Edit tour

Windows Analysis Report
https://new.aj848310310.workers.dev/

Overview

General Information

Sample URL:	https://new.aj848310310.workers.dev/
Analysis ID:	1446872
Infos:

Detection

Score:	56
Range:	0 - 100
Whitelisted:	false
Confidence:	100%

Signatures

Antivirus / Scanner detection for submitted sample

Antivirus detection for URL or domain

HTML page contains hidden URLs or javascript code

Uses insecure TLS / SSL version for HTTPS connection

Classification

Process Tree

System is w10x64

chrome.exe (PID: 2012 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank" MD5: 5BBFA6CBDF4C254EB368D534F9E23C92)

chrome.exe (PID: 6960 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2672 --field-trial-handle=2544,i,728762149725907679,15943124602895297035,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 MD5: 5BBFA6CBDF4C254EB368D534F9E23C92)

chrome.exe (PID: 5312 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://new.aj848310310.workers.dev/" MD5: 5BBFA6CBDF4C254EB368D534F9E23C92)

cleanup

Joe Sandbox Signatures

Click to jump to signature section

Show All Signature Results

AV Detection

Antivirus / Scanner detection for submitted sample

Source: https://new.aj848310310.workers.dev/

Avira URL Cloud: detection malicious, Label: phishing

Antivirus detection for URL or domain

Source: https://new.aj848310310.workers.dev/favicon.ico

Avira URL Cloud: Label: phishing

Source: https://global.cctv.com/trending/index.shtml

HTTP Parser: Base64 decoded: A7C,EAAmD;AAC/CM,iBAASC,sBAAT,CAAgC,mBAAhC,EAAqD,CAArD,EAAwDC,KAAxD,CAA8DC,OAA9D,GAAwE,MAAxE;AACH;;AAGDC,kBAAcb,kBAAd;AACH","file":"Inline Babel script","sourcesContent":["\n var show_menu_interval = setInterval(show_menu, 1000);\n ...

Source: https://new.aj848310310.workers.dev/	HTTP Parser: No favicon
Source: https://new.aj848310310.workers.dev/	HTTP Parser: No favicon
Source: https://new.aj848310310.workers.dev/	HTTP Parser: No favicon
Source: https://new.aj848310310.workers.dev/	HTTP Parser: No favicon
Source: https://global.cctv.com/trending/index.shtml	HTTP Parser: No favicon
Source: https://global.cctv.com/trending/index.shtml	HTTP Parser: No favicon
Source: https://global.cctv.com/trending/index.shtml	HTTP Parser: No favicon
Source: https://global.cctv.com/ipanda/index.shtml	HTTP Parser: No favicon
Source: https://global.cctv.com/ipanda/index.shtml	HTTP Parser: No favicon
Source: https://global.cctv.com/ipanda/index.shtml	HTTP Parser: No favicon
Source: https://global.cctv.com/chineseart/index.shtml	HTTP Parser: No favicon
Source: https://global.cctv.com/chineseart/index.shtml	HTTP Parser: No favicon
Source: https://global.cctv.com/tvplay/index.shtml	HTTP Parser: No favicon
Source: https://global.cctv.com/tvplay/index.shtml	HTTP Parser: No favicon
Source: https://global.cctv.com/tvplay/index.shtml	HTTP Parser: No favicon

Source: unknown

HTTPS traffic detected: 104.98.116.138:443 -> 192.168.2.7:49874 version: TLS 1.0

Source: unknown	HTTPS traffic detected: 2.19.104.72:443 -> 192.168.2.7:49735 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 2.19.104.72:443 -> 192.168.2.7:49753 version: TLS 1.2

Source: chrome.exe

Memory has grown: Private usage: 0MB later: 46MB

Source: unknown

HTTPS traffic detected: 104.98.116.138:443 -> 192.168.2.7:49874 version: TLS 1.0

Source: unknown	TCP traffic detected without corresponding DNS query: 104.98.116.138
Source: unknown	TCP traffic detected without corresponding DNS query: 104.98.116.138
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 104.98.116.138
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 20.50.201.200
Source: unknown	TCP traffic detected without corresponding DNS query: 20.50.201.200
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 104.98.116.138
Source: unknown	TCP traffic detected without corresponding DNS query: 104.98.116.138
Source: unknown	TCP traffic detected without corresponding DNS query: 104.98.116.138
Source: unknown	TCP traffic detected without corresponding DNS query: 20.50.201.200
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 20.50.201.200
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 104.98.116.138
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.72
Source: unknown	TCP traffic detected without corresponding DNS query: 20.50.201.200
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 20.50.201.200
Source: unknown	TCP traffic detected without corresponding DNS query: 104.98.116.138
Source: unknown	TCP traffic detected without corresponding DNS query: 104.98.116.138
Source: unknown	TCP traffic detected without corresponding DNS query: 104.98.116.138
Source: unknown	TCP traffic detected without corresponding DNS query: 104.98.116.138
Source: unknown	TCP traffic detected without corresponding DNS query: 104.98.116.138
Source: unknown	TCP traffic detected without corresponding DNS query: 104.98.116.138
Source: unknown	TCP traffic detected without corresponding DNS query: 20.50.201.200
Source: unknown	TCP traffic detected without corresponding DNS query: 104.98.116.138
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: new.aj848310310.workers.devConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2023/2/9/1675908806957_283.jpeg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://new.aj848310310.workers.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2021/12/16/1639647978733_722.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://new.aj848310310.workers.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2021/12/16/1639647987066_668.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://new.aj848310310.workers.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2024/5/16/1715852523327_201.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://new.aj848310310.workers.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dingding/open-develop/1.9.0/dingtalk.js HTTP/1.1Host: g.alicdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://new.aj848310310.workers.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/more_block.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://new.aj848310310.workers.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2024/5/11/1715413785495_157.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://new.aj848310310.workers.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/more_white.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://new.aj848310310.workers.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/04/17/2024041716582311144.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://new.aj848310310.workers.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/05/06/2024050618341420997.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://new.aj848310310.workers.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2023/2/9/1675908806957_283.jpeg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2021/12/16/1639647978733_722.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2024/4/29/1714384358205_528.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://new.aj848310310.workers.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2024/1/5/1704444622973_15.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://new.aj848310310.workers.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/u301.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://new.aj848310310.workers.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/u309.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://new.aj848310310.workers.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: /Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/headerDown.png?a HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://r.img.cctvpic.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2024/5/16/1715852415970_283.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://new.aj848310310.workers.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2024/4/9/1712655231625_491.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://new.aj848310310.workers.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2024/4/17/1713341021013_626.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://new.aj848310310.workers.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2022/10/28/1666941831543_1.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://new.aj848310310.workers.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2021/12/16/1639647987066_668.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/05/22/2024052210120068335.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://new.aj848310310.workers.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2024/5/16/1715852523327_201.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/05/22/2024052210125535078.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://new.aj848310310.workers.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2024/1/5/1704444622973_15.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2024/4/29/1714384358205_528.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/05/21/2024052110592369702.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://new.aj848310310.workers.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/05/21/2024052115272460075.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://new.aj848310310.workers.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/more_block.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/more_white.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2024/5/11/1715413785495_157.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/u309.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/u301.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/qrCode.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://new.aj848310310.workers.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/videoTime.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://new.aj848310310.workers.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/04/17/2024041716582311144.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2021/12/16/1639642349883_416.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://new.aj848310310.workers.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/05/22/2024052210125535078.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2021/12/16/1639642945608_585.png HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://new.aj848310310.workers.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/05/21/2024052110592369702.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/headerDown.png?a HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2024/4/17/1713341021013_626.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/wd.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://new.aj848310310.workers.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2024/4/9/1712655231625_491.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/yj.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://new.aj848310310.workers.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/qiu.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://new.aj848310310.workers.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2022/10/28/1666941831543_1.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ge.js HTTP/1.1Host: p.data.cctv.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://new.aj848310310.workers.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v.png?logtype=1&title=%E6%B5%B7%E5%A4%96%E9%A2%91%E9%81%93_%E5%A4%AE%E8%A7%86%E7%BD%91(cctv.com)&pre=&scr=1280x1024&spm-cnt=0.0.0.0.26d07f85MAzCqw&aplus&sidx=aplusSidex&cache=35dcaa1&lver=8.10.5&jsver=aplus_u&flashInfo=0.0.0&colorDepth=24&timeZone=-4&userSeqId=&_url_=https%253A%252F%252Fnew.aj848310310.workers.dev%252F&unixts=1716502933772&tag=0&stag=-2&lstag=-1 HTTP/1.1Host: p.data.cctv.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://new.aj848310310.workers.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2024/5/16/1715852415970_283.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/05/22/2024052210120068335.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/05/21/2024052115272460075.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2021/12/16/1639642945608_585.png HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/qrCode.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/videoTime.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/yj.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/wd.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/qiu.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/05/22/2024052217492999267.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://new.aj848310310.workers.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/05/17/2024051717583175090.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://new.aj848310310.workers.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/05/13/2024051317234563456.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://new.aj848310310.workers.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2021/12/16/1639642349883_416.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/05/06/2024050617583884766.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://new.aj848310310.workers.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/05/11/2024051117253591294.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://new.aj848310310.workers.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/04/30/2024043017005531784.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://new.aj848310310.workers.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/05/17/2024051717583175090.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/20220224_seat_jkdwq.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://new.aj848310310.workers.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/05/22/2024052217492999267.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/05/13/2024051317234563456.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: new.aj848310310.workers.devConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://new.aj848310310.workers.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: country_code=US; cna=oK/WHrBAuCICAQgue684aR4S
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/04/30/2024043017005531784.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/05/06/2024050617583884766.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/20220224_seat_jkdwq.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/05/11/2024051117253591294.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: new.aj848310310.workers.devConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: country_code=US; cna=oK/WHrBAuCICAQgue684aR4S
Source: global traffic	HTTP traffic detected: GET /fmspic/2024/05/22/305f848b656c4260865a1dc72139dfd5-1.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://new.aj848310310.workers.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fmspic/2024/05/17/9eddaa7d732c49f38c297648109130fd-1.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://new.aj848310310.workers.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fmspic/2024/05/22/b9eced76fb1945f79f2d5b9c896dfda1-1.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://new.aj848310310.workers.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fmspic/2024/05/20/a7f30a1dc32842aba0090418e5deaaf9-1.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://new.aj848310310.workers.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2023/2/9/1675908806957_283.jpeg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/u696.gif HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dingding/open-develop/1.9.0/dingtalk.js HTTP/1.1Host: g.alicdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/u309.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/u301.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/u696.gif HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/headerDown.png?a HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://r.img.cctvpic.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/qrCode.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ge.js HTTP/1.1Host: p.data.cctv.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sns.1.1?gmkey=&gokey=%20snsScene%3Dzq%26product%3Dtv%26flashInfo%3D0.0.0%26colorDepth%3D24%26timeZone%3D-4%26jsver%3Daplus_u%26lver%3D8.10.5%26pver%3Dundefined%26cache%3Dec95899&cna=&spm-cnt=undefined&logtype=2 HTTP/1.1Host: p.data.cctv.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v.png?logtype=1&title=%E5%8D%B3%E7%9C%8B_%E6%B5%B7%E5%A4%96%E9%A2%91%E9%81%93_%E5%A4%AE%E8%A7%86%E7%BD%91(cctv.com)&pre=&scr=1280x1024&spm-cnt=0.0.0.0.1eb13aedAKDdZ3&aplus&sidx=aplusSidex&cache=db65925&lver=8.10.5&jsver=aplus_u&flashInfo=0.0.0&colorDepth=24&timeZone=-4&userSeqId=&_url_=https%253A%252F%252Fglobal.cctv.com%252Ftrending%252Findex.shtml&unixts=1716502962454&tag=0&stag=-2&lstag=-1 HTTP/1.1Host: p.data.cctv.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sns.1.1?gmkey=&gokey=%20snsScene%3Dzq%26product%3Dtv%26flashInfo%3D0.0.0%26colorDepth%3D24%26timeZone%3D-4%26jsver%3Daplus_u%26lver%3D8.10.5%26pver%3Dundefined%26cache%3Dec95899&cna=&spm-cnt=undefined&logtype=2 HTTP/1.1Host: p.data.cctv.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: RT="z=1&dm=cctv.com&si=c7cbjj9c3rt&ss=lwjtjl8a&sl=0&tt=0"; sca=f69cc01a; atpsida=a0393bd1baceb635f235d030_1716502966_1; cna=tq/WHjdKEAMCAQgue69jV91J
Source: global traffic	HTTP traffic detected: GET /fmspic/2024/05/22/305f848b656c4260865a1dc72139dfd5-1.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fmspic/2024/05/17/9eddaa7d732c49f38c297648109130fd-1.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/videoTime.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://r.img.cctvpic.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fmspic/2024/05/22/b9eced76fb1945f79f2d5b9c896dfda1-1.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fmspic/2024/05/20/a7f30a1dc32842aba0090418e5deaaf9-1.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fmspic/2024/05/13/c1b3a4b1d62b46a4aac67d97d2920984-1.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v.png?logtype=1&title=%E5%8D%B3%E7%9C%8B_%E6%B5%B7%E5%A4%96%E9%A2%91%E9%81%93_%E5%A4%AE%E8%A7%86%E7%BD%91(cctv.com)&pre=&scr=1280x1024&spm-cnt=0.0.0.0.1eb13aedAKDdZ3&aplus&sidx=aplusSidex&cache=db65925&lver=8.10.5&jsver=aplus_u&flashInfo=0.0.0&colorDepth=24&timeZone=-4&userSeqId=&_url_=https%253A%252F%252Fglobal.cctv.com%252Ftrending%252Findex.shtml&unixts=1716502962454&tag=0&stag=-2&lstag=-1 HTTP/1.1Host: p.data.cctv.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cna=tq/WHjdKEAMCAQgue69jV91J; sca=a86bbb6b; atpsida=f289a7e2e7bcd34a4f296c6a_1716502967_1; RT="z=1&dm=cctv.com&si=c7cbjj9c3rt&ss=lwjtjhcl&sl=1&tt=888&ld=88b"
Source: global traffic	HTTP traffic detected: GET /fmspic/2024/05/15/612f454298ee407da1bf6c13bf254b17-1.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fmspic/2024/05/17/9eddaa7d732c49f38c297648109130fd-1.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fmspic/2024/05/22/305f848b656c4260865a1dc72139dfd5-1.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fmspic/2024/05/20/a7f30a1dc32842aba0090418e5deaaf9-1.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fmspic/2024/05/22/b9eced76fb1945f79f2d5b9c896dfda1-1.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fmspic/2024/05/13/c1b3a4b1d62b46a4aac67d97d2920984-1.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fmspic/2024/05/15/612f454298ee407da1bf6c13bf254b17-1.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/05/06/2024050618341420997.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2022/1/5/1641372069222_828.png HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2022/1/5/1641372246819_565.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/05/06/2024050618341420997.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2022/1/5/1641372069222_828.png HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sns.1.1?gmkey=&gokey=%20snsScene%3Dzq%26product%3Dtv%26flashInfo%3D0.0.0%26colorDepth%3D24%26timeZone%3D-4%26unixts%3D1716508937325%26jsver%3Daplus_u%26lver%3D8.10.5%26pver%3Dundefined%26cache%3Dc97ba8d&cna=tq%2FWHjdKEAMCAQgue69jV91J&spm-cnt=0.0.0.0.7a107510LHucOo&logtype=2 HTTP/1.1Host: p.data.cctv.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cna=tq/WHjdKEAMCAQgue69jV91J; sca=a86bbb6b; RT="z=1&dm=cctv.com&si=c7cbjj9c3rt&ss=lwjtjhcl&sl=1&tt=888&ld=88b"; atpsida=f289a7e2e7bcd34a4f296c6a_1716502969_2
Source: global traffic	HTTP traffic detected: GET /v.png?logtype=1&title=%E7%86%8A%E7%8C%AB%E9%A2%91%E9%81%93_%E6%B5%B7%E5%A4%96%E9%A2%91%E9%81%93_%E5%A4%AE%E8%A7%86%E7%BD%91(cctv.com)&pre=&scr=1280x1024&cna=tq/WHjdKEAMCAQgue69jV91J&spm-cnt=0.0.0.0.7a107510LHucOo&aplus&sidx=aplusSidex&cache=fd5880c&lver=8.10.5&jsver=aplus_u&flashInfo=0.0.0&colorDepth=24&timeZone=-4&userSeqId=&_url_=https%253A%252F%252Fglobal.cctv.com%252Fipanda%252Findex.shtml&unixts=1716508937284&tag=1&stag=-1&lstag=-1 HTTP/1.1Host: p.data.cctv.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cna=tq/WHjdKEAMCAQgue69jV91J; sca=a86bbb6b; RT="z=1&dm=cctv.com&si=c7cbjj9c3rt&ss=lwjtjhcl&sl=1&tt=888&ld=88b"; atpsida=f289a7e2e7bcd34a4f296c6a_1716502969_2
Source: global traffic	HTTP traffic detected: GET /photoAlbum/page/performance/img/2022/1/5/1641372246819_565.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sns.1.1?gmkey=&gokey=%20snsScene%3Dzq%26product%3Dtv%26flashInfo%3D0.0.0%26colorDepth%3D24%26timeZone%3D-4%26unixts%3D1716508937325%26jsver%3Daplus_u%26lver%3D8.10.5%26pver%3Dundefined%26cache%3Dc97ba8d&cna=tq%2FWHjdKEAMCAQgue69jV91J&spm-cnt=0.0.0.0.7a107510LHucOo&logtype=2 HTTP/1.1Host: p.data.cctv.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cna=tq/WHjdKEAMCAQgue69jV91J; sca=a86bbb6b; atpsida=f289a7e2e7bcd34a4f296c6a_1716502976_3; RT="z=1&dm=cctv.com&si=crvhs8yk1yn&ss=lwjx3lyk&sl=1&tt=5xc&ld=5xj"
Source: global traffic	HTTP traffic detected: GET /v.png?logtype=1&title=%E7%86%8A%E7%8C%AB%E9%A2%91%E9%81%93_%E6%B5%B7%E5%A4%96%E9%A2%91%E9%81%93_%E5%A4%AE%E8%A7%86%E7%BD%91(cctv.com)&pre=&scr=1280x1024&cna=tq/WHjdKEAMCAQgue69jV91J&spm-cnt=0.0.0.0.7a107510LHucOo&aplus&sidx=aplusSidex&cache=fd5880c&lver=8.10.5&jsver=aplus_u&flashInfo=0.0.0&colorDepth=24&timeZone=-4&userSeqId=&_url_=https%253A%252F%252Fglobal.cctv.com%252Fipanda%252Findex.shtml&unixts=1716508937284&tag=1&stag=-1&lstag=-1 HTTP/1.1Host: p.data.cctv.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cna=tq/WHjdKEAMCAQgue69jV91J; sca=a86bbb6b; atpsida=f289a7e2e7bcd34a4f296c6a_1716502976_3; RT="z=1&dm=cctv.com&si=crvhs8yk1yn&ss=lwjx3lyk&sl=1&tt=5xc&ld=5xj"
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/04/23/2024042315072031940.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/04/17/2024041716582311144.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/03/27/2024032711211557133.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/04/23/2024042315072031940.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/03/05/2024030518273331149.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/02/20/2024022017235130546.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/02/27/2024022716254788776.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/02/12/2024021214303987510.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/01/30/2024013016195350878.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/03/27/2024032711211557133.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/01/12/2024011215160994083.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/02/20/2024022017235130546.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/02/27/2024022716254788776.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/03/05/2024030518273331149.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/02/12/2024021214303987510.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2022/04/24/2022042416484920688.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/01/12/2024011215160994083.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2022/01/27/2022012712063291777.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2021/09/21/2021092118363595197.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/01/30/2024013016195350878.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2021/12/30/2021123015585718237.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2021/12/28/2021122817082525064.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2022/01/27/2022012712063291777.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2021/12/30/2021123015585718237.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2021/12/28/2021122816470844736.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2021/12/28/2021122817473068998.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2021/12/28/2021122817082525064.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2021/12/28/2021122816423131071.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2021/12/28/2021122816412155858.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2021/12/28/2021122816381157224.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2021/12/28/2021122816330824418.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2021/12/28/2021122816470844736.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2021/09/21/2021092118363595197.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2021/12/22/2021122217510261317.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2021/12/22/2021122217495739855.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2021/12/22/2021122217445963715.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2021/12/22/2021122217424593634.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2021/12/28/2021122816412155858.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2021/12/28/2021122816423131071.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2021/12/28/2021122816381157224.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2021/12/28/2021122817473068998.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2022/04/24/2022042416484920688.png HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2021/12/22/2021122217390911215.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2021/12/22/2021122217333591497.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2021/12/20/2021122017295595634.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2021/12/22/2021122217510261317.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v.png?logtype=1&title=%E4%B8%AD%E5%8D%8E%E6%96%87%E8%89%BA_%E6%B5%B7%E5%A4%96%E9%A2%91%E9%81%93_%E5%A4%AE%E8%A7%86%E7%BD%91(cctv.com)&pre=&scr=1280x1024&cna=tq/WHjdKEAMCAQgue69jV91J&spm-cnt=0.0.0.0.26c75b0bhQh7Y2&aplus&sidx=aplusSidex&cache=9782ca1&lver=8.10.5&jsver=aplus_u&flashInfo=0.0.0&colorDepth=24&timeZone=-4&userSeqId=&_url_=https%253A%252F%252Fglobal.cctv.com%252Fchineseart%252Findex.shtml&unixts=1716508957252&tag=1&stag=-1&lstag=-1 HTTP/1.1Host: p.data.cctv.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cna=tq/WHjdKEAMCAQgue69jV91J; sca=a86bbb6b; RT="z=1&dm=cctv.com&si=crvhs8yk1yn&ss=lwjx3lyk&sl=1&tt=5xc&ld=5xj"; atpsida=f289a7e2e7bcd34a4f296c6a_1716502978_4
Source: global traffic	HTTP traffic detected: GET /sns.1.1?gmkey=&gokey=%20snsScene%3Dzq%26product%3Dtv%26flashInfo%3D0.0.0%26colorDepth%3D24%26timeZone%3D-4%26unixts%3D1716508957267%26jsver%3Daplus_u%26lver%3D8.10.5%26pver%3Dundefined%26cache%3D29b2e28&cna=tq%2FWHjdKEAMCAQgue69jV91J&spm-cnt=0.0.0.0.26c75b0bhQh7Y2&logtype=2 HTTP/1.1Host: p.data.cctv.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cna=tq/WHjdKEAMCAQgue69jV91J; sca=a86bbb6b; RT="z=1&dm=cctv.com&si=crvhs8yk1yn&ss=lwjx3lyk&sl=1&tt=5xc&ld=5xj"; atpsida=f289a7e2e7bcd34a4f296c6a_1716502978_4
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2021/12/28/2021122816330824418.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2021/12/22/2021122217495739855.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2021/12/22/2021122217390911215.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2021/12/22/2021122217445963715.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2021/12/22/2021122217333591497.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2021/12/20/2021122017295595634.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/05/16/2024051617372282098.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/02/01/2024020116425793428.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/04/23/2024042317451725336.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/04/09/2024040917284475414.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/03/26/2024032616412778508.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/03/19/2024031916281187602.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/03/12/2024031217375413883.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v.png?logtype=1&title=%E4%B8%AD%E5%8D%8E%E6%96%87%E8%89%BA_%E6%B5%B7%E5%A4%96%E9%A2%91%E9%81%93_%E5%A4%AE%E8%A7%86%E7%BD%91(cctv.com)&pre=&scr=1280x1024&cna=tq/WHjdKEAMCAQgue69jV91J&spm-cnt=0.0.0.0.26c75b0bhQh7Y2&aplus&sidx=aplusSidex&cache=9782ca1&lver=8.10.5&jsver=aplus_u&flashInfo=0.0.0&colorDepth=24&timeZone=-4&userSeqId=&_url_=https%253A%252F%252Fglobal.cctv.com%252Fchineseart%252Findex.shtml&unixts=1716508957252&tag=1&stag=-1&lstag=-1 HTTP/1.1Host: p.data.cctv.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cna=tq/WHjdKEAMCAQgue69jV91J; sca=a86bbb6b; atpsida=f289a7e2e7bcd34a4f296c6a_1716502994_5; RT="z=1&dm=cctv.com&si=5z40u4qc5ew&ss=lwjx3lyk&sl=2&tt=h7b&rl=1&ld=jlt"
Source: global traffic	HTTP traffic detected: GET /sns.1.1?gmkey=&gokey=%20snsScene%3Dzq%26product%3Dtv%26flashInfo%3D0.0.0%26colorDepth%3D24%26timeZone%3D-4%26unixts%3D1716508957267%26jsver%3Daplus_u%26lver%3D8.10.5%26pver%3Dundefined%26cache%3D29b2e28&cna=tq%2FWHjdKEAMCAQgue69jV91J&spm-cnt=0.0.0.0.26c75b0bhQh7Y2&logtype=2 HTTP/1.1Host: p.data.cctv.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cna=tq/WHjdKEAMCAQgue69jV91J; sca=a86bbb6b; atpsida=f289a7e2e7bcd34a4f296c6a_1716502994_5; RT="z=1&dm=cctv.com&si=5z40u4qc5ew&ss=lwjx3lyk&sl=2&tt=h7b&rl=1&ld=jlt"
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/01/05/2024010517212741745.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/01/25/2024012516182221988.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2023/12/14/2023121417272956816.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/02/01/2024020116425793428.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/03/12/2024031217375413883.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/03/19/2024031916281187602.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/01/25/2024012516182221988.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/04/09/2024040917284475414.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/04/23/2024042317451725336.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/05/16/2024051617372282098.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/01/05/2024010517212741745.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2023/12/14/2023121417272956816.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoworkspace/2024/03/26/2024032616412778508.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v.png?logtype=1&title=%E7%83%AD%E6%92%AD%E5%89%A7%E5%9C%BA_%E6%B5%B7%E5%A4%96%E9%A2%91%E9%81%93_%E5%A4%AE%E8%A7%86%E7%BD%91(cctv.com)&pre=&scr=1280x1024&cna=tq/WHjdKEAMCAQgue69jV91J&spm-cnt=0.0.0.0.4c605844JmQCG8&aplus&sidx=aplusSidex&cache=28bdbe0&lver=8.10.5&jsver=aplus_u&flashInfo=0.0.0&colorDepth=24&timeZone=-4&userSeqId=&_url_=https%253A%252F%252Fglobal.cctv.com%252Ftvplay%252Findex.shtml&unixts=1716508992213&tag=1&stag=-1&lstag=-1 HTTP/1.1Host: p.data.cctv.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cna=tq/WHjdKEAMCAQgue69jV91J; sca=a86bbb6b; RT="z=1&dm=cctv.com&si=5z40u4qc5ew&ss=lwjx3lyk&sl=2&tt=h7b&rl=1&ld=jlt"; atpsida=f289a7e2e7bcd34a4f296c6a_1716502998_6
Source: global traffic	HTTP traffic detected: GET /sns.1.1?gmkey=&gokey=%20snsScene%3Dzq%26product%3Dtv%26flashInfo%3D0.0.0%26colorDepth%3D24%26timeZone%3D-4%26unixts%3D1716508992237%26jsver%3Daplus_u%26lver%3D8.10.5%26pver%3Dundefined%26cache%3Da6f5540&cna=tq%2FWHjdKEAMCAQgue69jV91J&spm-cnt=0.0.0.0.4c605844JmQCG8&logtype=2 HTTP/1.1Host: p.data.cctv.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cna=tq/WHjdKEAMCAQgue69jV91J; sca=a86bbb6b; RT="z=1&dm=cctv.com&si=5z40u4qc5ew&ss=lwjx3lyk&sl=2&tt=h7b&rl=1&ld=jlt"; atpsida=f289a7e2e7bcd34a4f296c6a_1716502998_6
Source: global traffic	HTTP traffic detected: GET /photoAlbum/vms/standard/img/2022/5/24/CHANRGf5JSUjYdxME82Ip95y220524.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/vms/standard/img/2022/2/24/VSETsxHPGWVWkEHl4FalGTNY220224.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/vms/standard/img/2022/1/28/VSETOS5QQ7dM16VkDMch6SPh220128.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/vms/standard/img/2022/1/14/VSETQ8ozmyJLWSLaHqH1hHqC220114.JPG HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/vms/standard/img/2022/1/5/VSETKUVzVYGlzKZiOTl49AmU220105.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/vms/standard/img/2023/8/10/VSETXVMkMCfcM6Fq0pbhsDhl230810.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://global.cctv.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sns.1.1?gmkey=&gokey=%20snsScene%3Dzq%26product%3Dtv%26flashInfo%3D0.0.0%26colorDepth%3D24%26timeZone%3D-4%26unixts%3D1716508992237%26jsver%3Daplus_u%26lver%3D8.10.5%26pver%3Dundefined%26cache%3Da6f5540&cna=tq%2FWHjdKEAMCAQgue69jV91J&spm-cnt=0.0.0.0.4c605844JmQCG8&logtype=2 HTTP/1.1Host: p.data.cctv.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cna=tq/WHjdKEAMCAQgue69jV91J; sca=a86bbb6b; RT="z=1&dm=cctv.com&si=8pqq2btrxgb&ss=lwjx3lyk&sl=2&tt=h7b&rl=1"; atpsida=f289a7e2e7bcd34a4f296c6a_1716503030_7
Source: global traffic	HTTP traffic detected: GET /v.png?logtype=1&title=%E7%83%AD%E6%92%AD%E5%89%A7%E5%9C%BA_%E6%B5%B7%E5%A4%96%E9%A2%91%E9%81%93_%E5%A4%AE%E8%A7%86%E7%BD%91(cctv.com)&pre=&scr=1280x1024&cna=tq/WHjdKEAMCAQgue69jV91J&spm-cnt=0.0.0.0.4c605844JmQCG8&aplus&sidx=aplusSidex&cache=28bdbe0&lver=8.10.5&jsver=aplus_u&flashInfo=0.0.0&colorDepth=24&timeZone=-4&userSeqId=&_url_=https%253A%252F%252Fglobal.cctv.com%252Ftvplay%252Findex.shtml&unixts=1716508992213&tag=1&stag=-1&lstag=-1 HTTP/1.1Host: p.data.cctv.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cna=tq/WHjdKEAMCAQgue69jV91J; sca=a86bbb6b; RT="z=1&dm=cctv.com&si=8pqq2btrxgb&ss=lwjx3lyk&sl=2&tt=h7b&rl=1"; atpsida=f289a7e2e7bcd34a4f296c6a_1716503030_7
Source: global traffic	HTTP traffic detected: GET /photoAlbum/vms/standard/img/2022/1/28/VSETOS5QQ7dM16VkDMch6SPh220128.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/vms/standard/img/2022/5/24/CHANRGf5JSUjYdxME82Ip95y220524.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/vms/standard/img/2023/8/10/VSETXVMkMCfcM6Fq0pbhsDhl230810.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/vms/standard/img/2022/1/5/VSETKUVzVYGlzKZiOTl49AmU220105.jpg HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/vms/standard/img/2022/1/14/VSETQ8ozmyJLWSLaHqH1hHqC220114.JPG HTTP/1.1Host: p1.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /photoAlbum/vms/standard/img/2022/2/24/VSETsxHPGWVWkEHl4FalGTNY220224.jpg HTTP/1.1Host: p2.img.cctvpic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9

Source: chromecache_337.2.dr, chromecache_697.2.dr	String found in binary or memory: <li class="language-item"><a href="https://www.facebook.com/cctv.cn" target="_blank"><img src="//p3.img.cctvpic.com/photoAlbum/page/performance/img/2021/12/27/1640578397052_827.png"></a></li> equals www.facebook.com (Facebook)
Source: chromecache_337.2.dr, chromecache_697.2.dr	String found in binary or memory: <li class="language-item"><a href="https://www.youtube.com/channel/UCnAsZ46UTeFEgwOEwMezngQ " target="_blank"><img src="//p5.img.cctvpic.com/photoAlbum/page/performance/img/2021/12/27/1640578423094_12.png"></a></li> equals www.youtube.com (Youtube)

Source: global traffic	DNS traffic detected: DNS query: new.aj848310310.workers.dev
Source: global traffic	DNS traffic detected: DNS query: r.img.cctvpic.com
Source: global traffic	DNS traffic detected: DNS query: ip.apps.cntv.cn
Source: global traffic	DNS traffic detected: DNS query: js.data.cctv.com
Source: global traffic	DNS traffic detected: DNS query: p2.img.cctvpic.com
Source: global traffic	DNS traffic detected: DNS query: p5.img.cctvpic.com
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: g.alicdn.com
Source: global traffic	DNS traffic detected: DNS query: p3.img.cctvpic.com
Source: global traffic	DNS traffic detected: DNS query: p4.img.cctvpic.com
Source: global traffic	DNS traffic detected: DNS query: p1.img.cctvpic.com
Source: global traffic	DNS traffic detected: DNS query: time.windows.com
Source: global traffic	DNS traffic detected: DNS query: p.data.cctv.com
Source: global traffic	DNS traffic detected: DNS query: s.go-mpulse.net
Source: global traffic	DNS traffic detected: DNS query: api.cntv.cn
Source: global traffic	DNS traffic detected: DNS query: c.go-mpulse.net
Source: global traffic	DNS traffic detected: DNS query: global.cctv.com

