woff2?v=4.7.0
200 OK 77 kB URL GET HTTP/1.1 www.yhdmba.org/template/mytheme/statics/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /template/mytheme/statics/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: www.yhdmba.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/template/mytheme/statics/css/mytheme-font.css?v=2.8
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Nov 2023 09:40:39 GMT
Content-Type: font/woff2
Content-Length: 77160
Last-Modified: Thu, 10 Mar 2022 07:17:22 GMT
Connection: keep-alive
ETag: "6229a602-12d68"
Accept-Ranges: bytes
pc.stgowan.com/pc/tp-tf.js
200 OK 383 B URL GET HTTP/1.1 pc.stgowan.com/pc/tp-tf.js
IP
ASN #4837 CHINA UNICOM China169 Backbone
Requested by http://www.yhdmba.org/player/189-0-40.html
File type ASCII text, with CRLF line terminators
Hash 85fa6bec87be9cd616179e44ecb76b4c
a5bbec4ecd9c04d584270f1b35cd8086bf7885f7
98a52ef90a03f3fa8224cd6a621446e3cce635f4210bf762abff2f7710a5ed1a
GET /pc/tp-tf.js HTTP/1.1
Host: pc.stgowan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Wed, 24 May 2023 08:13:09 GMT
Content-Encoding: gzip
Etag: "646dc715-32c"
Server: nginx/1.16.0
Date: Sat, 16 Sep 2023 01:41:59 GMT
Content-Type: application/javascript
Content-Length: 383
Accept-Ranges: bytes
X-NWS-LOG-UUID: 2134490436850360852
Connection: keep-alive
X-Cache-Lookup: Cache Hit
197b7df3889fdf254852.d7c63ec9.com.tongjiniao.com/s/t?_=576372115856408576
200 OK 5.5 kB URL GET HTTP/2 197b7df3889fdf254852.d7c63ec9.com.tongjiniao.com/s/t?_=576372115856408576
IP
ASN #140227 Hong Kong Communications International Co., Limited
Requested by http://www.yhdmba.org/player/189-0-40.html
Certificate IssuerLet's Encrypt
Subjectceshi1.ink
Fingerprint08:E7:B0:95:FB:25:0E:1B:ED:90:AC:05:0A:E1:F3:27:95:87:B6:76
ValidityThu, 26 Oct 2023 13:36:30 GMT - Wed, 24 Jan 2024 13:36:29 GMT
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (16218), with no line terminators
Hash 5977041c4fa94a681d8483ec1b4c8f65
3a40474670f4eb7bb16739bbe692da1ef2677747
a302263d1da51d30bdd9342c91678d4a8d9368f25baab545e472486b696f5886
GET /s/t?_=576372115856408576 HTTP/1.1
Host: 197b7df3889fdf254852.d7c63ec9.com.tongjiniao.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.yhdmba.org
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 19 Nov 2023 09:40:40 GMT
content-type: application/json; charset=utf-8
content-length: 5477
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: DNT,Keep-Alive,User-Agent,Cache-Control,Content-Type,Authorization
content-encoding: br
cache-control: no-cache
X-Firefox-Spdy: h2
www.yhdmba.org/static/player/dplayer/DPlayer.min.css
200 OK 7.1 kB URL GET HTTP/1.1 www.yhdmba.org/static/player/dplayer/DPlayer.min.css
IP
Requested by http://www.yhdmba.org/static/player/dplayer.html
File type ASCII text, with very long lines (36675)
Hash 31ac9b1a5a7f018dcc9a0e0f66261c08
f7d19655f873b813ffba5d1a17145c91f82631b8
fba0d89e59046d8bd52df0d3b28850b3af41aa4959233634286087af7d741b03
GET /static/player/dplayer/DPlayer.min.css HTTP/1.1
Host: www.yhdmba.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/static/player/dplayer.html
Cookie: PHPSESSID=3ggaovrq45971hlf6oe2f69i03
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Nov 2023 09:40:40 GMT
Content-Type: text/css
Last-Modified: Sun, 01 Jan 2023 15:45:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63b1aa8a-b0c1"
Expires: Sun, 19 Nov 2023 21:40:40 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
pc.stgowan.com/pc_w/m_tp.js
200 OK 6.9 kB URL GET HTTP/1.1 pc.stgowan.com/pc_w/m_tp.js
IP
ASN #4837 CHINA UNICOM China169 Backbone
Requested by http://www.yhdmba.org/player/189-0-40.html
File type Unicode text, UTF-8 text, with very long lines (417)
Hash cd1bc6bb4d25f5f6f8e23b6ea68eb7ce
a36b3017c7f9ac737748bcae1792bb86799d44fe
4e2e5ffa541d6ddb6d0ce5186ff9d323ac4c6cc811bcc4ad14069be5569ac6ee
GET /pc_w/m_tp.js HTTP/1.1
Host: pc.stgowan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Mon, 13 Nov 2023 06:59:31 GMT
Content-Encoding: gzip
Etag: "6551c953-7e5d"
Server: nginx/1.16.0
Date: Mon, 13 Nov 2023 07:00:10 GMT
Content-Type: application/javascript
Content-Length: 6919
Accept-Ranges: bytes
X-NWS-LOG-UUID: 845360748430075832
Connection: keep-alive
X-Cache-Lookup: Cache Hit
www.yhdmba.org/static/player/dplayer/flv.min.js
200 OK 45 kB URL GET HTTP/1.1 www.yhdmba.org/static/player/dplayer/flv.min.js
IP
Requested by http://www.yhdmba.org/static/player/dplayer.html
File type ASCII text, with very long lines (31982)
Hash 1eaec119243c01fd19cca260fec95aac
9a91f58c82094561a077b4684c5a8fd54ee8d140
6a49cca365c1e2750f9baa1f04c99847a99a965f78704786f439a396ed481acd
GET /static/player/dplayer/flv.min.js HTTP/1.1
Host: www.yhdmba.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/static/player/dplayer.html
Cookie: PHPSESSID=3ggaovrq45971hlf6oe2f69i03
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Nov 2023 09:40:40 GMT
Content-Type: application/javascript
Last-Modified: Sun, 01 Jan 2023 15:45:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63b1aa8a-299cb"
Expires: Sun, 19 Nov 2023 21:40:40 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
pc.stgowan.com/pc/bfixed-tf.js
200 OK 402 B URL GET HTTP/1.1 pc.stgowan.com/pc/bfixed-tf.js
IP
ASN #4837 CHINA UNICOM China169 Backbone
Requested by http://www.yhdmba.org/player/189-0-40.html
File type HTML document, ASCII text, with CRLF line terminators
Hash 42812e4e20e4be9d825de0eb7af80637
ab0529c416d9d4fec0fc6ce0faf76dc293fe167d
3bbc387f19c4c8d35ab86edbcbcfd21b7ae8e93619959fd6a7eb5edbe78d4934
GET /pc/bfixed-tf.js HTTP/1.1
Host: pc.stgowan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Mon, 25 Jul 2022 02:33:08 GMT
Content-Encoding: gzip
Etag: "62de00e4-391"
Server: nginx/1.16.0
Date: Tue, 31 Oct 2023 06:35:01 GMT
Content-Type: application/javascript
Content-Length: 402
Accept-Ranges: bytes
X-NWS-LOG-UUID: 14211826492297902505
Connection: keep-alive
X-Cache-Lookup: Cache Hit
www.yhdmba.org/template/mytheme/statics/img/play.png
200 OK 2.5 kB URL GET HTTP/1.1 www.yhdmba.org/template/mytheme/statics/img/play.png
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 10a11cc31a1fe5126ae5f1e359679cbb
7d30dcc97bb4aed52948a5b040b4fa63149a405e
82b4aac50bdda11a5069442a4a6f593f4f3debbc2a4499b919d61691301c5537
GET /template/mytheme/statics/img/play.png HTTP/1.1
Host: www.yhdmba.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/template/mytheme/statics/css/mytheme-ui.css?v=2.8
Cookie: PHPSESSID=3ggaovrq45971hlf6oe2f69i03
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Nov 2023 09:40:40 GMT
Content-Type: image/png
Content-Length: 2457
Last-Modified: Thu, 10 Mar 2022 07:17:26 GMT
Connection: keep-alive
ETag: "6229a606-999"
Expires: Tue, 19 Dec 2023 09:40:40 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
www.yhdmba.org/template/mytheme/statics/img/load.png
200 OK 5.8 kB URL GET HTTP/1.1 www.yhdmba.org/template/mytheme/statics/img/load.png
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
File type PNG image data, 220 x 325, 8-bit/color RGB, non-interlaced\012- data
Hash 70ec81a14f262553076a45cb3511133e
bf42d6344fe678d63776025bea7c355e5110b8a6
59293af25851397b6d7d9c62a49c1c06b2c8bb9671119819f356f921081ce5f0
GET /template/mytheme/statics/img/load.png HTTP/1.1
Host: www.yhdmba.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/player/189-0-40.html
Cookie: PHPSESSID=3ggaovrq45971hlf6oe2f69i03
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Nov 2023 09:40:40 GMT
Content-Type: image/png
Content-Length: 5848
Last-Modified: Wed, 16 Mar 2022 07:22:45 GMT
Connection: keep-alive
ETag: "62319045-16d8"
Expires: Tue, 19 Dec 2023 09:40:40 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
pc.stgowan.com/pc/rich-tf.js
200 OK 410 B URL GET HTTP/1.1 pc.stgowan.com/pc/rich-tf.js
IP
ASN #4837 CHINA UNICOM China169 Backbone
Requested by http://www.yhdmba.org/player/189-0-40.html
File type ASCII text, with CRLF line terminators
Hash 68b3003b15cb3b94c10a2551651f2766
5e25704676e00e78fcfaf4fa68b24b9e4556e506
cd535f7a6b72bea4f06c439b3d436f9b65523d90a5786365a7f153a8d2700109
GET /pc/rich-tf.js HTTP/1.1
Host: pc.stgowan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Mon, 29 May 2023 10:47:58 GMT
Content-Encoding: gzip
Etag: "647482de-3bf"
Server: nginx/1.16.0
Date: Sun, 10 Sep 2023 01:41:03 GMT
Content-Type: application/javascript
Content-Length: 410
Accept-Ranges: bytes
X-NWS-LOG-UUID: 3946578336909349326
Connection: keep-alive
X-Cache-Lookup: Cache Hit
www.yhdmba.org/static/player/dplayer/DPlayer.min.js
200 OK 41 kB URL GET HTTP/1.1 www.yhdmba.org/static/player/dplayer/DPlayer.min.js
IP
Requested by http://www.yhdmba.org/static/player/dplayer.html
File type ASCII text, with very long lines (65536), with no line terminators
Hash 472552604f19815d0a634bd3d953171e
490148a22ab2b03a880495cc733ecd1840c02ed6
389834de50d93f4340725df0682f4e4f98c46bc5d9f123369f4f35224f79de8e
GET /static/player/dplayer/DPlayer.min.js HTTP/1.1
Host: www.yhdmba.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/static/player/dplayer.html
Cookie: PHPSESSID=3ggaovrq45971hlf6oe2f69i03
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Nov 2023 09:40:40 GMT
Content-Type: application/javascript
Last-Modified: Sun, 01 Jan 2023 15:45:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63b1aa8a-27425"
Expires: Sun, 19 Nov 2023 21:40:40 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
197b7df3889fdf254852.d7c63ec9.com.tongjiniao.com/s/cr?_=576372115856408576
200 OK 4.4 kB URL GET HTTP/2 197b7df3889fdf254852.d7c63ec9.com.tongjiniao.com/s/cr?_=576372115856408576
IP
ASN #140227 Hong Kong Communications International Co., Limited
Requested by http://www.yhdmba.org/player/189-0-40.html
Certificate IssuerLet's Encrypt
Subjectceshi1.ink
Fingerprint08:E7:B0:95:FB:25:0E:1B:ED:90:AC:05:0A:E1:F3:27:95:87:B6:76
ValidityThu, 26 Oct 2023 13:36:30 GMT - Wed, 24 Jan 2024 13:36:29 GMT
File type JSON data\012- , ASCII text, with very long lines (16196), with no line terminators
Hash 5d1d30d6cf1f371fff6e10b22b56bffd
21eb61db342b8ff2158c92db79d1dd9599a66727
4b910aad347c7c5c8b2e5d4229bce58ee4354e1528ccb408d3806d445bebafaf
GET /s/cr?_=576372115856408576 HTTP/1.1
Host: 197b7df3889fdf254852.d7c63ec9.com.tongjiniao.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.yhdmba.org
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 19 Nov 2023 09:40:40 GMT
content-type: application/json; charset=utf-8
content-length: 4420
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: DNT,Keep-Alive,User-Agent,Cache-Control,Content-Type,Authorization
content-encoding: br
cache-control: no-cache
X-Firefox-Spdy: h2
www.yhdmba.org/static/player/dplayer/hls.min.js
200 OK 80 kB URL GET HTTP/1.1 www.yhdmba.org/static/player/dplayer/hls.min.js
IP
Requested by http://www.yhdmba.org/static/player/dplayer.html
File type Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Hash 6cfa29933ba9ba506ea73e084de951b9
30004f2da2e1e06f671eb2bfda00f8bcbe69b47b
0d925ef64b764ee2d8e362ebec98668e5fd09887ec0fb70bd82d121097c40d7c
GET /static/player/dplayer/hls.min.js HTTP/1.1
Host: www.yhdmba.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/static/player/dplayer.html
Cookie: PHPSESSID=3ggaovrq45971hlf6oe2f69i03
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Nov 2023 09:40:40 GMT
Content-Type: application/javascript
Last-Modified: Sun, 01 Jan 2023 15:45:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63b1aa8a-3aff0"
Expires: Sun, 19 Nov 2023 21:40:40 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
g2y.beezwol.com/candy14336.js
302 Moved Temporarily 243 B URL GET HTTP/1.1 g2y.beezwol.com/candy14336.js