Source: chromecache_697.2.dr	String found in binary or memory: http://tv.cntv.cn/video/C18472/a28126e5e0424a44af6a9bc4c5a47742
Source: chromecache_337.2.dr, chromecache_697.2.dr	String found in binary or memory: https://big5.cctv.com/gate/big5/global.cctv.com/index.shtml
Source: chromecache_337.2.dr	String found in binary or memory: https://english.cctv.com
Source: chromecache_337.2.dr, chromecache_697.2.dr	String found in binary or memory: https://english.cctv.com/
Source: chromecache_337.2.dr	String found in binary or memory: https://english.cctv.com/2024/05/21/VIDEfPG2sOQ12cJY2auI7CFO240521.shtml
Source: chromecache_337.2.dr	String found in binary or memory: https://english.cctv.com/2024/05/21/VIDEgbN6f2aOMAEB4nnzUxKD240521.shtml
Source: chromecache_337.2.dr	String found in binary or memory: https://english.cctv.com/2024/05/22/VIDE5na0sYqb4Gh4jCC0lIWi240522.shtml
Source: chromecache_337.2.dr	String found in binary or memory: https://english.cctv.com/2024/05/22/VIDEBSzLcUwoXmydKNNY9RHP240522.shtml
Source: chromecache_337.2.dr	String found in binary or memory: https://english.cctv.com/2024/05/22/VIDELFEK2xSCmXlIIosRtTCt240522.shtml
Source: chromecache_337.2.dr	String found in binary or memory: https://english.cctv.com/2024/05/22/VIDESnvSPhPKcQJqndeJCCYS240522.shtml
Source: chromecache_337.2.dr	String found in binary or memory: https://english.cctv.com/video/chinaqa/index.shtml
Source: chromecache_337.2.dr	String found in binary or memory: https://english.cctv.com/video/globalview/index.shtml
Source: chromecache_337.2.dr	String found in binary or memory: https://english.cctv.com/video/trending/index.shtml
Source: chromecache_412.2.dr, chromecache_544.2.dr	String found in binary or memory: https://global.cctv.com/2021/02/10/VIDEU3h11pSDpyyKTZBo93IY210210.shtml
Source: chromecache_412.2.dr, chromecache_544.2.dr	String found in binary or memory: https://global.cctv.com/2021/09/20/VIDEJQD9ibsVwhSq4s8Z7fwK210920.shtml
Source: chromecache_412.2.dr, chromecache_544.2.dr	String found in binary or memory: https://global.cctv.com/2021/12/31/VIDEXsi4NNynHHoVj7aPMi91211231.shtml
Source: chromecache_412.2.dr, chromecache_544.2.dr	String found in binary or memory: https://global.cctv.com/2022/01/26/VIDEBeuohbzd2eVLM5LPtvSa220126.shtml
Source: chromecache_412.2.dr, chromecache_544.2.dr	String found in binary or memory: https://global.cctv.com/2022/01/31/VIDEfSFYP2XBCDXXU438564N220131.shtml
Source: chromecache_337.2.dr	String found in binary or memory: https://global.cctv.com/2022/02/24/VIDA3zs6lcqv8Zr0KCPHLahS220224.shtml
Source: chromecache_412.2.dr, chromecache_544.2.dr	String found in binary or memory: https://global.cctv.com/2022/04/01/VIDEpZuQPIThclZeQ6WVGmA4220401.shtml
Source: chromecache_412.2.dr, chromecache_544.2.dr	String found in binary or memory: https://global.cctv.com/2022/04/21/VIDEiz0af6ei4EvOLxO2l5Si220421.shtml
Source: chromecache_412.2.dr, chromecache_544.2.dr	String found in binary or memory: https://global.cctv.com/2022/04/24/VIDE7SEW8swIpBzknvxlcN1J220424.shtml
Source: chromecache_412.2.dr, chromecache_544.2.dr	String found in binary or memory: https://global.cctv.com/2022/04/29/VIDEerDpsRgZM3i92OG9HLxO220429.shtml
Source: chromecache_337.2.dr	String found in binary or memory: https://global.cctv.com/2022/05/24/VIDAGyhr0ik6vae1Xc7keg5F220524.shtml
Source: chromecache_412.2.dr, chromecache_544.2.dr	String found in binary or memory: https://global.cctv.com/2022/05/31/VIDEiuL3asZosXFT0V1SKW23220531.shtml
Source: chromecache_412.2.dr, chromecache_544.2.dr	String found in binary or memory: https://global.cctv.com/2022/06/09/VIDEJ1AnjlsMsn61leYcYTLC220609.shtml
Source: chromecache_337.2.dr	String found in binary or memory: https://global.cctv.com/2022/10/26/VIDAmQCuQliFkWGZ86ceXEWz221026.shtml
Source: chromecache_337.2.dr	String found in binary or memory: https://global.cctv.com/2023/04/20/VIDAJcjiAwMh7xRQc2N13Y7Q230420.shtml
Source: chromecache_337.2.dr	String found in binary or memory: https://global.cctv.com/2023/04/20/VIDAxuIyiyt7QMapiIDJGMMl230420.shtml
Source: chromecache_487.2.dr	String found in binary or memory: https://global.cctv.com/2023/09/05/ARTI4KtC8spNw8I1CtnW8w0U230905.shtml
Source: chromecache_487.2.dr	String found in binary or memory: https://global.cctv.com/2023/09/05/ARTIPnXxfew1xHb5kUMIMALB230905.shtml
Source: chromecache_487.2.dr	String found in binary or memory: https://global.cctv.com/2023/09/05/ARTIVeRqjM6LgbpDMQBUKUtD230905.shtml
Source: chromecache_487.2.dr	String found in binary or memory: https://global.cctv.com/2023/09/05/ARTIWTWqdMIEnadLhiVwX86M230905.shtml
Source: chromecache_487.2.dr	String found in binary or memory: https://global.cctv.com/2023/09/05/ARTIfOXZXOFfuYn0kY4JRLK3230905.shtml
Source: chromecache_487.2.dr	String found in binary or memory: https://global.cctv.com/2023/09/05/ARTImkM6K0AGzXJHVeTDNPqE230905.shtml
Source: chromecache_487.2.dr	String found in binary or memory: https://global.cctv.com/2023/09/05/ARTIpJ4J2pvXIrWVJsaN71e1230905.shtml
Source: chromecache_487.2.dr	String found in binary or memory: https://global.cctv.com/2023/09/05/ARTIyuxXBiYw01RAvkFXDCkB230905.shtml
Source: chromecache_337.2.dr	String found in binary or memory: https://global.cctv.com/2023/09/05/VIDAEtC6u2YOQRKI9Y8gDgav230905.shtml
Source: chromecache_337.2.dr	String found in binary or memory: https://global.cctv.com/2023/09/05/VIDAaLMaHLBgFyQ68EpBn2kL230905.shtml
Source: chromecache_337.2.dr	String found in binary or memory: https://global.cctv.com/2023/09/05/VIDAwicmgfLWTyM7l8J1krrM230905.shtml
Source: chromecache_487.2.dr	String found in binary or memory: https://global.cctv.com/2023/09/07/ARTIn9gpgiX7yPfvNdA6uf5B230907.shtml
Source: chromecache_487.2.dr	String found in binary or memory: https://global.cctv.com/2023/10/31/ARTI0wDCGD4oKpZyWDxRNBEt231031.shtml
Source: chromecache_487.2.dr	String found in binary or memory: https://global.cctv.com/2023/10/31/ARTI93QpvSeN6YhpcnIpsyyv231031.shtml
Source: chromecache_487.2.dr	String found in binary or memory: https://global.cctv.com/2023/10/31/ARTIBnn5G1vxljZT7apBO33c231031.shtml
Source: chromecache_487.2.dr	String found in binary or memory: https://global.cctv.com/2023/10/31/ARTIGUyJsUVZVPuiFRPSOc9F231031.shtml
Source: chromecache_487.2.dr	String found in binary or memory: https://global.cctv.com/2023/10/31/ARTILN7w2kxW4ahvrRh9QDGe231031.shtml
Source: chromecache_487.2.dr	String found in binary or memory: https://global.cctv.com/2023/10/31/ARTIRSjPC25JVU4J2bEsQZws231031.shtml
Source: chromecache_487.2.dr	String found in binary or memory: https://global.cctv.com/2023/10/31/ARTIevzm3VAQKKRafrD6T0IB231031.shtml
Source: chromecache_487.2.dr	String found in binary or memory: https://global.cctv.com/2023/10/31/ARTIl7jzhbPLTDKxsmiZkZWM231031.shtml
Source: chromecache_487.2.dr	String found in binary or memory: https://global.cctv.com/2023/10/31/ARTIswrGcyiPDlLRNyTDXxlp231031.shtml
Source: chromecache_487.2.dr	String found in binary or memory: https://global.cctv.com/2023/10/31/ARTIvO0azZOJRPpUJMi7jXzT231031.shtml
Source: chromecache_533.2.dr	String found in binary or memory: https://global.cctv.com/2023/12/14/VIDEQkQOYCr8oLvQxwWgsQha231214.shtml
Source: chromecache_533.2.dr	String found in binary or memory: https://global.cctv.com/2023/12/21/VIDEurSM6xqsXbiIx0BIKNiX231221.shtml
Source: chromecache_487.2.dr	String found in binary or memory: https://global.cctv.com/2023/12/25/ARTIPAHrV7k9WwD6hAKi6eKO231225.shtml
Source: chromecache_533.2.dr	String found in binary or memory: https://global.cctv.com/2023/12/26/VIDEn0BveF9bqICF6pALihre231226.shtml
Source: chromecache_533.2.dr	String found in binary or memory: https://global.cctv.com/2023/12/29/VIDEHHwUJP59d8InCf1i6Xim231229.shtml
Source: chromecache_337.2.dr	String found in binary or memory: https://global.cctv.com/2024/01/04/VIDA67j3voAdnoOXh5b5LYg1240104.shtml
Source: chromecache_337.2.dr	String found in binary or memory: https://global.cctv.com/2024/01/05/VIDAdIJ19w96zsZa2Xye0UGI240105.shtml
Source: chromecache_533.2.dr	String found in binary or memory: https://global.cctv.com/2024/01/05/VIDEKdfu5a3p7yyySVPk6NpW240105.shtml
Source: chromecache_309.2.dr	String found in binary or memory: https://global.cctv.com/2024/01/07/VIDESTE1xiA2eTxq63beIOjF240107.shtml
Source: chromecache_533.2.dr	String found in binary or memory: https://global.cctv.com/2024/01/11/VIDEFud6SynwnOG4dYvTyM1o240111.shtml
Source: chromecache_309.2.dr	String found in binary or memory: https://global.cctv.com/2024/01/12/VIDEkHjmKeBV7OUwjD3XDSb9240112.shtml
Source: chromecache_533.2.dr	String found in binary or memory: https://global.cctv.com/2024/01/17/VIDEpD9hG0nswUh1uQof1rTN240117.shtml
Source: chromecache_309.2.dr	String found in binary or memory: https://global.cctv.com/2024/01/19/VIDE03HWK4eouRLmnjnrH5xL240119.shtml
Source: chromecache_309.2.dr	String found in binary or memory: https://global.cctv.com/2024/01/23/VIDEVLKzR2wcH7qODltetAMR240123.shtml
Source: chromecache_533.2.dr	String found in binary or memory: https://global.cctv.com/2024/01/25/VIDEtsdsWZUf39HLBHfCEdzp240125.shtml
Source: chromecache_309.2.dr	String found in binary or memory: https://global.cctv.com/2024/01/26/VIDErG7ThI4C7SBvuIo9zWVf240126.shtml
Source: chromecache_309.2.dr	String found in binary or memory: https://global.cctv.com/2024/01/30/VIDEBD8744b1TKlNz7tpOFVR240130.shtml
Source: chromecache_533.2.dr	String found in binary or memory: https://global.cctv.com/2024/02/01/VIDEidKRV2bBlbCnt87PtG0P240201.shtml
Source: chromecache_533.2.dr	String found in binary or memory: https://global.cctv.com/2024/02/01/VIDElqwMFHmKbTkP9Swi4S7g240201.shtml
Source: chromecache_309.2.dr	String found in binary or memory: https://global.cctv.com/2024/02/07/VIDEj9ByOZYACxoG4uOhCqAt240207.shtml
Source: chromecache_309.2.dr	String found in binary or memory: https://global.cctv.com/2024/02/20/VIDEFVn4oYOoPfkByvxGkKT6240220.shtml
Source: chromecache_309.2.dr	String found in binary or memory: https://global.cctv.com/2024/02/27/VIDETpnHAt85dyrG7wp5XF1Z240227.shtml
Source: chromecache_533.2.dr	String found in binary or memory: https://global.cctv.com/2024/02/28/VIDEBBP6L6rtXKsfMqAq9WOu240228.shtml
Source: chromecache_309.2.dr	String found in binary or memory: https://global.cctv.com/2024/03/05/VIDEfC87gbQKLfecN3Zquuza240305.shtml
Source: chromecache_533.2.dr	String found in binary or memory: https://global.cctv.com/2024/03/07/VIDEca2wymXSSGUXG91gYj0L240307.shtml
Source: chromecache_309.2.dr	String found in binary or memory: https://global.cctv.com/2024/03/12/VIDE4VGqpcFV28MwqOzGhVDF240312.shtml
Source: chromecache_533.2.dr	String found in binary or memory: https://global.cctv.com/2024/03/12/VIDEPbSJmG7kzsDX0KMBRYeM240312.shtml
Source: chromecache_533.2.dr	String found in binary or memory: https://global.cctv.com/2024/03/19/VIDE4KgqGcVjwaDyHRoXcRcX240319.shtml
Source: chromecache_309.2.dr	String found in binary or memory: https://global.cctv.com/2024/03/19/VIDEKHaX1zVdLGTiXtBp2mbQ240319.shtml
Source: chromecache_533.2.dr	String found in binary or memory: https://global.cctv.com/2024/03/26/VIDEKm2YtBNYlaFyD3Rx8uqy240326.shtml
Source: chromecache_309.2.dr	String found in binary or memory: https://global.cctv.com/2024/03/27/VIDESmMVFfijP2uGGIjLir9S240327.shtml
Source: chromecache_309.2.dr	String found in binary or memory: https://global.cctv.com/2024/03/29/VIDEc2K54nLkVyqgfIoZTUcx240329.shtml
Source: chromecache_533.2.dr	String found in binary or memory: https://global.cctv.com/2024/04/02/VIDEhqpbiRO8V2JdjHfdjht9240402.shtml
Source: chromecache_309.2.dr	String found in binary or memory: https://global.cctv.com/2024/04/02/VIDEo9Y3nUzXnaG6pR3raI56240402.shtml
Source: chromecache_337.2.dr, chromecache_533.2.dr	String found in binary or memory: https://global.cctv.com/2024/04/09/VIDEgAlZJ2tzdoMKbLip6Pqj240409.shtml
Source: chromecache_337.2.dr, chromecache_309.2.dr	String found in binary or memory: https://global.cctv.com/2024/04/09/VIDElnFiHVgtXkczFNadUsVS240409.shtml
Source: chromecache_313.2.dr	String found in binary or memory: https://global.cctv.com/2024/04/10/VIDENVnAHgjxtFhAIYjMknbQ240410.shtml
Source: chromecache_313.2.dr	String found in binary or memory: https://global.cctv.com/2024/04/11/VIDE3TMPYkusvOilxwyl7Oiw240411.shtml
Source: chromecache_313.2.dr	String found in binary or memory: https://global.cctv.com/2024/04/12/VIDEc2f4a7F6rKgs1VeeL50F240412.shtml
Source: chromecache_313.2.dr	String found in binary or memory: https://global.cctv.com/2024/04/15/VIDETw02EpfU08y6JSMrw7pS240415.shtml
Source: chromecache_337.2.dr, chromecache_309.2.dr	String found in binary or memory: https://global.cctv.com/2024/04/16/VIDExdOUgj5Z2Og3yteEBPYz240416.shtml
Source: chromecache_337.2.dr, chromecache_533.2.dr	String found in binary or memory: https://global.cctv.com/2024/04/17/VIDEUAMvdXJPYE62CLzYJdlf240417.shtml
Source: chromecache_313.2.dr	String found in binary or memory: https://global.cctv.com/2024/04/18/VIDELjtGff7cRIHOJKojBCVT240418.shtml
Source: chromecache_313.2.dr	String found in binary or memory: https://global.cctv.com/2024/04/19/VIDEBbJkL03RoaGKQQkyf5Bn240419.shtml
Source: chromecache_313.2.dr	String found in binary or memory: https://global.cctv.com/2024/04/22/VIDEiVv2cvPxa5H9vC1SWeWy240422.shtml
Source: chromecache_337.2.dr, chromecache_533.2.dr	String found in binary or memory: https://global.cctv.com/2024/04/23/VIDEmvf6IN793Nb2zhhOSLXG240423.shtml
Source: chromecache_337.2.dr, chromecache_309.2.dr	String found in binary or memory: https://global.cctv.com/2024/04/23/VIDEr4luvFbodbMMglebiC27240423.shtml
Source: chromecache_313.2.dr	String found in binary or memory: https://global.cctv.com/2024/04/24/VIDECeuegmxOV0Ta0CFQijAE240424.shtml
Source: chromecache_313.2.dr	String found in binary or memory: https://global.cctv.com/2024/04/25/VIDEbpqQOxDQ5fOY3ndbItaR240425.shtml
Source: chromecache_313.2.dr	String found in binary or memory: https://global.cctv.com/2024/04/26/VIDEBuecJexrL2aDiE1JYbyV240426.shtml
Source: chromecache_313.2.dr	String found in binary or memory: https://global.cctv.com/2024/04/28/VIDEJYsLZg7f9oAcMfh7MXWE240428.shtml
Source: chromecache_337.2.dr	String found in binary or memory: https://global.cctv.com/2024/04/29/VIDELoBdOnUZF5wh6CtxFoYr240429.shtml
Source: chromecache_313.2.dr	String found in binary or memory: https://global.cctv.com/2024/04/30/VIDETgJMPMdFLtlO28qmXx0Q240430.shtml
Source: chromecache_337.2.dr	String found in binary or memory: https://global.cctv.com/2024/05/04/VIDE28twbkadHG8MU8TjI3RZ240504.shtml
Source: chromecache_313.2.dr	String found in binary or memory: https://global.cctv.com/2024/05/06/VIDECRquvnIvjwoHFDEhGxCq240506.shtml
Source: chromecache_697.2.dr, chromecache_309.2.dr	String found in binary or memory: https://global.cctv.com/2024/05/06/VIDEEn3nIFpB9u9HNPMrHnFP240506.shtml
Source: chromecache_313.2.dr	String found in binary or memory: https://global.cctv.com/2024/05/08/VIDEURIvmNPfXYJNzNO4zF0J240508.shtml
Source: chromecache_337.2.dr	String found in binary or memory: https://global.cctv.com/2024/05/09/VIDEJC1ilIn1vn7tNjH6rL0g240509.shtml
Source: chromecache_337.2.dr	String found in binary or memory: https://global.cctv.com/2024/05/09/VIDEJC1ilIn1vn7tNjH6rL0g240509.shtml)
Source: chromecache_313.2.dr	String found in binary or memory: https://global.cctv.com/2024/05/11/VIDEDrb9gvdeTRSrN5s6n3ZH240511.shtml
Source: chromecache_313.2.dr	String found in binary or memory: https://global.cctv.com/2024/05/13/VIDEFlMBWB1zlzuQp4ILvEVh240513.shtml
Source: chromecache_697.2.dr, chromecache_309.2.dr	String found in binary or memory: https://global.cctv.com/2024/05/13/VIDEVbqHCwQo9sqh747NK5k6240513.shtml
Source: chromecache_313.2.dr	String found in binary or memory: https://global.cctv.com/2024/05/15/VIDEZOfZSDyDS4G5bAUXq5X1240515.shtml
Source: chromecache_337.2.dr, chromecache_533.2.dr	String found in binary or memory: https://global.cctv.com/2024/05/16/VIDEVYSwu2ciU6KL1hYnPFCz240516.shtml
Source: chromecache_337.2.dr	String found in binary or memory: https://global.cctv.com/2024/05/16/VIDEVYSwu2ciU6KL1hYnPFCz240516.shtml)
Source: chromecache_313.2.dr	String found in binary or memory: https://global.cctv.com/2024/05/17/VIDE9ixSMKTcCAJ0MnZYzBGF240517.shtml
Source: chromecache_313.2.dr	String found in binary or memory: https://global.cctv.com/2024/05/20/VIDESQuL7aXkU7izUqQ2Com8240520.shtml
Source: chromecache_697.2.dr	String found in binary or memory: https://global.cctv.com/2024/05/21/VIDEr9o2GnNKFlcscsNdjr8Z240521.shtml
Source: chromecache_337.2.dr	String found in binary or memory: https://global.cctv.com/2024/05/21/VIDEr9o2GnNKFlcscsNdjr8Z240521.shtml)
Source: chromecache_313.2.dr	String found in binary or memory: https://global.cctv.com/2024/05/22/VIDEAiBUWnXveGzLMi6q0yLJ240522.shtml
Source: chromecache_337.2.dr, chromecache_697.2.dr	String found in binary or memory: https://global.cctv.com/chineseart/index.shtml
Source: chromecache_337.2.dr, chromecache_697.2.dr	String found in binary or memory: https://global.cctv.com/chinesegourmet/index.shtml
Source: chromecache_337.2.dr	String found in binary or memory: https://global.cctv.com/cmsdatainterface/guonei/new/page/PAGEAcAwQE2rxqQd91IljaY7210126_1.jsonp
Source: chromecache_697.2.dr	String found in binary or memory: https://global.cctv.com/cmsdatainterface/guonei/new/page/PAGEBaWhj2ZEWMJOi90M4Jmc211130_1.jsonp
Source: chromecache_697.2.dr	String found in binary or memory: https://global.cctv.com/cmsdatainterface/guonei/new/page/PAGEFNT1SDAoNhCG1sGfCfLo211130_1.jsonp
Source: chromecache_697.2.dr	String found in binary or memory: https://global.cctv.com/cmsdatainterface/guonei/new/page/PAGEFrARELeVF5KwhbEdFdxw211130_1.jsonp
Source: chromecache_337.2.dr	String found in binary or memory: https://global.cctv.com/cmsdatainterface/guonei/new/page/PAGEHo0GzuvzyA5MIci6BUsg210126_1.jsonp
Source: chromecache_337.2.dr	String found in binary or memory: https://global.cctv.com/cmsdatainterface/guonei/new/page/PAGEZ8HZ8JSmzO1F6GiAYTi9211130_1.jsonp
Source: chromecache_697.2.dr	String found in binary or memory: https://global.cctv.com/cmsdatainterface/guonei/new/page/PAGEk6YL6jizYeCw4toEoyKu211130_1.jsonp
Source: chromecache_697.2.dr	String found in binary or memory: https://global.cctv.com/cmsdatainterface/guonei/new/page/PAGEtNFrveft3Mt0wLWcmhcl211130_1.jsonp
Source: chromecache_337.2.dr	String found in binary or memory: https://global.cctv.com/cmsdatainterface/guonei/new/video/PAGEnL0TSDsFQ26XkCx4G7Kl210126_1.jsonp
Source: chromecache_337.2.dr	String found in binary or memory: https://global.cctv.com/cmsdatainterface/guowai/new/page/PAGEAcAwQE2rxqQd91IljaY7210126_1.jsonp
Source: chromecache_697.2.dr	String found in binary or memory: https://global.cctv.com/cmsdatainterface/guowai/new/page/PAGEBaWhj2ZEWMJOi90M4Jmc211130_1.jsonp
Source: chromecache_697.2.dr	String found in binary or memory: https://global.cctv.com/cmsdatainterface/guowai/new/page/PAGEFNT1SDAoNhCG1sGfCfLo211130_1.jsonp
Source: chromecache_697.2.dr	String found in binary or memory: https://global.cctv.com/cmsdatainterface/guowai/new/page/PAGEFrARELeVF5KwhbEdFdxw211130_1.jsonp
Source: chromecache_337.2.dr	String found in binary or memory: https://global.cctv.com/cmsdatainterface/guowai/new/page/PAGEHo0GzuvzyA5MIci6BUsg210126_1.jsonp
Source: chromecache_337.2.dr	String found in binary or memory: https://global.cctv.com/cmsdatainterface/guowai/new/page/PAGEZ8HZ8JSmzO1F6GiAYTi9211130_1.jsonp
Source: chromecache_697.2.dr	String found in binary or memory: https://global.cctv.com/cmsdatainterface/guowai/new/page/PAGEk6YL6jizYeCw4toEoyKu211130_1.jsonp
Source: chromecache_697.2.dr	String found in binary or memory: https://global.cctv.com/cmsdatainterface/guowai/new/page/PAGEtNFrveft3Mt0wLWcmhcl211130_1.jsonp
Source: chromecache_337.2.dr	String found in binary or memory: https://global.cctv.com/cmsdatainterface/guowai/new/video/PAGEnL0TSDsFQ26XkCx4G7Kl210126_1.jsonp
Source: chromecache_697.2.dr	String found in binary or memory: https://global.cctv.com/crossstrait/index.shtml
Source: chromecache_697.2.dr	String found in binary or memory: https://global.cctv.com/documentary/index.shtml
Source: chromecache_337.2.dr, chromecache_697.2.dr	String found in binary or memory: https://global.cctv.com/event/index.shtml
Source: chromecache_337.2.dr, chromecache_697.2.dr	String found in binary or memory: https://global.cctv.com/index.shtml
Source: chromecache_697.2.dr	String found in binary or memory: https://global.cctv.com/ipanda/hipanda/index.shtml
Source: chromecache_337.2.dr, chromecache_697.2.dr	String found in binary or memory: https://global.cctv.com/ipanda/index.shtml
Source: chromecache_697.2.dr	String found in binary or memory: https://global.cctv.com/ipanda/nationalpark/index.shtml
Source: chromecache_697.2.dr	String found in binary or memory: https://global.cctv.com/ipanda/pandastories/index.shtml
Source: chromecache_697.2.dr	String found in binary or memory: https://global.cctv.com/ipanda/pandatroupe/index.shtml
Source: chromecache_337.2.dr, chromecache_697.2.dr	String found in binary or memory: https://global.cctv.com/live/index.shtml
Source: chromecache_337.2.dr, chromecache_697.2.dr	String found in binary or memory: https://global.cctv.com/trending/index.shtml
Source: chromecache_337.2.dr, chromecache_697.2.dr	String found in binary or memory: https://global.cctv.com/tvplay/index.shtml
Source: chromecache_337.2.dr, chromecache_697.2.dr	String found in binary or memory: https://global.cctv.com/wehk/index.shtml
Source: chromecache_337.2.dr, chromecache_697.2.dr	String found in binary or memory: https://global.cctv.com/zgmk/index.shtml
Source: chromecache_337.2.dr, chromecache_697.2.dr	String found in binary or memory: https://js.data.cctv.com/__aplus_plugin_cctv.js
Source: chromecache_412.2.dr, chromecache_544.2.dr	String found in binary or memory: https://p1.img.cctvpic.com/fmspic/2022/01/31/8877b8579a057d078a69b4e016b1e1fd-36070871-0.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p1.img.cctvpic.com/fmspic/2022/08/02/1d76568b707c4221bbc2708b324aa255-39079663-2.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p1.img.cctvpic.com/fmspic/2022/08/04/41d13133b1674446a6c7391ab87d9e37-39122955-0.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p1.img.cctvpic.com/fmspic/2022/08/05/c057341b60de4e8687e2508618d932c5-39142431-2.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p1.img.cctvpic.com/fmspic/2022/08/09/8a2c71bc71914063a1fc189e162d48d9-39208379-2.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p1.img.cctvpic.com/fmspic/2022/08/11/c79c07d9b20e4220820f1d30d8fe93a5-39246591-2.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p1.img.cctvpic.com/fmspic/2022/08/13/85551ae94e9644179999536d4061a39d-39277761-2.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p1.img.cctvpic.com/fmspic/2022/08/17/f256259148734504a36442c3a322d5c4-39345877-0.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p1.img.cctvpic.com/fmspic/2022/08/20/03a0b5c45fd54e44ab9239d64782287e-39395389-0.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p1.img.cctvpic.com/fmspic/2023/12/14/26cd4dfb0a03385759976fd83e1dae10-46887573-0.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p1.img.cctvpic.com/fmspic/2024/01/05/6a89e3822497a02bd8ffa8e80411ab2e-47149875-0.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p1.img.cctvpic.com/fmspic/2024/01/05/6a89e3822497a02bd8ffa8e80411ab2e-47149875-2.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p1.img.cctvpic.com/fmspic/2024/01/17/6d69dbf2e48866041c550d8f8c70a793-47297677-0.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p1.img.cctvpic.com/fmspic/2024/01/23/acf7f77e731445598e19b5cf1303ba81-1.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p1.img.cctvpic.com/fmspic/2024/01/25/d7311e7c9f84ccb3159a3732704bef89-47396777-2.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p1.img.cctvpic.com/fmspic/2024/02/01/c85f73cac9938cfd8e193430e3d1b227-47482921-2.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p1.img.cctvpic.com/fmspic/2024/02/28/e450b489c68a1cc7625ee50e25663ae3-47778621-2.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p1.img.cctvpic.com/fmspic/2024/03/05/bfbc191ebeab48bb88807c0422122fbc-1.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p1.img.cctvpic.com/fmspic/2024/03/07/60b048eb81d6ce9ff4c9ef718aed611b-47870479-0.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p1.img.cctvpic.com/fmspic/2024/03/27/fd05f8b0672543969dfe35def3e066ab-300.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p1.img.cctvpic.com/fmspic/2024/04/09/89177c4313c645a7b83681b38aad42d5-1.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p1.img.cctvpic.com/fmspic/2024/04/16/9771d3d6054a4552b2c3695cb07e1c69-300.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p1.img.cctvpic.com/photoworkspace/2023/12/14/2023121417272956816.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p1.img.cctvpic.com/photoworkspace/2024/01/05/2024010517212741745.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p1.img.cctvpic.com/photoworkspace/2024/01/12/2024011215160994083.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p1.img.cctvpic.com/photoworkspace/2024/01/30/2024013016195350878.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p1.img.cctvpic.com/photoworkspace/2024/02/27/2024022716254788776.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p1.img.cctvpic.com/photoworkspace/2024/03/05/2024030518273331149.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p1.img.cctvpic.com/photoworkspace/2024/03/26/2024032616412778508.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p1.img.cctvpic.com/photoworkspace/2024/04/09/2024040917284475414.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p1.img.cctvpic.com/photoworkspace/2024/04/11/2024041117290917838.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p1.img.cctvpic.com/photoworkspace/2024/04/22/2024042217035153588.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p1.img.cctvpic.com/photoworkspace/2024/04/23/2024042315072031940.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p1.img.cctvpic.com/photoworkspace/2024/04/23/2024042317451725336.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p1.img.cctvpic.com/photoworkspace/2024/04/30/2024043017005531784.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p1.img.cctvpic.com/photoworkspace/2024/05/06/2024050617583884766.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p1.img.cctvpic.com/photoworkspace/2024/05/13/2024051317234563456.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p1.img.cctvpic.com/photoworkspace/2024/05/16/2024051617372282098.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p1.img.cctvpic.com/photoworkspace/2024/05/17/2024051717583175090.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p1.img.cctvpic.com/photoworkspace/2024/05/22/2024052217492999267.jpg
Source: chromecache_412.2.dr, chromecache_544.2.dr	String found in binary or memory: https://p2.img.cctvpic.com/fmspic/2021/09/20/5e55298edbcce99dcc136079e166cd6f-34505630-2.jpg
Source: chromecache_412.2.dr, chromecache_544.2.dr	String found in binary or memory: https://p2.img.cctvpic.com/fmspic/2021/12/31/895c21d970b5550083b80fb27ab3200c-35699291-2.jpg
Source: chromecache_412.2.dr, chromecache_544.2.dr	String found in binary or memory: https://p2.img.cctvpic.com/fmspic/2022/04/01/923071c12bb89fe0a707b2a0a0967958-36848533-0.jpg
Source: chromecache_412.2.dr, chromecache_544.2.dr	String found in binary or memory: https://p2.img.cctvpic.com/fmspic/2022/04/21/c8026a64db23ab36ad668b889d8f58f9-37166185-2.jpg
Source: chromecache_412.2.dr, chromecache_544.2.dr	String found in binary or memory: https://p2.img.cctvpic.com/fmspic/2022/05/31/32748cb667123edccd54652fcb900735-37798559-2.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p2.img.cctvpic.com/fmspic/2022/07/28/6abc45d162bb4b06be6c6768ae503dfc-38986563-0.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p2.img.cctvpic.com/fmspic/2022/08/04/41d13133b1674446a6c7391ab87d9e37-39122955-2.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p2.img.cctvpic.com/fmspic/2022/08/06/8cd22a2cbd084db28b4b74a0ff174876-39156701-2.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p2.img.cctvpic.com/fmspic/2022/08/07/631831498e3c4f328f17be066fa5cbd9-39170029-0.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p2.img.cctvpic.com/fmspic/2022/08/07/631831498e3c4f328f17be066fa5cbd9-39170029-2.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p2.img.cctvpic.com/fmspic/2022/08/09/8a2c71bc71914063a1fc189e162d48d9-39208379-0.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p2.img.cctvpic.com/fmspic/2022/08/11/c79c07d9b20e4220820f1d30d8fe93a5-39246591-0.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p2.img.cctvpic.com/fmspic/2022/08/15/1cc00ea1f68948daa37e665888bc930c-39310419-0.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p2.img.cctvpic.com/fmspic/2022/08/18/e385f5a866464fe3a73fbb3f6fc6f56c-39363951-2.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p2.img.cctvpic.com/fmspic/2023/12/26/5fcf78fe27611450695f0bace71b71f2-47030365-0.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p2.img.cctvpic.com/fmspic/2024/01/07/2dbf2eb2ff68615a62fc54b35fcac06f-47168573-2.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p2.img.cctvpic.com/fmspic/2024/01/23/acf7f77e731445598e19b5cf1303ba81-300.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p2.img.cctvpic.com/fmspic/2024/01/25/d7311e7c9f84ccb3159a3732704bef89-47396777-0.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p2.img.cctvpic.com/fmspic/2024/02/01/9d62fd3f0cd0b47ec7e504f66eac3597-47482899-0.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p2.img.cctvpic.com/fmspic/2024/02/07/f39d33951d92460c9ef54060da2abe42-1.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p2.img.cctvpic.com/fmspic/2024/02/07/f39d33951d92460c9ef54060da2abe42-300.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p2.img.cctvpic.com/fmspic/2024/02/27/3c5b4cfbf9bb4ae4940430cce458a7d8-1.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p2.img.cctvpic.com/fmspic/2024/02/27/3c5b4cfbf9bb4ae4940430cce458a7d8-300.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p2.img.cctvpic.com/fmspic/2024/03/07/60b048eb81d6ce9ff4c9ef718aed611b-47870479-2.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p2.img.cctvpic.com/fmspic/2024/03/19/81d211aa395645ec96c21a1a044196e6-1.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p2.img.cctvpic.com/fmspic/2024/03/19/935e0f7f450f7e3a5a1841f2f8b2af1f-48011443-0.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p2.img.cctvpic.com/fmspic/2024/03/29/4f2e95dccdaa4637bec96e15e0bac5a9-300.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p2.img.cctvpic.com/fmspic/2024/04/02/8fc646ed2a5d4b8d8e99e9789c70323d-300.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p2.img.cctvpic.com/fmspic/2024/04/09/61d8e46de8a74f06bc72dcc7b38468e2-48265875-0.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p2.img.cctvpic.com/fmspic/2024/04/09/89177c4313c645a7b83681b38aad42d5-300.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p2.img.cctvpic.com/fmspic/2024/04/23/1753a2b43cc2e86df0e6a8c03c11fdfd-48445709-2.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p2.img.cctvpic.com/fmspic/2024/04/23/4c7fe5c63dc7471e9d257928fdcbfea6-300.jpg
Source: chromecache_297.2.dr	String found in binary or memory: https://p2.img.cctvpic.com/photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/headerDown.png?a
Source: chromecache_297.2.dr	String found in binary or memory: https://p2.img.cctvpic.com/photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/headerUp.png?a
Source: chromecache_337.2.dr, chromecache_697.2.dr	String found in binary or memory: https://p2.img.cctvpic.com/photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/qrCode.png
Source: chromecache_337.2.dr, chromecache_697.2.dr	String found in binary or memory: https://p2.img.cctvpic.com/photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/u301.png
Source: chromecache_337.2.dr, chromecache_697.2.dr	String found in binary or memory: https://p2.img.cctvpic.com/photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/u309.png
Source: chromecache_733.2.dr	String found in binary or memory: https://p2.img.cctvpic.com/photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/videoTime.png
Source: chromecache_412.2.dr, chromecache_544.2.dr	String found in binary or memory: https://p2.img.cctvpic.com/photoworkspace/2021/09/21/2021092118363595197.png
Source: chromecache_412.2.dr, chromecache_544.2.dr	String found in binary or memory: https://p2.img.cctvpic.com/photoworkspace/2022/01/27/2022012712063291777.jpg
Source: chromecache_412.2.dr, chromecache_544.2.dr	String found in binary or memory: https://p2.img.cctvpic.com/photoworkspace/2022/04/24/2022042416484920688.png
Source: chromecache_533.2.dr	String found in binary or memory: https://p2.img.cctvpic.com/photoworkspace/2024/01/25/2024012516182221988.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p2.img.cctvpic.com/photoworkspace/2024/02/01/2024020116425793428.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p2.img.cctvpic.com/photoworkspace/2024/02/12/2024021214303987510.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p2.img.cctvpic.com/photoworkspace/2024/02/20/2024022017235130546.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p2.img.cctvpic.com/photoworkspace/2024/03/12/2024031217375413883.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p2.img.cctvpic.com/photoworkspace/2024/03/19/2024031916281187602.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p2.img.cctvpic.com/photoworkspace/2024/03/27/2024032711211557133.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p2.img.cctvpic.com/photoworkspace/2024/04/17/2024041716582311144.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p2.img.cctvpic.com/photoworkspace/2024/04/19/2024041917463078304.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p2.img.cctvpic.com/photoworkspace/2024/04/24/2024042417223463693.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p2.img.cctvpic.com/photoworkspace/2024/04/26/2024042617104960345.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p2.img.cctvpic.com/photoworkspace/2024/05/06/2024050618341420997.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p2.img.cctvpic.com/photoworkspace/2024/05/11/2024051117253591294.jpg
Source: chromecache_412.2.dr, chromecache_544.2.dr	String found in binary or memory: https://p3.img.cctvpic.com/fmspic/2021/02/10/deda41ec6fdd538b8ce6ec7de3938ed4-31903519-2.jpg
Source: chromecache_412.2.dr, chromecache_544.2.dr	String found in binary or memory: https://p3.img.cctvpic.com/fmspic/2021/09/20/5e55298edbcce99dcc136079e166cd6f-34505630-0.jpg
Source: chromecache_412.2.dr, chromecache_544.2.dr	String found in binary or memory: https://p3.img.cctvpic.com/fmspic/2022/01/31/8877b8579a057d078a69b4e016b1e1fd-36070871-2.jpg
Source: chromecache_412.2.dr, chromecache_544.2.dr	String found in binary or memory: https://p3.img.cctvpic.com/fmspic/2022/04/01/923071c12bb89fe0a707b2a0a0967958-36848533-2.jpg
Source: chromecache_412.2.dr, chromecache_544.2.dr	String found in binary or memory: https://p3.img.cctvpic.com/fmspic/2022/04/24/884272833e7dd1e160066890647e2a7d-37212653-2.jpg
Source: chromecache_412.2.dr, chromecache_544.2.dr	String found in binary or memory: https://p3.img.cctvpic.com/fmspic/2022/05/31/32748cb667123edccd54652fcb900735-37798559-0.jpg
Source: chromecache_412.2.dr, chromecache_544.2.dr	String found in binary or memory: https://p3.img.cctvpic.com/fmspic/2022/06/09/85a80b9706fb426382be8c15847b86ee-1.jpg
Source: chromecache_412.2.dr, chromecache_544.2.dr	String found in binary or memory: https://p3.img.cctvpic.com/fmspic/2022/06/09/85a80b9706fb426382be8c15847b86ee-300.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p3.img.cctvpic.com/fmspic/2022/08/06/8cd22a2cbd084db28b4b74a0ff174876-39156701-0.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p3.img.cctvpic.com/fmspic/2022/08/13/85551ae94e9644179999536d4061a39d-39277761-0.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p3.img.cctvpic.com/fmspic/2022/08/18/e385f5a866464fe3a73fbb3f6fc6f56c-39363951-0.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p3.img.cctvpic.com/fmspic/2022/08/20/03a0b5c45fd54e44ab9239d64782287e-39395389-2.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p3.img.cctvpic.com/fmspic/2023/12/21/61c01a9c0b4a904aa4ced8749c94b6bc-46971875-2.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p3.img.cctvpic.com/fmspic/2023/12/29/ca94127bb87749456bebffa2d2b04a44-47065885-0.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p3.img.cctvpic.com/fmspic/2023/12/29/ca94127bb87749456bebffa2d2b04a44-47065885-2.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p3.img.cctvpic.com/fmspic/2024/01/12/8f4fb48fde63499ebe32afe1706577a7-1.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p3.img.cctvpic.com/fmspic/2024/01/30/9d08e838011c436ba2afcbad5ad85c22-1.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p3.img.cctvpic.com/fmspic/2024/03/26/a271af28383ba4abadcf598c8b10e45c-48096173-0.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p3.img.cctvpic.com/fmspic/2024/03/26/a271af28383ba4abadcf598c8b10e45c-48096173-2.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p3.img.cctvpic.com/fmspic/2024/03/29/4f2e95dccdaa4637bec96e15e0bac5a9-1.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p3.img.cctvpic.com/fmspic/2024/04/02/5f83215d84148fa5db4a44265fcdce5f-48181935-2.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p3.img.cctvpic.com/fmspic/2024/04/16/9771d3d6054a4552b2c3695cb07e1c69-1.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p3.img.cctvpic.com/fmspic/2024/04/17/42ca55cae577dc05f40bd63d1b6c1a9d-48367741-2.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p3.img.cctvpic.com/fmspic/2024/05/13/241a5860dad94059827dd818a1720f09-300.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p3.img.cctvpic.com/fmspic/2024/05/16/472975ddabc5117b67d7866ca21b4c39-48722823-0.jpg
Source: chromecache_337.2.dr	String found in binary or memory: https://p3.img.cctvpic.com/photoAlbum/page/performance/img/2022/12/28/1672218296307_878.jpg
Source: chromecache_412.2.dr, chromecache_544.2.dr	String found in binary or memory: https://p3.img.cctvpic.com/photoworkspace/2022/01/31/2022013111472865320.jpg
Source: chromecache_412.2.dr, chromecache_544.2.dr	String found in binary or memory: https://p3.img.cctvpic.com/photoworkspace/2022/04/22/2022042211042896933.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p3.img.cctvpic.com/photoworkspace/2024/01/23/2024012316173058345.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p3.img.cctvpic.com/photoworkspace/2024/02/01/2024020116350997084.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p3.img.cctvpic.com/photoworkspace/2024/02/28/2024022816523945750.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p3.img.cctvpic.com/photoworkspace/2024/03/19/2024031914123521744.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p3.img.cctvpic.com/photoworkspace/2024/04/02/2024040211345410400.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p3.img.cctvpic.com/photoworkspace/2024/05/08/2024050817522856882.jpg
Source: chromecache_412.2.dr, chromecache_544.2.dr	String found in binary or memory: https://p4.img.cctvpic.com/fmspic/2022/01/26/365d343ca3380dfbe99168a587a47f48-36017655-0.jpg
Source: chromecache_412.2.dr, chromecache_544.2.dr	String found in binary or memory: https://p4.img.cctvpic.com/fmspic/2022/01/26/365d343ca3380dfbe99168a587a47f48-36017655-2.jpg
Source: chromecache_412.2.dr, chromecache_544.2.dr	String found in binary or memory: https://p4.img.cctvpic.com/fmspic/2022/04/29/9b528e50e8db036148b683763e935872-37289385-0.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p4.img.cctvpic.com/fmspic/2022/07/28/6abc45d162bb4b06be6c6768ae503dfc-38986563-2.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p4.img.cctvpic.com/fmspic/2022/07/31/a31161196f2e4b66b04200b48678a0a7-39040097-2.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p4.img.cctvpic.com/fmspic/2022/08/02/1d76568b707c4221bbc2708b324aa255-39079663-0.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p4.img.cctvpic.com/fmspic/2022/08/03/887250c9cc724e41957f5729619d3001-39099543-0.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p4.img.cctvpic.com/fmspic/2022/08/03/887250c9cc724e41957f5729619d3001-39099543-2.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p4.img.cctvpic.com/fmspic/2022/08/05/c057341b60de4e8687e2508618d932c5-39142431-0.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p4.img.cctvpic.com/fmspic/2022/08/10/e6470e509bff4e01a55b0f64f4a18ba6-39225967-0.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p4.img.cctvpic.com/fmspic/2022/08/19/da76fd91481d4a10b44c1a34eb86b15e-39380167-0.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p4.img.cctvpic.com/fmspic/2022/08/21/1cfae44b5c8e41edaef4db7d3b52461e-39407971-0.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p4.img.cctvpic.com/fmspic/2023/07/31/76d5dbf3593842808eca5f06dad04597-44920259-2.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p4.img.cctvpic.com/fmspic/2023/12/14/26cd4dfb0a03385759976fd83e1dae10-46887573-2.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p4.img.cctvpic.com/fmspic/2023/12/26/5fcf78fe27611450695f0bace71b71f2-47030365-2.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p4.img.cctvpic.com/fmspic/2024/01/11/d2fa4e00c3dcafb73ff484e07ac09085-47222355-0.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p4.img.cctvpic.com/fmspic/2024/01/12/8f4fb48fde63499ebe32afe1706577a7-300.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p4.img.cctvpic.com/fmspic/2024/01/17/6d69dbf2e48866041c550d8f8c70a793-47297677-2.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p4.img.cctvpic.com/fmspic/2024/01/19/0653e7c545e143e69ee0495fd3cbfc72-300.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p4.img.cctvpic.com/fmspic/2024/01/26/a4c60587a6c64eaf8665f36fb76cabe3-1.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p4.img.cctvpic.com/fmspic/2024/03/12/16cf9df4cbc0bc00815174e35b0fb0a4-47926461-0.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p4.img.cctvpic.com/fmspic/2024/03/19/81d211aa395645ec96c21a1a044196e6-300.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p4.img.cctvpic.com/fmspic/2024/03/19/935e0f7f450f7e3a5a1841f2f8b2af1f-48011443-2.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p4.img.cctvpic.com/fmspic/2024/04/02/5f83215d84148fa5db4a44265fcdce5f-48181935-0.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p4.img.cctvpic.com/fmspic/2024/04/02/8fc646ed2a5d4b8d8e99e9789c70323d-1.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p4.img.cctvpic.com/fmspic/2024/04/09/61d8e46de8a74f06bc72dcc7b38468e2-48265875-2.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p4.img.cctvpic.com/fmspic/2024/04/17/42ca55cae577dc05f40bd63d1b6c1a9d-48367741-0.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p4.img.cctvpic.com/fmspic/2024/04/23/4c7fe5c63dc7471e9d257928fdcbfea6-1.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p4.img.cctvpic.com/fmspic/2024/05/06/ca2d22a59a2c4d1cbf1e9e512919fe7e-1.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p4.img.cctvpic.com/fmspic/2024/05/13/241a5860dad94059827dd818a1720f09-1.jpg
Source: chromecache_412.2.dr, chromecache_544.2.dr	String found in binary or memory: https://p4.img.cctvpic.com/photoworkspace/2022/01/06/2022010615543334596.jpg
Source: chromecache_412.2.dr, chromecache_544.2.dr	String found in binary or memory: https://p4.img.cctvpic.com/photoworkspace/2022/05/02/2022050214584790952.jpg
Source: chromecache_412.2.dr, chromecache_544.2.dr	String found in binary or memory: https://p4.img.cctvpic.com/photoworkspace/2022/06/03/2022060313153158592.jpg
Source: chromecache_412.2.dr, chromecache_544.2.dr	String found in binary or memory: https://p4.img.cctvpic.com/photoworkspace/2022/12/29/2022122910314338222.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p4.img.cctvpic.com/photoworkspace/2024/01/17/2024011717134494609.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p4.img.cctvpic.com/photoworkspace/2024/02/07/2024020711363569930.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p4.img.cctvpic.com/photoworkspace/2024/03/07/2024030717053588555.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p4.img.cctvpic.com/photoworkspace/2024/04/02/2024040217231729582.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p4.img.cctvpic.com/photoworkspace/2024/04/10/2024041017154231837.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p4.img.cctvpic.com/photoworkspace/2024/04/12/2024041217092846255.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p4.img.cctvpic.com/photoworkspace/2024/04/17/2024041715583927979.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p4.img.cctvpic.com/photoworkspace/2024/04/18/2024041817384695112.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p4.img.cctvpic.com/photoworkspace/2024/04/25/2024042517285251075.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p4.img.cctvpic.com/photoworkspace/2024/05/20/2024052017360824781.jpg
Source: chromecache_412.2.dr, chromecache_544.2.dr	String found in binary or memory: https://p5.img.cctvpic.com/fmspic/2021/02/10/deda41ec6fdd538b8ce6ec7de3938ed4-31903519-0.jpg
Source: chromecache_412.2.dr, chromecache_544.2.dr	String found in binary or memory: https://p5.img.cctvpic.com/fmspic/2021/12/31/895c21d970b5550083b80fb27ab3200c-35699291-0.jpg
Source: chromecache_412.2.dr, chromecache_544.2.dr	String found in binary or memory: https://p5.img.cctvpic.com/fmspic/2022/04/21/c8026a64db23ab36ad668b889d8f58f9-37166185-0.jpg
Source: chromecache_412.2.dr, chromecache_544.2.dr	String found in binary or memory: https://p5.img.cctvpic.com/fmspic/2022/04/24/884272833e7dd1e160066890647e2a7d-37212653-0.jpg
Source: chromecache_412.2.dr, chromecache_544.2.dr	String found in binary or memory: https://p5.img.cctvpic.com/fmspic/2022/04/29/9b528e50e8db036148b683763e935872-37289385-2.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p5.img.cctvpic.com/fmspic/2022/07/31/a31161196f2e4b66b04200b48678a0a7-39040097-0.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p5.img.cctvpic.com/fmspic/2022/08/10/e6470e509bff4e01a55b0f64f4a18ba6-39225967-2.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p5.img.cctvpic.com/fmspic/2022/08/12/9966a6e847794605aa303b65e9569f21-39263281-0.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p5.img.cctvpic.com/fmspic/2022/08/12/9966a6e847794605aa303b65e9569f21-39263281-2.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p5.img.cctvpic.com/fmspic/2022/08/15/1cc00ea1f68948daa37e665888bc930c-39310419-2.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p5.img.cctvpic.com/fmspic/2022/08/17/f256259148734504a36442c3a322d5c4-39345877-2.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p5.img.cctvpic.com/fmspic/2022/08/19/da76fd91481d4a10b44c1a34eb86b15e-39380167-2.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p5.img.cctvpic.com/fmspic/2022/08/21/1cfae44b5c8e41edaef4db7d3b52461e-39407971-2.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p5.img.cctvpic.com/fmspic/2023/07/31/76d5dbf3593842808eca5f06dad04597-44920259-0.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p5.img.cctvpic.com/fmspic/2023/12/21/61c01a9c0b4a904aa4ced8749c94b6bc-46971875-0.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p5.img.cctvpic.com/fmspic/2024/01/07/2dbf2eb2ff68615a62fc54b35fcac06f-47168573-0.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p5.img.cctvpic.com/fmspic/2024/01/11/d2fa4e00c3dcafb73ff484e07ac09085-47222355-2.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p5.img.cctvpic.com/fmspic/2024/01/19/0653e7c545e143e69ee0495fd3cbfc72-1.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p5.img.cctvpic.com/fmspic/2024/01/26/a4c60587a6c64eaf8665f36fb76cabe3-300.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p5.img.cctvpic.com/fmspic/2024/01/30/9d08e838011c436ba2afcbad5ad85c22-300.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p5.img.cctvpic.com/fmspic/2024/02/01/9d62fd3f0cd0b47ec7e504f66eac3597-47482899-2.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p5.img.cctvpic.com/fmspic/2024/02/01/c85f73cac9938cfd8e193430e3d1b227-47482921-0.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p5.img.cctvpic.com/fmspic/2024/02/20/e27b816f4f4e41f2968f268d31bfc7c2-1.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p5.img.cctvpic.com/fmspic/2024/02/20/e27b816f4f4e41f2968f268d31bfc7c2-300.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p5.img.cctvpic.com/fmspic/2024/02/28/e450b489c68a1cc7625ee50e25663ae3-47778621-0.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p5.img.cctvpic.com/fmspic/2024/03/05/bfbc191ebeab48bb88807c0422122fbc-300.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p5.img.cctvpic.com/fmspic/2024/03/12/16cf9df4cbc0bc00815174e35b0fb0a4-47926461-2.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p5.img.cctvpic.com/fmspic/2024/03/12/562015e7ac3540b6a2a4fc1d3cd6aeda-1.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p5.img.cctvpic.com/fmspic/2024/03/12/562015e7ac3540b6a2a4fc1d3cd6aeda-300.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p5.img.cctvpic.com/fmspic/2024/03/27/fd05f8b0672543969dfe35def3e066ab-1.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p5.img.cctvpic.com/fmspic/2024/04/23/1753a2b43cc2e86df0e6a8c03c11fdfd-48445709-0.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p5.img.cctvpic.com/fmspic/2024/05/06/ca2d22a59a2c4d1cbf1e9e512919fe7e-300.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p5.img.cctvpic.com/fmspic/2024/05/16/472975ddabc5117b67d7866ca21b4c39-48722823-2.jpg
Source: chromecache_697.2.dr	String found in binary or memory: https://p5.img.cctvpic.com/photoAlbum/page/performance/img/2022/12/28/1672207736061_591.jpg
Source: chromecache_412.2.dr, chromecache_544.2.dr	String found in binary or memory: https://p5.img.cctvpic.com/photoworkspace/2021/03/18/2021031814402131559.jpg
Source: chromecache_412.2.dr, chromecache_544.2.dr	String found in binary or memory: https://p5.img.cctvpic.com/photoworkspace/2022/04/02/2022040211343139587.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p5.img.cctvpic.com/photoworkspace/2023/12/21/2023122117115275332.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p5.img.cctvpic.com/photoworkspace/2023/12/26/2023122617371612989.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p5.img.cctvpic.com/photoworkspace/2023/12/29/2023122916374482729.jpg
Source: chromecache_533.2.dr	String found in binary or memory: https://p5.img.cctvpic.com/photoworkspace/2024/01/11/2024011117355273519.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p5.img.cctvpic.com/photoworkspace/2024/01/16/2024011616594644931.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p5.img.cctvpic.com/photoworkspace/2024/01/19/2024011914525062406.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p5.img.cctvpic.com/photoworkspace/2024/03/12/2024031213422354907.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p5.img.cctvpic.com/photoworkspace/2024/04/09/2024040917140958896.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p5.img.cctvpic.com/photoworkspace/2024/04/15/2024041517380644520.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p5.img.cctvpic.com/photoworkspace/2024/04/28/2024042817290186038.jpg
Source: chromecache_309.2.dr	String found in binary or memory: https://p5.img.cctvpic.com/photoworkspace/2024/05/14/2024051417250945966.jpg
Source: chromecache_313.2.dr	String found in binary or memory: https://p5.img.cctvpic.com/photoworkspace/2024/05/15/2024051517530410112.jpg
Source: chromecache_337.2.dr, chromecache_697.2.dr	String found in binary or memory: https://s.go-mpulse.net/boomerang/
Source: chromecache_337.2.dr, chromecache_697.2.dr	String found in binary or memory: https://s2.go-mpulse.net/boomerang/
Source: chromecache_679.2.dr	String found in binary or memory: https://tv.cctv.com/cctv4asia/
Source: chromecache_337.2.dr, chromecache_697.2.dr	String found in binary or memory: https://twitter.com/cctv
Source: chromecache_337.2.dr, chromecache_697.2.dr	String found in binary or memory: https://www.cctv.com
Source: chromecache_337.2.dr, chromecache_697.2.dr	String found in binary or memory: https://www.instagram.com/cctv.chinese/
Source: chromecache_337.2.dr, chromecache_697.2.dr	String found in binary or memory: https://www.youtube.com/channel/UCnAsZ46UTeFEgwOEwMezngQ

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49865
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49864
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49985
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49863
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49861
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49981
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49980
Source: unknown	Network traffic detected: HTTP traffic on port 49875 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50131 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50154 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49859
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49737
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49736
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49857
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49855
Source: unknown	Network traffic detected: HTTP traffic on port 50085 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49730
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49972
Source: unknown	Network traffic detected: HTTP traffic on port 50039 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49971
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49850
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50074 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50004 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49849
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49728
Source: unknown	Network traffic detected: HTTP traffic on port 49714 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49847
Source: unknown	Network traffic detected: HTTP traffic on port 49886 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49846
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49966
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49723
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49965
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49722
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49721
Source: unknown	Network traffic detected: HTTP traffic on port 50120 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49840
Source: unknown	Network traffic detected: HTTP traffic on port 50040 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49966 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50189 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50096 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50108 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50073 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49719
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49839
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49837
Source: unknown	Network traffic detected: HTTP traffic on port 49715 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49958
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49715
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49836
Source: unknown	Network traffic detected: HTTP traffic on port 49921 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49714
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49954
Source: unknown	Network traffic detected: HTTP traffic on port 50062 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49831
Source: unknown	Network traffic detected: HTTP traffic on port 50119 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49839 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49864 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49944 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50178 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50153 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49827
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49705
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49826
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49947
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49704
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49825
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49946
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49824
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49945
Source: unknown	Network traffic detected: HTTP traffic on port 49737 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49823
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49944
Source: unknown	Network traffic detected: HTTP traffic on port 49771 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49822
Source: unknown	Network traffic detected: HTTP traffic on port 49922 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 49945 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 49785 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50026 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49980 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49736 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50144 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49771
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 49671 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50095 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50176 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49889
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49767
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49886
Source: unknown	Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49863 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49884
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49883
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49882
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49881
Source: unknown	Network traffic detected: HTTP traffic on port 49840 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49880
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50110 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50005 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50083 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49878
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49877
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49997
Source: unknown	Network traffic detected: HTTP traffic on port 50121 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49875
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49874
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49994
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49993
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49871
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49870
Source: unknown	Network traffic detected: HTTP traffic on port 49874 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50109 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50072 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50132 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50027 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50199 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49988
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49866
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49987
Source: unknown	Network traffic detected: HTTP traffic on port 49672 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50139 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50059 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49746 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49803 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49826 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49849 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50106
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50105
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49698
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50108
Source: unknown	Network traffic detected: HTTP traffic on port 49837 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50109
Source: unknown	Network traffic detected: HTTP traffic on port 49929 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50100
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50102
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50101
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50103
Source: unknown	Network traffic detected: HTTP traffic on port 50025 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50162 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49861 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50197 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50119
Source: unknown	Network traffic detected: HTTP traffic on port 49918 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49930 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50110
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50115
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49850 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50127 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50175 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50198 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50037 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50006
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50127
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50129
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49794
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 49814 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49792
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50120
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49790
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50122
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50121
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50003
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50124
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50123
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50005
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50126
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50004
Source: unknown	Network traffic detected: HTTP traffic on port 49723 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49825 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49884 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50105 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49789
Source: unknown	Network traffic detected: HTTP traffic on port 49997 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50164 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49859 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49871 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50106 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50129 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50003 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50184 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49965 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49816 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50035 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49954 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50152 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49988 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49767 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49721 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49827 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50046 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49882 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50141 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49756 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49815 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50092 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49722 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49908 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50163 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49883 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50196 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49931 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49987 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50185 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49920 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49926 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50175
Source: unknown	Network traffic detected: HTTP traffic on port 49789 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49800 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50055
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50176
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50179
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50178
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50059
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50180
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50184
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50062
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50183
Source: unknown	Network traffic detected: HTTP traffic on port 50102 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49881 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50194 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49675 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50148 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49812 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50064
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50185
Source: unknown	Network traffic detected: HTTP traffic on port 50091 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50066
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50189
Source: unknown	Network traffic detected: HTTP traffic on port 50183 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50190
Source: unknown	Network traffic detected: HTTP traffic on port 49915 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50072
Source: unknown	Network traffic detected: HTTP traffic on port 50159 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50074
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50195
Source: unknown	Network traffic detected: HTTP traffic on port 49823 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50073
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50194
Source: unknown	Network traffic detected: HTTP traffic on port 50080 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49790 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49674 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50195 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49972 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50197
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50075
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50196
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50199
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50077
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50198
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50079
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50080
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50083
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50085
Source: unknown	Network traffic detected: HTTP traffic on port 49904 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49847 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49822 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49870 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50089
Source: unknown	Network traffic detected: HTTP traffic on port 50079 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50090
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50092
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50091
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50096
Source: unknown	Network traffic detected: HTTP traffic on port 50023 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50095
Source: unknown	Network traffic detected: HTTP traffic on port 49811 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50139
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50138
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50019
Source: unknown	Network traffic detected: HTTP traffic on port 49813 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50131
Source: unknown	Network traffic detected: HTTP traffic on port 49836 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49916 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50133
Source: unknown	Network traffic detected: HTTP traffic on port 50055 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50132
Source: unknown	Network traffic detected: HTTP traffic on port 50090 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50137
Source: unknown	Network traffic detected: HTTP traffic on port 50161 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49753 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50029
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50021
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50141
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50023
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50144
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50025
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50027
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50148
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50026
Source: unknown	Network traffic detected: HTTP traffic on port 49985 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50021 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50138 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50103 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49905 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50039
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50153
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50152
Source: unknown	Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49857 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50154
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50035
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50156
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50159
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50037
Source: unknown	Network traffic detected: HTTP traffic on port 49719 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49801 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50160
Source: unknown	Network traffic detected: HTTP traffic on port 49824 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50041
Source: unknown	Network traffic detected: HTTP traffic on port 50137 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50162
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50040
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50161
Source: unknown	Network traffic detected: HTTP traffic on port 50066 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50089 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49698 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49730 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50043
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50164
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50163
Source: unknown	Network traffic detected: HTTP traffic on port 50115 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50046
Source: unknown	Network traffic detected: HTTP traffic on port 49880 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50160 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50052
Source: unknown	Network traffic detected: HTTP traffic on port 50126 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49846 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49792 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50122 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49878 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49958 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50180 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49889 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49866 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49820 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49946 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50077 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49728 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49855 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49981 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49924 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49947 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50133 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49793 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49831 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50156 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50043 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49751 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50100 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49677 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49994 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49740 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50006 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49865 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49820
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50098
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50097
Source: unknown	Network traffic detected: HTTP traffic on port 49704 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50075 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50052 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49816
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49815
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49936
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49814
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49813
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49812
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49811
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49931
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49930
Source: unknown	Network traffic detected: HTTP traffic on port 50064 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50123 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50190 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49971 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49794 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49936 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50098 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49809
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49929
Source: unknown	Network traffic detected: HTTP traffic on port 50029 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49926
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49803
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49924
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49801
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49922
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49800
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49921
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49920
Source: unknown	Network traffic detected: HTTP traffic on port 49783 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50124 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50019 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49877 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50179 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49918
Source: unknown	Network traffic detected: HTTP traffic on port 49809 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49916
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49915
Source: unknown	Network traffic detected: HTTP traffic on port 49705 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50041 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50097 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49908
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49905
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49904
Source: unknown	Network traffic detected: HTTP traffic on port 49993 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49903
Source: unknown	Network traffic detected: HTTP traffic on port 49903 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50101 -> 443

Source: unknown	HTTPS traffic detected: 2.19.104.72:443 -> 192.168.2.7:49735 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 2.19.104.72:443 -> 192.168.2.7:49753 version: TLS 1.2

Source: classification engine

Classification label: mal56.win@20/729@103/12

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2672 --field-trial-handle=2544,i,728762149725907679,15943124602895297035,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://new.aj848310310.workers.dev/"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2672 --field-trial-handle=2544,i,728762149725907679,15943124602895297035,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Window Recorder

Window detected: More than 3 window changes detected

Mitre Att&ck Matrix

Reconnaissance	Resource Development	Initial Access	Execution	Persistence	Privilege Escalation	Defense Evasion	Credential Access	Discovery	Lateral Movement	Collection	Command and Control	Exfiltration	Impact
Gather Victim Identity Information	Acquire Infrastructure	Valid Accounts	Windows Management Instrumentation	Path Interception	1 Process Injection	1 Process Injection	OS Credential Dumping	System Service Discovery	Remote Services	Data from Local System	1 Encrypted Channel	Exfiltration Over Other Network Medium	Abuse Accessibility Features
Credentials	Domains	Default Accounts	Scheduled Task/Job	Boot or Logon Initialization Scripts	1 Extra Window Memory Injection	1 Extra Window Memory Injection	LSASS Memory	Application Window Discovery	Remote Desktop Protocol	Data from Removable Media	2 Non-Application Layer Protocol	Exfiltration Over Bluetooth	Network Denial of Service
Email Addresses	DNS Server	Domain Accounts	At	Logon Script (Windows)	Logon Script (Windows)	Obfuscated Files or Information	Security Account Manager	Query Registry	SMB/Windows Admin Shares	Data from Network Shared Drive	3 Application Layer Protocol	Automated Exfiltration	Data Encrypted for Impact
Employee Names	Virtual Private Server	Local Accounts	Cron	Login Hook	Login Hook	Binary Padding	NTDS	System Network Configuration Discovery	Distributed Component Object Model	Input Capture	1 Ingress Tool Transfer	Traffic Duplication	Data Destruction

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Screenshots

Thumbnails

This section contains all screenshots as thumbnails, including those not shown in the slideshow.

Antivirus, Machine Learning and Genetic Malware Detection

Initial Sample

Source	Detection	Scanner	Label	Link
https://new.aj848310310.workers.dev/	100%	Avira URL Cloud	phishing

Dropped Files

⊘No Antivirus matches

Unpacked PE Files

⊘No Antivirus matches

Domains

⊘No Antivirus matches

URLs

Source	Detection	Scanner	Label
https://s2.go-mpulse.net/boomerang/	0%	URL Reputation	safe
https://global.cctv.com/ipanda/pandatroupe/index.shtml	0%	Avira URL Cloud	safe
https://p5.img.cctvpic.com/photoworkspace/2023/12/26/2023122617371612989.jpg	0%	Avira URL Cloud	safe
https://global.cctv.com/2023/04/20/VIDAxuIyiyt7QMapiIDJGMMl230420.shtml	0%	Avira URL Cloud	safe
https://p4.img.cctvpic.com/fmspic/2022/08/05/c057341b60de4e8687e2508618d932c5-39142431-0.jpg	0%	Avira URL Cloud	safe
https://p2.img.cctvpic.com/photoworkspace/2024/05/21/2024052115272460075.jpg	0%	Avira URL Cloud	safe
https://p4.img.cctvpic.com/fmspic/2024/03/12/16cf9df4cbc0bc00815174e35b0fb0a4-47926461-0.jpg	0%	Avira URL Cloud	safe
https://new.aj848310310.workers.dev/favicon.ico	100%	Avira URL Cloud	phishing
https://global.cctv.com/2023/12/25/ARTIPAHrV7k9WwD6hAKi6eKO231225.shtml	0%	Avira URL Cloud	safe
https://p4.img.cctvpic.com/photoworkspace/2024/04/12/2024041217092846255.jpg	0%	Avira URL Cloud	safe
https://global.cctv.com/2024/01/17/VIDEpD9hG0nswUh1uQof1rTN240117.shtml	0%	Avira URL Cloud	safe
https://p4.img.cctvpic.com/fmspic/2024/04/02/8fc646ed2a5d4b8d8e99e9789c70323d-1.jpg	0%	Avira URL Cloud	safe
https://p1.img.cctvpic.com/photoworkspace/2021/12/28/2021122817473068998.jpg	0%	Avira URL Cloud	safe
https://english.cctv.com/video/globalview/index.shtml	0%	Avira URL Cloud	safe
https://global.cctv.com/2024/05/21/VIDEr9o2GnNKFlcscsNdjr8Z240521.shtml	0%	Avira URL Cloud	safe
https://p4.img.cctvpic.com/fmspic/2024/04/02/5f83215d84148fa5db4a44265fcdce5f-48181935-0.jpg	0%	Avira URL Cloud	safe
https://p2.img.cctvpic.com/photoAlbum/vms/standard/img/2022/5/24/CHANRGf5JSUjYdxME82Ip95y220524.jpg	0%	Avira URL Cloud	safe
https://p.data.cctv.com/sns.1.1?gmkey=&gokey=%20snsScene%3Dzq%26product%3Dtv%26flashInfo%3D0.0.0%26colorDepth%3D24%26timeZone%3D-4%26unixts%3D1716508937325%26jsver%3Daplus_u%26lver%3D8.10.5%26pver%3Dundefined%26cache%3Dc97ba8d&cna=tq%2FWHjdKEAMCAQgue69jV91J&spm-cnt=0.0.0.0.7a107510LHucOo&logtype=2	0%	Avira URL Cloud	safe
https://global.cctv.com/wehk/index.shtml	0%	Avira URL Cloud	safe
https://p4.img.cctvpic.com/fmspic/2022/04/29/9b528e50e8db036148b683763e935872-37289385-0.jpg	0%	Avira URL Cloud	safe
https://p1.img.cctvpic.com/fmspic/2022/08/05/c057341b60de4e8687e2508618d932c5-39142431-2.jpg	0%	Avira URL Cloud	safe
https://p3.img.cctvpic.com/fmspic/2022/08/06/8cd22a2cbd084db28b4b74a0ff174876-39156701-0.jpg	0%	Avira URL Cloud	safe
https://global.cctv.com/2024/04/02/VIDEo9Y3nUzXnaG6pR3raI56240402.shtml	0%	Avira URL Cloud	safe
https://global.cctv.com/2024/05/06/VIDEEn3nIFpB9u9HNPMrHnFP240506.shtml	0%	Avira URL Cloud	safe
https://p4.img.cctvpic.com/photoworkspace/2024/01/17/2024011717134494609.jpg	0%	Avira URL Cloud	safe
https://p2.img.cctvpic.com/photoworkspace/2021/12/22/2021122217445963715.jpg	0%	Avira URL Cloud	safe
https://global.cctv.com/2024/05/04/VIDE28twbkadHG8MU8TjI3RZ240504.shtml	0%	Avira URL Cloud	safe
https://p1.img.cctvpic.com/fmspic/2024/01/05/6a89e3822497a02bd8ffa8e80411ab2e-47149875-0.jpg	0%	Avira URL Cloud	safe
https://p4.img.cctvpic.com/photoworkspace/2024/04/25/2024042517285251075.jpg	0%	Avira URL Cloud	safe
https://p.data.cctv.com/sns.1.1?gmkey=&gokey=%20snsScene%3Dzq%26product%3Dtv%26flashInfo%3D0.0.0%26colorDepth%3D24%26timeZone%3D-4%26jsver%3Daplus_u%26lver%3D8.10.5%26pver%3Dundefined%26cache%3Dec95899&cna=&spm-cnt=undefined&logtype=2	0%	Avira URL Cloud	safe
https://p3.img.cctvpic.com/fmspic/2024/05/13/241a5860dad94059827dd818a1720f09-300.jpg	0%	Avira URL Cloud	safe
https://global.cctv.com/cmsdatainterface/guowai/new/page/PAGEZ8HZ8JSmzO1F6GiAYTi9211130_1.jsonp	0%	Avira URL Cloud	safe
https://p2.img.cctvpic.com/photoworkspace/2021/12/22/2021122217390911215.jpg	0%	Avira URL Cloud	safe
https://global.cctv.com/2024/04/11/VIDE3TMPYkusvOilxwyl7Oiw240411.shtml	0%	Avira URL Cloud	safe
https://tv.cctv.com/cctv4asia/	0%	Avira URL Cloud	safe
https://p5.img.cctvpic.com/photoworkspace/2024/05/15/2024051517530410112.jpg	0%	Avira URL Cloud	safe
https://p2.img.cctvpic.com/photoworkspace/2024/04/24/2024042417223463693.jpg	0%	Avira URL Cloud	safe
https://global.cctv.com/2024/03/29/VIDEc2K54nLkVyqgfIoZTUcx240329.shtml	0%	Avira URL Cloud	safe
https://p1.img.cctvpic.com/photoworkspace/2024/04/30/2024043017005531784.jpg	0%	Avira URL Cloud	safe
https://www.cctv.com	0%	Avira URL Cloud	safe
https://p2.img.cctvpic.com/photoAlbum/page/performance/img/2024/5/16/1715852415970_283.jpg	0%	Avira URL Cloud	safe
https://p2.img.cctvpic.com/fmspic/2024/01/23/acf7f77e731445598e19b5cf1303ba81-300.jpg	0%	Avira URL Cloud	safe
https://p2.img.cctvpic.com/fmspic/2024/04/23/1753a2b43cc2e86df0e6a8c03c11fdfd-48445709-2.jpg	0%	Avira URL Cloud	safe
https://p5.img.cctvpic.com/photoworkspace/2024/04/09/2024040917140958896.jpg	0%	Avira URL Cloud	safe
https://p1.img.cctvpic.com/photoAlbum/vms/standard/img/2022/1/5/VSETKUVzVYGlzKZiOTl49AmU220105.jpg	0%	Avira URL Cloud	safe
https://p5.img.cctvpic.com/fmspic/2024/05/16/472975ddabc5117b67d7866ca21b4c39-48722823-2.jpg	0%	Avira URL Cloud	safe
https://global.cctv.com/2023/09/05/ARTI4KtC8spNw8I1CtnW8w0U230905.shtml	0%	Avira URL Cloud	safe
https://global.cctv.com/2024/04/02/VIDEhqpbiRO8V2JdjHfdjht9240402.shtml	0%	Avira URL Cloud	safe
https://global.cctv.com/2023/10/31/ARTILN7w2kxW4ahvrRh9QDGe231031.shtml	0%	Avira URL Cloud	safe
https://p3.img.cctvpic.com/photoworkspace/2024/05/08/2024050817522856882.jpg	0%	Avira URL Cloud	safe
https://global.cctv.com/2022/05/24/VIDAGyhr0ik6vae1Xc7keg5F220524.shtml	0%	Avira URL Cloud	safe
https://p1.img.cctvpic.com/fmspic/2024/03/07/60b048eb81d6ce9ff4c9ef718aed611b-47870479-0.jpg	0%	Avira URL Cloud	safe
https://p2.img.cctvpic.com/fmspic/2024/02/07/f39d33951d92460c9ef54060da2abe42-1.jpg	0%	Avira URL Cloud	safe
https://global.cctv.com/2023/12/29/VIDEHHwUJP59d8InCf1i6Xim231229.shtml	0%	Avira URL Cloud	safe
https://english.cctv.com/video/chinaqa/index.shtml	0%	Avira URL Cloud	safe
https://p2.img.cctvpic.com/photoworkspace/2024/03/27/2024032711211557133.jpg	0%	Avira URL Cloud	safe
https://p3.img.cctvpic.com/fmspic/2024/04/16/9771d3d6054a4552b2c3695cb07e1c69-1.jpg	0%	Avira URL Cloud	safe
https://p2.img.cctvpic.com/photoworkspace/2024/04/26/2024042617104960345.jpg	0%	Avira URL Cloud	safe
https://p5.img.cctvpic.com/photoworkspace/2023/12/29/2023122916374482729.jpg	0%	Avira URL Cloud	safe
https://p2.img.cctvpic.com/fmspic/2024/05/17/9eddaa7d732c49f38c297648109130fd-1.jpg	0%	Avira URL Cloud	safe
https://p1.img.cctvpic.com/photoworkspace/2024/05/22/2024052210125535078.jpg	0%	Avira URL Cloud	safe
https://global.cctv.com/2023/09/05/ARTIpJ4J2pvXIrWVJsaN71e1230905.shtml	0%	Avira URL Cloud	safe
https://global.cctv.com/ipanda/pandastories/index.shtml	0%	Avira URL Cloud	safe
https://p2.img.cctvpic.com/photoworkspace/2021/12/28/2021122816381157224.jpg	0%	Avira URL Cloud	safe
https://p4.img.cctvpic.com/photoworkspace/2024/03/07/2024030717053588555.jpg	0%	Avira URL Cloud	safe
https://p1.img.cctvpic.com/photoworkspace/2024/05/16/2024051617372282098.jpg	0%	Avira URL Cloud	safe
https://p1.img.cctvpic.com/fmspic/2024/05/20/a7f30a1dc32842aba0090418e5deaaf9-1.jpg	0%	Avira URL Cloud	safe
https://p1.img.cctvpic.com/photoworkspace/2024/01/30/2024013016195350878.jpg	0%	Avira URL Cloud	safe
https://global.cctv.com/crossstrait/index.shtml	0%	Avira URL Cloud	safe
https://global.cctv.com/zgmk/index.shtml	0%	Avira URL Cloud	safe
https://p3.img.cctvpic.com/photoworkspace/2024/04/02/2024040211345410400.jpg	0%	Avira URL Cloud	safe
https://global.cctv.com/2023/09/05/VIDAwicmgfLWTyM7l8J1krrM230905.shtml	0%	Avira URL Cloud	safe
https://p1.img.cctvpic.com/photoworkspace/2024/03/05/2024030518273331149.jpg	0%	Avira URL Cloud	safe
https://p1.img.cctvpic.com/photoworkspace/2024/04/11/2024041117290917838.jpg	0%	Avira URL Cloud	safe
https://global.cctv.com/2022/06/09/VIDEJ1AnjlsMsn61leYcYTLC220609.shtml	0%	Avira URL Cloud	safe
https://p2.img.cctvpic.com/photoworkspace/2024/03/12/2024031217375413883.jpg	0%	Avira URL Cloud	safe
https://p2.img.cctvpic.com/photoworkspace/2024/05/11/2024051117253591294.jpg	0%	Avira URL Cloud	safe
https://p3.img.cctvpic.com/fmspic/2021/02/10/deda41ec6fdd538b8ce6ec7de3938ed4-31903519-2.jpg	0%	Avira URL Cloud	safe
https://p5.img.cctvpic.com/fmspic/2024/03/27/fd05f8b0672543969dfe35def3e066ab-1.jpg	0%	Avira URL Cloud	safe
https://english.cctv.com	0%	Avira URL Cloud	safe
https://p5.img.cctvpic.com/photoworkspace/2024/04/15/2024041517380644520.jpg	0%	Avira URL Cloud	safe
https://p4.img.cctvpic.com/photoworkspace/2024/02/07/2024020711363569930.jpg	0%	Avira URL Cloud	safe
https://p1.img.cctvpic.com/fmspic/2024/01/17/6d69dbf2e48866041c550d8f8c70a793-47297677-0.jpg	0%	Avira URL Cloud	safe
https://p2.img.cctvpic.com/photoAlbum/page/performance/img/2021/12/16/1639642349883_416.png	0%	Avira URL Cloud	safe
https://global.cctv.com/2024/05/22/VIDEAiBUWnXveGzLMi6q0yLJ240522.shtml	0%	Avira URL Cloud	safe
https://english.cctv.com/2024/05/22/VIDE5na0sYqb4Gh4jCC0lIWi240522.shtml	0%	Avira URL Cloud	safe
https://global.cctv.com/2024/02/07/VIDEj9ByOZYACxoG4uOhCqAt240207.shtml	0%	Avira URL Cloud	safe
https://global.cctv.com/2024/04/28/VIDEJYsLZg7f9oAcMfh7MXWE240428.shtml	0%	Avira URL Cloud	safe
https://global.cctv.com/2023/10/31/ARTIswrGcyiPDlLRNyTDXxlp231031.shtml	0%	Avira URL Cloud	safe
https://global.cctv.com/2024/02/01/VIDEidKRV2bBlbCnt87PtG0P240201.shtml	0%	Avira URL Cloud	safe
https://p4.img.cctvpic.com/photoworkspace/2024/04/02/2024040217231729582.jpg	0%	Avira URL Cloud	safe
https://p2.img.cctvpic.com/photoworkspace/2024/04/19/2024041917463078304.jpg	0%	Avira URL Cloud	safe
https://global.cctv.com/2024/04/16/VIDExdOUgj5Z2Og3yteEBPYz240416.shtml	0%	Avira URL Cloud	safe
https://p2.img.cctvpic.com/photoworkspace/2024/05/06/2024050618341420997.jpg	0%	Avira URL Cloud	safe
https://p1.img.cctvpic.com/photoworkspace/2021/12/22/2021122217424593634.jpg	0%	Avira URL Cloud	safe
https://global.cctv.com/2022/02/24/VIDA3zs6lcqv8Zr0KCPHLahS220224.shtml	0%	Avira URL Cloud	safe
https://p1.img.cctvpic.com/fmspic/2022/08/13/85551ae94e9644179999536d4061a39d-39277761-2.jpg	0%	Avira URL Cloud	safe
https://p1.img.cctvpic.com/photoworkspace/2024/04/09/2024040917284475414.jpg	0%	Avira URL Cloud	safe
https://global.cctv.com/2024/05/09/VIDEJC1ilIn1vn7tNjH6rL0g240509.shtml	0%	Avira URL Cloud	safe
https://p1.img.cctvpic.com/fmspic/2024/02/28/e450b489c68a1cc7625ee50e25663ae3-47778621-2.jpg	0%	Avira URL Cloud	safe