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
Certificate IssuerLet's Encrypt
Subject*.beezwol.com
Fingerprint88:15:89:E7:7E:2E:F0:F7:5F:07:5F:97:09:D7:15:83:16:DC:F0:4D
ValidityWed, 25 Oct 2023 07:41:41 GMT - Tue, 23 Jan 2024 07:41:40 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with no line terminators
Hash 40ed03aa4d9eec3df0a0064d39bb2c5d
714e3bbaa2a64719c0707c178be304b822ab73be
4d5e5c017bcf78f40d4cf8446ae275a90649b6c0db230653a741a273c78c0989
GET /candy14336.js HTTP/1.1
Host: g2y.beezwol.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Date: Sun, 19 Nov 2023 09:40:41 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 243
Connection: keep-alive
Server: PWS/8.3.1.0.8
Cache-Control: no-cache
Location: https://omdw.plexuni.com/app/mod14336
Via: 1.1 dianxun232:7 (W), 1.1 PSygldLON2ew56:13 (W)
X-Px: ms PSygldLON2ew56LHR,ms dianxun232HKG(origin)
X-Ws-Request-Id: 6559d818_PSygldLON2hl59_8059-22751
www.yhdmba.org/static/player/dplayer/webtorrent.min.js
200 OK 90 kB URL GET HTTP/1.1 www.yhdmba.org/static/player/dplayer/webtorrent.min.js
IP
Requested by http://www.yhdmba.org/static/player/dplayer.html
Hash 5e7e104b545010d20d66fb5dfffbfd36
cc726e58a454fe23128399944094f727b49fb0b3
53ee52566beac51b5b7c2883d735f7d4aff671d73d9d3c45f9ba66d3b0d1dff3
GET /static/player/dplayer/webtorrent.min.js HTTP/1.1
Host: www.yhdmba.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/static/player/dplayer.html
Cookie: PHPSESSID=3ggaovrq45971hlf6oe2f69i03
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Nov 2023 09:40:40 GMT
Content-Type: application/javascript
Last-Modified: Sun, 01 Jan 2023 15:45:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63b1aa8a-40ef7"
Expires: Sun, 19 Nov 2023 21:40:40 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
pc.stgowan.com/pc_w/m_bfixed.js
200 OK 3.7 kB URL GET HTTP/1.1 pc.stgowan.com/pc_w/m_bfixed.js
IP
ASN #4837 CHINA UNICOM China169 Backbone
Requested by http://www.yhdmba.org/player/189-0-40.html
File type Unicode text, UTF-8 text, with very long lines (458), with CRLF line terminators
Hash b5472332b3fdbd6a265f13e7ff3b9280
ee906e5ff44aaf36bbcc8010d99cb8679471dabe
af3b1a571a1135984830e68be377b821eaf31a0b95b6272d80c390c9fcc3f24e
GET /pc_w/m_bfixed.js HTTP/1.1
Host: pc.stgowan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Mon, 13 Nov 2023 06:59:31 GMT
Content-Encoding: gzip
Etag: "6551c953-4398"
Server: nginx/1.16.0
Date: Mon, 13 Nov 2023 07:00:10 GMT
Content-Type: application/javascript
Content-Length: 3697
Accept-Ranges: bytes
X-NWS-LOG-UUID: 10167327641803321994
Connection: keep-alive
X-Cache-Lookup: Cache Hit
pc.stgowan.com/pc_w/m_rich.js
200 OK 11 kB URL GET HTTP/1.1 pc.stgowan.com/pc_w/m_rich.js
IP
ASN #4837 CHINA UNICOM China169 Backbone
Requested by http://www.yhdmba.org/player/189-0-40.html
File type Unicode text, UTF-8 text, with very long lines (1524)
Hash 242750e3b90192c0788f40b3b77a0915
9e8d397ad962162740da29a49e39ccdc74d3469b
896e0a92acbc553df13d4bbea56807da0a59a87103b9b9b4ddbfdd3943419a00
GET /pc_w/m_rich.js HTTP/1.1
Host: pc.stgowan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Mon, 13 Nov 2023 06:59:31 GMT
Content-Encoding: gzip
Etag: "6551c953-a040"
Server: nginx/1.16.0
Date: Mon, 13 Nov 2023 07:00:25 GMT
Content-Type: application/javascript
Content-Length: 11010
Accept-Ranges: bytes
X-NWS-LOG-UUID: 18363873656975724414
Connection: keep-alive
X-Cache-Lookup: Cache Hit
ocsp.sectigochina.com/
600 B IP
Hash d86ca5a088966734dd1a63303ffbd868
7a0f2408230da1c82779e4b1dde3d02bbbfef331
1596c2bb676eeaaf972250abeaf8999a488595edf1bc2a2eb61b097bf57bc8ec
POST / HTTP/1.1
Host: ocsp.sectigochina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 19 Nov 2023 09:40:41 GMT
Content-Type: application/ocsp-response
Content-Length: 600
Connection: keep-alive
Last-Modified: Sat, 18 Nov 2023 00:21:28 GMT
Expires: Sat, 25 Nov 2023 00:21:27 GMT
Etag: "7a0f2408230da1c82779e4b1dde3d02bbbfef331"
Cache-Control: max-age=484861,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 82877e3d98b2569c-OSL
www.yhdmba.org/static/player/dplayer/dash.all.min.js
200 OK 176 kB URL GET HTTP/1.1 www.yhdmba.org/static/player/dplayer/dash.all.min.js
IP
Requested by http://www.yhdmba.org/static/player/dplayer.html
File type ASCII text, with very long lines (30974)
Size 176 kB (176100 bytes)
Hash 36eaa831a1c8d4695f36dfe564c7107e
530f059f6be2c2a8297aca9fcdca3ff6ecfd3ecd
b074dbe302792f75d5b71e82bf47fe46f3eb377a7ec604c8146fc725a2740d6b
GET /static/player/dplayer/dash.all.min.js HTTP/1.1
Host: www.yhdmba.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/static/player/dplayer.html
Cookie: PHPSESSID=3ggaovrq45971hlf6oe2f69i03
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Nov 2023 09:40:40 GMT
Content-Type: application/javascript
Last-Modified: Sun, 01 Jan 2023 15:45:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63b1aa8a-8841b"
Expires: Sun, 19 Nov 2023 21:40:40 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
p.51gowan.com/s.json?s=4551&u=s0005
200 OK 2.0 kB URL GET HTTP/1.1 p.51gowan.com/s.json?s=4551&u=s0005
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
File type JSON data\012- , ASCII text, with very long lines (2033), with no line terminators
Hash fa668775ec7e570a9bda27ab230dc05f
2017d3c0a52748e6f558b88babf7f633a34b21a9
5cd403ac71e26819f500aeae837ccef273650220f2289e90911fd0413556f64d
GET /s.json?s=4551&u=s0005 HTTP/1.1
Host: p.51gowan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://www.yhdmba.org
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.16.0
Date: Sun, 19 Nov 2023 09:40:41 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.3.6
Access-Control-Allow-Origin: *
197b7df3889fdf254852.d7c63ec9.com.tongjiniao.com/s/f?p=584798556505628672
200 OK 848 B URL GET HTTP/2 197b7df3889fdf254852.d7c63ec9.com.tongjiniao.com/s/f?p=584798556505628672
IP
ASN #140227 Hong Kong Communications International Co., Limited
Requested by http://www.yhdmba.org/player/189-0-40.html
Certificate IssuerLet's Encrypt
Subjectceshi1.ink
Fingerprint08:E7:B0:95:FB:25:0E:1B:ED:90:AC:05:0A:E1:F3:27:95:87:B6:76
ValidityThu, 26 Oct 2023 13:36:30 GMT - Wed, 24 Jan 2024 13:36:29 GMT
File type HTML document, ASCII text, with CRLF line terminators
Hash 270ddb88401870413b81f2f2c04a395e
20083a3cb2c4327995f12473976ee8424ea6ebcc
915476367a1ef7297b66cd70e9f0f5cb9600f6ece0ebdd83aab18803da8f0a49
GET /s/f?p=584798556505628672 HTTP/1.1
Host: 197b7df3889fdf254852.d7c63ec9.com.tongjiniao.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 19 Nov 2023 09:40:41 GMT
content-type: text/html
content-length: 848
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: DNT,Keep-Alive,User-Agent,Cache-Control,Content-Type,Authorization
content-encoding: br
cache-control: no-cache
X-Firefox-Spdy: h2
19dg.clcmdie.com:8007/sc/4310?n=ftpplpqm
200 OK 9.5 kB URL GET HTTP/1.1 19dg.clcmdie.com:8007/sc/4310?n=ftpplpqm
IP
ASN #140224 STARCLOUD GLOBAL PTE., LTD.
Requested by http://www.yhdmba.org/player/189-0-40.html
Certificate IssuerCerSign Technology Limited
Subject*.clcmdie.com
Fingerprint06:92:E0:43:33:C2:85:1C:F2:1F:23:FF:29:BC:0E:5E:E9:D2:34:25
ValidityThu, 19 Oct 2023 00:00:00 GMT - Wed, 17 Jan 2024 23:59:59 GMT
File type ASCII text, with very long lines (9460), with CRLF line terminators
Hash 7001b33548c9f7ca6b475389b4101914
e87237393879715e645770e4dba43c0e159d988c
9a2391131bb480f024dac5e4d8e9c2caa047a2656ee5c11dd1ad8f3373d342aa
GET /sc/4310?n=ftpplpqm HTTP/1.1
Host: 19dg.clcmdie.com:8007
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sun, 19 Nov 2023 09:40:41 GMT
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.6.31
P3P: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Access-Control-Allow-Origin: *
Cache-Control: max-age=1800
Pragma: max-age=1800
p.51gowan.com/s.json?s=4285
200 OK 1.5 kB URL GET HTTP/1.1 p.51gowan.com/s.json?s=4285
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
File type JSON data\012- , ASCII text, with very long lines (1486), with no line terminators
Hash bd713f590b9892d06dcded36c28da137
9db26038612c2b46c65263e9b1b212bbea42eca4
72aa6cff114456dc6d78803ef05e77da30d56aab4f871f950d7cd173cacdb78f
GET /s.json?s=4285 HTTP/1.1
Host: p.51gowan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://www.yhdmba.org
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.16.0
Date: Sun, 19 Nov 2023 09:40:41 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.3.6
Access-Control-Allow-Origin: *
p.51gowan.com/s.json?s=4284
200 OK 1.6 kB URL GET HTTP/1.1 p.51gowan.com/s.json?s=4284
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
File type JSON data\012- , ASCII text, with very long lines (1623), with no line terminators
Hash 5ff8e48d6621cd3ddba8cf2b088d865b
9af4d62e321f2062adfd61efbb85414ff2fd03cd
dc02ea086ab173a46ca02cc45c951cf5ee5c8d6a246e1b6d298b1df34c95acd3
GET /s.json?s=4284 HTTP/1.1
Host: p.51gowan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://www.yhdmba.org
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.16.0
Date: Sun, 19 Nov 2023 09:40:41 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.3.6
Access-Control-Allow-Origin: *
bdimg.share.baidu.com/static/api/js/share.js?cdnversion=472328
200 OK 6.2 kB URL GET HTTP/1.1 bdimg.share.baidu.com/static/api/js/share.js?cdnversion=472328
IP
ASN #17816 China Unicom IP network China169 Guangdong province
Requested by http://www.yhdmba.org/player/189-0-40.html
File type ASCII text, with very long lines (17305), with no line terminators
Hash 0ff7f506c2e6e2e2d63d3f298ab927e7
2d87e25588928ca7badfb7c229a07b74a34b2b93
9d8ca3901382fcb7adbb7de97ffaf5d38ac14c7d96c1244076cb8e3ad28ba226
GET /static/api/js/share.js?cdnversion=472328 HTTP/1.1
Host: bdimg.share.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 6218
Content-Type: text/javascript
Date: Sun, 19 Nov 2023 09:40:41 GMT
Etag: "2981715462"
Expires: Sun, 19 Nov 2023 10:10:41 GMT
Last-Modified: Fri, 05 Jun 2015 08:50:07 GMT
Server: BWS/1.0
Vary: Accept-Encoding
hm.baidu.com/hm.js?61adfd3b2ca046e4e548bbee5eb0e3aa
200 OK 11 kB URL GET HTTP/1.1 hm.baidu.com/hm.js?61adfd3b2ca046e4e548bbee5eb0e3aa
IP
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
Requested by http://www.yhdmba.org/player/189-0-40.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type ASCII text, with very long lines (618)
Hash 1c2d798c202ab9c7a1ef9dbcf5268f94
3561937fb3d00f496e4a13e475d55d90c4c37cfa
982debbf5f274c0813d261cc1a4a883ebf1368123526b4280153ee86057a1e18
GET /hm.js?61adfd3b2ca046e4e548bbee5eb0e3aa HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11256
Content-Type: application/javascript
Date: Sun, 19 Nov 2023 09:40:41 GMT
Etag: 1d726c899b589ef520201baed944823a
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=A42B3E1CF512FBE0; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
api.tongjiniao.com/c?_=571280597395025920
3.9 kB URL GET api.tongjiniao.com/c?_=571280597395025920
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
File type ASCII text, with CRLF line terminators
Hash eb89e319e4b7723e2019b4eda239d4ac
0d04c99f3bf9297e094acb0121c5227551a38460
2440edba0499faa9cd86db8b53b95cb7c88a23be1090e13ae0e9c57d7979109e
GET /c?_=571280597395025920 HTTP/1.1
Host: api.tongjiniao.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Nov 2023 09:40:42 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 3858
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: DNT,Keep-Alive,User-Agent,Cache-Control,Content-Type,Authorization
Content-Encoding: gzip
Cache-Control: no-cache,no-store, no-cache
19kg.fptdxkm.com:8008/sc/3422?n=yozynjaz
200 OK 9.6 kB URL GET HTTP/1.1 19kg.fptdxkm.com:8008/sc/3422?n=yozynjaz
IP
ASN #140224 STARCLOUD GLOBAL PTE., LTD.
Requested by http://www.yhdmba.org/player/189-0-40.html
Certificate IssuerCerSign Technology Limited
Subject*.clcmdie.com
Fingerprint06:92:E0:43:33:C2:85:1C:F2:1F:23:FF:29:BC:0E:5E:E9:D2:34:25
ValidityThu, 19 Oct 2023 00:00:00 GMT - Wed, 17 Jan 2024 23:59:59 GMT
File type ASCII text, with very long lines (9529), with CRLF line terminators
Hash 71fabb5c69375ec475cd23899eb27104
181f3c750bc89a30f1135cfb6d84dddf0a0ab276
688522e8a916fb3166ecf61c33d2e40ab515fb21499c9f3b7841f4fcd2be24d3
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /sc/3422?n=yozynjaz HTTP/1.1
Host: 19kg.fptdxkm.com:8008
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sun, 19 Nov 2023 09:40:42 GMT
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.6.31
P3P: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Access-Control-Allow-Origin: *
Cache-Control: max-age=1800
Pragma: max-age=1800
images.suibianmaigeyuming.top/images/knmer/6.dd
200 OK 8.7 kB URL GET HTTP/2 images.suibianmaigeyuming.top/images/knmer/6.dd
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
Certificate IssuerLet's Encrypt
Subjectimages.suibianmaigeyuming.top
FingerprintDB:EB:EF:B8:55:1F:60:F3:3F:8A:FA:3C:74:32:CF:42:D0:FB:49:68
ValidityThu, 14 Sep 2023 11:47:43 GMT - Wed, 13 Dec 2023 11:47:42 GMT
File type GIF image data, version 89a, 120 x 40\012- data
Hash 50e3fdb414a51be07553412e2a28f3fb
9313de495d351447f5ab188286825f37b5b76f8e
f0b1d6a0202d6ebfe9c9673b053ab9e19d49d80a2f8fa5ea4be779342ad0c526
GET /images/knmer/6.dd HTTP/1.1
Host: images.suibianmaigeyuming.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 19 Nov 2023 09:40:42 GMT
content-type: application/octet-stream
content-length: 8741
last-modified: Wed, 12 Jul 2023 15:46:30 GMT
etag: "64aecad6-2225"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
images.suibianmaigeyuming.top/images/knmer/7.dd
200 OK 8.9 kB URL GET HTTP/2 images.suibianmaigeyuming.top/images/knmer/7.dd
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
Certificate IssuerLet's Encrypt
Subjectimages.suibianmaigeyuming.top
FingerprintDB:EB:EF:B8:55:1F:60:F3:3F:8A:FA:3C:74:32:CF:42:D0:FB:49:68
ValidityThu, 14 Sep 2023 11:47:43 GMT - Wed, 13 Dec 2023 11:47:42 GMT
File type GIF image data, version 89a, 120 x 40\012- data
Hash 39bf59e93c614eb7d587f5dc754f9e4d
33341bce38d8bf15cdf7f54026c90efe7626797b
845d1c9090493fc39c843b0a1ac7e403c8ea71c8e3f0d5cda7460f98d5818e00
GET /images/knmer/7.dd HTTP/1.1
Host: images.suibianmaigeyuming.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 19 Nov 2023 09:40:42 GMT
content-type: application/octet-stream
content-length: 8857
last-modified: Wed, 12 Jul 2023 15:46:34 GMT
etag: "64aecada-2299"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
images.suibianmaigeyuming.top/images/knmer/8.dd
200 OK 9.3 kB URL GET HTTP/2 images.suibianmaigeyuming.top/images/knmer/8.dd
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
Certificate IssuerLet's Encrypt
Subjectimages.suibianmaigeyuming.top
FingerprintDB:EB:EF:B8:55:1F:60:F3:3F:8A:FA:3C:74:32:CF:42:D0:FB:49:68
ValidityThu, 14 Sep 2023 11:47:43 GMT - Wed, 13 Dec 2023 11:47:42 GMT
File type GIF image data, version 89a, 120 x 40\012- data
Hash aae1c15e816acb2a3a86baf8baa31205
1259cb82b81bd9dbc88d2a24f98d3fe7dcaa4ad7
3b40de7f9783ff4ba9021b45a9f6e70ed51182416bbe4d3df58a1c0a376f7028
GET /images/knmer/8.dd HTTP/1.1
Host: images.suibianmaigeyuming.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 19 Nov 2023 09:40:42 GMT
content-type: application/octet-stream
content-length: 9259
last-modified: Wed, 12 Jul 2023 15:46:38 GMT
etag: "64aecade-242b"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
images.suibianmaigeyuming.top/images/knmer/9.dd
200 OK 9.3 kB URL GET HTTP/2 images.suibianmaigeyuming.top/images/knmer/9.dd
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
Certificate IssuerLet's Encrypt
Subjectimages.suibianmaigeyuming.top
FingerprintDB:EB:EF:B8:55:1F:60:F3:3F:8A:FA:3C:74:32:CF:42:D0:FB:49:68
ValidityThu, 14 Sep 2023 11:47:43 GMT - Wed, 13 Dec 2023 11:47:42 GMT
File type GIF image data, version 89a, 120 x 40\012- data
Hash 1fff3a5e271d7c5cb7e140926a140e82
4bf4c0769060d15412c39eb9db175b54ce69336c
ac619342b8f0cab1ab1f27db035158134136421a6c79d22cbd724c5c35d9fd04
GET /images/knmer/9.dd HTTP/1.1
Host: images.suibianmaigeyuming.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 19 Nov 2023 09:40:42 GMT
content-type: application/octet-stream
content-length: 9277
last-modified: Wed, 12 Jul 2023 15:46:36 GMT
etag: "64aecadc-243d"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.yhdmba.org/index.php/user/ajax_ulog/?ac=set&mid=1&id=189&sid=1&nid=41&type=4
200 OK 85 B URL GET HTTP/1.1 www.yhdmba.org/index.php/user/ajax_ulog/?ac=set&mid=1&id=189&sid=1&nid=41&type=4
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
File type JSON data\012- , Unicode text, UTF-8 text, with no line terminators
Hash e94b985b38952107e6a317c1090b9558
d472fb1913bf889c8fa43518be89189557bf8371
36db3ed626f3f449e9b3aa7f8713194a7a1d0929fb09b7a9f31288e03a3c8b23
GET /index.php/user/ajax_ulog/?ac=set&mid=1&id=189&sid=1&nid=41&type=4 HTTP/1.1
Host: www.yhdmba.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/player/189-0-40.html
Cookie: PHPSESSID=3ggaovrq45971hlf6oe2f69i03; history=%5B%7B%22name%22%3A%22%E6%B5%B7%E8%B4%BC%E7%8E%8B%22%2C%22pic%22%3A%22%2Fupload%2Fvod%2F20230117-1%2F3fc50a4d30ade24de88aa2f2b83e35e1.jpg%22%2C%22link%22%3A%22%2Fplayer%2F189-0-40.html%22%2C%22part%22%3A%22%E7%AC%AC041%E9%9B%86%22%7D%5D
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Nov 2023 09:40:42 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: user_id=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
user_name=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
group_id=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
group_name=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
user_check=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
user_portrait=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
bdimg.share.baidu.com/static/api/js/view/share_view.js?v=3ae6026d.js
200 OK 751 B URL GET HTTP/1.1 bdimg.share.baidu.com/static/api/js/view/share_view.js?v=3ae6026d.js
IP
ASN #38365 Beijing Baidu Netcom Science and Technology Co., Ltd.
Requested by http://www.yhdmba.org/player/189-0-40.html
File type ASCII text, with very long lines (1410), with no line terminators
Hash f41f7713e6684dcbcd8304843ae6026d
f445ce9cbbcf887da5e248b1cfadc03ab7df76d0
cb18f69444d3a92b6b20f449762848b1767816905eaad1cbb82e873cd6848b99
GET /static/api/js/view/share_view.js?v=3ae6026d.js HTTP/1.1
Host: bdimg.share.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 751
Content-Type: text/javascript
Date: Sun, 19 Nov 2023 09:40:42 GMT
Etag: "2738411398"
Expires: Sun, 19 Nov 2023 10:10:42 GMT
Last-Modified: Fri, 05 Jun 2015 08:50:09 GMT
Server: BWS/1.0
Vary: Accept-Encoding
www.yhdmba.org/index.php/ajax/hits?mid=1&id=189&type=update
200 OK 97 B URL GET HTTP/1.1 www.yhdmba.org/index.php/ajax/hits?mid=1&id=189&type=update
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
File type JSON data\012- , ASCII text, with no line terminators
Hash 4f98b877a074ffbae6c2f83d8a9c23d9
7d78378c111bc192a29c77722dbf26b7003b5105
1e4174f6c24c3a08369d82a759382769649705f261952ba1bdb8cc0657dafcbc
GET /index.php/ajax/hits?mid=1&id=189&type=update HTTP/1.1
Host: www.yhdmba.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/player/189-0-40.html
Cookie: PHPSESSID=3ggaovrq45971hlf6oe2f69i03; history=%5B%7B%22name%22%3A%22%E6%B5%B7%E8%B4%BC%E7%8E%8B%22%2C%22pic%22%3A%22%2Fupload%2Fvod%2F20230117-1%2F3fc50a4d30ade24de88aa2f2b83e35e1.jpg%22%2C%22link%22%3A%22%2Fplayer%2F189-0-40.html%22%2C%22part%22%3A%22%E7%AC%AC041%E9%9B%86%22%7D%5D
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Nov 2023 09:40:42 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
images.suibianmaigeyuming.top/images/knmer/10.dd
200 OK 10 kB URL GET HTTP/2 images.suibianmaigeyuming.top/images/knmer/10.dd
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
Certificate IssuerLet's Encrypt
Subjectimages.suibianmaigeyuming.top
FingerprintDB:EB:EF:B8:55:1F:60:F3:3F:8A:FA:3C:74:32:CF:42:D0:FB:49:68
ValidityThu, 14 Sep 2023 11:47:43 GMT - Wed, 13 Dec 2023 11:47:42 GMT
File type GIF image data, version 89a, 120 x 40\012- data
Hash 9b60e045cb0c8579dfd2231bff608242
771b8a92a55c42423d30f58b8c3a8b872fb55d6c
cc5cbfe82d33078f880a60b1e9fc4de08312d24f6204a4cca26ca062ee73d31e
GET /images/knmer/10.dd HTTP/1.1
Host: images.suibianmaigeyuming.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 19 Nov 2023 09:40:42 GMT
content-type: application/octet-stream
content-length: 10344
last-modified: Wed, 12 Jul 2023 15:46:42 GMT
etag: "64aecae2-2868"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
images.suibianmaigeyuming.top/images/knmer/11.dd
200 OK 9.6 kB URL GET HTTP/2 images.suibianmaigeyuming.top/images/knmer/11.dd
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
Certificate IssuerLet's Encrypt
Subjectimages.suibianmaigeyuming.top
FingerprintDB:EB:EF:B8:55:1F:60:F3:3F:8A:FA:3C:74:32:CF:42:D0:FB:49:68
ValidityThu, 14 Sep 2023 11:47:43 GMT - Wed, 13 Dec 2023 11:47:42 GMT
File type GIF image data, version 89a, 120 x 40\012- data
Hash b6603fa126199d7ca587f5d4c5b5dc70
3d7c32141da7b450c8f3dcec7e34b610f36947e9
22ac887cbec64a315f4ee3ece933a84af7440997ceec59d61b72b3e61df05f2d
GET /images/knmer/11.dd HTTP/1.1
Host: images.suibianmaigeyuming.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 19 Nov 2023 09:40:42 GMT
content-type: application/octet-stream
content-length: 9616
last-modified: Wed, 12 Jul 2023 15:50:16 GMT
etag: "64aecbb8-2590"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
bdimg.share.baidu.com/static/api/js/share/share_api.js?v=226108fe.js
200 OK 374 B URL GET HTTP/1.1 bdimg.share.baidu.com/static/api/js/share/share_api.js?v=226108fe.js
IP
ASN #17816 China Unicom IP network China169 Guangdong province
Requested by http://www.yhdmba.org/player/189-0-40.html
File type ASCII text, with very long lines (636), with no line terminators
Hash aeed62b9ab154e66264b41be226108fe
f7b86d0cc063f692a73a174d04e77cbe3c5facc7
077a78aab60584687c7f7ded046ec798e3ac4cf077ef47f9d0c23075f6d5ab47
GET /static/api/js/share/share_api.js?v=226108fe.js HTTP/1.1
Host: bdimg.share.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 374
Content-Type: text/javascript
Date: Sun, 19 Nov 2023 09:40:42 GMT
Etag: "2151209923"
Expires: Sun, 19 Nov 2023 10:10:42 GMT
Last-Modified: Fri, 05 Jun 2015 08:50:08 GMT
Server: BWS/1.0
Vary: Accept-Encoding
images.suibianmaigeyuming.top/images/knmer/12.dd
200 OK 6.4 kB URL GET HTTP/2 images.suibianmaigeyuming.top/images/knmer/12.dd
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
Certificate IssuerLet's Encrypt
Subjectimages.suibianmaigeyuming.top
FingerprintDB:EB:EF:B8:55:1F:60:F3:3F:8A:FA:3C:74:32:CF:42:D0:FB:49:68
ValidityThu, 14 Sep 2023 11:47:43 GMT - Wed, 13 Dec 2023 11:47:42 GMT
File type GIF image data, version 89a, 120 x 40\012- data
Hash 5ba79459f3803728b3e5623c0b318350
45a1a7a769e1602bc5218bd57994cf3eecfbbe16
5c81fc083ddc367fded7530910a7f64a22310df2ad5437ba4b8a6d8952171bc9