Domains and IPs

Contacted Domains

Name	IP	Active	Malicious	Reputation
bg.microsoft.map.fastly.net	199.232.210.172	true	false	unknown
p2.img.cctvpic.com.wscdns.com	163.171.147.15	true	false	unknown
g.alicdn.com.danuoyi.alicdn.com	163.181.56.190	true	false	unknown
p.data.cctv.com	39.107.0.244	true	false	unknown
www.google.com	216.58.206.68	true	false	unknown
p1.img.cctvpic.com.wscdns.com	163.171.147.15	true	false	unknown
new.aj848310310.workers.dev	188.114.96.3	true	false	unknown
fp2e7a.wpc.phicdn.net	192.229.221.95	true	false	unknown
windowsupdatebg.s.llnwi.net	178.79.208.1	true	false	unknown
js.data.cctv.com	unknown	unknown	false	unknown
p3.img.cctvpic.com	unknown	unknown	false	unknown
s.go-mpulse.net	unknown	unknown	false	unknown
p4.img.cctvpic.com	unknown	unknown	false	unknown
ip.apps.cntv.cn	unknown	unknown	false	unknown
time.windows.com	unknown	unknown	false	unknown
p1.img.cctvpic.com	unknown	unknown	false	unknown
r.img.cctvpic.com	unknown	unknown	false	unknown
p2.img.cctvpic.com	unknown	unknown	false	unknown
g.alicdn.com	unknown	unknown	false	unknown
c.go-mpulse.net	unknown	unknown	false	unknown
p5.img.cctvpic.com	unknown	unknown	false	unknown
global.cctv.com	unknown	unknown	false	unknown
api.cntv.cn	unknown	unknown	false	unknown

Contacted URLs

Name	Malicious	Antivirus Detection	Reputation
https://new.aj848310310.workers.dev/favicon.ico	false	Avira URL Cloud: phishing	unknown
https://p2.img.cctvpic.com/photoworkspace/2024/05/21/2024052115272460075.jpg	false	Avira URL Cloud: safe	unknown
https://p1.img.cctvpic.com/photoworkspace/2021/12/28/2021122817473068998.jpg	false	Avira URL Cloud: safe	unknown
https://p2.img.cctvpic.com/photoAlbum/vms/standard/img/2022/5/24/CHANRGf5JSUjYdxME82Ip95y220524.jpg	false	Avira URL Cloud: safe	unknown
https://p.data.cctv.com/sns.1.1?gmkey=&gokey=%20snsScene%3Dzq%26product%3Dtv%26flashInfo%3D0.0.0%26colorDepth%3D24%26timeZone%3D-4%26unixts%3D1716508937325%26jsver%3Daplus_u%26lver%3D8.10.5%26pver%3Dundefined%26cache%3Dc97ba8d&cna=tq%2FWHjdKEAMCAQgue69jV91J&spm-cnt=0.0.0.0.7a107510LHucOo&logtype=2	false	Avira URL Cloud: safe	unknown
https://p2.img.cctvpic.com/photoworkspace/2021/12/22/2021122217445963715.jpg	false	Avira URL Cloud: safe	unknown
https://p.data.cctv.com/sns.1.1?gmkey=&gokey=%20snsScene%3Dzq%26product%3Dtv%26flashInfo%3D0.0.0%26colorDepth%3D24%26timeZone%3D-4%26jsver%3Daplus_u%26lver%3D8.10.5%26pver%3Dundefined%26cache%3Dec95899&cna=&spm-cnt=undefined&logtype=2	false	Avira URL Cloud: safe	unknown
https://p2.img.cctvpic.com/photoworkspace/2021/12/22/2021122217390911215.jpg	false	Avira URL Cloud: safe	unknown
https://p1.img.cctvpic.com/photoworkspace/2024/04/30/2024043017005531784.jpg	false	Avira URL Cloud: safe	unknown
https://p2.img.cctvpic.com/photoAlbum/page/performance/img/2024/5/16/1715852415970_283.jpg	false	Avira URL Cloud: safe	unknown
https://p1.img.cctvpic.com/photoAlbum/vms/standard/img/2022/1/5/VSETKUVzVYGlzKZiOTl49AmU220105.jpg	false	Avira URL Cloud: safe	unknown
https://p2.img.cctvpic.com/photoworkspace/2024/03/27/2024032711211557133.jpg	false	Avira URL Cloud: safe	unknown
https://p2.img.cctvpic.com/fmspic/2024/05/17/9eddaa7d732c49f38c297648109130fd-1.jpg	false	Avira URL Cloud: safe	unknown
https://p2.img.cctvpic.com/photoworkspace/2021/12/28/2021122816381157224.jpg	false	Avira URL Cloud: safe	unknown
https://p1.img.cctvpic.com/photoworkspace/2024/05/22/2024052210125535078.jpg	false	Avira URL Cloud: safe	unknown
https://p1.img.cctvpic.com/photoworkspace/2024/05/16/2024051617372282098.jpg	false	Avira URL Cloud: safe	unknown
https://p1.img.cctvpic.com/fmspic/2024/05/20/a7f30a1dc32842aba0090418e5deaaf9-1.jpg	false	Avira URL Cloud: safe	unknown
https://p1.img.cctvpic.com/photoworkspace/2024/01/30/2024013016195350878.jpg	false	Avira URL Cloud: safe	unknown
https://p2.img.cctvpic.com/photoworkspace/2024/03/12/2024031217375413883.jpg	false	Avira URL Cloud: safe	unknown
https://p1.img.cctvpic.com/photoworkspace/2024/03/05/2024030518273331149.jpg	false	Avira URL Cloud: safe	unknown
https://p2.img.cctvpic.com/photoworkspace/2024/05/11/2024051117253591294.jpg	false	Avira URL Cloud: safe	unknown
https://p2.img.cctvpic.com/photoAlbum/page/performance/img/2021/12/16/1639642349883_416.png	false	Avira URL Cloud: safe	unknown
https://p2.img.cctvpic.com/photoworkspace/2024/05/06/2024050618341420997.jpg	false	Avira URL Cloud: safe	unknown
https://p1.img.cctvpic.com/photoworkspace/2021/12/22/2021122217424593634.jpg	false	Avira URL Cloud: safe	unknown
https://p1.img.cctvpic.com/photoworkspace/2024/04/09/2024040917284475414.jpg	false	Avira URL Cloud: safe	unknown

URLs from Memory and Binaries

Name	Source	Malicious	Antivirus Detection	Reputation
https://global.cctv.com/2023/04/20/VIDAxuIyiyt7QMapiIDJGMMl230420.shtml	chromecache_337.2.dr	false	Avira URL Cloud: safe	unknown
https://p4.img.cctvpic.com/fmspic/2022/08/05/c057341b60de4e8687e2508618d932c5-39142431-0.jpg	chromecache_313.2.dr	false	Avira URL Cloud: safe	unknown
https://global.cctv.com/2024/01/17/VIDEpD9hG0nswUh1uQof1rTN240117.shtml	chromecache_533.2.dr	false	Avira URL Cloud: safe	unknown
https://global.cctv.com/ipanda/pandatroupe/index.shtml	chromecache_697.2.dr	false	Avira URL Cloud: safe	unknown
https://p5.img.cctvpic.com/photoworkspace/2023/12/26/2023122617371612989.jpg	chromecache_533.2.dr	false	Avira URL Cloud: safe	unknown
https://s2.go-mpulse.net/boomerang/	chromecache_337.2.dr, chromecache_697.2.dr	false	URL Reputation: safe	unknown
https://p4.img.cctvpic.com/photoworkspace/2024/04/12/2024041217092846255.jpg	chromecache_313.2.dr	false	Avira URL Cloud: safe	unknown
https://p4.img.cctvpic.com/fmspic/2024/03/12/16cf9df4cbc0bc00815174e35b0fb0a4-47926461-0.jpg	chromecache_533.2.dr	false	Avira URL Cloud: safe	unknown
https://global.cctv.com/2023/12/25/ARTIPAHrV7k9WwD6hAKi6eKO231225.shtml	chromecache_487.2.dr	false	Avira URL Cloud: safe	unknown
https://p4.img.cctvpic.com/fmspic/2024/04/02/8fc646ed2a5d4b8d8e99e9789c70323d-1.jpg	chromecache_309.2.dr	false	Avira URL Cloud: safe	unknown
https://global.cctv.com/2024/05/21/VIDEr9o2GnNKFlcscsNdjr8Z240521.shtml	chromecache_697.2.dr	false	Avira URL Cloud: safe	unknown
https://english.cctv.com/video/globalview/index.shtml	chromecache_337.2.dr	false	Avira URL Cloud: safe	unknown
https://p4.img.cctvpic.com/fmspic/2024/04/02/5f83215d84148fa5db4a44265fcdce5f-48181935-0.jpg	chromecache_533.2.dr	false	Avira URL Cloud: safe	unknown
https://global.cctv.com/wehk/index.shtml	chromecache_337.2.dr, chromecache_697.2.dr	false	Avira URL Cloud: safe	unknown
https://p4.img.cctvpic.com/fmspic/2022/04/29/9b528e50e8db036148b683763e935872-37289385-0.jpg	chromecache_412.2.dr, chromecache_544.2.dr	false	Avira URL Cloud: safe	unknown
https://p1.img.cctvpic.com/fmspic/2022/08/05/c057341b60de4e8687e2508618d932c5-39142431-2.jpg	chromecache_313.2.dr	false	Avira URL Cloud: safe	unknown
https://global.cctv.com/2024/05/04/VIDE28twbkadHG8MU8TjI3RZ240504.shtml	chromecache_337.2.dr	false	Avira URL Cloud: safe	unknown
https://p4.img.cctvpic.com/photoworkspace/2024/01/17/2024011717134494609.jpg	chromecache_533.2.dr	false	Avira URL Cloud: safe	unknown
https://global.cctv.com/2024/05/06/VIDEEn3nIFpB9u9HNPMrHnFP240506.shtml	chromecache_697.2.dr, chromecache_309.2.dr	false	Avira URL Cloud: safe	unknown
https://p3.img.cctvpic.com/fmspic/2022/08/06/8cd22a2cbd084db28b4b74a0ff174876-39156701-0.jpg	chromecache_313.2.dr	false	Avira URL Cloud: safe	unknown
https://p1.img.cctvpic.com/fmspic/2024/01/05/6a89e3822497a02bd8ffa8e80411ab2e-47149875-0.jpg	chromecache_533.2.dr	false	Avira URL Cloud: safe	unknown
https://global.cctv.com/2024/04/02/VIDEo9Y3nUzXnaG6pR3raI56240402.shtml	chromecache_309.2.dr	false	Avira URL Cloud: safe	unknown
https://p4.img.cctvpic.com/photoworkspace/2024/04/25/2024042517285251075.jpg	chromecache_313.2.dr	false	Avira URL Cloud: safe	unknown
https://p3.img.cctvpic.com/fmspic/2024/05/13/241a5860dad94059827dd818a1720f09-300.jpg	chromecache_309.2.dr	false	Avira URL Cloud: safe	unknown
https://global.cctv.com/cmsdatainterface/guowai/new/page/PAGEZ8HZ8JSmzO1F6GiAYTi9211130_1.jsonp	chromecache_337.2.dr	false	Avira URL Cloud: safe	unknown
https://global.cctv.com/2024/04/11/VIDE3TMPYkusvOilxwyl7Oiw240411.shtml	chromecache_313.2.dr	false	Avira URL Cloud: safe	unknown
https://tv.cctv.com/cctv4asia/	chromecache_679.2.dr	false	Avira URL Cloud: safe	unknown
https://p2.img.cctvpic.com/photoworkspace/2024/04/24/2024042417223463693.jpg	chromecache_313.2.dr	false	Avira URL Cloud: safe	unknown
https://p5.img.cctvpic.com/photoworkspace/2024/05/15/2024051517530410112.jpg	chromecache_313.2.dr	false	Avira URL Cloud: safe	unknown
https://p2.img.cctvpic.com/fmspic/2024/01/23/acf7f77e731445598e19b5cf1303ba81-300.jpg	chromecache_309.2.dr	false	Avira URL Cloud: safe	unknown
https://global.cctv.com/2024/03/29/VIDEc2K54nLkVyqgfIoZTUcx240329.shtml	chromecache_309.2.dr	false	Avira URL Cloud: safe	unknown
https://www.cctv.com	chromecache_337.2.dr, chromecache_697.2.dr	false	Avira URL Cloud: safe	unknown
https://p5.img.cctvpic.com/photoworkspace/2024/04/09/2024040917140958896.jpg	chromecache_309.2.dr	false	Avira URL Cloud: safe	unknown
https://p2.img.cctvpic.com/fmspic/2024/04/23/1753a2b43cc2e86df0e6a8c03c11fdfd-48445709-2.jpg	chromecache_533.2.dr	false	Avira URL Cloud: safe	unknown
https://global.cctv.com/2023/09/05/ARTI4KtC8spNw8I1CtnW8w0U230905.shtml	chromecache_487.2.dr	false	Avira URL Cloud: safe	unknown
https://global.cctv.com/2023/10/31/ARTILN7w2kxW4ahvrRh9QDGe231031.shtml	chromecache_487.2.dr	false	Avira URL Cloud: safe	unknown
https://p5.img.cctvpic.com/fmspic/2024/05/16/472975ddabc5117b67d7866ca21b4c39-48722823-2.jpg	chromecache_533.2.dr	false	Avira URL Cloud: safe	unknown
https://global.cctv.com/2024/04/02/VIDEhqpbiRO8V2JdjHfdjht9240402.shtml	chromecache_533.2.dr	false	Avira URL Cloud: safe	unknown
https://p3.img.cctvpic.com/photoworkspace/2024/05/08/2024050817522856882.jpg	chromecache_313.2.dr	false	Avira URL Cloud: safe	unknown
https://global.cctv.com/2022/05/24/VIDAGyhr0ik6vae1Xc7keg5F220524.shtml	chromecache_337.2.dr	false	Avira URL Cloud: safe	unknown
https://p2.img.cctvpic.com/fmspic/2024/02/07/f39d33951d92460c9ef54060da2abe42-1.jpg	chromecache_309.2.dr	false	Avira URL Cloud: safe	unknown
https://p1.img.cctvpic.com/fmspic/2024/03/07/60b048eb81d6ce9ff4c9ef718aed611b-47870479-0.jpg	chromecache_533.2.dr	false	Avira URL Cloud: safe	unknown
https://english.cctv.com/video/chinaqa/index.shtml	chromecache_337.2.dr	false	Avira URL Cloud: safe	unknown
https://global.cctv.com/2023/12/29/VIDEHHwUJP59d8InCf1i6Xim231229.shtml	chromecache_533.2.dr	false	Avira URL Cloud: safe	unknown
https://p2.img.cctvpic.com/photoworkspace/2024/04/26/2024042617104960345.jpg	chromecache_313.2.dr	false	Avira URL Cloud: safe	unknown
https://p3.img.cctvpic.com/fmspic/2024/04/16/9771d3d6054a4552b2c3695cb07e1c69-1.jpg	chromecache_309.2.dr	false	Avira URL Cloud: safe	unknown
https://p5.img.cctvpic.com/photoworkspace/2023/12/29/2023122916374482729.jpg	chromecache_533.2.dr	false	Avira URL Cloud: safe	unknown
https://global.cctv.com/2023/09/05/ARTIpJ4J2pvXIrWVJsaN71e1230905.shtml	chromecache_487.2.dr	false	Avira URL Cloud: safe	unknown
https://global.cctv.com/ipanda/pandastories/index.shtml	chromecache_697.2.dr	false	Avira URL Cloud: safe	unknown
https://p4.img.cctvpic.com/photoworkspace/2024/03/07/2024030717053588555.jpg	chromecache_533.2.dr	false	Avira URL Cloud: safe	unknown
https://global.cctv.com/crossstrait/index.shtml	chromecache_697.2.dr	false	Avira URL Cloud: safe	unknown
https://global.cctv.com/zgmk/index.shtml	chromecache_337.2.dr, chromecache_697.2.dr	false	Avira URL Cloud: safe	unknown
https://global.cctv.com/2022/06/09/VIDEJ1AnjlsMsn61leYcYTLC220609.shtml	chromecache_412.2.dr, chromecache_544.2.dr	false	Avira URL Cloud: safe	unknown
https://global.cctv.com/2023/09/05/VIDAwicmgfLWTyM7l8J1krrM230905.shtml	chromecache_337.2.dr	false	Avira URL Cloud: safe	unknown
https://p3.img.cctvpic.com/photoworkspace/2024/04/02/2024040211345410400.jpg	chromecache_309.2.dr	false	Avira URL Cloud: safe	unknown
https://p1.img.cctvpic.com/photoworkspace/2024/04/11/2024041117290917838.jpg	chromecache_313.2.dr	false	Avira URL Cloud: safe	unknown
https://p3.img.cctvpic.com/fmspic/2021/02/10/deda41ec6fdd538b8ce6ec7de3938ed4-31903519-2.jpg	chromecache_412.2.dr, chromecache_544.2.dr	false	Avira URL Cloud: safe	unknown
https://p5.img.cctvpic.com/fmspic/2024/03/27/fd05f8b0672543969dfe35def3e066ab-1.jpg	chromecache_309.2.dr	false	Avira URL Cloud: safe	unknown
https://english.cctv.com	chromecache_337.2.dr	false	Avira URL Cloud: safe	unknown
https://p4.img.cctvpic.com/photoworkspace/2024/02/07/2024020711363569930.jpg	chromecache_309.2.dr	false	Avira URL Cloud: safe	unknown
https://p1.img.cctvpic.com/fmspic/2024/01/17/6d69dbf2e48866041c550d8f8c70a793-47297677-0.jpg	chromecache_533.2.dr	false	Avira URL Cloud: safe	unknown
https://p5.img.cctvpic.com/photoworkspace/2024/04/15/2024041517380644520.jpg	chromecache_313.2.dr	false	Avira URL Cloud: safe	unknown
https://global.cctv.com/2024/05/22/VIDEAiBUWnXveGzLMi6q0yLJ240522.shtml	chromecache_313.2.dr	false	Avira URL Cloud: safe	unknown
https://english.cctv.com/2024/05/22/VIDE5na0sYqb4Gh4jCC0lIWi240522.shtml	chromecache_337.2.dr	false	Avira URL Cloud: safe	unknown
https://global.cctv.com/2024/04/28/VIDEJYsLZg7f9oAcMfh7MXWE240428.shtml	chromecache_313.2.dr	false	Avira URL Cloud: safe	unknown
https://global.cctv.com/2024/02/07/VIDEj9ByOZYACxoG4uOhCqAt240207.shtml	chromecache_309.2.dr	false	Avira URL Cloud: safe	unknown
https://global.cctv.com/2023/10/31/ARTIswrGcyiPDlLRNyTDXxlp231031.shtml	chromecache_487.2.dr	false	Avira URL Cloud: safe	unknown
https://global.cctv.com/2024/02/01/VIDEidKRV2bBlbCnt87PtG0P240201.shtml	chromecache_533.2.dr	false	Avira URL Cloud: safe	unknown
https://p4.img.cctvpic.com/photoworkspace/2024/04/02/2024040217231729582.jpg	chromecache_533.2.dr	false	Avira URL Cloud: safe	unknown
https://global.cctv.com/2024/04/16/VIDExdOUgj5Z2Og3yteEBPYz240416.shtml	chromecache_337.2.dr, chromecache_309.2.dr	false	Avira URL Cloud: safe	unknown
https://p2.img.cctvpic.com/photoworkspace/2024/04/19/2024041917463078304.jpg	chromecache_313.2.dr	false	Avira URL Cloud: safe	unknown
https://global.cctv.com/2022/02/24/VIDA3zs6lcqv8Zr0KCPHLahS220224.shtml	chromecache_337.2.dr	false	Avira URL Cloud: safe	unknown
https://p1.img.cctvpic.com/fmspic/2022/08/13/85551ae94e9644179999536d4061a39d-39277761-2.jpg	chromecache_313.2.dr	false	Avira URL Cloud: safe	unknown
https://global.cctv.com/2024/05/09/VIDEJC1ilIn1vn7tNjH6rL0g240509.shtml	chromecache_337.2.dr	false	Avira URL Cloud: safe	unknown
https://p1.img.cctvpic.com/fmspic/2024/02/28/e450b489c68a1cc7625ee50e25663ae3-47778621-2.jpg	chromecache_533.2.dr	false	Avira URL Cloud: safe	unknown

World Map of Contacted IPs

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
163.171.147.15	p2.img.cctvpic.com.wscdns.com	European Union	54994	QUANTILNETWORKSUS	false
115.182.9.46	unknown	China	4808	CHINA169-BJChinaUnicomBeijingProvinceNetworkCN	false
163.171.132.42	unknown	European Union	54994	QUANTILNETWORKSUS	false
39.107.0.195	unknown	China	37963	CNNIC-ALIBABA-CN-NET-APHangzhouAlibabaAdvertisingCoLtd	false
163.181.56.190	g.alicdn.com.danuoyi.alicdn.com	United States	24429	TAOBAOZhejiangTaobaoNetworkCoLtdCN	false
216.58.206.68	www.google.com	United States	15169	GOOGLEUS	false
239.255.255.250	unknown	Reserved	unknown	unknown	false
39.107.0.244	p.data.cctv.com	China	37963	CNNIC-ALIBABA-CN-NET-APHangzhouAlibabaAdvertisingCoLtd	false
188.114.96.3	new.aj848310310.workers.dev	European Union	13335	CLOUDFLARENETUS	false
163.171.131.248	unknown	European Union	54994	QUANTILNETWORKSUS	false

Private

IP
192.168.2.7
192.168.2.4

General Information

Joe Sandbox version:	40.0.0 Tourmaline
Analysis ID:	1446872
Start date and time:	2024-05-24 00:21:16 +02:00
Joe Sandbox product:	CloudBasic
Overall analysis duration:	0h 5m 32s
Hypervisor based Inspection enabled:	false
Report type:	full
Cookbook file name:	browseurl.jbs
Sample URL:	https://new.aj848310310.workers.dev/
Analysis system description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Number of analysed new started processes analysed:	19
Number of new started drivers analysed:	0
Number of existing processes analysed:	0
Number of existing drivers analysed:	0
Number of injected processes analysed:	0
Technologies:	HCA enabled EGA enabled AMSI enabled
Analysis Mode:	default
Analysis stop reason:	Timeout
Detection:	MAL
Classification:	mal56.win@20/729@103/12
EGA Information:	Failed
HCA Information:	Successful, ratio: 100% Number of executed functions: 0 Number of non-executed functions: 0
Cookbook Comments:	Browse: https://global.cctv.com/trending/index.shtml Browse: https://global.cctv.com/ipanda/index.shtml Browse: https://global.cctv.com/chineseart/index.shtml Browse: https://global.cctv.com/tvplay/index.shtml

Warnings

Exclude process from analysis (whitelisted): MpCmdRun.exe, dllhost.exe, SIHClient.exe, SgrmBroker.exe, MoUsoCoreWorker.exe, conhost.exe, svchost.exe
Excluded IPs from analysis (whitelisted): 142.250.185.195, 74.125.206.84, 142.250.185.110, 34.104.35.123, 104.126.37.170, 104.126.37.176, 2.18.64.5, 2.18.64.10, 23.36.162.221, 23.36.162.209, 40.119.148.38, 2.19.104.10, 184.27.96.174, 23.36.162.222, 23.36.162.202, 20.114.59.183, 104.126.37.138, 104.126.37.184, 178.79.208.1, 192.229.221.95, 20.166.126.56, 2.18.64.28, 2.18.64.8, 20.3.187.198, 2.19.96.186, 2.19.96.218, 69.192.160.133, 104.126.37.146, 104.126.37.152, 199.232.210.172, 142.250.185.99, 93.184.221.240, 142.250.186.110
Excluded domains from analysis (whitelisted): slscr.update.microsoft.com, twc.trafficmanager.net, e106384.a.akamaiedge.net, clientservices.googleapis.com, ssl.cctv.com.edgekey.net, wu.azureedge.net, e106384.dsca.akamaiedge.net, clients2.google.com, ocsp.digicert.com, cctv.com.edgekey.net, e91887.dsca.akamaiedge.net, ocsp.edge.digicert.com, glb.cws.prod.dcat.dsp.trafficmanager.net, bg.apr-52dd2-0503.edgecastdns.net, cs11.wpc.v0cdn.net, sls.update.microsoft.com, update.googleapis.com, hlb.apr-52dd2-0.edgecastdns.net, wu-b-net.trafficmanager.net, e4518.dscx.akamaiedge.net, cntv.cn.edgekey.net, glb.sls.prod.dcat.dsp.trafficmanager.net, ip46.go-mpulse.net.edgekey.net, clients1.google.com, fs.microsoft.com, accounts.google.com, ctldl.windowsupdate.com.delivery.microsoft.com, wu.ec.azureedge.net, ctldl.windowsupdate.com, fe3cr.delivery.mp.microsoft.com, sslv4.cctv.com.edgekey.net, e4518.dscapi7.akamaiedge.net, fe3.delivery.mp.microsoft.com, edgedl.me.gvt1.com, wildcard46.go-mpulse.net.edgekey.net, e94619.dsca.akamai
HTTPS proxy raw data packets have been limited to 10 per session. Please view the PCAPs for the complete data.
Not all processes where analyzed, report is missing behavior information
Report size exceeded maximum capacity and may have missing network information.
Report size getting too big, too many NtSetInformationFile calls found.
VT rate limit hit for: https://new.aj848310310.workers.dev/

Simulations

Behavior and APIs

⊘No simulations

LLM Input / Output

Input	Output
URL: https://new.aj848310310.workers.dev/ Model: Perplexity: mixtral-8x7b-instruct	{ "loginform": false, "reasons": [ "The text provided 'GLOBAL English Jll*lJ%)... fik5}i.' does not contain any elements of a typical login form such as username, password, or submit inputs.", "Additionally, the text contains garbled characters which may indicate it is not a properly formatted webpage." ] }
GLOBAL English Jll*lJ%)... fik5}i.
URL: https://new.aj848310310.workers.dev/ Model: gpt-4o	```json { "riskscore": 0, "reasons": "The provided JavaScript code is responsible for adjusting the font size based on the viewport width, ensuring responsive design. It does not contain any malicious elements or behaviors." }
//pxrem /50 (function (doc, win) { var docEl = doc.documentElement, resizeEvt = 'orientationchange' in window ? 'orientationchange' : 'resize', recalc = function () { var clientWidth = docEl.clientWidth > 750 ? 750 : docEl.clientWidth; if (!clientWidth) return; docEl.style.fontSize = 50 * (clientWidth / 750) + 'px'; }; if (!doc.addEventListener) return; win.addEventListener(resizeEvt, recalc, false); doc.addEventListener('DOMContentLoaded', recalc, false); })(document, window);
URL: https://new.aj848310310.workers.dev/ Model: Perplexity: mixtral-8x7b-instruct	{ "loginform": false, "reasons": [ "The text provided 'GLOBAL English Jll*lJ%)... fik5}i.' does not contain any elements of a typical login form such as input fields for username, password, or a submit button." ] }
GLOBAL English Jll*lJ%)... fik5}i.
URL: https://new.aj848310310.workers.dev/ Model: gpt-4o	```json { "riskscore": 2, "reasons": "The code dynamically creates and appends a script element based on certain conditions, but the script source URLs are empty. This behavior is suspicious but not inherently malicious without further context. The risk is low but not zero." }
window.addEventListener('load', function () { let scriptEl = document.createElement('script') let isCN = getArea() === 'CN'; let guowai = findGetParameter("guowai"); if (guowai === '1') { isCN = false } if ((isCN && "1" == "0") \|\| (!isCN && "1" == "0")) { document.getElementById("TPMTzo7laOcaXUpvBX67KgjG211216_container").style.display = "none"; }else{ scriptEl.src = isCN ? "" : "" document.body.appendChild(scriptEl) } })
URL: https://new.aj848310310.workers.dev/ Model: gpt-4o	```json { "riskscore": 2, "reasons": "The script dynamically loads another script based on the user's location (China or not). While this behavior is not inherently malicious, it could be used to serve different content to different users, which can sometimes be a tactic used in phishing or other malicious activities. However, the URLs used appear to be legitimate and related to a known media organization (CCTV). Therefore, the risk is low but not zero." }
'use strict'; (function () { var scriptEl = document.createElement('script'); var isCN = getArea() === 'CN'; var guowai = findGetParameter("guowai"); if (guowai === '1') { isCN = false; } if (isCN && "1" == "0" \|\| !isCN && "1" == "0") { document.getElementById("TPMTj15Hhg0q8TDcFZNH43kz211216_container").style.display = "none"; } else { var urlBeing = "https://global.cctv.com/cmsdatainterface/guonei/new/page/PAGEHo0GzuvzyA5MIci6BUsg210126_1.jsonp" ? true : false; if (urlBeing) { scriptEl.src = isCN ? "https://global.cctv.com/cmsdatainterface/guonei/new/page/PAGEHo0GzuvzyA5MIci6BUsg210126_1.jsonp" : "https://global.cctv.com/cmsdatainterface/guowai/new/page/PAGEHo0GzuvzyA5MIci6BUsg210126_1.jsonp"; document.body.appendChild(scriptEl); } } })(); //# sourceMappingURL=data:application/json;base64,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
URL: https://new.aj848310310.workers.dev/ Model: gpt-4o	```json { "riskscore": 0, "reasons": "The provided JavaScript code does not exhibit any malicious behavior. It primarily manipulates the DOM to update the appearance and content of menu items based on the URL path. There is no evidence of phishing, data exfiltration, or other malicious activities." }
var pathName; if (window.location.pathname.indexOf("big5") != "-1") { pathName = window.location.pathname.replace("/gate/big5/", ""); pathName = pathName.split("/")[1]; } else { pathName = window.location.pathname.split("/")[1]; } var activeEl = document .querySelector(".header-container") .querySelector(".menu-list") .querySelectorAll(".menu-item"); activeEl.forEach((item) => { if (pathName != "" && pathName != "index.shtml") { if ( item.querySelector("a").getAttribute("href").indexOf(pathName) != -1 ) { item.querySelector("a").style.color = "#ff6c00"; } } }); if (window.location.pathname.indexOf("big5") != "-1") { $(".menu-item-10-sub1 a").html( '<span class="menu-item-sub-tips"></span></a>' ); $(".menu-item-10-sub2 a").html( '<span class="menu-item-sub-tips"></span></a>' ); } else { $(".menu-item-10-sub1 a").html( '<span class="menu-item-sub-tips"></span></a>' ); $(".menu-item-10-sub2 a").html( '<span class="menu-item-sub-tips"></span></a>' ); }
URL: https://new.aj848310310.workers.dev/ Model: gpt-4o	```json { "riskscore": 2, "reasons": "The script dynamically creates and appends a script element based on certain conditions, which could potentially be used to load malicious content. However, the current script source URLs are empty, indicating no immediate threat. The code also hides an element based on specific conditions, which is not inherently malicious but could be used for obfuscation." }
'use strict'; (function () { var scriptEl = document.createElement('script'); var isCN = getArea() === 'CN'; var guowai = findGetParameter("guowai"); if (guowai === '1') { isCN = false; } if (isCN && "1" == "0" \|\| !isCN && "1" == "0") { document.getElementById("TPMTtekDoh7wf5Z0Jb4xXSdf211216_container").style.display = "none"; } else { scriptEl.src = isCN ? "" : ""; document.body.appendChild(scriptEl); } })(); //# sourceMappingURL=data:application/json;base64,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
URL: https://new.aj848310310.workers.dev/ Model: gpt-4o	```json { "riskscore": 0, "reasons": "The provided JavaScript code appears to be related to a video slider functionality. It does not contain any obvious malicious elements such as phishing attempts, data exfiltration, or unauthorized access to user information. The code primarily focuses on UI interactions, specifically handling video slide events and updating the UI based on user interactions. Therefore, it is considered to be of no risk." }
'use strict'; var _extends = Object.assign \|\| function (target) { for (var i = 1; i < arguments.length; i++) { var source = arguments[i]; for (var key in source) { if (Object.prototype.hasOwnProperty.call(source, key)) { target[key] = source[key]; } } } return target; }; function _classCallCheck(instance, Constructor) { if (!(instance instanceof Constructor)) { throw new TypeError("Cannot call a class as a function"); } } // videoSlide function initChineseLiteratureSlideEvent() { var VideoSlide = function VideoSlide(selector, options) { var _this2 = this; _classCallCheck(this, VideoSlide); this.boxScroll = function () { var scrollW = _this2.config.toggle === 1 ? -_this2.currentIndex * (parseFloat(_this2.siwperSlideList[0].style.width) * _this2.config.show) : -_this2.currentIndex * parseFloat(_this2.siwperSlideList[0].style.width); var newVal = _this2.trackBoxWidth - _this2.scrollWidth >= -scrollW ? scrollW : scrollW - (_this2.trackBoxWidth - _this2.scrollWidth - _this2.currentIndex * _this2.scrollWidth); _this2.trackBox.style.transform = 'translate3d(' + newVal + 'px, 0px, 0px)'; }; this.changeDots = function () { if (!_this2.options.showDots) { return 0; } _this2.dotsList.forEach(function (el) { if (Number(el.dataset.index) === _this2.currentIndex) { el.classList.add('active'); } else { el.classList.remove('active'); } }); }; this.btnClick = function (e) { var newIndex = _this2.currentIndex + parseInt(e.currentTarget.dataset.direction); if (newIndex >= 0 && newIndex < _this2.dotsCount) { _this2.currentIndex = newIndex; _this2.boxScroll(); _this2.changeDots(); } }; this.dotsClick = function (e) { if (!isNaN(e.target.dataset.index)) { _this2.currentIndex = Number(e.target.dataset.index); _this2.boxScroll(); _this2.changeDots(); } }; this.initSwiperDots = function () { _this2.dotsBox.removeEventListener('click', _this2.dotsClick, false); _this2.dotsCount = _this2.config.toggle === 1 ? Math.ceil(_this2.trackBoxWidth / _this2.scrollWidth) : Math.ceil((_this2.trackBoxWidth - _this2.scrollWidth) / _this2.sliderWidth) + 1; var temInnerHtml = ''; for (var i = 0; i < _this2.dotsCount; i++) { temInnerHtml += '<li class=\'swiper-dots-item ' + (i === _this2.currentIndex ? 'active' : '') + '\' data-index=\'' + i + '\'></li>'; } _this2.dotsBox.innerHTML = temInnerHtml; _this2.dotsList = Array.from(_this2.swiperContainer.querySelectorAll('.swiper-dots-item')); _this2.dotsBox.addEventListener('click', _this2.do
URL: https://new.aj848310310.workers.dev/ Model: gpt-4o	```json { "riskscore": 3, "reasons": "The code dynamically creates and appends a script element based on certain conditions, but the script source URLs are empty. This behavior is suspicious but not conclusively malicious without further context. The code also hides an element based on geographic location, which could be part of legitimate functionality or a tactic to avoid detection." }
window.addEventListener('load', function () { let scriptEl = document.createElement('script') let isCN = getArea() === 'CN'; let guowai = findGetParameter("guowai"); if (guowai === '1') { isCN = false } if ((isCN && "1" == "1") \|\| (!isCN && "1" == "0")) { document.getElementById("TPMTwof4bkYbF8Og0IQ0pDLA211216_container").style.display = "none"; }else{ scriptEl.src = isCN ? "" : "" document.body.appendChild(scriptEl) } })
URL: https://new.aj848310310.workers.dev/ Model: Perplexity: mixtral-8x7b-instruct	{ "loginform": false, "reasons": [ "The text 'GLOBAL English Jll*lJ%)... 00:12 0
GLOBAL English Jll*lJ%)... 00:12 00:29 00:18 01:13
URL: https://new.aj848310310.workers.dev/ Model: gpt-4o	```json { "riskscore": 2, "reasons": "The script dynamically creates and appends a script element based on certain conditions, which could potentially be used to load malicious code. However, the actual script source URLs are empty, reducing immediate risk. The code also hides an element based on region, which is a common practice and not inherently malicious." }
window.addEventListener('load', function () { let scriptEl = document.createElement('script') let isCN = getArea() === 'CN'; let guowai = findGetParameter("guowai"); if (guowai === '1') { isCN = false } if ((isCN && "1" == "1") \|\| (!isCN && "1" == "0")) { document.getElementById("TPMTGb0ECeaxfb2pTOI6i1qt211216_container").style.display = "none"; }else{ scriptEl.src = isCN ? "" : "" document.body.appendChild(scriptEl) } })
URL: https://new.aj848310310.workers.dev/ Model: gpt-4o	```json { "riskscore": 2, "reasons": "The script dynamically loads a JSONP resource based on the user's location (China or not). While this behavior is not inherently malicious, it could be used to serve different content to users based on their location, which might be a concern if the content served is harmful. However, there is no direct evidence of malicious activity in the provided code." }
'use strict'; (function () { var scriptEl = document.createElement('script'); var isCN = getArea() === 'CN'; var guowai = findGetParameter("guowai"); if (guowai === '1') { isCN = false; } if (isCN && "1" == "1" \|\| !isCN && "1" == "0") { document.getElementById("TPMTPx4zGUkt1J4Vyco4gdaY211216_container").style.display = "none"; } else { var urlBeing = "https://global.cctv.com/cmsdatainterface/guonei/new/page/PAGEAcAwQE2rxqQd91IljaY7210126_1.jsonp" ? true : false; if (urlBeing) { scriptEl.src = isCN ? "https://global.cctv.com/cmsdatainterface/guonei/new/page/PAGEAcAwQE2rxqQd91IljaY7210126_1.jsonp" : "https://global.cctv.com/cmsdatainterface/guowai/new/page/PAGEAcAwQE2rxqQd91IljaY7210126_1.jsonp"; document.body.appendChild(scriptEl); } } })(); //# sourceMappingURL=data:application/json;base64,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
URL: https://new.aj848310310.workers.dev/ Model: gpt-4o	```json { "riskscore": 0, "reasons": "The provided JavaScript code appears to be related to video slide functionality, including event handling for scrolling, changing dots, and button clicks. There are no indications of malicious behavior such as data exfiltration, credential stealing, or unauthorized access. The code does not include any suspicious patterns or operations that would typically be associated with malicious activities." }
'use strict'; var _extends = Object.assign \|\| function (target) { for (var i = 1; i < arguments.length; i++) { var source = arguments[i]; for (var key in source) { if (Object.prototype.hasOwnProperty.call(source, key)) { target[key] = source[key]; } } } return target; }; function _classCallCheck(instance, Constructor) { if (!(instance instanceof Constructor)) { throw new TypeError("Cannot call a class as a function"); } } // videoSlide function initVideoSlideEvent() { var VideoSlide = function VideoSlide(selector, options) { var _this2 = this; _classCallCheck(this, VideoSlide); this.boxScroll = function () { var scrollW = _this2.config.toggle === 1 ? -_this2.currentIndex * (parseFloat(_this2.siwperSlideList[0].style.width) * _this2.config.show) : -_this2.currentIndex * parseFloat(_this2.siwperSlideList[0].style.width); var newVal = _this2.trackBoxWidth - _this2.scrollWidth >= -scrollW ? scrollW : scrollW - (_this2.trackBoxWidth - _this2.scrollWidth - _this2.currentIndex * _this2.scrollWidth); _this2.trackBox.style.transform = 'translate3d(' + newVal + 'px, 0px, 0px)'; }; this.changeDots = function () { if (!_this2.options.showDots) { return 0; } _this2.dotsList.forEach(function (el) { if (Number(el.dataset.index) === _this2.currentIndex) { el.classList.add('active'); } else { el.classList.remove('active'); } }); }; this.btnClick = function (e) { var newIndex = _this2.currentIndex + parseInt(e.currentTarget.dataset.direction); if (newIndex >= 0 && newIndex < _this2.dotsCount) { _this2.currentIndex = newIndex; _this2.boxScroll(); _this2.changeDots(); } }; this.dotsClick = function (e) { if (!isNaN(e.target.dataset.index)) { _this2.currentIndex = Number(e.target.dataset.index); _this2.boxScroll(); _this2.changeDots(); } }; this.initSwiperDots = function () { _this2.dotsBox.removeEventListener('click', _this2.dotsClick, false); _this2.dotsCount = _this2.config.toggle === 1 ? Math.ceil(_this2.trackBoxWidth / _this2.scrollWidth) : Math.ceil((_this2.trackBoxWidth - _this2.scrollWidth) / _this2.sliderWidth) + 1; var temInnerHtml = ''; for (var i = 0; i < _this2.dotsCount; i++) { temInnerHtml += '<li class=\'swiper-dots-item ' + (i === _this2.currentIndex ? 'active' : '') + '\' data-index=\'' + i + '\'></li>'; } _this2.dotsBox.innerHTML = temInnerHtml; _this2.dotsList = Array.from(_this2.swiperContainer.querySelectorAll('.swiper-dots-item')); _this2.dotsBox.addEventListener('click', _this2.dotsClick, fal
URL: https://new.aj848310310.workers.dev/ Model: gpt-4o	```json { "riskscore": 2, "reasons": "The code dynamically loads a script based on the user's location (China or not) and a URL parameter. This behavior can be used for legitimate purposes such as localization, but it can also be exploited for malicious purposes like serving different content to different users. However, there are no immediate signs of malicious activity in the provided code." }
window.addEventListener('load', function () { let scriptEl = document.createElement('script') let isCN = getArea() === 'CN'; let guowai = findGetParameter("guowai"); if (guowai === '1') { isCN = false } if ((isCN && "1" == "0") \|\| (!isCN && "1" == "0")) { document.getElementById("TPMTyC55g6ZBo3Whkz45Xo67211216_container").style.display = "none"; }else{ let urlBeing = "https://global.cctv.com/cmsdatainterface/guonei/new/video/PAGEnL0TSDsFQ26XkCx4G7Kl210126_1.jsonp"?true:false; if(urlBeing){ scriptEl.src = isCN ? "https://global.cctv.com/cmsdatainterface/guonei/new/video/PAGEnL0TSDsFQ26XkCx4G7Kl210126_1.jsonp" : "https://global.cctv.com/cmsdatainterface/guowai/new/video/PAGEnL0TSDsFQ26XkCx4G7Kl210126_1.jsonp" document.body.appendChild(scriptEl) } } })
URL: https://new.aj848310310.workers.dev/ Model: gpt-4o	```json { "riskscore": 2, "reasons": "The script contains conditional logic that hides an element based on certain conditions, which could be used for benign purposes such as localization. However, the script also attempts to dynamically create and append a script element with an empty source, which is unusual and could potentially be used to load malicious content if modified. The risk is low but not zero due to the potential for misuse." }
'use strict'; (function () { var scriptEl = document.createElement('script'); var isCN = getArea() === 'CN'; var guowai = findGetParameter("guowai"); if (guowai === '1') { isCN = false; } if (isCN && "1" == "0" \|\| !isCN && "1" == "0") { document.getElementById("TPMTL346mmNEW8MQk7UHgD9t211216_container").style.display = "none"; } else { var urlBeing = "" ? true : false; if (urlBeing) { scriptEl.src = isCN ? "" : ""; document.body.appendChild(scriptEl); } } })(); //# sourceMappingURL=data:application/json;base64,eyJ2ZXJzaW9uIjozLCJzb3VyY2VzIjpbIklubGluZSBCYWJlbCBzY3JpcHQgKDEyKSJdLCJuYW1lcyI6WyJzY3JpcHRFbCIsImRvY3VtZW50IiwiY3JlYXRlRWxlbWVudCIsImlzQ04iLCJnZXRBcmVhIiwiZ3Vvd2FpIiwiZmluZEdldFBhcmFtZXRlciIsImdldEVsZW1lbnRCeUlkIiwic3R5bGUiLCJkaXNwbGF5IiwidXJsQmVpbmciLCJzcmMiLCJib2R5IiwiYXBwZW5kQ2hpbGQiXSwibWFwcGluZ3MiOiI7O0FBQ0ksQ0FBQyxZQUFZO0FBQ1QsTUFBSUEsV0FBV0MsU0FBU0MsYUFBVCxDQUF1QixRQUF2QixDQUFmO0FBQ0EsTUFBSUMsT0FBT0MsY0FBYyxJQUF6QjtBQUNBLE1BQUlDLFNBQVNDLGlCQUFpQixRQUFqQixDQUFiO0FBQ0EsTUFBSUQsV0FBVyxHQUFmLEVBQW9CO0FBQ2xCRixXQUFPLEtBQVA7QUFDRDs7QUFFRCxNQUFLQSxRQUFRLE9BQU8sR0FBaEIsSUFBeUIsQ0FBQ0EsSUFBRCxJQUFTLE9BQU8sR0FBN0MsRUFBbUQ7QUFDL0NGLGFBQVNNLGNBQVQsQ0FBd0IsMENBQXhCLEVBQW9FQyxLQUFwRSxDQUEwRUMsT0FBMUUsR0FBb0YsTUFBcEY7QUFDSCxHQUZELE1BRUs7QUFDSCxRQUFJQyxXQUFXLEtBQUcsSUFBSCxHQUFRLEtBQXZCO0FBQ0EsUUFBR0EsUUFBSCxFQUFZO0FBQ1ZWLGVBQVNXLEdBQVQsR0FBZVIsT0FBTyxFQUFQLEdBQVksRUFBM0I7QUFDQUYsZUFBU1csSUFBVCxDQUFjQyxXQUFkLENBQTBCYixRQUExQjtBQUNEO0FBQ0Y7QUFDSixDQWpCRCIsImZpbGUiOiJJbmxpbmUgQmFiZWwgc2NyaXB0ICgxMikiLCJzb3VyY2VzQ29udGVudCI6WyJcbiAgICAoZnVuY3Rpb24gKCkge1xuICAgICAgICBsZXQgc2NyaXB0RWwgPSBkb2N1bWVudC5jcmVhdGVFbGVtZW50KCdzY3JpcHQnKVxuICAgICAgICBsZXQgaXNDTiA9IGdldEFyZWEoKSA9PT0gJ0NOJztcbiAgICAgICAgbGV0IGd1b3dhaSA9IGZpbmRHZXRQYXJhbWV0ZXIoXCJndW93YWlcIik7XG4gICAgICAgIGlmIChndW93YWkgPT09ICcxJykge1xuICAgICAgICAgIGlzQ04gPSBmYWxzZVxuICAgICAgICB9XG4gICAgICAgIFxuICAgICAgICBpZiAoKGlzQ04gJiYgXCIxXCIgPT0gXCIwXCIpIHx8ICghaXNDTiAmJiBcIjFcIiA9PSBcIjBcIikpIHtcbiAgICAgICAgICAgIGRvY3VtZW50LmdldEVsZW1lbnRCeUlkKFwiVFBNVEwzNDZtbU5FVzhNUWs3VUhnRDl0MjExMjE2X2NvbnRhaW5lclwiKS5zdHlsZS5kaXNwbGF5ID0gXCJub25lXCI7XG4gICAgICAgIH1lbHNle1xuICAgICAgICAgIGxldCB1cmxCZWluZyA9IFwiXCI/dHJ1ZTpmYWxzZTtcbiAgICAgICAgICBpZih1cmxCZWluZyl7XG4gICAgICAgICAgICBzY3JpcHRFbC5zcmMgPSBpc0NOID8gXCJcIiA6IFwiXCJcbiAgICAgICAgICAgIGRvY3VtZW50LmJvZHkuYXBwZW5kQ2hpbGQoc2NyaXB0RWwpXG4gICAgICAgICAgfSAgXG4gICAgICAgIH1cbiAgICB9KSgpXG4iXX0=
URL: https://new.aj848310310.workers.dev/ Model: gpt-4o	```json { "riskscore": 2, "reasons": "The provided JavaScript code appears to be manipulating and displaying data from a list, including handling images and URLs. There is no immediate indication of malicious behavior such as data exfiltration, credential stealing, or unauthorized access. The code is primarily focused on content display. However, without knowing the source of the 'res' object and the URLs being used, there is a minor risk that the URLs could lead to malicious sites. This risk is considered low." }
function PAGEnL0TSDsFQ26XkCx4G7Kl210126(res) { const datalist = res.data.list.slice(0, 8); var listEl = document.querySelector('#TPMTyC55g6ZBo3Whkz45Xo67211216_container').querySelector('.promptly-section-container-wrap'); var liList = ''; var back = 'PAGEnL0TSDsFQ26XkCx4G7Kl210126'; for(var i = 0 ; i < datalist.length ; i++){ var itemHtml = ''; let item_title = datalist[i].title; item_title = item_title.replace(/\#[^\s]\s/ig, ''); item_title = item_title.replace(/\#./i, ''); let item_subtitle = datalist[i].subtitle; item_subtitle = item_subtitle.replace(/\#[^\s]\s/ig, ''); item_subtitle = item_subtitle.replace(/\#./i, ''); itemHtml +='<dl class="promptly-section-container-dlWrap">' itemHtml +='<dt>' itemHtml +='<a href="' itemHtml += datalist[i].url itemHtml +='" target="_blank" >' itemHtml +='<img src="' //itemHtml +=datalist[i].image if(datalist[i].image == '' \|\| datalist[i].image == null \|\| datalist[i].image == undefined){ if(datalist[i].s_page_name == '' \|\| datalist[i].s_page_name == null \|\| datalist[i].s_page_name == undefined ){ if(back == 'PAGEnL0TSDsFQ26XkCx4G7Kl210126'){ itemHtml +='//p2.img.cctvpic.com/photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/20220224_seat_jk.jpg' }else if(back == 'PAGEZ8HZ8JSmzO1F6GiAYTi9211130'){ itemHtml +='//p2.img.cctvpic.com/photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/20220224_seat_hk.jpg' }else if(back == 'PAGEMURMOWpDxCfQkQPW3nKA210126'){ itemHtml +='//p2.img.cctvpic.com/photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/20220224_seat_zgmk.jpg' } }else{ if(datalist[i].s_page_name == ''){ itemHtml +='//p2.img.cctvpic.com/photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/20220224_seat_jrsla.jpg' }else if(datalist[i].s_page_name == ''){ itemHtml +='//p2.img.cctvpic.com/photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/20220224_seat_gtbfb.jpg' }else if(datalist[i].s_page_name == ''){ itemHtml +='//p2.img.cctvpic.com/photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/20220224_seat_jkla.jpg' }else if(datalist[i].s_page_name == ''){ itemHtml +='//p2.img.cctvpic.com/photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/20220224_seat_wtng.jpg' }else if(datalist[i].s_page_name == ''){ itemHtml +='//p2.img.cctvpic.com/photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/20220224_seat_jkdwq.jpg'
URL: https://new.aj848310310.workers.dev/ Model: gpt-4o	```json { "riskscore": 2, "reasons": "The script appears to be related to performance monitoring and resource timing, likely from a service like Akamai or Boomerang. It does not exhibit typical malicious behaviors such as data exfiltration, credential harvesting, or unauthorized access. The presence of tracking and advertisement functionality is noted but considered no risk as per the given instructions." }
!function(a){var e="https://s.go-mpulse.net/boomerang/",t="addEventListener";if("False"=="True")a.BOOMR_config=a.BOOMR_config\|\|{},a.BOOMR_config.PageParams=a.BOOMR_config.PageParams\|\|{},a.BOOMR_config.PageParams.pci=!0,e="https://s2.go-mpulse.net/boomerang/";if(window.BOOMR_API_key="7XL4G-6N3JX-QZ6JL-GESDR-2KLZL",function(){function n(e){a.BOOMR_onload=e&&e.timeStamp\|\|(new Date).getTime()}if(!a.BOOMR\|\|!a.BOOMR.version&&!a.BOOMR.snippetExecuted){a.BOOMR=a.BOOMR\|\|{},a.BOOMR.snippetExecuted=!0;var i,_,o,r=document.createElement("iframe");if(a[t])a[t]("load",n,!1);else if(a.attachEvent)a.attachEvent("onload",n);r.src="javascript:void(0)",r.title="",r.role="presentation",(r.frameElement\|\|r).style.cssText="width:0;height:0;border:0;display:none;",o=document.getElementsByTagName("script")[0],o.parentNode.insertBefore(r,o);try{_=r.contentWindow.document}catch(O){i=document.domain,r.src="javascript:var d=document.open();d.domain='"+i+"';void(0);",_=r.contentWindow.document}_.open()._l=function(){var a=this.createElement("script");if(i)this.domain=i;a.id="boomr-if-as",a.src=e+"7XL4G-6N3JX-QZ6JL-GESDR-2KLZL",BOOMR_lstart=(new Date).getTime(),this.body.appendChild(a)},_.write("<bo"+'dy onload="document._l();">'),_.close()}}(),"".length>0)if(a&&"performance"in a&&a.performance&&"function"==typeof a.performance.setResourceTimingBufferSize)a.performance.setResourceTimingBufferSize();!function(){if(BOOMR=a.BOOMR\|\|{},BOOMR.plugins=BOOMR.plugins\|\|{},!BOOMR.plugins.AK){var e=""=="true"?1:0,t="",n="ukpd5yyxgdqhgzspygia-f-1c9f24bca-clientnsv4-s.akamaihd.net",i="false"=="true"?2:1,_={"ak.v":"37","ak.cp":"78234","ak.ai":parseInt("531170",10),"ak.ol":"0","ak.cr":0,"ak.ipv":4,"ak.proto":"h2","ak.rid":"1970a21f","ak.r":47386,"ak.a2":e,"ak.m":"dsca","ak.n":"essl","ak.bpcip":"8.46.123.0","ak.cport":48116,"ak.gh":"23.195.36.83","ak.quicv":"","ak.tlsv":"tls1.3","ak.0rtt":"","ak.csrc":"-","ak.acc":"","ak.t":"1716502928","ak.ak":"hOBiQwZUYzCg5VSAfCLimQ==gatcqbxOEXEo3yw/PcRCNwXlliifc4r3q/WiKqspogyy9ezWxvNP2IWonbS8GiTvzJokt0q8grt/kJ0d5jqsMnHvAMexbQZPWGJx9fceF8HKPzfX7XOTpeaSa0hxTVGEp/r4T4/1aZr2g6xABedqnLyg6WqUwUKWPRnxanTV21XjEPmvlDrK6w5tqvdd4uarJEOnGtY7e84HxNbCoXY0TnM2xJ/a96TzMAISaVRxKuctykDfM1rgwQTZOlO1aLKXeFfIqYfENAd0x27PnjQyIL7K2Th3z2LPNmXtHmlEs/4/MvLaFf/9tAREJn9oMd1zd8ASiyzlfkUaBbdu9gcCu90luayZxSNP8i85qLFMJpg8S+/lpuGIf7w5R0/QxQ+I2mf0n8NbYRYrGng0aN5RNYKqf6PL2EW1tyxMRfVJs3k=","ak.pv":"193","ak.dpoabenc":"","ak.tf":i};if(""!==t)_["ak.ruds"]=t;var o={i:!1,av:function(e){var t="http.initiator";if(e&&(!e[t]\|\|"spa_hard"===e[t]))_["ak.feo"]=void 0!==a.aFeoApplied?1:0,BOOMR.addVar(_)},rv:function(){var a=["ak.bpcip","ak.cport","ak.cr","ak.csrc","ak.gh","ak.ipv","ak.m","ak.n","ak.ol","ak.proto","ak.quicv","ak.tlsv","ak.0rtt","ak.r","ak.acc","ak.t","ak.tf"];BOOMR.removeVar(a)}};BOOMR.plugins.AK={akVars:_,akDNSPreFetchDomain:n,init:function(){if(!o.i){var a=BOOMR.subscribe;a("before_beacon",o.av,null,null),a("onbeacon",o.rv,null,null),o.i=!0}return this},is_complete:function(){return!0}}}
URL: https://new.aj848310310.workers.dev/ Model: gpt-4o	```json { "riskscore": 0, "reasons": "The provided JavaScript code is responsible for implementing a 'back to top' button functionality. It does not contain any malicious elements such as data exfiltration, credential stealing, or unauthorized access. The code simply adds or removes CSS classes based on the scroll position to show or hide the button. The presence of a source map URL is also not a risk. Therefore, the code is considered safe." }
'use strict'; // backtop function initBackTop() { document.body.id = 'back-top'; var backTopBtn = document.querySelector('.backtop-container'); var backTopWrap = document.querySelector('.other-set-wrap'); backTopBtn.href = '#back-top'; function firstInit() { var scrollTop = document.documentElement.scrollTop; if (scrollTop > 300) { backTopBtn.classList.add('show'); } else { backTopBtn.classList.remove('show'); } } firstInit(); window.addEventListener('scroll', function () { var scrollTop = document.documentElement.scrollTop; if (scrollTop > 300) { backTopWrap.classList.add('show'); } else { backTopWrap.classList.remove('show'); } }); } window.addEventListener('load', initBackTop); // backtop //# sourceMappingURL=data:application/json;base64,eyJ2ZXJzaW9uIjozLCJzb3VyY2VzIjpbIklubGluZSBCYWJlbCBzY3JpcHQgKDEzKSJdLCJuYW1lcyI6WyJpbml0QmFja1RvcCIsImRvY3VtZW50IiwiYm9keSIsImlkIiwiYmFja1RvcEJ0biIsInF1ZXJ5U2VsZWN0b3IiLCJiYWNrVG9wV3JhcCIsImhyZWYiLCJmaXJzdEluaXQiLCJzY3JvbGxUb3AiLCJkb2N1bWVudEVsZW1lbnQiLCJjbGFzc0xpc3QiLCJhZGQiLCJyZW1vdmUiLCJ3aW5kb3ciLCJhZGRFdmVudExpc3RlbmVyIl0sIm1hcHBpbmdzIjoiOztBQUNJO0FBQ0EsU0FBU0EsV0FBVCxHQUF3QjtBQUNwQkMsYUFBU0MsSUFBVCxDQUFjQyxFQUFkLEdBQW1CLFVBQW5CO0FBQ0EsUUFBSUMsYUFBYUgsU0FBU0ksYUFBVCxDQUF1QixvQkFBdkIsQ0FBakI7QUFDQSxRQUFJQyxjQUFlTCxTQUFTSSxhQUFULENBQXVCLGlCQUF2QixDQUFuQjtBQUNBRCxlQUFXRyxJQUFYLEdBQWtCLFdBQWxCOztBQUVBLGFBQVNDLFNBQVQsR0FBc0I7QUFDbEIsWUFBSUMsWUFBWVIsU0FBU1MsZUFBVCxDQUF5QkQsU0FBekM7QUFDQSxZQUFJQSxZQUFZLEdBQWhCLEVBQXFCO0FBQ2pCTCx1QkFBV08sU0FBWCxDQUFxQkMsR0FBckIsQ0FBeUIsTUFBekI7QUFDSCxTQUZELE1BRU87QUFDSFIsdUJBQVdPLFNBQVgsQ0FBcUJFLE1BQXJCLENBQTRCLE1BQTVCO0FBQ0g7QUFDSjtBQUNETDs7QUFFQU0sV0FBT0MsZ0JBQVAsQ0FBd0IsUUFBeEIsRUFBa0MsWUFBWTtBQUMxQyxZQUFJTixZQUFZUixTQUFTUyxlQUFULENBQXlCRCxTQUF6QztBQUNBLFlBQUlBLFlBQVksR0FBaEIsRUFBcUI7QUFDakJILHdCQUFZSyxTQUFaLENBQXNCQyxHQUF0QixDQUEwQixNQUExQjtBQUNILFNBRkQsTUFFTztBQUNITix3QkFBWUssU0FBWixDQUFzQkUsTUFBdEIsQ0FBNkIsTUFBN0I7QUFDSDtBQUNKLEtBUEQ7QUFRSDtBQUNEQyxPQUFPQyxnQkFBUCxDQUF3QixNQUF4QixFQUFnQ2YsV0FBaEM7QUFDQSIsImZpbGUiOiJJbmxpbmUgQmFiZWwgc2NyaXB0ICgxMykiLCJzb3VyY2VzQ29udGVudCI6WyJcbiAgICAvLyBiYWNrdG9wIOW8gOWni1xuICAgIGZ1bmN0aW9uIGluaXRCYWNrVG9wICgpIHtcbiAgICAgICAgZG9jdW1lbnQuYm9keS5pZCA9ICdiYWNrLXRvcCdcbiAgICAgICAgbGV0IGJhY2tUb3BCdG4gPSBkb2N1bWVudC5xdWVyeVNlbGVjdG9yKCcuYmFja3RvcC1jb250YWluZXInKVxuICAgICAgICBsZXQgYmFja1RvcFdyYXAgPSAgZG9jdW1lbnQucXVlcnlTZWxlY3RvcignLm90aGVyLXNldC13cmFwJylcbiAgICAgICAgYmFja1RvcEJ0bi5ocmVmID0gJyNiYWNrLXRvcCdcbiAgICBcbiAgICAgICAgZnVuY3Rpb24gZmlyc3RJbml0ICgpIHtcbiAgICAgICAgICAgIGxldCBzY3JvbGxUb3AgPSBkb2N1bWVudC5kb2N1bWVudEVsZW1lbnQuc2Nyb2xsVG9wXG4gICAgICAgICAgICBpZiAoc2Nyb2xsVG9wID4gMzAwKSB7XG4gICAgICAgICAgICAgICAgYmFja1RvcEJ0bi5jbGFzc0xpc3QuYWRkKCdzaG93JylcbiAgICAgICAgICAgIH0gZWxzZSB7XG4gICAgICAgICAgICAgICAgYmFja1RvcEJ0bi5jbGFzc0xpc3QucmVtb3ZlKCdzaG93JylcbiAgICAgICAgICAgIH1cbiAgICAgICAgfVxuICAgICAg
URL: https://new.aj848310310.workers.dev/ Model: gpt-4o	```json { "riskscore": 2, "reasons": "The script dynamically loads a JSONP resource based on the user's location, which is a common practice for serving localized content. The code does not exhibit typical malicious behaviors such as data exfiltration, credential harvesting, or unauthorized access. The use of 'document.createElement' and 'appendChild' is standard for dynamically loading scripts. The risk score is low, but not zero, due to the potential for the external resource to change and serve malicious content in the future." }
'use strict'; (function () { var scriptEl = document.createElement('script'); var isCN = getArea() === 'CN'; var guowai = findGetParameter("guowai"); if (guowai === '1') { isCN = false; } if (isCN && "1" == "0" \|\| !isCN && "1" == "0") { document.getElementById("TPMTLq1Ec406OvekA4Bia2V6211216_container").style.display = "none"; } else { var urlBeing = "https://global.cctv.com/cmsdatainterface/guonei/new/page/PAGEZ8HZ8JSmzO1F6GiAYTi9211130_1.jsonp" ? true : false; if (urlBeing) { scriptEl.src = isCN ? "https://global.cctv.com/cmsdatainterface/guonei/new/page/PAGEZ8HZ8JSmzO1F6GiAYTi9211130_1.jsonp" : "https://global.cctv.com/cmsdatainterface/guowai/new/page/PAGEZ8HZ8JSmzO1F6GiAYTi9211130_1.jsonp"; document.body.appendChild(scriptEl); } } })(); //# sourceMappingURL=data:application/json;base64,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
URL: https://new.aj848310310.workers.dev/ Model: gpt-4o	```json { "riskscore": 1, "reasons": "The JavaScript code primarily focuses on configuring and utilizing the WeChat and DingTalk APIs for sharing content. It does not exhibit any malicious behavior such as data exfiltration, credential stealing, or unauthorized access. The use of JSONP for the AJAX request could be considered a minor risk if not properly handled, but in this context, it appears to be used for legitimate purposes." }
// //Ajax function getAjax(url, data, cb, spacial) { $.ajax({ url: url, type: "get", data: data, dataType: "jsonp", jsonp: "cb", jsonpCallback: "cb1", cache: true, success: function (_data) { cb(_data); }, timeout: 10000, error: function () { warnbox(""); }, }); } var data = { appid: "newstiket", serviceId: "cmsty", url: encodeURIComponent(encodeURIComponent(window.location.href)), }; getAjax("//api.cntv.cn/list/getWeiXinSignature?t=jsonp", data, weixinSucess); function weixinSucess(data) { wx.config({ debug: false, appId: "wx2723c0deaa5a97e9", timestamp: data.data.timestamp, nonceStr: data.data.nonceStr, signature: data.data.signature, jsApiList: ["updateTimelineShareData", "updateAppMessageShareData"], // JS-SDK }); } // configreadyconfigconfig readyready wx.ready(function () { // wx.updateTimelineShareData({ title: "", // link: window.location.href, imgUrl: "https://p3.img.cctvpic.com/photoAlbum/page/performance/img/2022/12/28/1672218296307_878.jpg", // }); // wx.updateAppMessageShareData({ title: "", // desc: "global.cctv.com", // link: window.location.href, imgUrl: "https://p3.img.cctvpic.com/photoAlbum/page/performance/img/2022/12/28/1672218296307_878.jpg", // type: "link", // ,musicvideolinklink }); }); wx.error(function (res) { console.log(""); }); function isdingding_20190304() { // var ua = navigator.userAgent.toLowerCase(); return ua.indexOf("dingtalk") >= 0; } if (isdingding_20190304()) { dd.ready(function () { dd.biz.navigation.setRight({ show: true, // true false true control: true, //true false false text: "", // onSuccess: function (result) { //controltrueonSuccess dd.biz.util.share({ type: 0, //0: 1:2: url: window.location.href, content: "global.cctv.com", title: "", image: "https://p3.img.cctvpic.com/photoAlbum/page/performance/img/2022/12/28/1672218296307_878.jpg", onSuccess: function () {}, onFail: function (err) {}, }); }, onFail: function (err) {}, }); }); }
URL: https://new.aj848310310.workers.dev/ Model: gpt-4o	```json { "riskscore": 1, "reasons": "The provided JavaScript code appears to be related to a carousel/slider functionality for a web page. It includes event handlers for touch events and interval-based image transitions. There is no indication of malicious behavior such as data exfiltration, credential stealing, or unauthorized access. The presence of a random hexadecimal string is noted but considered no risk. Overall, the code seems to be part of a legitimate web page feature." }
'use strict'; // // bannerSlide function ininBannerSlideEvent() { document.querySelector('#TPMTOr7IKeZ3p5oUzAEyXSZQ211216_container').style.display = 'block'; var timer = null; function mobileSlide(noPhone) { var carousel = document.querySelector('.slide-container'); var carouselUl = carousel.querySelector('ul'); var carouselLis = carouselUl.querySelectorAll('li'); var points = carousel.querySelector('.cj_dispIndex'); // var screenWidth = document.documentElement.offsetWidth; // var left = carouselLis.length - 1; var center = 0; var right = 1; if (noPhone) { clearInterval(timer); setTransformPC(); return; } // setTransform(); // timer = setInterval(showNext, 2000); // touch var startX = 0; // var startTime = null; // carouselUl.addEventListener('touchstart', touchstartHandler); // touchstartHandler carouselUl.addEventListener('touchmove', touchmoveHandler); // touchmoveHandler carouselUl.addEventListener('touchend', touchendHandeler); // touchendHandeler // function showNext() { // left = center; center = right; right++; // if (right > carouselLis.length - 1) { right = 0; } // setTransition(1, 1, 0); // setTransform(); // setPoint(); } // function showPrev() { // right = center; center = left; left--; // if (left < 0) { left = carouselLis.length - 1; } // setTransition(0, 1, 1); // setTransform(); // setPoint(); } // function touchstartHandler(e) { // clearInterval(timer); // startTime = Date.now(); // startX = e.changedTouches[0].clientX; } // function touchmoveHandler(e) { // var dx = e.changedTouches[0].clientX - startX; // setTransition(0, 0, 0); // setTransform(dx); } // function touchendHandeler(e) { // var dx = e.changedTouches[0].clientX - startX; // var dTime = Date.now() - startTime; // 30030 if (Math.abs(dx) > screenWidth / 3 \|\| dTime < 300 && Math.
URL: https://new.aj848310310.workers.dev/ Model: gpt-4o	```json { "riskscore": 2, "reasons": "The provided JavaScript code dynamically generates HTML content based on data received from a response object. While the code itself does not exhibit any explicitly malicious behavior, such as stealing user data or executing unauthorized actions, it does manipulate the DOM and includes external URLs. This could potentially be used for phishing if the URLs are not from a trusted source. However, without additional context or evidence of malicious intent, the risk is low." }
'use strict'; function PAGEAcAwQE2rxqQd91IljaY7210126(res) { var datalist = res.data.list.slice(0, 9); var listEl = document.querySelector('#TPMTPx4zGUkt1J4Vyco4gdaY211216_container').querySelector('.swiper-track'); var liList = ''; for (var i = 0; i < datalist.length; i++) { var item_title = datalist[i].title; item_title = item_title.replace(/\#[^\s]\s/ig, ''); item_title = item_title.replace(/\#./i, ''); var item = ''; item += '<li class="swiper-slide">'; item += '<a href="'; item += datalist[i].url; item += '" class="swiper-slide-box" target="_blank">'; item += '<div class="swiper-slide-img" style="background-image: url('; item += datalist[i].image; item += ');"></div><div class="swiper-slide-title-wrap" ><p class="swiper-slide-title">'; item += item_title; item += '</p></div></a>'; if (datalist[i].duration) { item += '<p class="swiper-slide-length-time">'; item += datalist[i].duration; item += '</p>'; } item += '</li>'; liList += item; } listEl.innerHTML = liList; } //# sourceMappingURL=data:application/json;base64,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
URL: https://new.aj848310310.workers.dev/ Model: gpt-4o	```json { "riskscore": 2, "reasons": "The provided JavaScript code does not exhibit any clear signs of malicious behavior such as data exfiltration, credential stealing, or unauthorized access to sensitive information. It primarily manipulates the DOM to display content based on the provided data. The use of random hexadecimal strings and image URLs is noted but not considered a risk. However, the code does include external image URLs which could potentially be used for tracking purposes, but this is considered low risk." }
'use strict'; function PAGEHo0GzuvzyA5MIci6BUsg210126(res) { var datalist = res.data.list.slice(0, 8); var listLeft = document.querySelector('#TPMTj15Hhg0q8TDcFZNH43kz211216_container').querySelector('.zgl_content').querySelector('.zgl_left'); var listRight = document.querySelector('#TPMTj15Hhg0q8TDcFZNH43kz211216_container').querySelector('.zgl_content').querySelector('.zgl_right'); var liListLeft = ''; var liListRight = ''; for (var i = 0; i < datalist.length; i++) { var item = ''; var item_title = datalist[i].title; item_title = item_title.replace(/\#[^\s]\s/ig, ''); item_title = item_title.replace(/\#./i, ''); var item_subtitle = datalist[i].subtitle; item_subtitle = item_subtitle.replace(/\#[^\s]\s/ig, ''); item_subtitle = item_subtitle.replace(/\#./i, ''); if (i < 5) { item += '<div class="zgl_leftcon"><a href="'; item += datalist[i].url; item += '" target="_blank">'; // item +='<img src="' // item += datalist[i].image // item += '">' if (datalist[i].subtitle != '') { item += item_subtitle; } else { item += item_title; } item += '</a></div>'; liListLeft += item; } else { item += '<div class="zgl_Img">'; item += '<a href="'; item += datalist[i].url; item += '" target="_blank"><div class="zgl_imgTop"><img src="'; //item +=datalist[i].image if (datalist[i].image == '' \|\| datalist[i].image == null \|\| datalist[i].image == undefined) { if (datalist[i].s_page_name == '' \|\| datalist[i].s_page_name == null \|\| datalist[i].s_page_name == undefined) { if (PAGEHo0GzuvzyA5MIci6BUsg210126 == 'PAGEnL0TSDsFQ26XkCx4G7Kl210126') { item += '//p2.img.cctvpic.com/photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/20220224_seat_jk.jpg'; } else if (PAGEHo0GzuvzyA5MIci6BUsg210126 == 'PAGEZ8HZ8JSmzO1F6GiAYTi9211130') { item += '//p2.img.cctvpic.com/photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/20220224_seat_hk.jpg'; } else if (PAGEHo0GzuvzyA5MIci6BUsg210126 == 'PAGEMURMOWpDxCfQkQPW3nKA210126') { item += '//p2.img.cctvpic.com/photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/20220224_seat_zgmk.jpg'; } } else { if (datalist[i].s_page_name == '') { item += '//p2.img.cctvpic.com/photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/20220224_seat_jrsla.jpg'; } else if (datalist[i].s_page_name == '') { item += '//p2.img.cctvpic.com/photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/20220224_seat_gtbfb.jpg';
URL: https://new.aj848310310.workers.dev/ Model: gpt-4o	```json { "riskscore": 2, "reasons": "The provided JavaScript code appears to be manipulating DOM elements to display content dynamically based on data received from a response object. It does not exhibit any obvious malicious behavior such as stealing user data, injecting malicious scripts, or redirecting users to phishing sites. The code primarily deals with displaying titles, subtitles, and images. However, it does include external image URLs, which could potentially be used for tracking or serving malicious content if the source is not trusted. This is considered low risk." }
'use strict'; function PAGEZ8HZ8JSmzO1F6GiAYTi9211130(res) { var datalist = res.data.list.slice(0, 8); var listLeft = document.querySelector('#TPMTLq1Ec406OvekA4Bia2V6211216_container').querySelector('.zgl_content').querySelector('.zgl_left'); var listRight = document.querySelector('#TPMTLq1Ec406OvekA4Bia2V6211216_container').querySelector('.zgl_content').querySelector('.zgl_right'); var liListLeft = ''; var liListRight = ''; for (var i = 0; i < datalist.length; i++) { var item = ''; var item_title = datalist[i].title; item_title = item_title.replace(/\#[^\s]\s/ig, ''); item_title = item_title.replace(/\#./i, ''); var item_subtitle = datalist[i].subtitle; item_subtitle = item_subtitle.replace(/\#[^\s]\s/ig, ''); item_subtitle = item_subtitle.replace(/\#./i, ''); if (i < 5) { item += '<div class="zgl_leftcon"><a href="'; item += datalist[i].url; item += '" target="_blank">'; // item +='<img src="' // item += datalist[i].image // item += '">' if (datalist[i].subtitle != '') { item += item_subtitle; } else { item += item_title; } item += '</a></div>'; liListLeft += item; } else { item += '<div class="zgl_Img">'; item += '<a href="'; item += datalist[i].url; item += '" target="_blank"><div class="zgl_imgTop"><img src="'; //item +=datalist[i].image if (datalist[i].image == '' \|\| datalist[i].image == null \|\| datalist[i].image == undefined) { if (datalist[i].s_page_name == '' \|\| datalist[i].s_page_name == null \|\| datalist[i].s_page_name == undefined) { if (PAGEZ8HZ8JSmzO1F6GiAYTi9211130 == 'PAGEnL0TSDsFQ26XkCx4G7Kl210126') { item += '//p2.img.cctvpic.com/photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/20220224_seat_jk.jpg'; } else if (PAGEZ8HZ8JSmzO1F6GiAYTi9211130 == 'PAGEZ8HZ8JSmzO1F6GiAYTi9211130') { item += '//p2.img.cctvpic.com/photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/20220224_seat_hk.jpg'; } else if (PAGEZ8HZ8JSmzO1F6GiAYTi9211130 == 'PAGEMURMOWpDxCfQkQPW3nKA210126') { item += '//p2.img.cctvpic.com/photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/20220224_seat_zgmk.jpg'; } } else { if (datalist[i].s_page_name == '') { item += '//p2.img.cctvpic.com/photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/20220224_seat_jrsla.jpg'; } else if (datalist[i].s_page_name == '') { item += '//p2.img.cctvpic.com/photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/20220224_seat_gtbfb.jpg';
URL: https://global.cctv.com/trending/index.shtml Model: Perplexity: mixtral-8x7b-instruct	{ "loginform": false, "reasons": [ "No form fields for username or password were present in the text.", "No form submission method (e.g. POST) was indicated in the text.", "No mention of login or authentication was present in the text." ] }
GLOBAL English GLOBAL Tube Copyright 0 2020, China Media Group.CCTV_com_ A1 Rights Reserved 11000002000018#
URL: https://new.aj848310310.workers.dev/ Model: gpt-4o	```json { "riskscore": 1, "reasons": "The provided JavaScript code primarily manipulates the display properties of various menu items based on certain conditions. It does not exhibit any behavior typically associated with malicious activities such as data exfiltration, credential stealing, or unauthorized access. The code does not interact with external resources or perform any suspicious operations. The risk score is set to 1 due to the presence of some conditional logic that could potentially be used to alter the user interface in a misleading way, but there is no concrete evidence of malicious intent." }
'use strict'; var show_menu_interval = setInterval(show_menu, 1000); function show_menu() { var isCN = getArea() === 'CN'; console.log(isCN); var guowai = findGetParameter("guowai"); if (guowai === '1') { isCN = false; } if (isCN && "0" == "0" \|\| !isCN && "0" == "0") { document.getElementsByClassName("menu-item-1")[0].style.display = "flex"; } if (isCN && "0" == "0" \|\| !isCN && "0" == "0") { document.getElementsByClassName("menu-item-2")[0].style.display = "flex"; } if (isCN && "0" == "0" \|\| !isCN && "0" == "0") { document.getElementsByClassName("menu-item-3")[0].style.display = "flex"; } if (isCN && "0" == "1" \|\| !isCN && "0" == "0") { document.getElementsByClassName("menu-item-4")[0].style.display = "flex"; } if (isCN && "0" == "1" \|\| !isCN && "0" == "0") { document.getElementsByClassName("menu-item-5")[0].style.display = "flex"; } if (isCN && "0" == "1" \|\| !isCN && "0" == "0") { document.getElementsByClassName("menu-item-6")[0].style.display = "flex"; } if (isCN && "0" == "0" \|\| !isCN && "0" == "0") { document.getElementsByClassName("menu-item-7")[0].style.display = "flex"; } if (isCN && "0" == "0" \|\| !isCN && "0" == "0") { document.getElementsByClassName("menu-item-8")[0].style.display = "flex"; } if (isCN && "0" == "0" \|\| !isCN && "0" == "0") { document.getElementsByClassName("menu-item-9")[0].style.display = "flex"; } if (isCN && "0" == "" \|\| !isCN && "0" == "") { document.getElementsByClassName("menu-item-more")[0].style.display = "flex"; } if (isCN && "0" == "0" \|\| !isCN && "0" == "0") { document.getElementsByClassName("menu-item-10")[0].style.display = "flex"; } if (isCN && "0" == "0" \|\| !isCN && "0" == "0") { document.getElementsByClassName("menu-item-11")[0].style.display = "flex"; } if (isCN && "0" == "1" \|\| !isCN && "0" == "1") { document.getElementsByClassName("menu-item-12")[0].style.display = "flex"; } if (isCN && "0" == "1" \|\| !isCN && "0" == "1") { document.getElementsByClassName("menu-item-13")[0].style.display = "flex"; } // 2 if (isCN && "0" == "0" \|\| !isCN && "0" == "0") { document.getElementsByClassName("menu-item-2-sub1")[0].style.display = "flex"; } if (isCN && "0" == "0" \|\| !isCN && "0" == "0") { document.getElementsByClassName("menu-item-2-sub2")[0].style.display = "flex"; } if (isCN && "0" == "0" \|\| !isCN && "0" == "0") { document.getElementsByClassName("menu-item-2-sub3")[0].style.display = "flex"; } if (isCN && "0" == "0" \|\| !isCN && "0" == "0") { document.getElementsByClassName("menu-item-2-sub4")[0].style.display = "flex"; } if (isCN && "0" == "1" \|\| !isCN && "0" == "1") { document.getElementsByClassName("menu-item-2-sub5")[0].style.display = "flex"; } // 3 if (isCN