GET /images/knmer/12.dd HTTP/1.1
Host: images.suibianmaigeyuming.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 19 Nov 2023 09:40:42 GMT
content-type: application/octet-stream
content-length: 6420
last-modified: Wed, 12 Jul 2023 15:50:32 GMT
etag: "64aecbc8-1914"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
images.suibianmaigeyuming.top/images/knmer/13.dd
200 OK 6.2 kB URL GET HTTP/2 images.suibianmaigeyuming.top/images/knmer/13.dd
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
Certificate IssuerLet's Encrypt
Subjectimages.suibianmaigeyuming.top
FingerprintDB:EB:EF:B8:55:1F:60:F3:3F:8A:FA:3C:74:32:CF:42:D0:FB:49:68
ValidityThu, 14 Sep 2023 11:47:43 GMT - Wed, 13 Dec 2023 11:47:42 GMT
File type GIF image data, version 89a, 120 x 40\012- data
Hash 436f3540d29786b82cfa59753f7b2a97
ff78a4bd9bd67f01dbb050381f021f09b4c96615
51f523c717bff0cec66e181e414ade6e06d8c09f79d93dd083d74635b74ff5a3
GET /images/knmer/13.dd HTTP/1.1
Host: images.suibianmaigeyuming.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 19 Nov 2023 09:40:42 GMT
content-type: application/octet-stream
content-length: 6200
last-modified: Wed, 12 Jul 2023 15:51:00 GMT
etag: "64aecbe4-1838"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
images.suibianmaigeyuming.top/images/knmer/14.dd
200 OK 5.8 kB URL GET HTTP/2 images.suibianmaigeyuming.top/images/knmer/14.dd
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
Certificate IssuerLet's Encrypt
Subjectimages.suibianmaigeyuming.top
FingerprintDB:EB:EF:B8:55:1F:60:F3:3F:8A:FA:3C:74:32:CF:42:D0:FB:49:68
ValidityThu, 14 Sep 2023 11:47:43 GMT - Wed, 13 Dec 2023 11:47:42 GMT
File type GIF image data, version 89a, 120 x 40\012- data
Hash 60460a8cd2ca0698d9d6ce23a4b96048
c63941c964f36ef6427d2a2505ce072d3e3a62fa
b5159f5e235dac3e635086693f819ba8555f8b52ff28dddf25ea564dc0d20d83
GET /images/knmer/14.dd HTTP/1.1
Host: images.suibianmaigeyuming.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 19 Nov 2023 09:40:42 GMT
content-type: application/octet-stream
content-length: 5793
last-modified: Wed, 12 Jul 2023 15:51:56 GMT
etag: "64aecc1c-16a1"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
images.suibianmaigeyuming.top/images/knmer/15.dd
200 OK 9.1 kB URL GET HTTP/2 images.suibianmaigeyuming.top/images/knmer/15.dd
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
Certificate IssuerLet's Encrypt
Subjectimages.suibianmaigeyuming.top
FingerprintDB:EB:EF:B8:55:1F:60:F3:3F:8A:FA:3C:74:32:CF:42:D0:FB:49:68
ValidityThu, 14 Sep 2023 11:47:43 GMT - Wed, 13 Dec 2023 11:47:42 GMT
File type GIF image data, version 89a, 120 x 40\012- data
Hash b83ef435980aeed76f4ef7690aa8d3fc
f6f5ec5a59c4d8fc80e3e4d3e1648a23cbb94b13
6af07bc450689df1369b022ba7a3108223f9b02749228dd6a96adb4c88695090
GET /images/knmer/15.dd HTTP/1.1
Host: images.suibianmaigeyuming.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 19 Nov 2023 09:40:42 GMT
content-type: application/octet-stream
content-length: 9073
last-modified: Wed, 12 Jul 2023 15:52:10 GMT
etag: "64aecc2a-2371"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
images.suibianmaigeyuming.top/images/knmer/16.dd
200 OK 9.7 kB URL GET HTTP/2 images.suibianmaigeyuming.top/images/knmer/16.dd
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
Certificate IssuerLet's Encrypt
Subjectimages.suibianmaigeyuming.top
FingerprintDB:EB:EF:B8:55:1F:60:F3:3F:8A:FA:3C:74:32:CF:42:D0:FB:49:68
ValidityThu, 14 Sep 2023 11:47:43 GMT - Wed, 13 Dec 2023 11:47:42 GMT
File type GIF image data, version 89a, 120 x 40\012- data
Hash 65b3813ecadcab15cf33e4dc6927d303
839f655dad22f89a9b1d80cd4b1edd37384a3112
bbafd44dccb6f1bae8815a446ade19a3baa285e0bd11c3092c4a28b7ce23d92c
GET /images/knmer/16.dd HTTP/1.1
Host: images.suibianmaigeyuming.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 19 Nov 2023 09:40:42 GMT
content-type: application/octet-stream
content-length: 9689
last-modified: Wed, 12 Jul 2023 15:53:12 GMT
etag: "64aecc68-25d9"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1723577706&si=61adfd3b2ca046e4e548bbee5eb0e3aa&v=1.3.0&lv=1&sn=15734&r=0&ww=1280&u=http%3A%2F%2Fwww.yhdmba.org%2Fplayer%2F189-0-40.html&tt=%E6%B5%B7%E8%B4%BC%E7%8E%8B%E7%AC%AC041%E9%9B%86%E6%89%8B%E6%9C%BA%E7%89%88%EF%BC%8D%E5%9C%A8%E7%BA%BF%E8%A7%82%E7%9C%8B%EF%BC%8D%E6%A8%B1%E8%8A%B1%E5%8A%A8%E6%BC%AB%E6%89%8B%E6%9C%BA%E7%89%88-%E4%B8%93%E6%B3%A8%E5%8A%A8%E6%BC%AB%E7%9A%84%E9%97%A8%E6%88%B7%E7%BD%91%E7%AB%99
200 OK 43 B URL GET HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1723577706&si=61adfd3b2ca046e4e548bbee5eb0e3aa&v=1.3.0&lv=1&sn=15734&r=0&ww=1280&u=http%3A%2F%2Fwww.yhdmba.org%2Fplayer%2F189-0-40.html&tt=%E6%B5%B7%E8%B4%BC%E7%8E%8B%E7%AC%AC041%E9%9B%86%E6%89%8B%E6%9C%BA%E7%89%88%EF%BC%8D%E5%9C%A8%E7%BA%BF%E8%A7%82%E7%9C%8B%EF%BC%8D%E6%A8%B1%E8%8A%B1%E5%8A%A8%E6%BC%AB%E6%89%8B%E6%9C%BA%E7%89%88-%E4%B8%93%E6%B3%A8%E5%8A%A8%E6%BC%AB%E7%9A%84%E9%97%A8%E6%88%B7%E7%BD%91%E7%AB%99
IP
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
Requested by http://www.yhdmba.org/player/189-0-40.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1723577706&si=61adfd3b2ca046e4e548bbee5eb0e3aa&v=1.3.0&lv=1&sn=15734&r=0&ww=1280&u=http%3A%2F%2Fwww.yhdmba.org%2Fplayer%2F189-0-40.html&tt=%E6%B5%B7%E8%B4%BC%E7%8E%8B%E7%AC%AC041%E9%9B%86%E6%89%8B%E6%9C%BA%E7%89%88%EF%BC%8D%E5%9C%A8%E7%BA%BF%E8%A7%82%E7%9C%8B%EF%BC%8D%E6%A8%B1%E8%8A%B1%E5%8A%A8%E6%BC%AB%E6%89%8B%E6%9C%BA%E7%89%88-%E4%B8%93%E6%B3%A8%E5%8A%A8%E6%BC%AB%E7%9A%84%E9%97%A8%E6%88%B7%E7%BD%91%E7%AB%99 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sun, 19 Nov 2023 09:40:42 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=B92DBE66B99794BC; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
images.suibianmaigeyuming.top/images/knmer/17.dd
200 OK 10 kB URL GET HTTP/2 images.suibianmaigeyuming.top/images/knmer/17.dd
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
Certificate IssuerLet's Encrypt
Subjectimages.suibianmaigeyuming.top
FingerprintDB:EB:EF:B8:55:1F:60:F3:3F:8A:FA:3C:74:32:CF:42:D0:FB:49:68
ValidityThu, 14 Sep 2023 11:47:43 GMT - Wed, 13 Dec 2023 11:47:42 GMT
File type GIF image data, version 89a, 120 x 40\012- data
Hash eecd71948655571c72aa08d5b1b35ab3
3914da9254b6838c23ed4247cb4bdb677adfbc9f
8643f6d9474b45b370bb74607f8ab31e40b64c926e903eec6dcd94e9c77e06e0
GET /images/knmer/17.dd HTTP/1.1
Host: images.suibianmaigeyuming.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 19 Nov 2023 09:40:42 GMT
content-type: application/octet-stream
content-length: 10537
last-modified: Wed, 12 Jul 2023 15:53:28 GMT
etag: "64aecc78-2929"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
images.suibianmaigeyuming.top/images/knmer/18.dd
200 OK 9.8 kB URL GET HTTP/2 images.suibianmaigeyuming.top/images/knmer/18.dd
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
Certificate IssuerLet's Encrypt
Subjectimages.suibianmaigeyuming.top
FingerprintDB:EB:EF:B8:55:1F:60:F3:3F:8A:FA:3C:74:32:CF:42:D0:FB:49:68
ValidityThu, 14 Sep 2023 11:47:43 GMT - Wed, 13 Dec 2023 11:47:42 GMT
File type GIF image data, version 89a, 120 x 40\012- data
Hash bb22d76b5751f8b4a7ee0fbe3d90ff7d
46626a26437a93bca5ca9539c82ebeb07a2841ad
47eb0525c693c7f803fb340a9795db8e9a4779998c1773f9385147a3dc14ca47
GET /images/knmer/18.dd HTTP/1.1
Host: images.suibianmaigeyuming.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 19 Nov 2023 09:40:42 GMT
content-type: application/octet-stream
content-length: 9834
last-modified: Wed, 12 Jul 2023 15:53:44 GMT
etag: "64aecc88-266a"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
images.suibianmaigeyuming.top/images/knmer/19.dd
200 OK 9.7 kB URL GET HTTP/2 images.suibianmaigeyuming.top/images/knmer/19.dd
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
Certificate IssuerLet's Encrypt
Subjectimages.suibianmaigeyuming.top
FingerprintDB:EB:EF:B8:55:1F:60:F3:3F:8A:FA:3C:74:32:CF:42:D0:FB:49:68
ValidityThu, 14 Sep 2023 11:47:43 GMT - Wed, 13 Dec 2023 11:47:42 GMT
File type GIF image data, version 89a, 120 x 40\012- data
Hash de85db469d0231969b759e65c4849013
f2c6eefd1f0e0ca0970c5ce7f19cbc409f52c23b
5e95a67bc9175fceea23fa0bbfabf49a2413954aa4e86af464191ce470fee359
GET /images/knmer/19.dd HTTP/1.1
Host: images.suibianmaigeyuming.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 19 Nov 2023 09:40:42 GMT
content-type: application/octet-stream
content-length: 9671
last-modified: Wed, 12 Jul 2023 15:53:58 GMT
etag: "64aecc96-25c7"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
images.suibianmaigeyuming.top/images/knmer/20.dd
200 OK 9.4 kB URL GET HTTP/2 images.suibianmaigeyuming.top/images/knmer/20.dd
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
Certificate IssuerLet's Encrypt
Subjectimages.suibianmaigeyuming.top
FingerprintDB:EB:EF:B8:55:1F:60:F3:3F:8A:FA:3C:74:32:CF:42:D0:FB:49:68
ValidityThu, 14 Sep 2023 11:47:43 GMT - Wed, 13 Dec 2023 11:47:42 GMT
File type GIF image data, version 89a, 120 x 40\012- data
Hash 53389ae22f81906892a3bf4a3d63b65c
10b6ff105801126495e83e84b77f56f7df117898
92016efe7a2ec9afe51756c5229233b10c059b01482dd2e2fbd7cbe23c7e74ce
GET /images/knmer/20.dd HTTP/1.1
Host: images.suibianmaigeyuming.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 19 Nov 2023 09:40:42 GMT
content-type: application/octet-stream
content-length: 9399
last-modified: Wed, 12 Jul 2023 15:54:10 GMT
etag: "64aecca2-24b7"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
images.suibianmaigeyuming.top/images/knmer/21.dd
200 OK 8.8 kB URL GET HTTP/2 images.suibianmaigeyuming.top/images/knmer/21.dd
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
Certificate IssuerLet's Encrypt
Subjectimages.suibianmaigeyuming.top
FingerprintDB:EB:EF:B8:55:1F:60:F3:3F:8A:FA:3C:74:32:CF:42:D0:FB:49:68
ValidityThu, 14 Sep 2023 11:47:43 GMT - Wed, 13 Dec 2023 11:47:42 GMT
File type GIF image data, version 89a, 120 x 40\012- data
Hash b9472cd12fadc894dd861579f17dee57
af0c807a27d3cf52fd6d69990335c965957df597
68623744bdfe1e96bfe2df86dd5828d52118cc0bfd612d1b6bd2b3a036c0a43d
GET /images/knmer/21.dd HTTP/1.1
Host: images.suibianmaigeyuming.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 19 Nov 2023 09:40:42 GMT
content-type: application/octet-stream
content-length: 8837
last-modified: Wed, 12 Jul 2023 15:55:22 GMT
etag: "64aeccea-2285"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
images.suibianmaigeyuming.top/images/knmer/22.dd
200 OK 8.8 kB URL GET HTTP/2 images.suibianmaigeyuming.top/images/knmer/22.dd
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
Certificate IssuerLet's Encrypt
Subjectimages.suibianmaigeyuming.top
FingerprintDB:EB:EF:B8:55:1F:60:F3:3F:8A:FA:3C:74:32:CF:42:D0:FB:49:68
ValidityThu, 14 Sep 2023 11:47:43 GMT - Wed, 13 Dec 2023 11:47:42 GMT
File type GIF image data, version 89a, 120 x 40\012- data
Hash 312b58b25552b79bd8b2e7a25c188793
1733bc2f0d3e10a0d1d4abc14be49c11fcd9a674
39b77ed159540d152e33c9c1d899c2161726fddaa1a29d0b373fa563362cc3b7
GET /images/knmer/22.dd HTTP/1.1
Host: images.suibianmaigeyuming.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 19 Nov 2023 09:40:42 GMT
content-type: application/octet-stream
content-length: 8772