URL: https://global.cctv.com/trending/index.shtml Model: Perplexity: mixtral-8x7b-instruct	{ "loginform": false, "reasons": [ "No form fields for username or password were found in the text.", "No form submission method (e.g. POST) was mentioned in the text.", "No indication of a login form was found in the text." ] }
GLOBAL English GLOBAL Tube Copyright 0 2020, China Media Group.CCTV_com_ A1 Rights Reserved 11000002000018#
URL: https://global.cctv.com/trending/index.shtml Model: gpt-4o	```json { "riskscore": 0, "reasons": "The provided JavaScript code is responsible for adjusting the font size based on the viewport width, ensuring responsive design. It does not contain any malicious elements or behaviors." }
//pxrem /10 (function(doc, win) { var docEl = doc.documentElement, resizeEvt = 'orientationchange' in window ? 'orientationchange' : 'resize', recalc = function() { var clientWidth = docEl.clientWidth>750?750:docEl.clientWidth; if (!clientWidth) return; docEl.style.fontSize = 50 * (clientWidth / 750) + 'px'; }; if (!doc.addEventListener) return; win.addEventListener(resizeEvt, recalc, false); doc.addEventListener('DOMContentLoaded', recalc, false); })(document, window);
URL: https://global.cctv.com/trending/index.shtml Model: gpt-4o	```json { "riskscore": 1, "reasons": "The script appears to be related to performance monitoring and optimization, specifically using Boomerang and Akamai services. It does not exhibit behaviors typical of malicious scripts such as data exfiltration, credential harvesting, or unauthorized access. The presence of long random hexadecimal strings and tracking functionality is noted but considered no risk." }
!function(a){var e="https://s.go-mpulse.net/boomerang/",t="addEventListener";if("False"=="True")a.BOOMR_config=a.BOOMR_config\|\|{},a.BOOMR_config.PageParams=a.BOOMR_config.PageParams\|\|{},a.BOOMR_config.PageParams.pci=!0,e="https://s2.go-mpulse.net/boomerang/";if(window.BOOMR_API_key="7XL4G-6N3JX-QZ6JL-GESDR-2KLZL",function(){function n(e){a.BOOMR_onload=e&&e.timeStamp\|\|(new Date).getTime()}if(!a.BOOMR\|\|!a.BOOMR.version&&!a.BOOMR.snippetExecuted){a.BOOMR=a.BOOMR\|\|{},a.BOOMR.snippetExecuted=!0;var i,_,o,r=document.createElement("iframe");if(a[t])a[t]("load",n,!1);else if(a.attachEvent)a.attachEvent("onload",n);r.src="javascript:void(0)",r.title="",r.role="presentation",(r.frameElement\|\|r).style.cssText="width:0;height:0;border:0;display:none;",o=document.getElementsByTagName("script")[0],o.parentNode.insertBefore(r,o);try{_=r.contentWindow.document}catch(O){i=document.domain,r.src="javascript:var d=document.open();d.domain='"+i+"';void(0);",_=r.contentWindow.document}_.open()._l=function(){var a=this.createElement("script");if(i)this.domain=i;a.id="boomr-if-as",a.src=e+"7XL4G-6N3JX-QZ6JL-GESDR-2KLZL",BOOMR_lstart=(new Date).getTime(),this.body.appendChild(a)},_.write("<bo"+'dy onload="document._l();">'),_.close()}}(),"".length>0)if(a&&"performance"in a&&a.performance&&"function"==typeof a.performance.setResourceTimingBufferSize)a.performance.setResourceTimingBufferSize();!function(){if(BOOMR=a.BOOMR\|\|{},BOOMR.plugins=BOOMR.plugins\|\|{},!BOOMR.plugins.AK){var e=""=="true"?1:0,t="",n="baxhxlyccjabyzspygxa-f-85851e9de-clientnsv4-s.akamaihd.net",i="false"=="true"?2:1,_={"ak.v":"37","ak.cp":"78234","ak.ai":parseInt("531170",10),"ak.ol":"0","ak.cr":161,"ak.ipv":4,"ak.proto":"http/1.1","ak.rid":"505d0fe7","ak.r":48107,"ak.a2":e,"ak.m":"dsca","ak.n":"essl","ak.bpcip":"8.46.123.0","ak.cport":56896,"ak.gh":"2.20.179.92","ak.quicv":"","ak.tlsv":"tls1.3","ak.0rtt":"","ak.csrc":"-","ak.acc":"reno","ak.t":"1716502958","ak.ak":"hOBiQwZUYzCg5VSAfCLimQ==6Em5Sx2/FDqh+StlizdWcgO1pg8SVeoPuy+kL07VNa2j2k7Lismr2S2vnTlTMyTZN2qQwACbXTyD7ZbfpXRHW5BtOK7BQVb9P5z18JGzaxoLQfdJjM4DZ11pk70IXC4ocLjpQpN9vkgrEVjkzXIYfo/wZ4vqLg1EOc3dmiENsnYOaUfgQGcmTnFPGaZdGS5zz7GzKNw69njkSHCvP4QfYhjIsv2uNa0RDD4pkHvZpENXf9sEbofjE1D5YCEVBrFlVCbTcuw0ndHXRC/pXHwwmwUQPaC0q7PK/zBr2lwnhIyIC8KjQGbaHur+EN6QnIbd4DUC+ZSCoPwlJIilG/sxODv1ZUnDmNnBUKexu79+tzMYSjY8lt1+B0XPIvs1NSIgMjDKW6ohduIS2BF33dYVbx28Xch/3KK1uXTbYv1GzQQ=","ak.pv":"193","ak.dpoabenc":"","ak.tf":i};if(""!==t)_["ak.ruds"]=t;var o={i:!1,av:function(e){var t="http.initiator";if(e&&(!e[t]\|\|"spa_hard"===e[t]))_["ak.feo"]=void 0!==a.aFeoApplied?1:0,BOOMR.addVar(_)},rv:function(){var a=["ak.bpcip","ak.cport","ak.cr","ak.csrc","ak.gh","ak.ipv","ak.m","ak.n","ak.ol","ak.proto","ak.quicv","ak.tlsv","ak.0rtt","ak.r","ak.acc","ak.t","ak.tf"];BOOMR.removeVar(a)}};BOOMR.plugins.AK={akVars:_,akDNSPreFetchDomain:n,init:function(){if(!o.i){var a=BOOMR.subscribe;a("before_beacon",o.av,null,null),a("onbeacon",o.rv,null,null),o.i=!0}return this},is_complete:function(){
URL: https://global.cctv.com/trending/index.shtml Model: gpt-4o	```json { "riskscore": 1, "reasons": "The provided JavaScript code primarily involves configuration and integration with WeChat and DingTalk APIs for sharing content. It does not exhibit any malicious behavior such as data exfiltration, credential stealing, or unauthorized access. The use of JSONP for AJAX requests is noted, which can be a security concern if not properly handled, but in this context, it appears to be used for legitimate API calls." }
// //Ajax function getAjax(url, data, cb, spacial) { $.ajax({ url: url, type: "get", data: data, dataType: "jsonp", jsonp: "cb", jsonpCallback: "cb1", cache: true, success: function (_data) { cb(_data); }, timeout: 10000, error: function () { warnbox(""); }, }); } var data = { appid: "newstiket", serviceId: "cmsty", url: encodeURIComponent(encodeURIComponent(window.location.href)), }; getAjax("//api.cntv.cn/list/getWeiXinSignature?t=jsonp", data, weixinSucess); function weixinSucess(data) { wx.config({ debug: false, appId: "wx2723c0deaa5a97e9", timestamp: data.data.timestamp, nonceStr: data.data.nonceStr, signature: data.data.signature, jsApiList: ["updateTimelineShareData", "updateAppMessageShareData"], // JS-SDK }); } // configreadyconfigconfig readyready wx.ready(function () { // wx.updateTimelineShareData({ title: "__(cctv.com)", // link: window.location.href, imgUrl: "https://p2.img.cctvpic.com/photoAlbum/page/performance/img/2023/2/9/1675908806957_283.jpeg", // }); // wx.updateAppMessageShareData({ title: "__(cctv.com)", // desc: "global.cctv.com", // link: window.location.href, imgUrl: "https://p2.img.cctvpic.com/photoAlbum/page/performance/img/2023/2/9/1675908806957_283.jpeg", // type: "link", // ,musicvideolinklink }); }); wx.error(function (res) { console.log(""); }); function isdingding_20190304() { // var ua = navigator.userAgent.toLowerCase(); return ua.indexOf("dingtalk") >= 0; } if (isdingding_20190304()) { dd.ready(function () { dd.biz.navigation.setRight({ show: true, // true false true control: true, //true false false text: "", // onSuccess: function (result) { //controltrueonSuccess dd.biz.util.share({ type: 0, //0: 1:2: url: window.location.href, content: "global.cctv.com", title: "__(cctv.com)", image: "https://p2.img.cctvpic.com/photoAlbum/page/performance/img/2023/2/9/1675908806957_283.jpeg", onSuccess: function () {}, onFail: function (err) {}, }); }, onFail: function (err) {}, }); }); }
URL: https://global.cctv.com/trending/index.shtml Model: gpt-4o	```json { "riskscore": 1, "reasons": "The provided JavaScript code appears to be primarily focused on dynamically generating HTML content based on data received from a response object. There are no obvious signs of malicious activity such as data exfiltration, credential harvesting, or unauthorized access. The code includes some image URL handling and string manipulation, which are common in web development. The presence of a long random hexadecimal string is noted but treated as no risk. Overall, the code seems to be part of a legitimate web application, possibly for displaying content dynamically." }
var firstOpen = true; var total = 0; var dataUrl = ''; var hideNum = true; function PAGEnL0TSDsFQ26XkCx4G7Kl210126(res) { console.log(res) var data = res.data.list; var listHtml = ''; var back = 'PAGEnL0TSDsFQ26XkCx4G7Kl210126'; for (var i = 0; i < data.length; i++) { var itemHtml = ''; let item_title = data[i].title; item_title = item_title.replace(/\#[^\s]\s/ig, ''); item_title = item_title.replace(/\#./i, ''); let item_subtitle = data[i].subtitle; item_subtitle = item_subtitle.replace(/\#[^\s]\s/ig, ''); item_subtitle = item_subtitle.replace(/\#./i, ''); if (firstOpen) { itemHtml += '<dl class="promptlyHtml-section-container-dlWrap">' } else { itemHtml += '<dl class="promptlyHtml-section-container-dlWrap hidedl">' } itemHtml += '<dt>' itemHtml += '<a href="' itemHtml += data[i].url itemHtml += '" target="_blank" >' itemHtml += '<img src="' //itemHtml += data[i].image if(data[i].image == '' \|\| data[i].image == null \|\| data[i].image == undefined){ if(data[i].s_page_name == '' \|\| data[i].s_page_name == null \|\| data[i].s_page_name == undefined ){ if(back == 'PAGEnL0TSDsFQ26XkCx4G7Kl210126'){ itemHtml +='//p2.img.cctvpic.com/photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/20220224_seat_jk.jpg' }else if(back == 'PAGEZ8HZ8JSmzO1F6GiAYTi9211130'){ itemHtml +='//p2.img.cctvpic.com/photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/20220224_seat_hk.jpg' }else if(back == 'PAGEMURMOWpDxCfQkQPW3nKA210126'){ itemHtml +='//p2.img.cctvpic.com/photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/20220224_seat_zgmk.jpg' } }else{ if(data[i].s_page_name == ''){ itemHtml +='//p2.img.cctvpic.com/photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/20220224_seat_jrsla.jpg' }else if(data[i].s_page_name == ''){ itemHtml +='//p2.img.cctvpic.com/photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/20220224_seat_gtbfb.jpg' }else if(data[i].s_page_name == ''){ itemHtml +='//p2.img.cctvpic.com/photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/20220224_seat_jkla.jpg' }else if(data[i].s_page_name == ''){ itemHtml +='//p2.img.cctvpic.com/photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/20220224_seat_wtng.jpg'
URL: https://global.cctv.com/trending/index.shtml Model: gpt-4o	```json { "riskscore": 0, "reasons": "The provided JavaScript code is a simple implementation of a 'back to top' button functionality. It does not contain any malicious elements such as data exfiltration, credential stealing, or unauthorized access to user data. The code only manipulates the DOM to show or hide a button based on the scroll position and does not interact with external resources or perform any harmful actions." }
'use strict'; // backtop function initBackTop() { document.body.id = 'back-top'; var backTopBtn = document.querySelector('.backtop-container'); var backTopWrap = document.querySelector('.other-set-wrap'); backTopBtn.href = '#back-top'; function firstInit() { var scrollTop = document.documentElement.scrollTop; if (scrollTop > 300) { backTopBtn.classList.add('show'); } else { backTopBtn.classList.remove('show'); } } firstInit(); window.addEventListener('scroll', function () { var scrollTop = document.documentElement.scrollTop; if (scrollTop > 300) { backTopWrap.classList.add('show'); } else { backTopWrap.classList.remove('show'); } }); } window.addEventListener('load', initBackTop); // backtop //# sourceMappingURL=data:application/json;base64,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
URL: https://global.cctv.com/ipanda/index.shtml Model: gpt-4o	```json { "riskscore": 1, "reasons": "The JavaScript code appears to be related to configuring social media sharing features for WeChat and DingTalk. It does not exhibit any obvious signs of malicious behavior such as data exfiltration, credential stealing, or unauthorized access. The use of JSONP for AJAX requests could be a minor concern if not properly handled, but in this context, it seems to be used for legitimate purposes." }
// //Ajax function getAjax(url, data, cb, spacial) { $.ajax({ url: url, type: "get", data: data, dataType: "jsonp", jsonp: "cb", jsonpCallback: "cb1", cache: true, success: function (_data) { cb(_data); }, timeout: 10000, error: function () { warnbox(""); }, }); } var data = { appid: "newstiket", serviceId: "cmsty", url: encodeURIComponent(encodeURIComponent(window.location.href)), }; getAjax("//api.cntv.cn/list/getWeiXinSignature?t=jsonp", data, weixinSucess); function weixinSucess(data) { wx.config({ debug: false, appId: "wx2723c0deaa5a97e9", timestamp: data.data.timestamp, nonceStr: data.data.nonceStr, signature: data.data.signature, jsApiList: ["updateTimelineShareData", "updateAppMessageShareData"], // JS-SDK }); } // configreadyconfigconfig readyready wx.ready(function () { // wx.updateTimelineShareData({ title: "__(cctv.com)", // link: window.location.href, imgUrl: "https://p5.img.cctvpic.com/photoAlbum/page/performance/img/2022/12/28/1672207736061_591.jpg", // }); // wx.updateAppMessageShareData({ title: "__(cctv.com)", // desc: "global.cctv.com", // link: window.location.href, imgUrl: "https://p5.img.cctvpic.com/photoAlbum/page/performance/img/2022/12/28/1672207736061_591.jpg", // type: "link", // ,musicvideolinklink }); }); wx.error(function (res) { console.log(""); }); function isdingding_20190304() { // var ua = navigator.userAgent.toLowerCase(); return ua.indexOf("dingtalk") >= 0; } if (isdingding_20190304()) { dd.ready(function () { dd.biz.navigation.setRight({ show: true, // true false true control: true, //true false false text: "", // onSuccess: function (result) { //controltrueonSuccess dd.biz.util.share({ type: 0, //0: 1:2: url: window.location.href, content: "global.cctv.com", title: "__(cctv.com)", image: "https://p5.img.cctvpic.com/photoAlbum/page/performance/img/2022/12/28/1672207736061_591.jpg", onSuccess: function () {}, onFail: function (err) {}, }); }, onFail: function (err) {}, }); }); }
URL: https://global.cctv.com/chineseart/index.shtml Model: Perplexity: mixtral-8x7b-instruct	{ "loginform": false, "reasons": [ "No form fields for username or password are present in the text.", "No form submission method (e.g. POST) is mentioned in the text." ] }
GLOBAL GLOBAL Tube Copyright 0 2020, China Media Group.CCTV_com_ A1 Rights Reserved 11000002000018#
URL: https://global.cctv.com/chineseart/index.shtml Model: Perplexity: mixtral-8x7b-instruct	{ "loginform": false, "reasons": [ "No form fields for username or password are present in the text.", "No submit button for the form is present in the text.", "The text appears to contain random characters and dates, and does not resemble a login form." ] }
GLOBAL English z, 03:09 05:08 02:47 04:32 1 2024-05-1- 2024-04-23 2024-04-17 2024-04-03 05:31 03:53 05:49 03:06 (K-wm (33 2024-22-1 m 2024-C4_cn 2024-03 2024-03 02:10 05:00 03:25 04:30 gwj
URL: https://global.cctv.com/ipanda/index.shtml Model: gpt-4o	```json { "riskscore": 0, "reasons": "The provided JavaScript code appears to be related to a carousel/slider functionality for a webpage. It includes event handlers for user interactions such as clicking and hovering, as well as interval-based automatic sliding. There is no indication of any malicious behavior such as data exfiltration, credential stealing, or unauthorized access. The code does not contain any suspicious network requests or obfuscated code. Therefore, it is considered safe." }
lunboload() //js var ind01index = 0; var isFlag = true; var setmove; var ind01_silde_lenght; var ind01_silde; var ind01index_cur = ""; var ind01_left; var ind01_right; function lunboload() { ind01_silde = $(".xinwen18886_ind01 .list_con .silde"); ind01_silde_lenght = $(".xinwen18886_ind01 .list_con .silde").length; ind01_left = $(".xinwen18886_ind01 .leftbtn"); ind01_right = $(".xinwen18886_ind01 .rightbtn"); if (ind01_silde_lenght < 2) { $(".xinwen18886_ind01 .page").hide(); $(".xinwen18886_ind01 .btn").hide(); } else { $(".xinwen18886_ind01 .page .all").html(ind01_silde_lenght); $(".xinwen18886_ind01 .page").show(); $(".xinwen18886_ind01 .btn").show(); } ind01_right.click(function () { ind01index++; if (ind01index >= ind01_silde_lenght) { ind01index = 0; } ind01move(ind01index); }) ind01_left.click(function () { ind01index--; if (ind01index < 0) { ind01index = ind01_silde_lenght - 1; } ind01move(ind01index); }) $("#slide").hover(function () { clearInterval(setmove); }, function () { clearInterval(setmove); setmove = setInterval(function () { ind01index++; if (ind01index >= ind01_silde_lenght) { ind01index = 0; } ind01move(ind01index); }, 5000) }) $(".xinwen18886_ind01 .btn").hover(function () { clearInterval(setmove); }, function () { clearInterval(setmove); setmove = setInterval(function () { ind01index++; if (ind01index >= ind01_silde_lenght) { ind01index = 0; } ind01move(ind01index); }, 500) }) setmove = setInterval(function () { ind01index++; if (ind01index >= ind01_silde_lenght) { ind01index = 0; } ind01move(ind01index) }, 5000) $('.xinwen18886_ind01 .list_con .silde .nesting li').each(function () { $(this).on("mouseenter", function () { $(this).find(".text").addClass("hover"); $(this).find(".text").stop().animate({ 'height': '203px' }, 300); }).on("mouseleave", function () { var _that = $(this); setTimeout(function () { _that.find(".text").removeClass("hover"); }, 250) $(this).find(".text").stop().animate({ 'height': '36px' }, 300); }) }) var isHttps = location.href.substr(0, 5) == "https" ? "true" : "false"; } function ind01move(index) { if (isFlag && index != ind01index_cur) { ind01_silde.stop(true, true); if (ind01_silde.eq(index).find('.nesting').length == 1) { ind01_silde.eq(index).find('.nesting ul li').each(function (i) { ind01_silde.eq(index).find('.nesting ul li').eq(i).find('.img_nes img').attr('src', ind01_silde.eq(index).find('.nesting ul li').eq(i).find('.img_nes img').attr('data-src')); }) ind01_silde.eq(index).find('.image a').addClass("noClick"); ind01_silde.eq(index).find('.image a').attr("href", "javascript:;"); ind01_silde.eq(index).find('.nesting .list01').css({ 'top': '-238px' }); ind01_silde.eq(index).find('.nesting .list02').css({ 'bottom'
URL: https://global.cctv.com/ipanda/index.shtml Model: gpt-4o	```json { "riskscore": 0, "reasons": "The provided JavaScript code appears to be related to initializing and managing a Swiper carousel component. It does not contain any elements that are typically associated with malicious behavior, such as data exfiltration, credential harvesting, or unauthorized access. The code primarily deals with DOM manipulation and event handling for the Swiper component. Therefore, it is considered to be of no risk." }
var lunboLengthELMTIpGY5bmSjbblfLqp3jwW190717 = $("#lunboELMTIpGY5bmSjbblfLqp3jwW190717 .swiper-container .swiper-wrapper .swiper-slide").length; lunboloadELMTIpGY5bmSjbblfLqp3jwW190717(); function lunboloadELMTIpGY5bmSjbblfLqp3jwW190717() { lunboLengthELMTIpGY5bmSjbblfLqp3jwW190717 = $("#lunboELMTIpGY5bmSjbblfLqp3jwW190717 .swiper-container .swiper-wrapper .swiper-slide").length; if (lunboLengthELMTIpGY5bmSjbblfLqp3jwW190717 > 1) { var swiperlunboELMTIpGY5bmSjbblfLqp3jwW190717 = new Swiper('#lunboELMTIpGY5bmSjbblfLqp3jwW190717 .swiper-container', { autoplay: 3000, speed: 1000, initialSlide: 0,// autoplayDisableOnInteraction: false, loop: true, centeredSlides: true, slidesPerView: "auto", loopedSlides: lunboLengthELMTIpGY5bmSjbblfLqp3jwW190717,//li spaceBetween: 0, //watchSlidesVisibility:true, //observer:true, //observeParents:true, lazyLoading: true, lazyLoadingOnTransitionStart: true, lazyLoadingInPrevNext: true, onInit: function (swiper) { $("#lunboELMTIpGY5bmSjbblfLqp3jwW190717 .swiper-pagination-total").text(lunboLengthELMTIpGY5bmSjbblfLqp3jwW190717); //console.log(lunboLengthELMTIpGY5bmSjbblfLqp3jwW190717,swiper); //swiper.slides[2].className="swiper-slide swiper-slide-active";// } }); $(window).resize(function () { setTimeout(function () { swiperlunboELMTIpGY5bmSjbblfLqp3jwW190717.onResize(); swiperlunboELMTIpGY5bmSjbblfLqp3jwW190717.stopAutoplay(); swiperlunboELMTIpGY5bmSjbblfLqp3jwW190717.startAutoplay(); }, 300); }); window.addEventListener("pageshow", function (event) { if (event.persisted \|\| navigator.userAgent.indexOf('iPhone') > -1) { swiperlunboELMTIpGY5bmSjbblfLqp3jwW190717.onResize(); swiperlunboELMTIpGY5bmSjbblfLqp3jwW190717.stopAutoplay(); swiperlunboELMTIpGY5bmSjbblfLqp3jwW190717.startAutoplay(); } }); } else { $('#lunboELMTIpGY5bmSjbblfLqp3jwW190717 .swiper-container').css({ "padding": "0 0.75rem" }); $('#lunboELMTIpGY5bmSjbblfLqp3jwW190717 .swiper-container .swiper-wrapper .swiper-slide').eq(0).css({ "transform": "scale(1)", "-webkit-transform": "scale(1)", "-moz-transform": "scale(1)" }); var lunbodataSrcELMTIpGY5bmSjbblfLqp3jwW190717 = $('#lunboELMTIpGY5bmSjbblfLqp3jwW190717 .swiper-container .swiper-wrapper .swiper-slide').eq(0).find(".img img").attr("data-src"); $('#lunboELMTIpGY5bmSjbblfLqp3jwW190717 .swiper-container .swiper-wrapper .swiper-slide').eq(0).find(".img img").attr("src", lunbodataSrcELMTIpGY5bmSjbblfLqp3jwW190717); $("#lunboELMTIpGY5bmSjbblfLqp3jwW190717 .swiper-container .swiper-wrapper .text p").css("padding-right", "0.625rem"); $("#lunboELMTIpGY5bmSjbblfLqp3jwW190717 .swiper-container .swiper-wrapper .swiper-slide .swiper-pagination").css("display", "none"); } }
URL: https://global.cctv.com/tvplay/index.shtml Model: Perplexity: mixtral-8x7b-instruct	{ "loginform": false, "reasons": [ "No form fields for username or password are present in the text.", "No form submission method (e.g. post) is mentioned in the text." ] }
GLOBAL GLOBAL Tube Copyright 0 2020, China Media Group.CCTV_com_ A1 Rights Reserved 11000002000018#
URL: https://global.cctv.com/ipanda/index.shtml Model: gpt-4o	```json { "riskscore": 2, "reasons": "The code appears to be part of a performance monitoring or analytics tool, likely Boomerang by Akamai. It does not exhibit typical malicious behaviors such as data exfiltration, credential stealing, or unauthorized access. The presence of an API key and iframe manipulation is standard for such tools. However, the use of external scripts and dynamic content loading warrants a low-level risk score as a precaution." }
!function(a){var e="https://s.go-mpulse.net/boomerang/",t="addEventListener";if("False"=="True")a.BOOMR_config=a.BOOMR_config\|\|{},a.BOOMR_config.PageParams=a.BOOMR_config.PageParams\|\|{},a.BOOMR_config.PageParams.pci=!0,e="https://s2.go-mpulse.net/boomerang/";if(window.BOOMR_API_key="7XL4G-6N3JX-QZ6JL-GESDR-2KLZL",function(){function n(e){a.BOOMR_onload=e&&e.timeStamp\|\|(new Date).getTime()}if(!a.BOOMR\|\|!a.BOOMR.version&&!a.BOOMR.snippetExecuted){a.BOOMR=a.BOOMR\|\|{},a.BOOMR.snippetExecuted=!0;var i,_,o,r=document.createElement("iframe");if(a[t])a[t]("load",n,!1);else if(a.attachEvent)a.attachEvent("onload",n);r.src="javascript:void(0)",r.title="",r.role="presentation",(r.frameElement\|\|r).style.cssText="width:0;height:0;border:0;display:none;",o=document.getElementsByTagName("script")[0],o.parentNode.insertBefore(r,o);try{_=r.contentWindow.document}catch(O){i=document.domain,r.src="javascript:var d=document.open();d.domain='"+i+"';void(0);",_=r.contentWindow.document}_.open()._l=function(){var a=this.createElement("script");if(i)this.domain=i;a.id="boomr-if-as",a.src=e+"7XL4G-6N3JX-QZ6JL-GESDR-2KLZL",BOOMR_lstart=(new Date).getTime(),this.body.appendChild(a)},_.write("<bo"+'dy onload="document._l();">'),_.close()}}(),"".length>0)if(a&&"performance"in a&&a.performance&&"function"==typeof a.performance.setResourceTimingBufferSize)a.performance.setResourceTimingBufferSize();!function(){if(BOOMR=a.BOOMR\|\|{},BOOMR.plugins=BOOMR.plugins\|\|{},!BOOMR.plugins.AK){var e=""=="true"?1:0,t="",n="baxhxlyccjabyzspyg5a-f-123b680b3-clientnsv4-s.akamaihd.net",i="false"=="true"?2:1,_={"ak.v":"37","ak.cp":"78234","ak.ai":parseInt("531170",10),"ak.ol":"0","ak.cr":158,"ak.ipv":4,"ak.proto":"http/1.1","ak.rid":"505d81ec","ak.r":48107,"ak.a2":e,"ak.m":"dsca","ak.n":"essl","ak.bpcip":"8.46.123.0","ak.cport":57007,"ak.gh":"2.20.179.92","ak.quicv":"","ak.tlsv":"tls1.3","ak.0rtt":"","ak.csrc":"-","ak.acc":"reno","ak.t":"1716502970","ak.ak":"hOBiQwZUYzCg5VSAfCLimQ==tA7u/QYOT5EjUQgvS1gPuyQhwDLMqS4Fpn+yweMYVrNuo9Gt/yzYh5Xl/SEPiIoRJOUXwkpmP3Bnp/qWohgTnPUA4c4JU7zYgEQZ1tZrBeT2Z+kiydknNuqrkfK21GZEEophHt9zXEvTJf3LHzqvh5z75f9Wn6YRVqIqvb7rrMp88xn/Tbx0INDe24uHI05coi1rTIxvt2TMZR15Ea5B0kkgqVg15z73x9nufDnXDVAB4XfFhPQ0EX/LedLZ3BmzWuiE/jBzvqT6zaOVKIY9AGb4Nw8i/5Cvym3PpDFWZJfI5sMfTI0nCctY1y521+ReeDNUonOtvbtgr7JO3V+FDx1EqwDFfRbDwNmBv4uqqNkfVEnUmLPZMO2jyUliMIVTds++qLMlgcRAlKnXAPekveZLAsoI+Q85ldhyiW7i4Q0=","ak.pv":"193","ak.dpoabenc":"","ak.tf":i};if(""!==t)_["ak.ruds"]=t;var o={i:!1,av:function(e){var t="http.initiator";if(e&&(!e[t]\|\|"spa_hard"===e[t]))_["ak.feo"]=void 0!==a.aFeoApplied?1:0,BOOMR.addVar(_)},rv:function(){var a=["ak.bpcip","ak.cport","ak.cr","ak.csrc","ak.gh","ak.ipv","ak.m","ak.n","ak.ol","ak.proto","ak.quicv","ak.tlsv","ak.0rtt","ak.r","ak.acc","ak.t","ak.tf"];BOOMR.removeVar(a)}};BOOMR.plugins.AK={akVars:_,akDNSPreFetchDomain:n,init:function(){if(!o.i){var a=BOOMR.subscribe;a("before_beacon",o.av,null,null),a("onbeacon",o.rv,null,null),o.i=!0}return this},is_complete:function(){
URL: https://global.cctv.com/ipanda/index.shtml Model: gpt-4o	```json { "riskscore": 1, "reasons": "The provided JavaScript code appears to be focused on UI interactions and content manipulation. It does not contain any obvious signs of malicious behavior such as data exfiltration, credential harvesting, or unauthorized access. The code primarily deals with DOM manipulation, event handling, and content formatting. There are no suspicious network requests or obfuscated code segments. The only minor concern is the use of external image URLs, but this alone does not constitute a significant risk." }
var hideNum = true; var firstOpen = true; var oneINdex = 0; $(function() { $(".tab-swtich-section-container-title p").hover(function(){ var index = $(this).index(); $(this).addClass("tab-swtich-section-container-title-active").siblings().removeClass("tab-swtich-section-container-title-active"); $(".tab-swtich-section-container-content .tab-swtich-item").eq(index).addClass("tab-swtich-item-active").siblings().removeClass("tab-swtich-item-active"); $(".tab-swtich-section-container-content .tab-swtich-item").eq(index).find('dl dt img').css('height', parseInt($(".tab-swtich-section-container-content .tab-swtich-item").eq(index).find('dl dt img').width() / 16 * 9) + 'px'); $('.tab-swtich-section-container-load').css('display','none'); var sumTotal = $('.tab-swtich-section-container-content .tab-swtich-item-active').attr('dataNum'); var tabTotal = $('.tab-swtich-section-container-content .tab-swtich-item-active dl').length; //if(sumTotal == '' \|\| sumTotal == undefined \|\| sumTotal == tabTotal ){ // $('.tab-swtich-section-foot').css('display','block'); //}else{ $('.tab-swtich-section-foot').css('display','none'); //} }) }); // function getHtml(data,eqHtml,back){ var dataList = data.data.list; var listHtml = ''; for(var i = 0 ; i <dataList.length ; i++){ var itemHtml = ''; let item_title = dataList[i].title; item_title = item_title.replace(/\#[^\s]\s/ig, ''); item_title = item_title.replace(/\#./i, ''); let item_subtitle = dataList[i].subtitle; item_subtitle = item_subtitle.replace(/\#[^\s]\s/ig, ''); item_subtitle = item_subtitle.replace(/\#./i, ''); itemHtml+= '<dl>' itemHtml+= '<dt>' itemHtml+= '<a href="' itemHtml+= dataList[i].url itemHtml+= '" target="_blank" >' itemHtml+= '<img src="' //itemHtml+= dataList[i].image if(dataList[i].image == '' \|\| dataList[i].image == null \|\| dataList[i].image == undefined){ if(dataList[i].s_page_name == '' \|\| dataList[i].s_page_name == null \|\| dataList[i].s_page_name == undefined ){ if(back == 'PAGEnL0TSDsFQ26XkCx4G7Kl210126'){ itemHtml +='//p2.img.cctvpic.com/photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/20220224_seat_jk.jpg' }else if(back == 'PAGEZ8HZ8JSmzO1F6GiAYTi9211130'){ itemHtml +='//p2.img.cctvpic.com/photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/20220224_seat_hk.jpg' }else if(back == 'PAGEMURMOWpDxCfQkQPW3nKA210126'){ itemHtml +='//p2.img.cctvpic.com/photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211
URL: https://global.cctv.com/tvplay/index.shtml Model: Perplexity: mixtral-8x7b-instruct	{ "loginform": false, "reasons": [ "The text 'GLOBAL English ccw Perfect CCTV' does not contain any elements typically found in a login form, such as input fields for a username and password, a submit button, or labels for those elements." ] }
GLOBAL English ccw Perfect CCTV.
URL: https://global.cctv.com/tvplay/index.shtml Model: Perplexity: mixtral-8x7b-instruct	{ "loginform": false, "reasons": [ "The text 'GLOBAL English ccw Perfect CCTV' does not contain any elements of a typical login form such as input fields for a username or password, a submit button, or labels for those elements." ] }
GLOBAL English ccw Perfect CCTV.
URL: https://global.cctv.com/chineseart/index.shtml Model: gpt-4o	```json { "riskscore": 1, "reasons": "The provided JavaScript code appears to be focused on dynamically generating HTML content based on data received from a response object. It includes string replacements and conditional logic to handle missing image data. There are no obvious signs of malicious behavior such as data exfiltration, credential harvesting, or unauthorized access. The code does not seem to perform any harmful actions. However, without the full context of how 'res' is obtained and used, a minimal risk score is assigned for caution." }
var firstOpen = true; var total = 0; var dataUrl = ''; var hideNum = true; function PAGEnZpZPkWHAfRCHVaHamx9210126(res) { console.log(res) var data = res.data.list; var listHtml = ''; var back = 'PAGEnZpZPkWHAfRCHVaHamx9210126'; for (var i = 0; i < data.length; i++) { var itemHtml = ''; let item_title = data[i].title; item_title = item_title.replace(/\#[^\s]\s/ig, ''); item_title = item_title.replace(/\#./i, ''); let item_subtitle = data[i].subtitle; item_subtitle = item_subtitle.replace(/\#[^\s]\s/ig, ''); item_subtitle = item_subtitle.replace(/\#./i, ''); if (firstOpen) { itemHtml += '<dl class="promptlyHtml-section-container-dlWrap">' } else { itemHtml += '<dl class="promptlyHtml-section-container-dlWrap hidedl">' } itemHtml += '<dt>' itemHtml += '<a href="' itemHtml += data[i].url itemHtml += '" target="_blank" >' itemHtml += '<img src="' //itemHtml += data[i].image if(data[i].image == '' \|\| data[i].image == null \|\| data[i].image == undefined){ if(data[i].s_page_name == '' \|\| data[i].s_page_name == null \|\| data[i].s_page_name == undefined ){ if(back == 'PAGEnL0TSDsFQ26XkCx4G7Kl210126'){ itemHtml +='//p2.img.cctvpic.com/photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/20220224_seat_jk.jpg' }else if(back == 'PAGEZ8HZ8JSmzO1F6GiAYTi9211130'){ itemHtml +='//p2.img.cctvpic.com/photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/20220224_seat_hk.jpg' }else if(back == 'PAGEMURMOWpDxCfQkQPW3nKA210126'){ itemHtml +='//p2.img.cctvpic.com/photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/20220224_seat_zgmk.jpg' } }else{ if(data[i].s_page_name == ''){ itemHtml +='//p2.img.cctvpic.com/photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/20220224_seat_jrsla.jpg' }else if(data[i].s_page_name == ''){ itemHtml +='//p2.img.cctvpic.com/photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/20220224_seat_gtbfb.jpg' }else if(data[i].s_page_name == ''){ itemHtml +='//p2.img.cctvpic.com/photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/20220224_seat_jkla.jpg' }else if(data[i].s_page_name == ''){ itemHtml +='//p2.img.cctvpic.com/photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/20220224_seat_wtng.jpg'
URL: https://global.cctv.com/tvplay/index.shtml Model: gpt-4o	```json { "riskscore": 1, "reasons": "The JavaScript code primarily involves configuration for sharing content on social media platforms (WeChat and DingTalk) and making AJAX requests to a legitimate API endpoint (api.cntv.cn). There are no indications of malicious behavior such as data exfiltration, credential harvesting, or unauthorized access. The code does not exhibit any harmful actions beyond its intended functionality of social media integration and content sharing." }
// //Ajax function getAjax(url, data, cb, spacial) { $.ajax({ url: url, type: "get", data: data, dataType: "jsonp", jsonp: "cb", jsonpCallback: "cb1", cache: true, success: function (_data) { cb(_data); }, timeout: 10000, error: function () { warnbox(""); }, }); } var data = { appid: "newstiket", serviceId: "cmsty", url: encodeURIComponent(encodeURIComponent(window.location.href)), }; getAjax("//api.cntv.cn/list/getWeiXinSignature?t=jsonp", data, weixinSucess); function weixinSucess(data) { wx.config({ debug: false, appId: "wx2723c0deaa5a97e9", timestamp: data.data.timestamp, nonceStr: data.data.nonceStr, signature: data.data.signature, jsApiList: ["updateTimelineShareData", "updateAppMessageShareData"], // JS-SDK }); } // configreadyconfigconfig readyready wx.ready(function () { // wx.updateTimelineShareData({ title: "__(cctv.com)", // link: window.location.href, imgUrl: "https://p2.img.cctvpic.com/photoAlbum/page/performance/img/2022/12/28/1672207388410_739.jpg", // }); // wx.updateAppMessageShareData({ title: "__(cctv.com)", // desc: "global.cctv.com", // link: window.location.href, imgUrl: "https://p2.img.cctvpic.com/photoAlbum/page/performance/img/2022/12/28/1672207388410_739.jpg", // type: "link", // ,musicvideolinklink }); }); wx.error(function (res) { console.log(""); }); function isdingding_20190304() { // var ua = navigator.userAgent.toLowerCase(); return ua.indexOf("dingtalk") >= 0; } if (isdingding_20190304()) { dd.ready(function () { dd.biz.navigation.setRight({ show: true, // true false true control: true, //true false false text: "", // onSuccess: function (result) { //controltrueonSuccess dd.biz.util.share({ type: 0, //0: 1:2: url: window.location.href, content: "global.cctv.com", title: "__(cctv.com)", image: "https://p2.img.cctvpic.com/photoAlbum/page/performance/img/2022/12/28/1672207388410_739.jpg", onSuccess: function () {}, onFail: function (err) {}, }); }, onFail: function (err) {}, }); }); }
URL: https://global.cctv.com/tvplay/index.shtml Model: Perplexity: mixtral-8x7b-instruct	{ "loginform": false, "reasons": [ "The text 'GLOBAL English ccw Perfect CCTV' does not contain any elements typically found in a login form, such as input fields for a username and password, a submit button, or labels for those elements." ] }
GLOBAL English ccw Perfect CCTV.
URL: https://global.cctv.com/chineseart/index.shtml Model: gpt-4o	```json { "riskscore": 2, "reasons": "The script appears to be part of a performance monitoring or analytics tool (Boomerang) and includes some iframe and script injection. While this is generally benign and common for such tools, the use of iframe and script injection can be exploited if not properly secured. However, there are no immediate signs of malicious activity such as data exfiltration or credential harvesting." }
!function(a){var e="https://s.go-mpulse.net/boomerang/",t="addEventListener";if("False"=="True")a.BOOMR_config=a.BOOMR_config\|\|{},a.BOOMR_config.PageParams=a.BOOMR_config.PageParams\|\|{},a.BOOMR_config.PageParams.pci=!0,e="https://s2.go-mpulse.net/boomerang/";if(window.BOOMR_API_key="7XL4G-6N3JX-QZ6JL-GESDR-2KLZL",function(){function n(e){a.BOOMR_onload=e&&e.timeStamp\|\|(new Date).getTime()}if(!a.BOOMR\|\|!a.BOOMR.version&&!a.BOOMR.snippetExecuted){a.BOOMR=a.BOOMR\|\|{},a.BOOMR.snippetExecuted=!0;var i,_,o,r=document.createElement("iframe");if(a[t])a[t]("load",n,!1);else if(a.attachEvent)a.attachEvent("onload",n);r.src="javascript:void(0)",r.title="",r.role="presentation",(r.frameElement\|\|r).style.cssText="width:0;height:0;border:0;display:none;",o=document.getElementsByTagName("script")[0],o.parentNode.insertBefore(r,o);try{_=r.contentWindow.document}catch(O){i=document.domain,r.src="javascript:var d=document.open();d.domain='"+i+"';void(0);",_=r.contentWindow.document}_.open()._l=function(){var a=this.createElement("script");if(i)this.domain=i;a.id="boomr-if-as",a.src=e+"7XL4G-6N3JX-QZ6JL-GESDR-2KLZL",BOOMR_lstart=(new Date).getTime(),this.body.appendChild(a)},_.write("<bo"+'dy onload="document._l();">'),_.close()}}(),"".length>0)if(a&&"performance"in a&&a.performance&&"function"==typeof a.performance.setResourceTimingBufferSize)a.performance.setResourceTimingBufferSize();!function(){if(BOOMR=a.BOOMR\|\|{},BOOMR.plugins=BOOMR.plugins\|\|{},!BOOMR.plugins.AK){var e=""=="true"?1:0,t="",n="baxhxlyccjabyzspyhcq-f-10b8781de-clientnsv4-s.akamaihd.net",i="false"=="true"?2:1,_={"ak.v":"37","ak.cp":"78234","ak.ai":parseInt("531170",10),"ak.ol":"0","ak.cr":160,"ak.ipv":4,"ak.proto":"http/1.1","ak.rid":"505de0f8","ak.r":48107,"ak.a2":e,"ak.m":"dsca","ak.n":"essl","ak.bpcip":"8.46.123.0","ak.cport":57092,"ak.gh":"2.20.179.92","ak.quicv":"","ak.tlsv":"tls1.3","ak.0rtt":"","ak.csrc":"-","ak.acc":"reno","ak.t":"1716502981","ak.ak":"hOBiQwZUYzCg5VSAfCLimQ==2pcpc46uH8ZVDBBndO6FK4miqiXcRYoOnEhW7k1x1hNEwSAXZVDSIgoWK/X2l0kq1h3YjSyXYuSapoFZSGQilSvQCBTmP9///71609SOS1Z5u3oueNXtJBHg3dcWIspZDV86wTFmqlc+iJpOBa8hvPdtS1CsLch9+7mRjAZCiEtDw1AM61R8qXORg7jn2w0BElILUd45nlrv2NTINsWHeoackxOWKpzLoA5N2gz8HbflSECPQp/32HlplO4cs5+2cgiyywPb/OuJdbCWRAAYoSzSgooGk33MCXqxl9G3myZ36fVxu2v4zIyIFHdWD+xMIXjvgDkAltqe86n2LPQtTkDUzlfjVmDSX0Z1q2kl4RRUOTUhmbdLdMsY7gk2oJ2LNC0skoUvgo46tz7rmYv+c8ePSpNBAzFMv4a8xinqp2M=","ak.pv":"193","ak.dpoabenc":"","ak.tf":i};if(""!==t)_["ak.ruds"]=t;var o={i:!1,av:function(e){var t="http.initiator";if(e&&(!e[t]\|\|"spa_hard"===e[t]))_["ak.feo"]=void 0!==a.aFeoApplied?1:0,BOOMR.addVar(_)},rv:function(){var a=["ak.bpcip","ak.cport","ak.cr","ak.csrc","ak.gh","ak.ipv","ak.m","ak.n","ak.ol","ak.proto","ak.quicv","ak.tlsv","ak.0rtt","ak.r","ak.acc","ak.t","ak.tf"];BOOMR.removeVar(a)}};BOOMR.plugins.AK={akVars:_,akDNSPreFetchDomain:n,init:function(){if(!o.i){var a=BOOMR.subscribe;a("before_beacon",o.av,null,null),a("onbeacon",o.rv,null,null),o.i=!0}return this},is_complete:function(){
URL: https://global.cctv.com/chineseart/index.shtml Model: gpt-4o	```json { "riskscore": 1, "reasons": "The JavaScript code primarily deals with configuring and handling social media sharing functionalities using the WeChat and DingTalk SDKs. It does not appear to perform any malicious actions such as stealing user data, injecting malicious scripts, or redirecting users to phishing sites. The use of JSONP for AJAX requests could be a minor concern if not properly handled, but in this context, it is used to fetch a WeChat signature, which is a common practice. Overall, the code seems to be legitimate and related to social media sharing for a legitimate site (cctv.com)." }
// //Ajax function getAjax(url, data, cb, spacial) { $.ajax({ url: url, type: "get", data: data, dataType: "jsonp", jsonp: "cb", jsonpCallback: "cb1", cache: true, success: function (_data) { cb(_data); }, timeout: 10000, error: function () { warnbox(""); }, }); } var data = { appid: "newstiket", serviceId: "cmsty", url: encodeURIComponent(encodeURIComponent(window.location.href)), }; getAjax("//api.cntv.cn/list/getWeiXinSignature?t=jsonp", data, weixinSucess); function weixinSucess(data) { wx.config({ debug: false, appId: "wx2723c0deaa5a97e9", timestamp: data.data.timestamp, nonceStr: data.data.nonceStr, signature: data.data.signature, jsApiList: ["updateTimelineShareData", "updateAppMessageShareData"], // JS-SDK }); } // configreadyconfigconfig readyready wx.ready(function () { // wx.updateTimelineShareData({ title: "__(cctv.com)", // link: window.location.href, imgUrl: "https://p3.img.cctvpic.com/photoAlbum/page/performance/img/2022/12/28/1672207639720_11.jpg", // }); // wx.updateAppMessageShareData({ title: "__(cctv.com)", // desc: "global.cctv.com", // link: window.location.href, imgUrl: "https://p3.img.cctvpic.com/photoAlbum/page/performance/img/2022/12/28/1672207639720_11.jpg", // type: "link", // ,musicvideolinklink }); }); wx.error(function (res) { console.log(""); }); function isdingding_20190304() { // var ua = navigator.userAgent.toLowerCase(); return ua.indexOf("dingtalk") >= 0; } if (isdingding_20190304()) { dd.ready(function () { dd.biz.navigation.setRight({ show: true, // true false true control: true, //true false false text: "", // onSuccess: function (result) { //controltrueonSuccess dd.biz.util.share({ type: 0, //0: 1:2: url: window.location.href, content: "global.cctv.com", title: "__(cctv.com)", image: "https://p3.img.cctvpic.com/photoAlbum/page/performance/img/2022/12/28/1672207639720_11.jpg", onSuccess: function () {}, onFail: function (err) {}, }); }, onFail: function (err) {}, }); }); }
URL: https://global.cctv.com/tvplay/index.shtml Model: gpt-4o	```json { "riskscore": 2, "reasons": "The provided JavaScript code primarily handles the dynamic generation of HTML content based on data fetched from a server. It uses JSONP for cross-domain requests, which is a common practice but can pose a security risk if not handled properly. However, there is no direct evidence of malicious activity such as data exfiltration, credential theft, or unauthorized access. The risk score is low but not zero due to the potential for JSONP misuse." }
var firstOpen = true; var total = 0; var dataUrl = ''; var hideNum = true; //function PAGEsvj8LnQi8QGZ47AhxXuc210126(res) { function PAGEsvj8LnQi8QGZ47AhxXuc210126(res) { console.log(res) var data = res.data.list; var listHtml = ''; for (var i = 0; i < data.length; i++) { var itemHtml = ''; if (firstOpen) { itemHtml += '<dl class="recordChina-section-container-dlWrap">' } else { itemHtml += '<dl class="recordChina-section-container-dlWrap hidedl">' } itemHtml += '<dt>' itemHtml += '<a href="' itemHtml += data[i].video_url itemHtml += '" target="_blank" >' itemHtml += '<img src="' itemHtml += data[i].video_album_logo itemHtml += '" >' itemHtml += '</a>' itemHtml += '</dt><dd>' itemHtml += '<a href="' itemHtml += data[i].video_url itemHtml += '" target="_blank" >' itemHtml += '<p>' itemHtml += data[i].video_album_title itemHtml += '</p></a><span class="recordChina-section-container-span">' if(data[i].video_album_personatags){ itemHtml += data[i].video_album_personatags } if(data[i].video_album_personatags && data[i].video_count){ itemHtml += '<span class="recordChina-section-container-gl">' itemHtml += ' \| ' itemHtml += '</span>' } if(data[i].video_count){ itemHtml += '<span class="recordChina-section-container-jlen">' itemHtml += data[i].video_count itemHtml +='' itemHtml += '</span>' } itemHtml += '</span>' itemHtml += '</dd>' itemHtml += '</dl>' listHtml += itemHtml; } if (firstOpen) { $('.recordChina-section-container-wrap').html(''); total = res.data.total; } else { hideNum = true; } $('.recordChina-section-container-wrap').append(listHtml); if (firstOpen) { waterFall(); } } function getHtml() { var strNum = Number(dataUrl.split('_')[1].split('.')[0]) + 1; dataUrl = dataUrl.split('_')[0] + '_' + strNum + '.jsonp'; $.ajax({ url: dataUrl, type: "GET", dataType: 'jsonp', jsonp: "callback", jsonpCallback:"PAGEsvj8LnQi8QGZ47AhxXuc210126", //jsonpCallback: "PAGE1336643143609558()", success:
URL: https://global.cctv.com/tvplay/index.shtml Model: gpt-4o	```json { "riskscore": 2, "reasons": "The script appears to be part of a performance monitoring tool (Boomerang) and includes standard setup for such tools. It does not exhibit typical malicious behavior such as data exfiltration, credential harvesting, or unauthorized access. The inclusion of an API key and iframe manipulation is standard for performance tracking. However, it is always prudent to verify the source and ensure it is from a trusted provider." }
!function(a){var e="https://s.go-mpulse.net/boomerang/",t="addEventListener";if("False"=="True")a.BOOMR_config=a.BOOMR_config\|\|{},a.BOOMR_config.PageParams=a.BOOMR_config.PageParams\|\|{},a.BOOMR_config.PageParams.pci=!0,e="https://s2.go-mpulse.net/boomerang/";if(window.BOOMR_API_key="7XL4G-6N3JX-QZ6JL-GESDR-2KLZL",function(){function n(e){a.BOOMR_onload=e&&e.timeStamp\|\|(new Date).getTime()}if(!a.BOOMR\|\|!a.BOOMR.version&&!a.BOOMR.snippetExecuted){a.BOOMR=a.BOOMR\|\|{},a.BOOMR.snippetExecuted=!0;var i,_,o,r=document.createElement("iframe");if(a[t])a[t]("load",n,!1);else if(a.attachEvent)a.attachEvent("onload",n);r.src="javascript:void(0)",r.title="",r.role="presentation",(r.frameElement\|\|r).style.cssText="width:0;height:0;border:0;display:none;",o=document.getElementsByTagName("script")[0],o.parentNode.insertBefore(r,o);try{_=r.contentWindow.document}catch(O){i=document.domain,r.src="javascript:var d=document.open();d.domain='"+i+"';void(0);",_=r.contentWindow.document}_.open()._l=function(){var a=this.createElement("script");if(i)this.domain=i;a.id="boomr-if-as",a.src=e+"7XL4G-6N3JX-QZ6JL-GESDR-2KLZL",BOOMR_lstart=(new Date).getTime(),this.body.appendChild(a)},_.write("<bo"+'dy onload="document._l();">'),_.close()}}(),"".length>0)if(a&&"performance"in a&&a.performance&&"function"==typeof a.performance.setResourceTimingBufferSize)a.performance.setResourceTimingBufferSize();!function(){if(BOOMR=a.BOOMR\|\|{},BOOMR.plugins=BOOMR.plugins\|\|{},!BOOMR.plugins.AK){var e=""=="true"?1:0,t="",n="baxhxlyccjabyzspyhua-f-bf5f1107b-clientnsv4-s.akamaihd.net",i="false"=="true"?2:1,_={"ak.v":"37","ak.cp":"78234","ak.ai":parseInt("531170",10),"ak.ol":"0","ak.cr":158,"ak.ipv":4,"ak.proto":"http/1.1","ak.rid":"505f2c68","ak.r":48107,"ak.a2":e,"ak.m":"dsca","ak.n":"essl","ak.bpcip":"8.46.123.0","ak.cport":57448,"ak.gh":"2.20.179.92","ak.quicv":"","ak.tlsv":"tls1.3","ak.0rtt":"","ak.csrc":"-","ak.acc":"reno","ak.t":"1716503016","ak.ak":"hOBiQwZUYzCg5VSAfCLimQ==LZOOggb8HC4+L3YQi1pCuaSrGZ6IQj0HHUO1FYR5rZj7fPoqSPrQg4FR4uIfyw1oIQR20OSVs9dWk6DNFXCcJcHt/S5gDQc2kwdUoqehtoGO5AlkBMwjKoj4z9TNlIctqY8c1o97BavfJXr//mpkx+EcKB+Gpw2rr9mdDesz9peKknDx8BCY83psNvJuNZ6SoVMmqyySjs7c8c3LZUALlrHTaoKxRh5FilBQcE0T2AkxFEPuWn905oFZY691WJTM50/9sxHCO7jC/IljMFKyBkCTWaKJ61guGv2lMTw7C+xQejs7CbkjMnFF9QU+wjAWyKZiraaYyPBzWr08fFFWj6jRiHQjDyeKf1Xjfcw/bXR37D1BzqHI2BEvkmnsNKtvcRzkuaiSd1zUY8Yc4ezaTxM4fxg+1tqtI6Ik/WkHWYw=","ak.pv":"193","ak.dpoabenc":"","ak.tf":i};if(""!==t)_["ak.ruds"]=t;var o={i:!1,av:function(e){var t="http.initiator";if(e&&(!e[t]\|\|"spa_hard"===e[t]))_["ak.feo"]=void 0!==a.aFeoApplied?1:0,BOOMR.addVar(_)},rv:function(){var a=["ak.bpcip","ak.cport","ak.cr","ak.csrc","ak.gh","ak.ipv","ak.m","ak.n","ak.ol","ak.proto","ak.quicv","ak.tlsv","ak.0rtt","ak.r","ak.acc","ak.t","ak.tf"];BOOMR.removeVar(a)}};BOOMR.plugins.AK={akVars:_,akDNSPreFetchDomain:n,init:function(){if(!o.i){var a=BOOMR.subscribe;a("before_beacon",o.av,null,null),a("onbeacon",o.rv,null,null),o.i=!0}return this},is_complete:function(){