last-modified: Wed, 12 Jul 2023 15:55:34 GMT
etag: "64aeccf6-2244"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
images.suibianmaigeyuming.top/images/knmer/23.dd
200 OK 9.7 kB URL GET HTTP/2 images.suibianmaigeyuming.top/images/knmer/23.dd
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
Certificate IssuerLet's Encrypt
Subjectimages.suibianmaigeyuming.top
FingerprintDB:EB:EF:B8:55:1F:60:F3:3F:8A:FA:3C:74:32:CF:42:D0:FB:49:68
ValidityThu, 14 Sep 2023 11:47:43 GMT - Wed, 13 Dec 2023 11:47:42 GMT
File type GIF image data, version 89a, 120 x 40\012- data
Hash b51ca42c2a472c0931a4d137b6f5afb3
4d2694a4e674365553d7c79f0e1c1a15a6108032
412526bdb844f031709be82018e7937501527a72c361b982222d37bf9c2950cd
GET /images/knmer/23.dd HTTP/1.1
Host: images.suibianmaigeyuming.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 19 Nov 2023 09:40:42 GMT
content-type: application/octet-stream
content-length: 9671
last-modified: Wed, 12 Jul 2023 15:55:46 GMT
etag: "64aecd02-25c7"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
images.suibianmaigeyuming.top/images/knmer/24.dd
200 OK 9.1 kB URL GET HTTP/2 images.suibianmaigeyuming.top/images/knmer/24.dd
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
Certificate IssuerLet's Encrypt
Subjectimages.suibianmaigeyuming.top
FingerprintDB:EB:EF:B8:55:1F:60:F3:3F:8A:FA:3C:74:32:CF:42:D0:FB:49:68
ValidityThu, 14 Sep 2023 11:47:43 GMT - Wed, 13 Dec 2023 11:47:42 GMT
File type GIF image data, version 89a, 120 x 40\012- data
Hash 85714eb1d1000022ae7c6ff2934cb202
f5c816f6075374e9734fc404332c0e9a67fb3d64
1e898566f549eaac92f589b2aa3c256adc68ed425f310255eebbf1bdcfe52e01
GET /images/knmer/24.dd HTTP/1.1
Host: images.suibianmaigeyuming.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 19 Nov 2023 09:40:42 GMT
content-type: application/octet-stream
content-length: 9141
last-modified: Wed, 12 Jul 2023 15:55:56 GMT
etag: "64aecd0c-23b5"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
omdw.plexuni.com/app/mod14336
200 OK 11 B URL GET HTTP/1.1 omdw.plexuni.com/app/mod14336
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
Certificate IssuerLet's Encrypt
Subject*.plexuni.com
FingerprintE9:47:CB:CF:80:BA:AE:D5:8E:DD:60:FB:94:3A:A2:E9:46:C3:A6:E5
ValidityWed, 25 Oct 2023 06:41:39 GMT - Tue, 23 Jan 2024 06:41:38 GMT
File type ASCII text, with no line terminators
Hash 1d1b37d8dfb60628faa0bc386f80f22a
30183b20e372e8ec928aab894f9c9b596baecbf1
a00b48fcf3070e9ac5d46f02d44c1beb8081cc189091b1c17528591138f6675e
GET /app/mod14336 HTTP/1.1
Host: omdw.plexuni.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.yhdmba.org/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 19 Nov 2023 09:40:42 GMT
Content-Length: 11
Connection: keep-alive
Server: PWS/8.3.1.0.8
Cache-Control: no-cache
Via: 1.1 anxun21:1 (W), 1.1 PSygldLON2hl59:20 (W)
X-Px: ms PSygldLON2hl59LHR,ms anxun21HKG(origin)
X-Ws-Request-Id: 6559d81a_PSygldLON2hl59_7153-44662
images.suibianmaigeyuming.top/images/knmer/25.dd
200 OK 9.2 kB URL GET HTTP/2 images.suibianmaigeyuming.top/images/knmer/25.dd
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
Certificate IssuerLet's Encrypt
Subjectimages.suibianmaigeyuming.top
FingerprintDB:EB:EF:B8:55:1F:60:F3:3F:8A:FA:3C:74:32:CF:42:D0:FB:49:68
ValidityThu, 14 Sep 2023 11:47:43 GMT - Wed, 13 Dec 2023 11:47:42 GMT
File type GIF image data, version 89a, 120 x 40\012- data
Hash 8c5b7e4436278b6d1c4d8f8e4b61052d
57460eb585211d4223f5e3d4cac56529452e1bbc
20cdaeee6dd8072dc330318d3316a638cfcb97fd2f73edc95df305b2b4e6bfcc
GET /images/knmer/25.dd HTTP/1.1
Host: images.suibianmaigeyuming.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 19 Nov 2023 09:40:42 GMT
content-type: application/octet-stream
content-length: 9219
last-modified: Wed, 12 Jul 2023 15:56:06 GMT
etag: "64aecd16-2403"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
images.suibianmaigeyuming.top/images/knmer/5.dd
200 OK 8.0 kB URL GET HTTP/2 images.suibianmaigeyuming.top/images/knmer/5.dd
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
Certificate IssuerLet's Encrypt
Subjectimages.suibianmaigeyuming.top
FingerprintDB:EB:EF:B8:55:1F:60:F3:3F:8A:FA:3C:74:32:CF:42:D0:FB:49:68
ValidityThu, 14 Sep 2023 11:47:43 GMT - Wed, 13 Dec 2023 11:47:42 GMT
File type GIF image data, version 89a, 120 x 40\012- data
Hash be9cf54e248db2fe63a45faac289475b
4fe7efb9ad0e2b5f2468b248757ee12371f3b512
b47b12bbe22a6e064e6a896c9cad495eb718b60882706c55efa39313d9492789
GET /images/knmer/5.dd HTTP/1.1
Host: images.suibianmaigeyuming.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 19 Nov 2023 09:40:42 GMT
content-type: application/octet-stream
content-length: 8012
last-modified: Wed, 12 Jul 2023 13:55:56 GMT
etag: "64aeb0ec-1f4c"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
images.suibianmaigeyuming.top/images/knmer/3.dd
200 OK 7.7 kB URL GET HTTP/2 images.suibianmaigeyuming.top/images/knmer/3.dd
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
Certificate IssuerLet's Encrypt
Subjectimages.suibianmaigeyuming.top
FingerprintDB:EB:EF:B8:55:1F:60:F3:3F:8A:FA:3C:74:32:CF:42:D0:FB:49:68
ValidityThu, 14 Sep 2023 11:47:43 GMT - Wed, 13 Dec 2023 11:47:42 GMT
File type GIF image data, version 89a, 120 x 40\012- data
Hash 43483a548731b92647a3547334779156
0746595dc2d031c038dbc4df460da6757b832e88
7477ee55cc9b019a5829d9a46919350c7d7be69debf60f699313048f8050ad1b
GET /images/knmer/3.dd HTTP/1.1
Host: images.suibianmaigeyuming.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 19 Nov 2023 09:40:42 GMT
content-type: application/octet-stream
content-length: 7708
last-modified: Wed, 12 Jul 2023 13:55:44 GMT
etag: "64aeb0e0-1e1c"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
images.suibianmaigeyuming.top/images/knmer/4.dd
200 OK 4.1 kB URL GET HTTP/2 images.suibianmaigeyuming.top/images/knmer/4.dd
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
Certificate IssuerLet's Encrypt
Subjectimages.suibianmaigeyuming.top
FingerprintDB:EB:EF:B8:55:1F:60:F3:3F:8A:FA:3C:74:32:CF:42:D0:FB:49:68
ValidityThu, 14 Sep 2023 11:47:43 GMT - Wed, 13 Dec 2023 11:47:42 GMT
File type GIF image data, version 89a, 120 x 40\012- data
Hash 48dbdb5bfda551331f52b76443b35007
f9f10ffc3e428af1c0db909ca44fa04ad172fbde
9ff61d1a47a89ea5d995ba17cd5e6735e4db11a4fde8cbc5d1fa566c504cf1fc
GET /images/knmer/4.dd HTTP/1.1
Host: images.suibianmaigeyuming.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 19 Nov 2023 09:40:42 GMT
content-type: application/octet-stream
content-length: 4055
last-modified: Wed, 12 Jul 2023 13:55:52 GMT
etag: "64aeb0e8-fd7"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
images.suibianmaigeyuming.top/images/knmer/2.dd
200 OK 6.6 kB URL GET HTTP/2 images.suibianmaigeyuming.top/images/knmer/2.dd
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
Certificate IssuerLet's Encrypt
Subjectimages.suibianmaigeyuming.top
FingerprintDB:EB:EF:B8:55:1F:60:F3:3F:8A:FA:3C:74:32:CF:42:D0:FB:49:68
ValidityThu, 14 Sep 2023 11:47:43 GMT - Wed, 13 Dec 2023 11:47:42 GMT
File type GIF image data, version 89a, 120 x 40\012- data
Hash b85c07d3a1fc60de84e59f91035834a6
090ef2be528d7bd017dc7efdfb751e28703a6cca
84460ce364879c20b9563a5b266641d4bc5e4b7795816a1493f0a9e16ccd6081
GET /images/knmer/2.dd HTTP/1.1
Host: images.suibianmaigeyuming.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 19 Nov 2023 09:40:42 GMT
content-type: application/octet-stream
content-length: 6629
last-modified: Wed, 12 Jul 2023 13:55:34 GMT
etag: "64aeb0d6-19e5"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
images.suibianmaigeyuming.top/images/knmer/1.dd
200 OK 6.7 kB URL GET HTTP/2 images.suibianmaigeyuming.top/images/knmer/1.dd
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
Certificate IssuerLet's Encrypt
Subjectimages.suibianmaigeyuming.top
FingerprintDB:EB:EF:B8:55:1F:60:F3:3F:8A:FA:3C:74:32:CF:42:D0:FB:49:68
ValidityThu, 14 Sep 2023 11:47:43 GMT - Wed, 13 Dec 2023 11:47:42 GMT
File type GIF image data, version 89a, 120 x 40\012- data
Hash 2a096224b457a0f6f4a68b498be55eaf
b1d8d1f24ce915209362e9e10b987304438386cc
03bd96209851803810c431a9789d01dbd20a1905357aa42f7b4b17c353346f77
GET /images/knmer/1.dd HTTP/1.1
Host: images.suibianmaigeyuming.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 19 Nov 2023 09:40:42 GMT
content-type: application/octet-stream
content-length: 6699
last-modified: Wed, 12 Jul 2023 13:55:20 GMT
etag: "64aeb0c8-1a2b"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
bdimg.share.baidu.com/static/api/js/view/view_base.js
200 OK 728 B URL GET HTTP/1.1 bdimg.share.baidu.com/static/api/js/view/view_base.js
IP
ASN #38365 Beijing Baidu Netcom Science and Technology Co., Ltd.
Requested by http://www.yhdmba.org/player/189-0-40.html
File type ASCII text, with very long lines (1616), with no line terminators
Hash e719093c5a4ff674bcefbfe80f4dee2b
b3fd7dafde05d63af3dfe9e0a59f9367f81402c5
0a761914b5c673c75aa37204fc5a55624d03c5bd6df2ba93720cd9c33a0bf7f1
GET /static/api/js/view/view_base.js HTTP/1.1
Host: bdimg.share.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 728
Content-Type: text/javascript
Date: Sun, 19 Nov 2023 09:40:42 GMT
Etag: "2688079746"
Expires: Sun, 19 Nov 2023 10:10:42 GMT
Last-Modified: Fri, 05 Jun 2015 08:50:09 GMT
Server: BWS/1.0
Vary: Accept-Encoding
bdimg.share.baidu.com/static/api/js/share/api_base.js
200 OK 580 B URL GET HTTP/1.1 bdimg.share.baidu.com/static/api/js/share/api_base.js
IP
ASN #38365 Beijing Baidu Netcom Science and Technology Co., Ltd.
Requested by http://www.yhdmba.org/player/189-0-40.html
File type ASCII text, with very long lines (1468), with no line terminators
Hash 7abf8bdf4939d97f3141e355f781d1c6
cbacd664451f80955c2ff4caccd4b9110062c714
14a42e9371611c4b0405e74a309ea8b8e99461d8af3643012902e7453e36f40a
GET /static/api/js/share/api_base.js HTTP/1.1
Host: bdimg.share.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 580
Content-Type: text/javascript
Date: Sun, 19 Nov 2023 09:40:43 GMT
Etag: "3610826631"
Expires: Sun, 19 Nov 2023 10:10:43 GMT
Last-Modified: Fri, 05 Jun 2015 08:50:08 GMT
Server: BWS/1.0
Vary: Accept-Encoding
bdimg.share.baidu.com/static/api/js/base/tangram.js?v=37768233.js
200 OK 36 kB URL GET HTTP/1.1 bdimg.share.baidu.com/static/api/js/base/tangram.js?v=37768233.js
IP
ASN #17816 China Unicom IP network China169 Guangdong province
Requested by http://www.yhdmba.org/player/189-0-40.html
File type ASCII text, with very long lines (32769)
Hash 81040e695eba15ff3767063e37768233
e1952e27f6dc3d6339128cec157acef8cc0a775f
2b7fc19ce6cbcd3a161b62abb3766cb953a72e8473f4fd0f38fcdba3515ae487
GET /static/api/js/base/tangram.js?v=37768233.js HTTP/1.1
Host: bdimg.share.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 36055
Content-Type: text/javascript
Date: Sun, 19 Nov 2023 09:40:42 GMT
Etag: "814241156"
Expires: Sun, 19 Nov 2023 10:10:42 GMT
Last-Modified: Fri, 05 Jun 2015 08:50:07 GMT
Server: BWS/1.0
Vary: Accept-Encoding
ikcdn01.ikzybf.com/20221018/ewZwSP4t/index.m3u8
403 Forbidden 9 B URL GET HTTP/2 ikcdn01.ikzybf.com/20221018/ewZwSP4t/index.m3u8
IP
Requested by http://www.yhdmba.org/static/player/dplayer.html
Certificate IssuerUnizeto Technologies S.A.
Subject*.ikzybf.com
Fingerprint6B:3B:B8:E8:32:49:FC:43:EE:39:01:A0:DB:93:D2:F1:8B:86:85:C7
ValidityThu, 05 Oct 2023 10:13:26 GMT - Sun, 03 Nov 2024 10:13:25 GMT
File type ASCII text, with no line terminators
Hash 1b977d0794efc3d9ff520928805c95e9
8f6b97be584f87930633abab0bd6109f494f663e
d625d61c827b4e2cb894bbd97e7b6d9be83bb089ed9b6c4fd6ab2c2cd5aedd36
GET /20221018/ewZwSP4t/index.m3u8 HTTP/1.1
Host: ikcdn01.ikzybf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.yhdmba.org
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
server: nginx
date: Sun, 19 Nov 2023 09:40:43 GMT
content-type: application/vnd.apple.mpegurl
content-length: 9
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2
www.yhdmba.org/template/mytheme/statics/css/mytheme-share.css
200 OK 591 B URL GET HTTP/1.1 www.yhdmba.org/template/mytheme/statics/css/mytheme-share.css
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 8bf287b7eaffab0ed0664993681a7bec
711cdb3db947c17a634a4074abff84cfa1cb6f50
24db584211a52a4756b6efcca5ba7b2b3aa77178c9c78a6c928e68f6cd1ce23c
GET /template/mytheme/statics/css/mytheme-share.css HTTP/1.1
Host: www.yhdmba.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/player/189-0-40.html
Cookie: PHPSESSID=3ggaovrq45971hlf6oe2f69i03; history=%5B%7B%22name%22%3A%22%E6%B5%B7%E8%B4%BC%E7%8E%8B%22%2C%22pic%22%3A%22%2Fupload%2Fvod%2F20230117-1%2F3fc50a4d30ade24de88aa2f2b83e35e1.jpg%22%2C%22link%22%3A%22%2Fplayer%2F189-0-40.html%22%2C%22part%22%3A%22%E7%AC%AC041%E9%9B%86%22%7D%5D; Hm_lvt_61adfd3b2ca046e4e548bbee5eb0e3aa=1700386844; Hm_lpvt_61adfd3b2ca046e4e548bbee5eb0e3aa=1700386844; tpviews_4551=Adp6l1o0hSZQmu5ccMUlbMgNhbz1G18S6AFJsQb0aOji5%252F4NROqduP9tcAN%252BAFPrULRwfQgVl0amKRIQd%252FjiDbacCJqsGh1xY9OgJ6GVh8i2QcnykZv%252B%252FphQThl41P%252BSVq0nlU8r75nnjEub7dHj4v25ad7IB0t5MFZTzucjSKMUVTxp4pAsukkMLVEk%252FTkX9D0ZHah%252Bxe1hgXX4wHqujBmxRPBeVoVtQzstc4P9IwA8T3UQlS6w2emsgKK7zwfrFy73YihqN7ueV6H9piDF34TVz0OsTurf8VH9Zcn6CWs2fFfC6GeHyELSry4ta8bnqtdWaef19qHpSkHCsoxiXA%253D%253D; fixedviewbottom_4285=jkZ8kBcKEBvIhwGXJ6UG9VFC4BIM2L%252F5DwPH6f%252F3Ik1NHlV2wZPACu6e5YK69pnc%252BPu8c1h%252Fyz%252FeumtyAc%252BOjaN6IGwVHKTDbVzp%252BJ6kWLLNpGJ2zgjyBq%252FQRXhyXoGrqJnoqARn7UEn62EM5LdpYdfCuP433mGziUXIdoqKt9jMQrUZaJ2yybAX7lUVo8pll%252FQlSYGsOS3v8B5ZP14rFjNNPxYwE1h97JmQ4m%252F2NcnXgkZc32Y%252FIF1FYKNwLql%252FHIevs%252FxwVRZPTw0AsO0BCe8tIuiFRNKUKtFpr45%252F5UuaYtBI2mbcbitUr4%252FZcWnBY8M6%252BU0aaILk4pgQ3iObHQ%253D%253D; 4285_3101_91.90.42.154=1; richviews_4284=EZWccYwqk7zVBHO4N3Bomc3PlIySle98bu8MRLHKWqWWzt3WiO%252B1XMciOnWNoeGQpSvMYdLMtxY38FcwtxzOl83kaGPRLL3rk51PXfxDZRREX4VeItRlnuti6P4pSZbSu%252B%252FF1emwQIKs9VFBTH%252FARDQpssXpv6%252FMy%252FfBhfbX72Cgb8Z22opq%252BMC586fY9AD%252F5QT%252FVTx8tM%252FaXO7fON1Wn4XjgqS2R2A2noWploCxXB0ZRAPWqI0wGN2LrSfXWxTH67RFZGNS464DDTkCQdlTywtj7md%252F14oHa00cwXuaw4EnV%252FQ%252F7t7tR7waYhpg8KXqLBYJQBXXPnqlW2MvZuuYNw%253D%253D
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Nov 2023 09:40:43 GMT
Content-Type: text/css
Last-Modified: Thu, 10 Mar 2022 07:17:21 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6229a601-70d"
Expires: Sun, 19 Nov 2023 21:40:43 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
p.51gowan.com/logo.png?b=uMmPjBvvAUDKDz61Op0dKEw80dOAlU00x1L3Qr0Ei0f2fxHWBhekuHMU9pyXVKV8pxgW6k0K4R%2BlFheCplaKyuFkkzom%2BPWWaeG6rD0SUQ4A9stdBnArVp5l8ffl9RWdPkQwuwjgsDXLZNbD5SIHC8SvhVuA1hyXkOC9gtV9UhuO7iD7moIydLqjou7WarPQ6BYTuIqM1LQrRtOpx7e5D5aQdVszY0eqXHFaCOFKed7jj1m3KCG0sZf1xijbiGhe%2Fz9n1OwYV0%2F5EZ2Jcy4hJjN%2BornLj8Y9LMht5GL1W1QcT7Yhq9zUVNx6n6tKvXZmN5JAK8ot37rOu2iitoRzWg%3D%3D&ref=
200 OK 1 B URL GET HTTP/1.1 p.51gowan.com/logo.png?b=uMmPjBvvAUDKDz61Op0dKEw80dOAlU00x1L3Qr0Ei0f2fxHWBhekuHMU9pyXVKV8pxgW6k0K4R%2BlFheCplaKyuFkkzom%2BPWWaeG6rD0SUQ4A9stdBnArVp5l8ffl9RWdPkQwuwjgsDXLZNbD5SIHC8SvhVuA1hyXkOC9gtV9UhuO7iD7moIydLqjou7WarPQ6BYTuIqM1LQrRtOpx7e5D5aQdVszY0eqXHFaCOFKed7jj1m3KCG0sZf1xijbiGhe%2Fz9n1OwYV0%2F5EZ2Jcy4hJjN%2BornLj8Y9LMht5GL1W1QcT7Yhq9zUVNx6n6tKvXZmN5JAK8ot37rOu2iitoRzWg%3D%3D&ref=
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
GET /logo.png?b=uMmPjBvvAUDKDz61Op0dKEw80dOAlU00x1L3Qr0Ei0f2fxHWBhekuHMU9pyXVKV8pxgW6k0K4R%2BlFheCplaKyuFkkzom%2BPWWaeG6rD0SUQ4A9stdBnArVp5l8ffl9RWdPkQwuwjgsDXLZNbD5SIHC8SvhVuA1hyXkOC9gtV9UhuO7iD7moIydLqjou7WarPQ6BYTuIqM1LQrRtOpx7e5D5aQdVszY0eqXHFaCOFKed7jj1m3KCG0sZf1xijbiGhe%2Fz9n1OwYV0%2F5EZ2Jcy4hJjN%2BornLj8Y9LMht5GL1W1QcT7Yhq9zUVNx6n6tKvXZmN5JAK8ot37rOu2iitoRzWg%3D%3D&ref= HTTP/1.1
Host: p.51gowan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.16.0
Date: Sun, 19 Nov 2023 09:40:43 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.3.6
Access-Control-Allow-Origin: *
api.tongjiniao.com/r?t=1700386841&p=202368418258927891
200 OK 58 B URL POST HTTP/1.1 api.tongjiniao.com/r?t=1700386841&p=202368418258927891
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
File type JSON data\012- , ASCII text, with no line terminators
Hash f6f0534758356f644786f03d9912b271
de49a584515e2637c727595652f99c78386ff7d4
7ee2a3a5e4b1e50bb31b22d8399f9917073e0421d56c5da3699371ec79af2082
POST /r?t=1700386841&p=202368418258927891 HTTP/1.1
Host: api.tongjiniao.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded
Content-Length: 771
Origin: http://www.yhdmba.org
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Nov 2023 09:40:43 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 58
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: DNT,Keep-Alive,User-Agent,Cache-Control,Content-Type,Authorization
Content-Encoding: gzip
Cache-Control: no-cache,no-store, no-cache
ocsp.sectigochina.com/
599 B IP
Hash 7ca66e69dcc72e8234328372afc583ce
37d2b2cdfaffb7629f8ac3c84072a682b9f4780c
c6dfb9f4bcfc148b25733425c32e42585fdad6c6a29dc169a9c05068fbc7628e
POST / HTTP/1.1
Host: ocsp.sectigochina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 19 Nov 2023 09:40:44 GMT
Content-Type: application/ocsp-response
Content-Length: 599
Connection: keep-alive
Last-Modified: Fri, 17 Nov 2023 03:22:46 GMT
Expires: Fri, 24 Nov 2023 03:22:45 GMT
Etag: "37d2b2cdfaffb7629f8ac3c84072a682b9f4780c"
Cache-Control: max-age=408721,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 82877e4ddf0f569c-OSL
1917dc.bfgtfxd.com:8007/d/4310?t=0.293927510764887
200 OK 1.0 kB URL GET HTTP/1.1 1917dc.bfgtfxd.com:8007/d/4310?t=0.293927510764887
IP
ASN #140224 STARCLOUD GLOBAL PTE., LTD.
Requested by http://www.yhdmba.org/player/189-0-40.html
Certificate IssuerCerSign Technology Limited
Subject*.uqzucro.com
Fingerprint12:7B:4A:74:1C:15:62:BD:F3:F5:65:96:27:3F:1A:E5:9C:DD:91:B9
ValidityThu, 09 Nov 2023 00:00:00 GMT - Wed, 07 Feb 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with very long lines (1011), with no line terminators
Hash d7b988921e489e5b61d9839cdc2f97dd
9a4072373bfff2532cbabe2c7cc070623a468e57
7f903ccc64f0e5b7b8d199f89ba8b6602669011f02b52f1e830f802dd2d12bf1
GET /d/4310?t=0.293927510764887 HTTP/1.1
Host: 1917dc.bfgtfxd.com:8007
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Origin: http://www.yhdmba.org
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sun, 19 Nov 2023 09:40:44 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.6.31
P3P: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Access-Control-Allow-Origin: *
Cache-Control: no-cache, must-revalidate
Pragma: no-cache
ocsp.sectigochina.com/
599 B IP
Hash 0b61b67bb4ab57c17a77973ea47f7cfb
0f19ef16955e4b1e27cb6201f61da33b8b6141f4
f6d02dc50dc9075d1d9851574083a47beac9c94525170b440e1ec4793639b7d1
POST / HTTP/1.1
Host: ocsp.sectigochina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 19 Nov 2023 09:40:44 GMT
Content-Type: application/ocsp-response
Content-Length: 599
Connection: keep-alive
Last-Modified: Sat, 18 Nov 2023 22:46:33 GMT
Expires: Sat, 25 Nov 2023 22:46:32 GMT
Etag: "0f19ef16955e4b1e27cb6201f61da33b8b6141f4"
Cache-Control: max-age=564947,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 82877e512a14569c-OSL
1917kc.itwzlyq.com:8008/d/3422?t=0.5499498768759212
200 OK 1.2 kB URL GET HTTP/1.1 1917kc.itwzlyq.com:8008/d/3422?t=0.5499498768759212
IP
ASN #140224 STARCLOUD GLOBAL PTE., LTD.