Joe Sandbox View / Context

IPs

⊘No context

Domains

⊘No context

ASNs

⊘No context

JA3 Fingerprints

⊘No context

Dropped Files

⊘No context

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 460x560, components 3
Category:	downloaded
Size (bytes):	167460
Entropy (8bit):	7.979162626295513
Encrypted:	false
SSDEEP:	3072:FwwgrxXmMhVR7I8bQGZIZjylY+a4vQTTnWHANd5h2TtepCt0qZA5WHXx671B:2f9XmMhVpxeAa0QuHg5h2TtaqZFHKB
MD5:	5C14AF5C2F016ABC44D3B036FCCBAAD9
SHA1:	F3B49EE2CF5686E7ED3EEF31023F37F7295C07C7
SHA-256:	442D9C91565B5FE96F28096C7BA54C0B44B9632B164C9563525231953F5052D7
SHA-512:	CC05C0926CB3C5ECF47A212C54BD53434829CF339D22D7BBF1A81172348723663E222B7A7B0760E5E3520ECC9E56764F24CA3E4E0603B5F3D3219ADC27DB5F8D
Malicious:	false
Reputation:	low
URL:	https://p4.img.cctvpic.com/photoAlbum/vms/standard/img/2022/1/28/VSETfa5vvvD74OgqRvL4ufW3220128.jpg
Preview:	......Exif..II*.................Ducky.......d......http://ns.adobe.com/xap/1.0/.<?xpacket begin="." id="W5M0MpCehiHzreSzNTczkc9d"?> <x:xmpmeta xmlns:x="adobe:ns:meta/" x:xmptk="Adobe XMP Core 5.6-c145 79.163499, 2018/08/13-16:40:22 "> <rdf:RDF xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"> <rdf:Description rdf:about="" xmlns:xmpMM="http://ns.adobe.com/xap/1.0/mm/" xmlns:stRef="http://ns.adobe.com/xap/1.0/sType/ResourceRef#" xmlns:xmp="http://ns.adobe.com/xap/1.0/" xmpMM:OriginalDocumentID="xmp.did:d9560547-3429-734b-bd7c-f926206be432" xmpMM:DocumentID="xmp.did:E9BB0C567F5311ECB3C9AA3C093844C1" xmpMM:InstanceID="xmp.iid:E9BB0C557F5311ECB3C9AA3C093844C1" xmp:CreatorTool="Adobe Photoshop CC 2019 (Windows)"> <xmpMM:DerivedFrom stRef:instanceID="xmp.iid:6790b691-215d-a74e-9d30-a39013397865" stRef:documentID="adobe:docid:photoshop:5349f8a1-ae59-0447-a277-39d36b4c21a1"/> </rdf:Description> </rdf:RDF> </x:xmpmeta> <?xpacket end="r"?>....Adobe.d...............................

Timestamp	Source IP	Dest IP	Trans ID	OP Code	Name	Type	Class	DNS over HTTPS
May 24, 2024 00:22:08.066781998 CEST	192.168.2.7	1.1.1.1	0xa22b	Standard query (0)	new.aj848310310.workers.dev	A (IP address)	IN (0x0001)	false
May 24, 2024 00:22:08.067259073 CEST	192.168.2.7	1.1.1.1	0x8cc5	Standard query (0)	new.aj848310310.workers.dev	65	IN (0x0001)	false
May 24, 2024 00:22:08.810615063 CEST	192.168.2.7	1.1.1.1	0x8d3	Standard query (0)	r.img.cctvpic.com	A (IP address)	IN (0x0001)	false
May 24, 2024 00:22:08.810859919 CEST	192.168.2.7	1.1.1.1	0x2dca	Standard query (0)	r.img.cctvpic.com	65	IN (0x0001)	false
May 24, 2024 00:22:08.811908960 CEST	192.168.2.7	1.1.1.1	0xf394	Standard query (0)	ip.apps.cntv.cn	A (IP address)	IN (0x0001)	false
May 24, 2024 00:22:08.812242031 CEST	192.168.2.7	1.1.1.1	0x6049	Standard query (0)	ip.apps.cntv.cn	65	IN (0x0001)	false
May 24, 2024 00:22:08.818594933 CEST	192.168.2.7	1.1.1.1	0xe6e4	Standard query (0)	js.data.cctv.com	A (IP address)	IN (0x0001)	false
May 24, 2024 00:22:08.818773031 CEST	192.168.2.7	1.1.1.1	0x1747	Standard query (0)	js.data.cctv.com	65	IN (0x0001)	false
May 24, 2024 00:22:09.135951042 CEST	192.168.2.7	1.1.1.1	0xc1c1	Standard query (0)	p2.img.cctvpic.com	A (IP address)	IN (0x0001)	false
May 24, 2024 00:22:09.136018038 CEST	192.168.2.7	1.1.1.1	0xbab2	Standard query (0)	p2.img.cctvpic.com	65	IN (0x0001)	false
May 24, 2024 00:22:10.489268064 CEST	192.168.2.7	1.1.1.1	0x6346	Standard query (0)	p5.img.cctvpic.com	A (IP address)	IN (0x0001)	false
May 24, 2024 00:22:10.489726067 CEST	192.168.2.7	1.1.1.1	0x6a27	Standard query (0)	p5.img.cctvpic.com	65	IN (0x0001)	false
May 24, 2024 00:22:10.645409107 CEST	192.168.2.7	1.1.1.1	0x447e	Standard query (0)	p2.img.cctvpic.com	A (IP address)	IN (0x0001)	false
May 24, 2024 00:22:10.645524025 CEST	192.168.2.7	1.1.1.1	0x43ab	Standard query (0)	p2.img.cctvpic.com	65	IN (0x0001)	false
May 24, 2024 00:22:11.369251013 CEST	192.168.2.7	1.1.1.1	0x8f0b	Standard query (0)	www.google.com	A (IP address)	IN (0x0001)	false
May 24, 2024 00:22:11.369380951 CEST	192.168.2.7	1.1.1.1	0xda93	Standard query (0)	www.google.com	65	IN (0x0001)	false
May 24, 2024 00:22:12.413216114 CEST	192.168.2.7	1.1.1.1	0x8f07	Standard query (0)	g.alicdn.com	A (IP address)	IN (0x0001)	false
May 24, 2024 00:22:12.413350105 CEST	192.168.2.7	1.1.1.1	0x4edc	Standard query (0)	g.alicdn.com	65	IN (0x0001)	false
May 24, 2024 00:22:12.417098999 CEST	192.168.2.7	1.1.1.1	0x5a9c	Standard query (0)	p3.img.cctvpic.com	A (IP address)	IN (0x0001)	false
May 24, 2024 00:22:12.417236090 CEST	192.168.2.7	1.1.1.1	0x1c69	Standard query (0)	p3.img.cctvpic.com	65	IN (0x0001)	false
May 24, 2024 00:22:12.423871040 CEST	192.168.2.7	1.1.1.1	0x550b	Standard query (0)	p4.img.cctvpic.com	A (IP address)	IN (0x0001)	false
May 24, 2024 00:22:12.425143957 CEST	192.168.2.7	1.1.1.1	0x477a	Standard query (0)	p4.img.cctvpic.com	65	IN (0x0001)	false
May 24, 2024 00:22:13.051515102 CEST	192.168.2.7	1.1.1.1	0xcb26	Standard query (0)	p1.img.cctvpic.com	A (IP address)	IN (0x0001)	false
May 24, 2024 00:22:13.051654100 CEST	192.168.2.7	1.1.1.1	0x9eb6	Standard query (0)	p1.img.cctvpic.com	65	IN (0x0001)	false
May 24, 2024 00:22:13.342546940 CEST	192.168.2.7	1.1.1.1	0xc127	Standard query (0)	p5.img.cctvpic.com	A (IP address)	IN (0x0001)	false
May 24, 2024 00:22:13.343111992 CEST	192.168.2.7	1.1.1.1	0x2462	Standard query (0)	p5.img.cctvpic.com	65	IN (0x0001)	false
May 24, 2024 00:22:17.172930956 CEST	192.168.2.7	1.1.1.1	0xd913	Standard query (0)	time.windows.com	A (IP address)	IN (0x0001)	false
May 24, 2024 00:22:17.294033051 CEST	192.168.2.7	1.1.1.1	0x2c0f	Standard query (0)	p3.img.cctvpic.com	A (IP address)	IN (0x0001)	false
May 24, 2024 00:22:17.294194937 CEST	192.168.2.7	1.1.1.1	0x2b80	Standard query (0)	p3.img.cctvpic.com	65	IN (0x0001)	false
May 24, 2024 00:22:17.296478987 CEST	192.168.2.7	1.1.1.1	0x6314	Standard query (0)	p4.img.cctvpic.com	A (IP address)	IN (0x0001)	false
May 24, 2024 00:22:17.296603918 CEST	192.168.2.7	1.1.1.1	0x6a05	Standard query (0)	p4.img.cctvpic.com	65	IN (0x0001)	false
May 24, 2024 00:22:17.594846010 CEST	192.168.2.7	1.1.1.1	0x4d54	Standard query (0)	p1.img.cctvpic.com	A (IP address)	IN (0x0001)	false
May 24, 2024 00:22:17.594968081 CEST	192.168.2.7	1.1.1.1	0xc59c	Standard query (0)	p1.img.cctvpic.com	65	IN (0x0001)	false
May 24, 2024 00:22:21.113862038 CEST	192.168.2.7	1.1.1.1	0x5a33	Standard query (0)	p.data.cctv.com	A (IP address)	IN (0x0001)	false
May 24, 2024 00:22:21.114518881 CEST	192.168.2.7	1.1.1.1	0x9796	Standard query (0)	p.data.cctv.com	65	IN (0x0001)	false
May 24, 2024 00:22:21.142059088 CEST	192.168.2.7	1.1.1.1	0x9df6	Standard query (0)	s.go-mpulse.net	A (IP address)	IN (0x0001)	false
May 24, 2024 00:22:21.142899036 CEST	192.168.2.7	1.1.1.1	0xd687	Standard query (0)	s.go-mpulse.net	65	IN (0x0001)	false
May 24, 2024 00:22:23.157624960 CEST	192.168.2.7	1.1.1.1	0xc7a9	Standard query (0)	api.cntv.cn	A (IP address)	IN (0x0001)	false
May 24, 2024 00:22:23.157804966 CEST	192.168.2.7	1.1.1.1	0x4e73	Standard query (0)	api.cntv.cn	65	IN (0x0001)	false
May 24, 2024 00:22:23.158658028 CEST	192.168.2.7	1.1.1.1	0xa349	Standard query (0)	c.go-mpulse.net	A (IP address)	IN (0x0001)	false
May 24, 2024 00:22:23.159104109 CEST	192.168.2.7	1.1.1.1	0xa25e	Standard query (0)	c.go-mpulse.net	65	IN (0x0001)	false
May 24, 2024 00:22:23.959264040 CEST	192.168.2.7	1.1.1.1	0xc6e1	Standard query (0)	global.cctv.com	A (IP address)	IN (0x0001)	false
May 24, 2024 00:22:23.959445000 CEST	192.168.2.7	1.1.1.1	0xca4	Standard query (0)	global.cctv.com	65	IN (0x0001)	false
May 24, 2024 00:22:29.453489065 CEST	192.168.2.7	1.1.1.1	0x6c14	Standard query (0)	new.aj848310310.workers.dev	A (IP address)	IN (0x0001)	false
May 24, 2024 00:22:29.453886032 CEST	192.168.2.7	1.1.1.1	0x39e9	Standard query (0)	new.aj848310310.workers.dev	65	IN (0x0001)	false
May 24, 2024 00:22:36.831034899 CEST	192.168.2.7	1.1.1.1	0x70e4	Standard query (0)	global.cctv.com	A (IP address)	IN (0x0001)	false
May 24, 2024 00:22:36.831450939 CEST	192.168.2.7	1.1.1.1	0xbce	Standard query (0)	global.cctv.com	65	IN (0x0001)	false
May 24, 2024 00:22:39.387849092 CEST	192.168.2.7	1.1.1.1	0x476a	Standard query (0)	r.img.cctvpic.com	A (IP address)	IN (0x0001)	false
May 24, 2024 00:22:39.388340950 CEST	192.168.2.7	1.1.1.1	0x5ed6	Standard query (0)	r.img.cctvpic.com	65	IN (0x0001)	false
May 24, 2024 00:22:39.392571926 CEST	192.168.2.7	1.1.1.1	0x1ae2	Standard query (0)	ip.apps.cntv.cn	A (IP address)	IN (0x0001)	false
May 24, 2024 00:22:39.392971039 CEST	192.168.2.7	1.1.1.1	0x7130	Standard query (0)	ip.apps.cntv.cn	65	IN (0x0001)	false
May 24, 2024 00:22:39.404632092 CEST	192.168.2.7	1.1.1.1	0x5997	Standard query (0)	js.data.cctv.com	A (IP address)	IN (0x0001)	false
May 24, 2024 00:22:39.404952049 CEST	192.168.2.7	1.1.1.1	0x385	Standard query (0)	js.data.cctv.com	65	IN (0x0001)	false
May 24, 2024 00:22:41.055105925 CEST	192.168.2.7	1.1.1.1	0x56df	Standard query (0)	p2.img.cctvpic.com	A (IP address)	IN (0x0001)	false
May 24, 2024 00:22:41.055418968 CEST	192.168.2.7	1.1.1.1	0xe317	Standard query (0)	p2.img.cctvpic.com	65	IN (0x0001)	false
May 24, 2024 00:22:41.808376074 CEST	192.168.2.7	1.1.1.1	0x6acb	Standard query (0)	g.alicdn.com	A (IP address)	IN (0x0001)	false
May 24, 2024 00:22:41.808854103 CEST	192.168.2.7	1.1.1.1	0x1b20	Standard query (0)	g.alicdn.com	65	IN (0x0001)	false
May 24, 2024 00:22:41.809257030 CEST	192.168.2.7	1.1.1.1	0x10ab	Standard query (0)	p3.img.cctvpic.com	A (IP address)	IN (0x0001)	false
May 24, 2024 00:22:41.809376955 CEST	192.168.2.7	1.1.1.1	0xf769	Standard query (0)	p3.img.cctvpic.com	65	IN (0x0001)	false
May 24, 2024 00:22:41.810051918 CEST	192.168.2.7	1.1.1.1	0x4a53	Standard query (0)	p5.img.cctvpic.com	A (IP address)	IN (0x0001)	false
May 24, 2024 00:22:41.810403109 CEST	192.168.2.7	1.1.1.1	0xa31e	Standard query (0)	p5.img.cctvpic.com	65	IN (0x0001)	false
May 24, 2024 00:22:43.349849939 CEST	192.168.2.7	1.1.1.1	0x4d04	Standard query (0)	p4.img.cctvpic.com	A (IP address)	IN (0x0001)	false
May 24, 2024 00:22:43.351279974 CEST	192.168.2.7	1.1.1.1	0x398d	Standard query (0)	p4.img.cctvpic.com	65	IN (0x0001)	false
May 24, 2024 00:22:44.374550104 CEST	192.168.2.7	1.1.1.1	0xe277	Standard query (0)	p.data.cctv.com	A (IP address)	IN (0x0001)	false
May 24, 2024 00:22:44.374742031 CEST	192.168.2.7	1.1.1.1	0xfde5	Standard query (0)	p.data.cctv.com	65	IN (0x0001)	false
May 24, 2024 00:22:44.375267982 CEST	192.168.2.7	1.1.1.1	0xd3c5	Standard query (0)	s.go-mpulse.net	A (IP address)	IN (0x0001)	false
May 24, 2024 00:22:44.375448942 CEST	192.168.2.7	1.1.1.1	0x70b1	Standard query (0)	s.go-mpulse.net	65	IN (0x0001)	false
May 24, 2024 00:22:44.719383001 CEST	192.168.2.7	1.1.1.1	0x5ae6	Standard query (0)	api.cntv.cn	A (IP address)	IN (0x0001)	false
May 24, 2024 00:22:44.719908953 CEST	192.168.2.7	1.1.1.1	0xc979	Standard query (0)	api.cntv.cn	65	IN (0x0001)	false
May 24, 2024 00:22:45.995578051 CEST	192.168.2.7	1.1.1.1	0xd56b	Standard query (0)	c.go-mpulse.net	A (IP address)	IN (0x0001)	false
May 24, 2024 00:22:45.995928049 CEST	192.168.2.7	1.1.1.1	0x6d5f	Standard query (0)	c.go-mpulse.net	65	IN (0x0001)	false
May 24, 2024 00:22:46.527307987 CEST	192.168.2.7	1.1.1.1	0x331b	Standard query (0)	p.data.cctv.com	A (IP address)	IN (0x0001)	false
May 24, 2024 00:22:46.527553082 CEST	192.168.2.7	1.1.1.1	0xbe23	Standard query (0)	p.data.cctv.com	65	IN (0x0001)	false
May 24, 2024 00:22:47.405652046 CEST	192.168.2.7	1.1.1.1	0x8095	Standard query (0)	c.go-mpulse.net	A (IP address)	IN (0x0001)	false
May 24, 2024 00:22:47.405916929 CEST	192.168.2.7	1.1.1.1	0xf8f4	Standard query (0)	c.go-mpulse.net	65	IN (0x0001)	false
May 24, 2024 00:22:48.113867998 CEST	192.168.2.7	1.1.1.1	0xd2d3	Standard query (0)	p1.img.cctvpic.com	A (IP address)	IN (0x0001)	false
May 24, 2024 00:22:48.114053965 CEST	192.168.2.7	1.1.1.1	0x1893	Standard query (0)	p1.img.cctvpic.com	65	IN (0x0001)	false
May 24, 2024 00:22:48.127374887 CEST	192.168.2.7	1.1.1.1	0x8eef	Standard query (0)	global.cctv.com	A (IP address)	IN (0x0001)	false
May 24, 2024 00:22:48.127561092 CEST	192.168.2.7	1.1.1.1	0x9aaa	Standard query (0)	global.cctv.com	65	IN (0x0001)	false
May 24, 2024 00:23:13.256709099 CEST	192.168.2.7	1.1.1.1	0x2373	Standard query (0)	p2.img.cctvpic.com	A (IP address)	IN (0x0001)	false
May 24, 2024 00:23:13.256877899 CEST	192.168.2.7	1.1.1.1	0x19bc	Standard query (0)	p2.img.cctvpic.com	65	IN (0x0001)	false
May 24, 2024 00:23:32.026289940 CEST	192.168.2.7	1.1.1.1	0xdeac	Standard query (0)	p4.img.cctvpic.com	A (IP address)	IN (0x0001)	false
May 24, 2024 00:23:32.026448965 CEST	192.168.2.7	1.1.1.1	0x7688	Standard query (0)	p4.img.cctvpic.com	65	IN (0x0001)	false
May 24, 2024 00:23:32.033020020 CEST	192.168.2.7	1.1.1.1	0x6bea	Standard query (0)	p3.img.cctvpic.com	A (IP address)	IN (0x0001)	false
May 24, 2024 00:23:32.033324957 CEST	192.168.2.7	1.1.1.1	0x3e57	Standard query (0)	p3.img.cctvpic.com	65	IN (0x0001)	false
May 24, 2024 00:23:32.039769888 CEST	192.168.2.7	1.1.1.1	0x31a0	Standard query (0)	p1.img.cctvpic.com	A (IP address)	IN (0x0001)	false
May 24, 2024 00:23:32.040091991 CEST	192.168.2.7	1.1.1.1	0xc945	Standard query (0)	p1.img.cctvpic.com	65	IN (0x0001)	false
May 24, 2024 00:23:32.079029083 CEST	192.168.2.7	1.1.1.1	0x1ca8	Standard query (0)	p5.img.cctvpic.com	A (IP address)	IN (0x0001)	false
May 24, 2024 00:23:32.079173088 CEST	192.168.2.7	1.1.1.1	0x5628	Standard query (0)	p5.img.cctvpic.com	65	IN (0x0001)	false
May 24, 2024 00:23:48.442349911 CEST	192.168.2.7	1.1.1.1	0xcffd	Standard query (0)	api.cntv.cn	A (IP address)	IN (0x0001)	false
May 24, 2024 00:23:48.442498922 CEST	192.168.2.7	1.1.1.1	0xfb2	Standard query (0)	api.cntv.cn	65	IN (0x0001)	false
May 24, 2024 00:23:51.290205956 CEST	192.168.2.7	1.1.1.1	0x5a74	Standard query (0)	p1.img.cctvpic.com	A (IP address)	IN (0x0001)	false
May 24, 2024 00:23:51.290710926 CEST	192.168.2.7	1.1.1.1	0xc240	Standard query (0)	p1.img.cctvpic.com	65	IN (0x0001)	false
May 24, 2024 00:23:51.291583061 CEST	192.168.2.7	1.1.1.1	0xadda	Standard query (0)	p5.img.cctvpic.com	A (IP address)	IN (0x0001)	false
May 24, 2024 00:23:51.292172909 CEST	192.168.2.7	1.1.1.1	0xb501	Standard query (0)	p5.img.cctvpic.com	65	IN (0x0001)	false
May 24, 2024 00:23:51.292702913 CEST	192.168.2.7	1.1.1.1	0x3349	Standard query (0)	p2.img.cctvpic.com	A (IP address)	IN (0x0001)	false
May 24, 2024 00:23:51.293256044 CEST	192.168.2.7	1.1.1.1	0x9496	Standard query (0)	p2.img.cctvpic.com	65	IN (0x0001)	false
May 24, 2024 00:23:51.293991089 CEST	192.168.2.7	1.1.1.1	0x5615	Standard query (0)	p4.img.cctvpic.com	A (IP address)	IN (0x0001)	false
May 24, 2024 00:23:51.294631958 CEST	192.168.2.7	1.1.1.1	0x6709	Standard query (0)	p4.img.cctvpic.com	65	IN (0x0001)	false
May 24, 2024 00:23:52.720978975 CEST	192.168.2.7	1.1.1.1	0x6f01	Standard query (0)	p3.img.cctvpic.com	A (IP address)	IN (0x0001)	false
May 24, 2024 00:23:52.721419096 CEST	192.168.2.7	1.1.1.1	0xe75d	Standard query (0)	p3.img.cctvpic.com	65	IN (0x0001)	false
May 24, 2024 00:23:53.516362906 CEST	192.168.2.7	1.1.1.1	0xc284	Standard query (0)	global.cctv.com	A (IP address)	IN (0x0001)	false
May 24, 2024 00:23:53.516731977 CEST	192.168.2.7	1.1.1.1	0xc06f	Standard query (0)	global.cctv.com	65	IN (0x0001)	false