Requested by http://www.yhdmba.org/player/189-0-40.html
Certificate IssuerCerSign Technology Limited
Subject*.rykyidu.com
Fingerprint95:B7:19:AA:9D:26:20:43:D2:0D:15:CD:B0:1C:1E:AD:E0:34:2E:9C
ValidityThu, 09 Nov 2023 00:00:00 GMT - Wed, 07 Feb 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with very long lines (1192), with no line terminators
Hash 22a71c1d753c3fa7f8ca9358dbe0716a
88dc3b66308ed91016afd3d278ea15e74b778638
954cf55b5f7f91785d30ccc82e84d6f581d5ab7c2d465860c27ecee942800c5e
GET /d/3422?t=0.5499498768759212 HTTP/1.1
Host: 1917kc.itwzlyq.com:8008
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Origin: http://www.yhdmba.org
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sun, 19 Nov 2023 09:40:44 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.6.31
P3P: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Access-Control-Allow-Origin: *
Cache-Control: no-cache, must-revalidate
Pragma: no-cache
v.qisaoba.com/a/close.png
200 OK 507 B URL GET HTTP/1.1 v.qisaoba.com/a/close.png
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
File type PNG image data, 25 x 25, 8-bit colormap, non-interlaced\012- data
Hash 00e2047808a41d4038fed7a29c219ce0
d3991a5763efe5fa3bfb0a743041e508fbdcd20a
046e545eef3cf413d95319869cc0f4105e16eea1f0a76e7a9b0fefcebbc05de4
GET /a/close.png HTTP/1.1
Host: v.qisaoba.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: image/png
Content-Length: 507
Connection: keep-alive
Date: Sun, 19 Nov 2023 08:50:47 GMT
Accept-Ranges: bytes
Ali-Swift-Global-Savetime: 1700383847
Via: cache57.l2cn3038[0,0,304-0,H], cache11.l2cn3038[1,0], kunlun10.cn192[0,0,200-0,H], kunlun1.cn192[3,0]
Last-Modified: Thu, 03 Dec 2020 03:39:43 GMT
ETag: "5fc85dff-1fb"
Age: 2997
X-Cache: HIT TCP_MEM_HIT dirn:11:606229735
X-Swift-SaveTime: Sun, 19 Nov 2023 09:06:49 GMT
X-Swift-CacheTime: 3600
Timing-Allow-Origin: *
EagleId: 3adad01517003868445956448e
p.51gowan.com/logo.png?b=KzlJZdLwJL84JO1cDvFdvLiHQG5dfNftxR6vHX5J4sM74dF4t9dm6HYQBsJxVtjlkjxHyqDXH9UMg8npvcJ9S2rEVjkRB5bADJ%2B1yKa0JuA0rHJ6IHYmKPEuVGtnconB8JC5qC3%2FE6Ziapc9m67TUTbR9vDu4SSy6tkiG9BM07Hh6bjEDbTytJvdThObbzgI7ZbjO%2BSaUZ5wz9h9GcRLgDCkmHqxJRSjwQZqPo4Tq%2BhU81JoVfQHkWxlDQ93rS%2B0NdJWdPPKllqVNNRE%2F1jeKB%2Bkb%2F%2Bn48hS%2BMPsqbYHXLCCfogop%2Br7aHVRS8MIzpy1dNj3G2cJWvTA18zd6jlBUg%3D%3D&ref=
200 OK 1 B URL GET HTTP/1.1 p.51gowan.com/logo.png?b=KzlJZdLwJL84JO1cDvFdvLiHQG5dfNftxR6vHX5J4sM74dF4t9dm6HYQBsJxVtjlkjxHyqDXH9UMg8npvcJ9S2rEVjkRB5bADJ%2B1yKa0JuA0rHJ6IHYmKPEuVGtnconB8JC5qC3%2FE6Ziapc9m67TUTbR9vDu4SSy6tkiG9BM07Hh6bjEDbTytJvdThObbzgI7ZbjO%2BSaUZ5wz9h9GcRLgDCkmHqxJRSjwQZqPo4Tq%2BhU81JoVfQHkWxlDQ93rS%2B0NdJWdPPKllqVNNRE%2F1jeKB%2Bkb%2F%2Bn48hS%2BMPsqbYHXLCCfogop%2Br7aHVRS8MIzpy1dNj3G2cJWvTA18zd6jlBUg%3D%3D&ref=
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
GET /logo.png?b=KzlJZdLwJL84JO1cDvFdvLiHQG5dfNftxR6vHX5J4sM74dF4t9dm6HYQBsJxVtjlkjxHyqDXH9UMg8npvcJ9S2rEVjkRB5bADJ%2B1yKa0JuA0rHJ6IHYmKPEuVGtnconB8JC5qC3%2FE6Ziapc9m67TUTbR9vDu4SSy6tkiG9BM07Hh6bjEDbTytJvdThObbzgI7ZbjO%2BSaUZ5wz9h9GcRLgDCkmHqxJRSjwQZqPo4Tq%2BhU81JoVfQHkWxlDQ93rS%2B0NdJWdPPKllqVNNRE%2F1jeKB%2Bkb%2F%2Bn48hS%2BMPsqbYHXLCCfogop%2Br7aHVRS8MIzpy1dNj3G2cJWvTA18zd6jlBUg%3D%3D&ref= HTTP/1.1
Host: p.51gowan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.16.0
Date: Sun, 19 Nov 2023 09:40:44 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.3.6
Access-Control-Allow-Origin: *
19dcc.sqevnrb.com:8007/d/4310?c=1&n=ftpplpqm
200 OK 21 B URL GET HTTP/1.1 19dcc.sqevnrb.com:8007/d/4310?c=1&n=ftpplpqm
IP
ASN #140224 STARCLOUD GLOBAL PTE., LTD.
Requested by http://www.yhdmba.org/player/189-0-40.html
Certificate IssuerCerSign Technology Limited
Subject*.clcmdie.com
Fingerprint06:92:E0:43:33:C2:85:1C:F2:1F:23:FF:29:BC:0E:5E:E9:D2:34:25
ValidityThu, 19 Oct 2023 00:00:00 GMT - Wed, 17 Jan 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 485fcaee6a3d32e9f07f587135682c27
3f053bd75f9d2b77e1679fc2f581d6186b2d4c4e
6bf9ce304872f63ce684cdb2d7af07c6242bed34a7e3ec7092be0a66caec227e
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /d/4310?c=1&n=ftpplpqm HTTP/1.1
Host: 19dcc.sqevnrb.com:8007
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sun, 19 Nov 2023 09:40:44 GMT
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.6.31
P3P: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Access-Control-Allow-Origin: *
Cache-Control: max-age=1800
Pragma: max-age=1800
ikcdn01.ikzybf.com/20221018/ewZwSP4t/index.m3u8
403 Forbidden 9 B URL GET HTTP/2 ikcdn01.ikzybf.com/20221018/ewZwSP4t/index.m3u8
IP
Requested by http://www.yhdmba.org/static/player/dplayer.html
Certificate IssuerUnizeto Technologies S.A.
Subject*.ikzybf.com
Fingerprint6B:3B:B8:E8:32:49:FC:43:EE:39:01:A0:DB:93:D2:F1:8B:86:85:C7
ValidityThu, 05 Oct 2023 10:13:26 GMT - Sun, 03 Nov 2024 10:13:25 GMT
File type ASCII text, with no line terminators
Hash 1b977d0794efc3d9ff520928805c95e9
8f6b97be584f87930633abab0bd6109f494f663e
d625d61c827b4e2cb894bbd97e7b6d9be83bb089ed9b6c4fd6ab2c2cd5aedd36
GET /20221018/ewZwSP4t/index.m3u8 HTTP/1.1
Host: ikcdn01.ikzybf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.yhdmba.org
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 403 Forbidden
server: nginx
date: Sun, 19 Nov 2023 09:40:44 GMT
content-type: application/vnd.apple.mpegurl
content-length: 9
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2
www.cz88.net/api/cz88/ip/iplab?ip=
200 442 B URL GET HTTP/1.1 www.cz88.net/api/cz88/ip/iplab?ip=
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
Certificate IssuerTrustAsia Technologies, Inc.
Subject*.cz88.net
Fingerprint9E:90:98:ED:C5:F4:3A:82:01:32:D8:D8:D4:86:52:5E:65:19:E4:C6
ValidityThu, 06 Apr 2023 00:00:00 GMT - Fri, 05 Apr 2024 23:59:59 GMT
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (390), with no line terminators
Hash e1822659e8a9289e0586306188b2cf7b
39aabfa6e4da26bb7f831a7e45ba0dfd7ec560d2
e4e63af23a32566332290764975d7a7c377f45fddbeb7310ace248c9ce199d9c
GET /api/cz88/ip/iplab?ip= HTTP/1.1
Host: www.cz88.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.yhdmba.org
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx/1.20.2
Date: Sun, 19 Nov 2023 09:40:45 GMT
Content-Type: application/json;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Access-Control-Allow-Origin: http://www.yhdmba.org
Access-Control-Expose-Headers: token
Access-Control-Allow-Credentials: true
ocsp.trust-provider.cn/
599 B IP
ASN #9808 China Mobile Communications Group Co., Ltd.
Hash e2e7d7fc57058833bc52a46766d2784b
18e9d8484f2eadf0cebc81440561049ab2dbaf85
8529dbffea9c446e8e607969db4a16d469f5fd53bd921d8ed3c260a45d36403a
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: volc-dcdn
Content-Type: application/ocsp-response
Content-Length: 599
Connection: keep-alive
Date: Sun, 19 Nov 2023 09:40:45 GMT
Accept-Ranges: bytes
Age: 1
CF-Cache-Status: HIT
CF-RAY: 827ba52fab292366-SJC
ETag: "18e9d8484f2eadf0cebc81440561049ab2dbaf85"
Expires: Fri, 24 Nov 2023 22:47:33 GMT
Last-Modified: Fri, 17 Nov 2023 22:47:34 GMT
WS-Cache-Status: 0
X-CCACDN-Proxy-ID: scdpinlb2
X-Frame-Options: SAMEORIGIN
X-Via: 1.1 PS-CZX-01YeT143:2 (Cdn Cache Server V2.0), 1.1 PS-XFN-01tMr57:4 (Cdn Cache Server V2.0)
X-Ws-Request-Id: 6559d81d_PS-XFN-01mWo59_47375-34619
via: n173-091-152.bdcdn-whcm03.ToB
x-request-ip: 91.90.42.154
x-tt-trace-tag: id=5
x-dsa-trace-id: 17003868458767a39c8e4ef575975d72bb3ee06635
X-Dsa-Origin-Status: 200
server-timing: cdn-cache;desc=MISS, origin;dur=10, edge;dur=0
ocsp.trust-provider.cn/
599 B IP
ASN #9808 China Mobile Communications Group Co., Ltd.
Hash e2e7d7fc57058833bc52a46766d2784b
18e9d8484f2eadf0cebc81440561049ab2dbaf85
8529dbffea9c446e8e607969db4a16d469f5fd53bd921d8ed3c260a45d36403a
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: volc-dcdn
Content-Type: application/ocsp-response
Content-Length: 599
Connection: keep-alive
Date: Sun, 19 Nov 2023 09:40:45 GMT
Accept-Ranges: bytes
Age: 1
CF-Cache-Status: HIT
CF-RAY: 827ba52fab292366-SJC
ETag: "18e9d8484f2eadf0cebc81440561049ab2dbaf85"
Expires: Fri, 24 Nov 2023 22:47:33 GMT
Last-Modified: Fri, 17 Nov 2023 22:47:34 GMT
WS-Cache-Status: 0
X-CCACDN-Proxy-ID: scdpinlb2
X-Frame-Options: SAMEORIGIN
X-Via: 1.1 PS-CZX-01YeT143:2 (Cdn Cache Server V2.0), 1.1 PS-XFN-01HPa31:4 (Cdn Cache Server V2.0)
X-Ws-Request-Id: 6559d81d_PS-XFN-01HPa31_47211-65162
via: n173-091-152.bdcdn-whcm03.ToB
x-request-ip: 91.90.42.154
x-tt-trace-tag: id=5
x-dsa-trace-id: 1700386845553b3c44711d4d1c034dff9517139e98
X-Dsa-Origin-Status: 200
server-timing: cdn-cache;desc=MISS, origin;dur=7, edge;dur=0
v.qisaoba.com/syjpc/wzzx2-bxdj-1000x200-8-8.gif
200 OK 239 kB URL GET HTTP/1.1 v.qisaoba.com/syjpc/wzzx2-bxdj-1000x200-8-8.gif
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
File type GIF image data, version 89a, 1000 x 200\012- data
Size 239 kB (239443 bytes)
Hash ca09b11f8516878fb629156d9f4bbc1b
fee7347940082b956cd6bd81e4361b2dbe990c04
59bb2d1ab1862fc750b7feec8c8849c575654e4507b628aaad2a3b98dc944da5
GET /syjpc/wzzx2-bxdj-1000x200-8-8.gif HTTP/1.1
Host: v.qisaoba.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: image/gif
Content-Length: 239443
Connection: keep-alive
Date: Sun, 19 Nov 2023 09:26:47 GMT
Accept-Ranges: bytes
Ali-Swift-Global-Savetime: 1700386007
Via: cache75.l2cn3022[369,369,304-0,M], cache47.l2cn3022[370,0], kunlun3.cn192[0,0,200-0,H], kunlun6.cn192[1,0]
Last-Modified: Tue, 08 Aug 2023 09:52:54 GMT
ETag: "64d21076-3a753"
Age: 837
X-Cache: HIT TCP_MEM_HIT dirn:9:1418254561
X-Swift-SaveTime: Sun, 19 Nov 2023 09:26:47 GMT
X-Swift-CacheTime: 3600
Timing-Allow-Origin: *
EagleId: 3adad01a17003868445885022e
bdimg.share.baidu.com/static/api/js/trans/logger.js?v=60603cb3.js
200 OK 1.0 kB URL GET HTTP/1.1 bdimg.share.baidu.com/static/api/js/trans/logger.js?v=60603cb3.js
IP
ASN #17816 China Unicom IP network China169 Guangdong province
Requested by http://www.yhdmba.org/player/189-0-40.html
File type ASCII text, with very long lines (2159), with no line terminators
Hash afeb99dadba3ce26ff2ec5b160603cb3
4b6d3e8a2bee1f8cad0e5ae72af63a1e0d5c4196
7a53c67ab93896f97aa99089169fe59fccada1d8d08f7819d150a3c2cbb09a16
GET /static/api/js/trans/logger.js?v=60603cb3.js HTTP/1.1
Host: bdimg.share.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 1034
Content-Type: text/javascript
Date: Sun, 19 Nov 2023 09:40:45 GMT
Etag: "3887650637"
Expires: Sun, 19 Nov 2023 10:10:45 GMT
Last-Modified: Fri, 05 Jun 2015 08:50:08 GMT
Server: BWS/1.0
Vary: Accept-Encoding
197b7df3889fdf254852.d7c63ec9.com.tongjiniao.com/a/r?p=584798556505628672
200 OK 0 B URL POST HTTP/2 197b7df3889fdf254852.d7c63ec9.com.tongjiniao.com/a/r?p=584798556505628672
IP
ASN #140227 Hong Kong Communications International Co., Limited
Requested by http://www.yhdmba.org/player/189-0-40.html
Certificate IssuerLet's Encrypt
Subjectceshi1.ink
Fingerprint08:E7:B0:95:FB:25:0E:1B:ED:90:AC:05:0A:E1:F3:27:95:87:B6:76
ValidityThu, 26 Oct 2023 13:36:30 GMT - Wed, 24 Jan 2024 13:36:29 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /a/r?p=584798556505628672 HTTP/1.1
Host: 197b7df3889fdf254852.d7c63ec9.com.tongjiniao.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded;charset=UTF-8
Content-Length: 6348
Origin: http://www.yhdmba.org
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 19 Nov 2023 09:40:45 GMT
content-type: text/plain
content-length: 0
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: DNT,Keep-Alive,User-Agent,Cache-Control,Content-Type,Authorization
cache-control: no-cache
X-Firefox-Spdy: h2
19kcc.faxffjo.com:8008/d/3422?c=1&n=yozynjaz
200 OK 21 B URL GET HTTP/1.1 19kcc.faxffjo.com:8008/d/3422?c=1&n=yozynjaz
IP
ASN #140224 STARCLOUD GLOBAL PTE., LTD.
Requested by http://www.yhdmba.org/player/189-0-40.html
Certificate IssuerCerSign Technology Limited
Subject*.clcmdie.com
Fingerprint06:92:E0:43:33:C2:85:1C:F2:1F:23:FF:29:BC:0E:5E:E9:D2:34:25
ValidityThu, 19 Oct 2023 00:00:00 GMT - Wed, 17 Jan 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 04e1a941422dc232954f88d4276c3fd2
71555e19b29f0f61fdeec7c366c5f1ccf9072f5f
0ca6774226f81a6d35d440c8a3dac1423784a73542e01ac3bb69047fb417270a
GET /d/3422?c=1&n=yozynjaz HTTP/1.1
Host: 19kcc.faxffjo.com:8008
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sun, 19 Nov 2023 09:40:45 GMT
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.6.31
P3P: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Access-Control-Allow-Origin: *
Cache-Control: max-age=0
Pragma: max-age=0
api.share.baidu.com/v.gif
200 OK 23 B URL GET HTTP/1.1 api.share.baidu.com/v.gif
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
File type gzip compressed data\012- data
Hash f0d79988b7772c003d04a28bd7417a62
58423a999eec2997bcfffb247e9ecd3dfd0abf44
30e6fa98fb48c2b132824d1ac5e2243c0be9e9082ff32598d34d7687ca7f6c7f
GET /v.gif HTTP/1.1
Host: api.share.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Encoding: gzip
Content-Length: 23
Content-Type: image/gif
Server: bfe
Date: Sun, 19 Nov 2023 09:40:46 GMT
ocsp.sectigochina.com/
600 B IP
Hash f07bbb424490fa397c4da8c4cb0e12d9
d4a0d9c2417cca2bd4dd0172be689b6015aba3d5
76bd429be10b5286b33b53a75fdbf41868e5acb37ec75d45a0926b46ac226fa1
POST / HTTP/1.1
Host: ocsp.sectigochina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 19 Nov 2023 09:40:46 GMT
Content-Type: application/ocsp-response
Content-Length: 600
Connection: keep-alive
Last-Modified: Fri, 17 Nov 2023 18:41:35 GMT
Expires: Fri, 24 Nov 2023 18:41:34 GMT
Etag: "d4a0d9c2417cca2bd4dd0172be689b6015aba3d5"
Cache-Control: max-age=463847,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 82877e5ccc22569c-OSL
nsclick.baidu.com/v.gif?pid=307&type=3071&sign=&desturl=&linkid=lp5afc0pleh&apitype=0
200 OK 0 B URL GET HTTP/1.1 nsclick.baidu.com/v.gif?pid=307&type=3071&sign=&desturl=&linkid=lp5afc0pleh&apitype=0
IP
ASN #38365 Beijing Baidu Netcom Science and Technology Co., Ltd.
Requested by http://www.yhdmba.org/player/189-0-40.html
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v.gif?pid=307&type=3071&sign=&desturl=&linkid=lp5afc0pleh&apitype=0 HTTP/1.1
Host: nsclick.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Cache-Control: no-cache
Connection: keep-alive
Content-Length: 0
Content-Type: image/gif
Date: Sun, 19 Nov 2023 09:40:46 GMT
Pragma: no-cache
Server: nginx/1.8.0
Tracecode: 24462560530351659018111917
zerossl.ocsp.sectigo.com/
727 B URL zerossl.ocsp.sectigo.com/
IP
Hash 6b6019e630d82ce75f0a7fd0abc83922
a3bd51abe3fe2514703c289b2d54f08a572c7547
afed346d1aa87743e343d718dd09447d5d72907ac9a763d65aca2af63ae1cdf4
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 19 Nov 2023 09:40:46 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Thu, 16 Nov 2023 22:06:33 GMT
Expires: Thu, 23 Nov 2023 22:06:32 GMT
Etag: "a3bd51abe3fe2514703c289b2d54f08a572c7547"
Cache-Control: max-age=389745,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 82877e5d692e712b-OSL
www.yhdmba.org/template/mytheme/statics/img/favicon.ico
200 OK 1.2 kB URL GET HTTP/1.1 www.yhdmba.org/template/mytheme/statics/img/favicon.ico
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 1b0df741ee3c88b28c8e8d4ba283251f
cdbce2836b5d9fedbe5f1c5de86ff77249d7b3c9
ad6aea85ccfa45dee77ae0b06c0199bed77d5fcb131a896c12c5fc35e030b0dd
GET /template/mytheme/statics/img/favicon.ico HTTP/1.1
Host: www.yhdmba.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/player/189-0-40.html
Cookie: PHPSESSID=3ggaovrq45971hlf6oe2f69i03; history=%5B%7B%22name%22%3A%22%E6%B5%B7%E8%B4%BC%E7%8E%8B%22%2C%22pic%22%3A%22%2Fupload%2Fvod%2F20230117-1%2F3fc50a4d30ade24de88aa2f2b83e35e1.jpg%22%2C%22link%22%3A%22%2Fplayer%2F189-0-40.html%22%2C%22part%22%3A%22%E7%AC%AC041%E9%9B%86%22%7D%5D; Hm_lvt_61adfd3b2ca046e4e548bbee5eb0e3aa=1700386844; Hm_lpvt_61adfd3b2ca046e4e548bbee5eb0e3aa=1700386844; tpviews_4551=Adp6l1o0hSZQmu5ccMUlbMgNhbz1G18S6AFJsQb0aOji5%252F4NROqduP9tcAN%252BAFPrULRwfQgVl0amKRIQd%252FjiDbacCJqsGh1xY9OgJ6GVh8i2QcnykZv%252B%252FphQThl41P%252BSVq0nlU8r75nnjEub7dHj4v25ad7IB0t5MFZTzucjSKMUVTxp4pAsukkMLVEk%252FTkX9D0ZHah%252Bxe1hgXX4wHqujBmxRPBeVoVtQzstc4P9IwA8T3UQlS6w2emsgKK7zwfrFy73YihqN7ueV6H9piDF34TVz0OsTurf8VH9Zcn6CWs2fFfC6GeHyELSry4ta8bnqtdWaef19qHpSkHCsoxiXA%253D%253D; fixedviewbottom_4285=jkZ8kBcKEBvIhwGXJ6UG9VFC4BIM2L%252F5DwPH6f%252F3Ik1NHlV2wZPACu6e5YK69pnc%252BPu8c1h%252Fyz%252FeumtyAc%252BOjaN6IGwVHKTDbVzp%252BJ6kWLLNpGJ2zgjyBq%252FQRXhyXoGrqJnoqARn7UEn62EM5LdpYdfCuP433mGziUXIdoqKt9jMQrUZaJ2yybAX7lUVo8pll%252FQlSYGsOS3v8B5ZP14rFjNNPxYwE1h97JmQ4m%252F2NcnXgkZc32Y%252FIF1FYKNwLql%252FHIevs%252FxwVRZPTw0AsO0BCe8tIuiFRNKUKtFpr45%252F5UuaYtBI2mbcbitUr4%252FZcWnBY8M6%252BU0aaILk4pgQ3iObHQ%253D%253D; 4285_3101_91.90.42.154=1; richviews_4284=EZWccYwqk7zVBHO4N3Bomc3PlIySle98bu8MRLHKWqWWzt3WiO%252B1XMciOnWNoeGQpSvMYdLMtxY38FcwtxzOl83kaGPRLL3rk51PXfxDZRREX4VeItRlnuti6P4pSZbSu%252B%252FF1emwQIKs9VFBTH%252FARDQpssXpv6%252FMy%252FfBhfbX72Cgb8Z22opq%252BMC586fY9AD%252F5QT%252FVTx8tM%252FaXO7fON1Wn4XjgqS2R2A2noWploCxXB0ZRAPWqI0wGN2LrSfXWxTH67RFZGNS464DDTkCQdlTywtj7md%252F14oHa00cwXuaw4EnV%252FQ%252F7t7tR7waYhpg8KXqLBYJQBXXPnqlW2MvZuuYNw%253D%253D; 4551_3100_91.90.42.154=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Nov 2023 09:40:46 GMT
Content-Type: image/x-icon
Content-Length: 1150
Last-Modified: Tue, 15 Mar 2022 07:30:50 GMT
Connection: keep-alive
ETag: "623040aa-47e"
Accept-Ranges: bytes
v2.euqq.cn/syjpc/wzzx2-bxdj-600x400-8-8.gif
568 kB URL GET v2.euqq.cn/syjpc/wzzx2-bxdj-600x400-8-8.gif
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
File type GIF image data, version 89a, 600 x 400\012- data
Size 568 kB (568079 bytes)
Hash 2bec125252c1230ee73cc60533ef6f05
7d46b7e663d02ec7e80b1bcc18fb775aabcb3ad7
6ab3ccd4ac62a65f5acbcad053871ed96742818cff3bccf7cae87c6c01826fca
GET /syjpc/wzzx2-bxdj-600x400-8-8.gif HTTP/1.1
Host: v2.euqq.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty
Date: Sun, 19 Nov 2023 09:40:48 GMT
Content-Type: image/gif
Content-Length: 568079
Connection: keep-alive
Last-Modified: Tue, 08 Aug 2023 09:52:53 GMT
Cache-Control: max-age=2592000
Ctl-Cache-Status: HIT from ha-zhengzhou4-ca07, HIT from gd-guangzhou8-ca08
Request-Id: 6559d8201331571b41e6dfb132da73b5
Etag: "64d21075-8ab0f"
Age: 215887
kpic.xn--czr93rxry.com/2023/10/23193257550.txt
200 OK 99 kB URL GET HTTP/2 kpic.xn--czr93rxry.com/2023/10/23193257550.txt
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
Certificate IssuerCerSign Technology Limited
Subject*.xn--czr93rxry.com
FingerprintC0:41:0F:8A:7C:DD:3B:E1:4E:BF:73:3D:D3:C3:75:87:E4:80:68:8D
ValidityTue, 14 Nov 2023 00:00:00 GMT - Mon, 12 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 009d81140074dac1b2c38ef72bceea3d
aa3bf880f759bdee841563f3e3c283e647776d72
4105052325acc962e7c148ccadc3197f45e99afe2d50624a04f6cfcde6d7170f
GET /2023/10/23193257550.txt HTTP/1.1
Host: kpic.xn--czr93rxry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.yhdmba.org
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: NgxFence
date: Sun, 19 Nov 2023 09:40:46 GMT
content-type: text/plain
last-modified: Mon, 23 Oct 2023 11:32:57 GMT
etag: W/"653659e9-1e7fc"
expires: Thu, 14 Dec 2023 11:04:34 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
x-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
ciscobinary.openh264.org/openh264-linux64-2e1774ab6dc6c43debb0b5b628bdf122a391d521.zip
512 kB URL ciscobinary.openh264.org/openh264-linux64-2e1774ab6dc6c43debb0b5b628bdf122a391d521.zip
IP
ASN #1299 Telia Company AB
File type Zip archive data, at least v2.0 to extract, compression method=deflate\012- data
Size 512 kB (511815 bytes)
Hash 152eda253e242e18443ef3282495bc7c
ff0fa85565f21ec4931baad4573b4c0bd08c4019
8e03090fee16f6e0ee2e436af8e51d0c3deed6d9f0db80dec048e668fc009a48
GET /openh264-linux64-2e1774ab6dc6c43debb0b5b628bdf122a391d521.zip HTTP/1.1
Host: ciscobinary.openh264.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Last-Modified: Thu, 16 Nov 2023 07:38:15 GMT
ETag: 152eda253e242e18443ef3282495bc7c
Content-Length: 511815
Accept-Ranges: bytes
X-Timestamp: 1700120294.87662
Content-Type: application/zip
X-Trans-Id: tx15b69f172b404fa58b2bb-006555fb11dfw1
Cache-Control: public, max-age=235313
Expires: Wed, 22 Nov 2023 03:02:47 GMT
Date: Sun, 19 Nov 2023 09:40:54 GMT
Connection: keep-alive
www.yhdmba.org/index.php/comment/ajax.html?rid=189&mid=1&page=1
0 B URL GET www.yhdmba.org/index.php/comment/ajax.html?rid=189&mid=1&page=1
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /index.php/comment/ajax.html?rid=189&mid=1&page=1 HTTP/1.1
Host: www.yhdmba.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/player/189-0-40.html
Cookie: PHPSESSID=3ggaovrq45971hlf6oe2f69i03; history=%5B%7B%22name%22%3A%22%E6%B5%B7%E8%B4%BC%E7%8E%8B%22%2C%22pic%22%3A%22%2Fupload%2Fvod%2F20230117-1%2F3fc50a4d30ade24de88aa2f2b83e35e1.jpg%22%2C%22link%22%3A%22%2Fplayer%2F189-0-40.html%22%2C%22part%22%3A%22%E7%AC%AC041%E9%9B%86%22%7D%5D
Pragma: no-cache
Cache-Control: no-cache
dpic.tionxxd.cn/2023/07/12231809900.txt
200 OK 98 kB URL GET HTTP/2 dpic.tionxxd.cn/2023/07/12231809900.txt
IP
Requested by http://www.yhdmba.org/player/189-0-40.html
Certificate IssuerZeroSSL
Subject*.tionxxd.cn
Fingerprint4A:E5:21:58:B0:AE:89:C6:F1:9A:10:B7:75:DF:CC:FE:0F:17:86:9E
ValidityMon, 06 Nov 2023 00:00:00 GMT - Sun, 04 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 2e430ef22fcee0a1eb5f2da7c882ba92
86770070ac0b76f0547990aaf118a909665a13dd
e1dc943902db1a41cacb5f9ee5f468e492f1429961b4a4e922e29a74c774e8f0
GET /2023/07/12231809900.txt HTTP/1.1
Host: dpic.tionxxd.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.yhdmba.org
DNT: 1
Connection: keep-alive
Referer: http://www.yhdmba.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: NgxFence
date: Sun, 19 Nov 2023 09:40:46 GMT
content-type: text/plain
last-modified: Wed, 12 Jul 2023 15:18:09 GMT
etag: W/"64aec431-17f40"
expires: Wed, 06 Dec 2023 16:10:06 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,text/html
x-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
103.135.32.157
174.35.118.62
104.234.47.31
182.61.200.83
62.115.252.115
0.0.0.0