Timestamp	Bytes transferred	Direction	Data
2024-05-23 22:22:08 UTC	670	OUT	GET / HTTP/1.1 Host: new.aj848310310.workers.dev Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Sec-Fetch-Site: none Sec-Fetch-Mode: navigate Sec-Fetch-User: ?1 Sec-Fetch-Dest: document Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-05-23 22:22:08 UTC	988	IN	HTTP/1.1 200 OK Date: Thu, 23 May 2024 22:22:08 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close CF-Ray: 888871684b8e0f98-EWR CF-Cache-Status: DYNAMIC Cache-Control: max-age=180 Expires: Thu, 23 May 2024 22:25:08 GMT Vary: Accept-Encoding cdncip: 8.46.123.175 cdnsip: 23.48.224.115 server-timing: cdn-cache; desc=HIT server-timing: edge; dur=1 server-timing: ak_p; desc="1716502928708_398664787_426811935_25_616_0_3_15";dur=1 x-ak-request-id: 0.5324c317.1716502928.1970a21f x-akamai-transformed: 9 - 0 pmb=mRUM,1 x-ua-compatible: IE=Edge,chrome=1 Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vjqK9EvRoZxSpXSNdGC3xXNqcVWx7yzcen0fDrp%2BVQ9uaAo%2FvJqvRwdYbC8%2FNDHQ3fUCgE%2Fm8g4HZyGtsD9cMbE7hsFyVrG%2FXfaxL%2BRLoeCgHpdfOo0RY24RIqcQxnkIESgZUSItvsXHqTAr3y4%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare alt-svc: h3=":443"; ma=86400
2024-05-23 22:22:08 UTC	381	IN	Data Raw: 37 62 64 35 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 20 0a 20 3c 68 65 61 64 3e 20 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 70 61 67 65 2d 69 64 22 20 69 64 3d 22 70 61 67 65 2d 69 64 22 20 63 6f 6e 74 65 6e 74 3d 22 50 41 47 45 4f 54 66 74 4d 7a 4b 63 36 50 75 57 46 42 41 32 36 42 6f 70 32 31 31 32 31 36 22 3e 20 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 72 65 6e 64 65 72 65 72 22 20 63 6f 6e 74 65 6e 74 3d 22 77 65 62 6b 69 74 22 3e 20 0a 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 58 2d 55 41 2d 43 6f 6d 70 61 74 69 62 6c 65 22 20 63 6f 6e 74 65 6e 74 3d 22 49 45 3d 65 64 67 65 2c 63 68 72 6f 6d 65 3d 31 22 3e 20 0a 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 Data Ascii: 7bd5<!doctype html><html lang="en"> <head> <meta name="page-id" id="page-id" content="PAGEOTftMzKc6PuWFBA26Bop211216"> <meta name="renderer" content="webkit"> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1"> <meta charset="U
2024-05-23 22:22:08 UTC	1369	IN	Data Raw: 69 74 6c 65 3e 20 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 6b 65 79 77 6f 72 64 73 22 20 63 6f 6e 74 65 6e 74 3d 22 e5 a4 ae e8 a7 86 e7 bd 91 e6 b5 b7 e5 a4 96 e9 a2 91 e9 81 93 20 e4 b8 ad e5 9b bd e4 bc a0 e7 bb 9f e6 96 87 e5 8c 96 20 e8 89 ba e6 9c af 20 e7 be 8e e9 a3 9f 20 e7 94 9f e6 80 81 e4 bf 9d e6 8a a4 22 3e 20 0a 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 64 65 73 63 72 69 70 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 e5 a4 ae e8 a7 86 e7 bd 91 e6 b5 b7 e5 a4 96 e9 a2 91 e9 81 93 ef bc 88 67 6c 6f 62 61 6c 2e 63 63 74 76 2e 63 6f 6d ef bc 89 e6 98 af e5 a4 ae e8 a7 86 e7 bd 91 e6 97 97 e4 b8 8b e4 bb a5 e9 9d a2 e5 90 91 e6 b5 b7 e5 a4 96 e7 94 a8 e6 88 b7 e4 b8 ba e4 b8 bb ef bc 8c e5 af b9 e5 a4 96 e5 b1 95 e7 a4 ba e6 96 b0 e6 97 b6 Data Ascii: itle> <meta name="keywords" content=" "> <meta name="description" content="global.cctv.com
2024-05-23 22:22:08 UTC	1369	IN	Data Raw: 66 75 6e 63 74 69 6f 6e 20 28 29 20 7b 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 76 61 72 20 63 6c 69 65 6e 74 57 69 64 74 68 20 3d 20 64 6f 63 45 6c 2e 63 6c 69 65 6e 74 57 69 64 74 68 20 3e 20 37 35 30 20 3f 20 37 35 30 20 3a 20 64 6f 63 45 6c 2e 63 6c 69 65 6e 74 57 69 64 74 68 3b 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 69 66 20 28 21 63 6c 69 65 6e 74 57 69 64 74 68 29 20 72 65 74 75 72 6e 3b 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 6f 63 45 6c 2e 73 74 79 6c 65 2e 66 6f 6e 74 53 69 7a 65 20 3d 20 35 30 20 2a 20 28 63 6c 69 65 6e 74 57 69 64 74 68 20 2f 20 37 35 30 29 20 2b 20 27 70 78 27 3b 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 7d 3b 0a 20 20 20 20 20 20 20 20 20 20 20 Data Ascii: function () { var clientWidth = docEl.clientWidth > 750 ? 750 : docEl.clientWidth; if (!clientWidth) return; docEl.style.fontSize = 50 * (clientWidth / 750) + 'px'; };
2024-05-23 22:22:08 UTC	1369	IN	Data Raw: 65 72 3a 30 3b 64 69 73 70 6c 61 79 3a 6e 6f 6e 65 3b 22 2c 6f 3d 64 6f 63 75 6d 65 6e 74 2e 67 65 74 45 6c 65 6d 65 6e 74 73 42 79 54 61 67 4e 61 6d 65 28 22 73 63 72 69 70 74 22 29 5b 30 5d 2c 6f 2e 70 61 72 65 6e 74 4e 6f 64 65 2e 69 6e 73 65 72 74 42 65 66 6f 72 65 28 72 2c 6f 29 3b 74 72 79 7b 5f 3d 72 2e 63 6f 6e 74 65 6e 74 57 69 6e 64 6f 77 2e 64 6f 63 75 6d 65 6e 74 7d 63 61 74 63 68 28 4f 29 7b 69 3d 64 6f 63 75 6d 65 6e 74 2e 64 6f 6d 61 69 6e 2c 72 2e 73 72 63 3d 22 6a 61 76 61 73 63 72 69 70 74 3a 76 61 72 20 64 3d 64 6f 63 75 6d 65 6e 74 2e 6f 70 65 6e 28 29 3b 64 2e 64 6f 6d 61 69 6e 3d 27 22 2b 69 2b 22 27 3b 76 6f 69 64 28 30 29 3b 22 2c 5f 3d 72 2e 63 6f 6e 74 65 6e 74 57 69 6e 64 6f 77 2e 64 6f 63 75 6d 65 6e 74 7d 5f 2e 6f 70 65 6e 28 Data Ascii: er:0;display:none;",o=document.getElementsByTagName("script")[0],o.parentNode.insertBefore(r,o);try{_=r.contentWindow.document}catch(O){i=document.domain,r.src="javascript:var d=document.open();d.domain='"+i+"';void(0);",_=r.contentWindow.document}_.open(
2024-05-23 22:22:08 UTC	1369	IN	Data Raw: 42 65 64 71 6e 4c 79 67 36 57 71 55 77 55 4b 57 50 52 6e 78 61 6e 54 56 32 31 58 6a 45 50 6d 76 6c 44 72 4b 36 77 35 74 71 76 64 64 34 75 61 72 4a 45 4f 6e 47 74 59 37 65 38 34 48 78 4e 62 43 6f 58 59 30 54 6e 4d 32 78 4a 2f 61 39 36 54 7a 4d 41 49 53 61 56 52 78 4b 75 63 74 79 6b 44 66 4d 31 72 67 77 51 54 5a 4f 6c 4f 31 61 4c 4b 58 65 46 66 49 71 59 66 45 4e 41 64 30 78 32 37 50 6e 6a 51 79 49 4c 37 4b 32 54 68 33 7a 32 4c 50 4e 6d 58 74 48 6d 6c 45 73 2f 34 2f 4d 76 4c 61 46 66 2f 39 74 41 52 45 4a 6e 39 6f 4d 64 31 7a 64 38 41 53 69 79 7a 6c 66 6b 55 61 42 62 64 75 39 67 63 43 75 39 30 6c 75 61 79 5a 78 53 4e 50 38 69 38 35 71 4c 46 4d 4a 70 67 38 53 2b 2f 6c 70 75 47 49 66 37 77 35 52 30 2f 51 78 51 2b 49 32 6d 66 30 6e 38 4e 62 59 52 59 72 47 6e 67 Data Ascii: BedqnLyg6WqUwUKWPRnxanTV21XjEPmvlDrK6w5tqvdd4uarJEOnGtY7e84HxNbCoXY0TnM2xJ/a96TzMAISaVRxKuctykDfM1rgwQTZOlO1aLKXeFfIqYfENAd0x27PnjQyIL7K2Th3z2LPNmXtHmlEs/4/MvLaFf/9tAREJn9oMd1zd8ASiyzlfkUaBbdu9gcCu90luayZxSNP8i85qLFMJpg8S+/lpuGIf7w5R0/QxQ+I2mf0n8NbYRYrGng
2024-05-23 22:22:08 UTC	1369	IN	Data Raw: 3c 6c 69 6e 6b 20 72 65 6c 3d 22 73 74 79 6c 65 73 68 65 65 74 22 20 74 79 70 65 3d 22 74 65 78 74 2f 63 73 73 22 20 68 72 65 66 3d 22 2f 2f 72 2e 69 6d 67 2e 63 63 74 76 70 69 63 2e 63 6f 6d 2f 6e 65 77 63 63 74 76 2f 67 6c 6f 62 61 6c 2f 74 6f 70 63 6f 6e 74 61 69 6e 2f 73 74 79 6c 65 2f 73 74 79 6c 65 2e 63 73 73 3f 33 61 64 39 66 32 31 64 32 34 66 36 61 31 62 65 35 36 37 39 66 31 34 38 34 33 63 33 34 63 33 34 22 3e 0a 3c 64 69 76 20 63 6c 61 73 73 3d 22 68 65 61 64 65 72 2d 63 6f 6e 74 61 69 6e 65 72 22 20 6d 6f 64 75 6c 65 2d 69 64 3d 22 54 50 4d 54 4a 6a 35 6a 4b 6d 76 4f 30 4c 6d 79 47 53 77 63 35 59 6b 54 32 33 30 35 31 35 22 3e 20 0a 20 3c 69 6d 67 20 73 74 79 6c 65 3d 22 64 69 73 70 6c 61 79 3a 6e 6f 6e 65 3b 77 69 64 74 68 3a 30 70 78 3b 20 68 Data Ascii: <link rel="stylesheet" type="text/css" href="//r.img.cctvpic.com/newcctv/global/topcontain/style/style.css?3ad9f21d24f6a1be5679f14843c34c34"><div class="header-container" module-id="TPMTJj5jKmvO0LmyGSwc5YkT230515"> <img style="display:none;width:0px; h
2024-05-23 22:22:08 UTC	1369	IN	Data Raw: 2f 6c 69 3e 20 0a 20 20 20 20 20 20 3c 6c 69 20 63 6c 61 73 73 3d 22 73 75 62 2d 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 32 2d 73 75 62 32 22 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 67 6c 6f 62 61 6c 2e 63 63 74 76 2e 63 6f 6d 2f 69 70 61 6e 64 61 2f 70 61 6e 64 61 74 72 6f 75 70 65 2f 69 6e 64 65 78 2e 73 68 74 6d 6c 22 20 74 61 72 67 65 74 3d 22 5f 62 6c 61 6e 6b 22 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 2d 73 75 62 2d 74 69 70 73 22 3e 3c 2f 73 70 61 6e 3e e7 86 8a e7 8c ab e6 98 9f e5 9b a2 3c 2f 61 3e 3c 2f 6c 69 3e 20 0a 20 20 20 20 20 20 3c 6c 69 20 63 6c 61 73 73 3d 22 73 75 62 2d 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 32 2d 73 75 62 33 22 3e 3c 61 20 68 72 65 66 Data Ascii: /li> <li class="sub-menu-item menu-item-2-sub2"><a href="https://global.cctv.com/ipanda/pandatroupe/index.shtml" target="_blank"><span class="menu-item-sub-tips"></span></a></li> <li class="sub-menu-item menu-item-2-sub3"><a href
2024-05-23 22:22:08 UTC	1369	IN	Data Raw: 65 6e 75 2d 69 74 65 6d 2d 73 75 62 2d 74 69 70 73 22 3e 3c 2f 73 70 61 6e 3e 3c 2f 61 3e 3c 2f 6c 69 3e 20 0a 20 20 20 20 20 20 3c 6c 69 20 63 6c 61 73 73 3d 22 73 75 62 2d 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 33 2d 73 75 62 35 22 3e 3c 61 20 68 72 65 66 3d 22 22 20 74 61 72 67 65 74 3d 22 5f 62 6c 61 6e 6b 22 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 2d 73 75 62 2d 74 69 70 73 22 3e 3c 2f 73 70 61 6e 3e 3c 2f 61 3e 3c 2f 6c 69 3e 20 0a 20 20 20 20 20 3c 2f 75 6c 3e 20 3c 2f 6c 69 3e 20 0a 20 20 20 20 3c 6c 69 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 34 22 3e 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 67 6c 6f 62 61 6c 2e 63 63 74 76 2e 63 6f 6d 2f 74 Data Ascii: enu-item-sub-tips"></span></a></li> <li class="sub-menu-item menu-item-3-sub5"><a href="" target="_blank"><span class="menu-item-sub-tips"></span></a></li> </ul> </li> <li class="menu-item menu-item-4"> <a href="https://global.cctv.com/t
2024-05-23 22:22:08 UTC	1369	IN	Data Raw: 6f 6d 2f 63 72 6f 73 73 73 74 72 61 69 74 2f 69 6e 64 65 78 2e 73 68 74 6d 6c 22 20 74 61 72 67 65 74 3d 22 5f 62 6c 61 6e 6b 22 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 2d 73 75 62 2d 74 69 70 73 22 3e 3c 2f 73 70 61 6e 3e e7 9c 8b e4 b8 a4 e5 b2 b8 3c 2f 61 3e 3c 2f 6c 69 3e 20 0a 20 20 20 20 20 20 3c 6c 69 20 63 6c 61 73 73 3d 22 73 75 62 2d 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 37 2d 73 75 62 32 22 3e 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 67 6c 6f 62 61 6c 2e 63 63 74 76 2e 63 6f 6d 2f 77 65 68 6b 2f 69 6e 64 65 78 2e 73 68 74 6d 6c 22 20 74 61 72 67 65 74 3d 22 5f 62 6c 61 6e 6b 22 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 2d 73 75 62 2d 74 69 70 73 22 3e 3c 2f Data Ascii: om/crossstrait/index.shtml" target="_blank"><span class="menu-item-sub-tips"></span></a></li> <li class="sub-menu-item menu-item-7-sub2"><a href="https://global.cctv.com/wehk/index.shtml" target="_blank"><span class="menu-item-sub-tips"></
2024-05-23 22:22:08 UTC	1369	IN	Data Raw: 20 20 3c 75 6c 20 63 6c 61 73 73 3d 22 73 75 62 2d 6d 65 6e 75 22 3e 20 0a 20 20 20 20 20 20 3c 6c 69 20 63 6c 61 73 73 3d 22 73 75 62 2d 6d 65 6e 75 2d 69 74 65 6d 20 6d 65 6e 75 2d 69 74 65 6d 2d 31 30 2d 73 75 62 31 22 3e 20 3c 66 6a 74 69 67 6e 6f 72 65 75 72 6c 3e 20 0a 20 20 20 20 20 20 20 20 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 62 69 67 35 2e 63 63 74 76 2e 63 6f 6d 2f 67 61 74 65 2f 62 69 67 35 2f 67 6c 6f 62 61 6c 2e 63 63 74 76 2e 63 6f 6d 2f 69 6e 64 65 78 2e 73 68 74 6d 6c 22 20 74 61 72 67 65 74 3d 22 5f 62 6c 61 6e 6b 22 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6d 65 6e 75 2d 69 74 65 6d 2d 73 75 62 2d 74 69 70 73 22 3e 3c 2f 73 70 61 6e 3e e7 b9 81 e4 bd 93 3c 2f 61 3e 20 0a 20 20 20 20 20 20 20 3c 2f 66 6a 74 69 67 6e 6f 72 Data Ascii: <ul class="sub-menu"> <li class="sub-menu-item menu-item-10-sub1"> <fjtignoreurl> <a href="https://big5.cctv.com/gate/big5/global.cctv.com/index.shtml" target="_blank"><span class="menu-item-sub-tips"></span></a> </fjtignor

Timestamp	Bytes transferred	Direction	Data
2024-05-23 22:22:10 UTC	652	OUT	GET /photoAlbum/page/performance/img/2023/2/9/1675908806957_283.jpeg HTTP/1.1 Host: p2.img.cctvpic.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://new.aj848310310.workers.dev/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-05-23 22:22:10 UTC	732	IN	HTTP/1.1 200 OK Date: Thu, 23 May 2024 22:22:10 GMT Content-Type: image/jpeg Content-Length: 6897 Connection: close Expires: Fri, 24 May 2024 09:59:36 GMT Accept-Ranges: bytes ETag: "a2ea88dec0cc1a5667ac0650c19a871c" Last-Modified: Mon, 20 Nov 2023 07:21:15 GMT x-amz-meta-srctag: "a2ea88dec0cc1a5667ac0650c19a871c" x-amz-meta-fihhda9srctag: "a2ea88dec0cc1a5667ac0650c19a871c" x-amz-tagging-count: 0 Cache-Control: max-age=86400 X-UA-Compatible: IE=EmulateIE7 Server: elb Age: 1 X-Via: 1.1 PSjsczBGPhq161:3 (Cdn Cache Server V2.0), 1.1 PSxgHK5dz198:4 (Cdn Cache Server V2.0), 1.1 kf148:9 (Cdn Cache Server V2.0), 1.1 PS-VIE-01aIr81:13 (Cdn Cache Server V2.0) X-Ws-Request-Id: 664fc192_PS-VIE-01aIr81_15672-51735
2024-05-23 22:22:10 UTC	6897	IN	Data Raw: ff d8 ff e1 00 18 45 78 69 66 00 00 49 49 2a 00 08 00 00 00 00 00 00 00 00 00 00 00 ff ec 00 11 44 75 63 6b 79 00 01 00 04 00 00 00 64 00 00 ff e1 03 2f 68 74 74 70 3a 2f 2f 6e 73 2e 61 64 6f 62 65 2e 63 6f 6d 2f 78 61 70 2f 31 2e 30 2f 00 3c 3f 78 70 61 63 6b 65 74 20 62 65 67 69 6e 3d 22 ef bb bf 22 20 69 64 3d 22 57 35 4d 30 4d 70 43 65 68 69 48 7a 72 65 53 7a 4e 54 63 7a 6b 63 39 64 22 3f 3e 20 3c 78 3a 78 6d 70 6d 65 74 61 20 78 6d 6c 6e 73 3a 78 3d 22 61 64 6f 62 65 3a 6e 73 3a 6d 65 74 61 2f 22 20 78 3a 78 6d 70 74 6b 3d 22 41 64 6f 62 65 20 58 4d 50 20 43 6f 72 65 20 35 2e 36 2d 63 31 34 35 20 37 39 2e 31 36 33 34 39 39 2c 20 32 30 31 38 2f 30 38 2f 31 33 2d 31 36 3a 34 30 3a 32 32 20 20 20 20 20 20 20 20 22 3e 20 3c 72 64 66 3a 52 44 46 20 78 6d Data Ascii: ExifII*Duckyd/http://ns.adobe.com/xap/1.0/<?xpacket begin="" id="W5M0MpCehiHzreSzNTczkc9d"?> <x:xmpmeta xmlns:x="adobe:ns:meta/" x:xmptk="Adobe XMP Core 5.6-c145 79.163499, 2018/08/13-16:40:22 "> <rdf:RDF xm

Timestamp	Bytes transferred	Direction	Data
2024-05-23 22:22:11 UTC	653	OUT	GET /photoAlbum/page/performance/img/2021/12/16/1639647987066_668.png HTTP/1.1 Host: p2.img.cctvpic.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://new.aj848310310.workers.dev/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-05-23 22:22:11 UTC	541	IN	HTTP/1.1 200 OK Date: Thu, 23 May 2024 22:22:11 GMT Content-Type: image/png Content-Length: 2688 Connection: close Expires: Fri, 24 May 2024 12:17:00 GMT Accept-Ranges: bytes ETag: "136730FC39E3B1A1C2B2335F6DB7229B" Last-Modified: Thu, 16 Dec 2021 09:46:35 GMT Cache-Control: max-age=86400 X-UA-Compatible: IE=EmulateIE7 Age: 1 X-Via: 1.1 dianxun97:3 (Cdn Cache Server V2.0), 1.1 PShlamstdAMS1iy111:4 (Cdn Cache Server V2.0), 1.1 PS-VIE-01Lw182:11 (Cdn Cache Server V2.0) X-Ws-Request-Id: 664fc193_PS-VIE-01aIr81_15031-47109
2024-05-23 22:22:11 UTC	2315	IN	Data Raw: 89 50 4e 47 0d 0a 1a 0a 00 00 00 0d 49 48 44 52 00 00 00 22 00 00 00 1d 08 06 00 00 00 cf 6b be ba 00 00 00 01 73 52 47 42 00 ae ce 1c e9 00 00 00 44 65 58 49 66 4d 4d 00 2a 00 00 00 08 00 01 87 69 00 04 00 00 00 01 00 00 00 1a 00 00 00 00 00 03 a0 01 00 03 00 00 00 01 00 01 00 00 a0 02 00 04 00 00 00 01 00 00 00 22 a0 03 00 04 00 00 00 01 00 00 00 1d 00 00 00 00 21 0b 8e 03 00 00 09 ea 49 44 41 54 48 c7 ad 57 0b 34 96 e9 16 7e 73 eb 42 9a 90 84 11 12 b1 54 12 0d 15 7e 97 10 95 6a ba 99 50 e3 52 a9 64 ba 49 4d 17 45 48 a5 a4 42 a6 24 19 8a 32 ab 08 49 45 e8 94 2e e8 46 19 b9 54 67 55 fc a1 f8 8b 9f e7 ec ef 4f 0d 47 75 ce 3a 73 de b5 f6 fa 7e 9f ef fb f6 b3 f7 fb ec bd 9f 97 b1 bf bf fa 90 49 91 0d 24 53 21 b3 22 f3 25 db a7 a5 a5 55 e0 e0 e0 c0 37 32 32 Data Ascii: PNGIHDR"ksRGBDeXIfMM*i"!IDATHW4~sBT~jPRdIMEHB$2IE.FTgUOGu:s~I$S!"%U722
2024-05-23 22:22:11 UTC	373	IN	Data Raw: 94 98 14 6c 5a b9 a9 63 be c3 fc 57 bc 71 bc bb c3 95 87 27 f6 53 ec b7 83 06 3f 27 c6 0d 39 71 04 86 3e 44 d4 49 6c 15 35 33 37 36 b9 a7 84 97 94 1c 4f 2a aa e4 c4 89 13 b8 71 e3 06 9e 3d 7b f6 c5 68 b9 1e c3 71 84 3b b3 a4 a6 a6 22 28 28 a8 d1 cd c5 ad da 72 aa 65 a5 f2 04 e5 aa 7e 3a fd 6a 28 ca bb cc 98 25 11 0f 02 a9 61 2d a4 99 62 4d 94 1c 4f 95 a2 4f 7a 84 23 e9 28 9a 31 be a2 f6 ee c3 f4 fe 5d 24 a9 9a 99 99 5d e2 78 f1 69 71 64 e5 00 71 c0 52 52 52 b8 c3 d2 5b 6a 7a d5 34 10 cb c6 8c 19 73 81 14 5e ac 94 84 94 1f bd 3b 87 ce 03 d3 d9 34 36 8b a8 c7 e9 8c 85 14 ad 2b 45 ed 4d d7 8d 74 2f 90 48 19 42 ae f7 88 6c 19 3b 4c d5 92 4c 13 d8 95 ee f7 d2 b1 fd 68 7b f6 04 06 06 b6 65 66 66 22 26 26 a6 99 44 d3 53 27 27 a7 7b 94 a9 1c 45 45 c5 78 9a d2 5c Data Ascii: lZcWq'S?'9q>DIl5376O*q={hq;"((re~:j(%a-bMOOz#(1]$]xiqdqRRR[jz4s^;46+EMt/HBl;LLh{eff"&&DS''{EEx\

Timestamp	Bytes transferred	Direction	Data
2024-05-23 22:22:13 UTC	652	OUT	GET /photoAlbum/page/performance/img/2024/5/16/1715852523327_201.png HTTP/1.1 Host: p2.img.cctvpic.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://new.aj848310310.workers.dev/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-05-23 22:22:13 UTC	543	IN	HTTP/1.1 200 OK Date: Thu, 23 May 2024 22:22:13 GMT Content-Type: image/png Content-Length: 531696 Connection: close Expires: Fri, 24 May 2024 11:19:40 GMT Accept-Ranges: bytes ETag: "DA54973DF38EE532AD121721A62B429F" Last-Modified: Thu, 16 May 2024 09:42:08 GMT Cache-Control: max-age=86400 X-UA-Compatible: IE=EmulateIE7 Age: 1 X-Via: 1.1 dianxun97:6 (Cdn Cache Server V2.0), 1.1 PShlamstdAMS1bm110:7 (Cdn Cache Server V2.0), 1.1 PS-VIE-01aIr81:12 (Cdn Cache Server V2.0) X-Ws-Request-Id: 664fc195_PS-VIE-01aIr81_15672-51783
2024-05-23 22:22:13 UTC	15165	IN	Data Raw: 89 50 4e 47 0d 0a 1a 0a 00 00 00 0d 49 48 44 52 00 00 01 e0 00 00 02 0c 08 06 00 00 00 2d ba 7f f1 00 00 20 00 49 44 41 54 78 9c 8c bd fb af b5 df 56 1f 34 e6 e5 b9 ad b5 f7 7e df ef 39 1c e0 d0 72 00 0b b6 81 4a c0 9a a2 2d 85 02 b5 35 1a 95 d6 60 44 12 1b 9a d8 44 fb ab ff 49 c5 c4 86 18 63 68 8d b5 35 92 92 50 cb 0f 8d 05 13 d4 56 45 a8 d5 7a 28 da d2 73 fd be 97 bd f7 5a eb b9 ce 39 cd e7 33 c6 7c f6 da fb 7d 4f e2 22 9b f3 7e f7 65 ad e7 79 e6 9c e3 f2 19 9f f1 19 ee 3f fa db bf 56 9a 18 a5 eb 3a 09 b1 91 cb 3c cb 9a 92 34 de 8b 0b 51 42 0c e2 9c f0 e5 9c 93 65 59 e4 7c b9 48 db b6 f2 ea f6 56 d6 6d 93 9c 33 7f a6 3f 9f 64 dd 8a 1c 8e af 24 a5 2c 39 6f d2 b6 8d a4 94 e4 7c 39 f3 77 f1 b7 7d df f2 bd 4b ce b2 ac ab ac 5b 92 22 45 72 2e e2 bd 97 36 46 Data Ascii: PNGIHDR- IDATxV4~9rJ-5`DDIch5PVEz(sZ93\|}O"~ey?V:<4QBeY\|HVm3?d$,9o\|9w}K["Er.6F
2024-05-23 22:22:13 UTC	16384	IN	Data Raw: 56 19 1f 4e 32 be 7f a4 1e 01 3e 13 02 15 fe 2e 52 47 00 2a 55 18 f6 e0 4d b1 0d b0 32 8b 0d ad 6a b9 53 f2 97 13 d6 40 42 1b a8 35 b1 5c 26 aa 95 4d f7 67 59 de 3f 90 05 7d 2c 5e 5e b9 c8 09 7c 0d d5 1a b5 1f 9d 4c fa 38 ca 09 d2 92 08 34 31 50 04 e7 c3 3a 5e 58 1e 9b 6c 4f cf c2 7a 74 89 1b 7b b0 f1 4c 7b fc ef dd 1d 27 1c a1 9d 8f 67 2d 42 f1 aa 63 cc 7c 19 cf f2 98 37 b9 80 5d 8f 6c 1d ca 87 e9 22 e3 e5 c2 79 c5 40 98 38 e4 23 bc 20 84 a4 5c e7 a6 aa c1 8f 84 fc c0 14 d5 83 89 a8 79 5e ce 8c fa 30 f1 21 90 d1 ac a3 95 1a ce 03 4d 7c b8 d9 ea 95 b5 ee c6 03 e7 dd de 96 52 6c 5a 10 0c 0f 49 3d 5b 66 14 54 05 2c aa c1 a9 03 c2 ab f1 d4 11 79 1f 92 ad ae b3 e6 8f 7d bf 1a de ed ca 10 5f 6b e0 56 c7 5e 61 4f bc 74 6e a6 0e 8c a8 23 17 6b e6 5e db a8 74 90 Data Ascii: VN2>.RG*UM2jS@B5\&MgY?},^^\|L841P:^XlOzt{L{'g-Bc\|7]l"y@8# \y^0!M\|RlZI=[fT,y}_kV^aOtn#k^t
2024-05-23 22:22:13 UTC	633	IN	Data Raw: 8d 08 56 6b 1f 4a c5 61 5d 4e f5 f0 a7 be d9 c8 89 d9 e0 19 61 43 32 12 a5 f1 64 c8 30 95 47 2f d9 95 61 b5 8a b0 3a 13 49 ef 05 ed 19 97 3b a7 63 9c 95 78 61 e3 18 56 56 fb 98 a4 05 5e 7c e1 65 9c 76 ca 69 f8 d4 a7 7f 09 ff cb ff fc c7 f8 fe ad cf e2 e7 3f 78 21 a6 b3 97 31 dd 3a 8c eb de 71 08 e7 1e e8 60 73 2b c7 a9 87 4e c5 9e bd 6b a8 ab 29 86 93 31 1e 7c f4 65 7c e3 6f 1f 42 1c f4 71 c7 4d cf 63 63 f0 b8 60 b8 ab df ff 01 fc da 27 7f 07 7f f7 97 9f 47 3d 0b f1 73 ef fd 00 5a 9d 21 e6 de 61 78 d5 7e 1c 5c da 8f 59 5a 62 48 1d 2b 06 68 f5 7c 74 92 25 3c fc d8 3a be f6 f9 1f 62 fb d9 31 7e b2 bf 85 af 7e f7 4e ac 9d 72 08 51 40 93 95 0c 7b 97 ba a6 c5 24 7b 9c 41 df c5 1c 31 9d 10 28 db 8c 3d 35 59 24 66 b0 20 05 32 99 08 d0 80 a3 b5 06 09 a7 ed 26 2b Data Ascii: VkJa]NaC2d0G/a:I;cxaVV^\|evi?x!1:q`s+Nk)1\|e\|oBqMcc`'G=sZ!ax~\YZbH+h\|t%<:b1~~NrQ@{${A1(=5Y$f 2&+
2024-05-23 22:22:13 UTC	16384	IN	Data Raw: c2 51 a5 53 aa e2 b3 d1 0a 50 c5 2d 4c ea 48 dc 8c 2e 5f 3d d7 66 9e db ed 2b 79 cd 57 63 dc d2 d0 e3 29 f8 81 ff 6d 2b 9e 20 ed cb 3a 43 3e d8 39 f7 b6 59 89 76 d8 c6 a4 f6 b0 39 cf 05 d1 d2 87 fe b5 3c 10 23 3a 6a 85 c8 da 6d b4 92 1e bc 4e 0f e8 ba ac 70 df 9d a7 b2 0b 2e 4d 19 41 84 a7 db 41 3b 2f 31 dc 9a 88 19 1e c1 47 47 03 9c 6f 46 4c 4c 98 a3 49 05 3d bc 79 d6 d2 b5 85 9a e5 5e a2 d5 5e ea 16 bf 2b fc 5e 51 22 88 b9 6e 27 e8 2c 77 90 4f 46 98 4e c9 b3 a0 7c 28 43 a6 1d ac a7 82 59 d3 54 27 cd 05 5d 33 54 a1 dc d8 42 d2 8e b1 bc d2 c7 64 f3 98 1a d2 72 7b 13 b3 c1 40 c5 7f 52 40 b2 a8 62 7b 88 d9 d1 6d 9b b6 95 44 e6 2f 48 84 5c c7 ae 74 bb 58 ee 76 d0 eb 46 2a a0 93 d9 04 9b 61 21 39 d8 24 28 15 7d 59 53 62 c5 04 a6 d1 08 d3 19 61 6b ae 2b 45 1f Data Ascii: QSP-LH._=f+yWc)m+ :C>9Yv9<#:jmNp.MAA;/1GGoFLLI=y^^+^Q"n',wOFN\|(CYT']3TBdr{@R@b{mD/H\tXvF*a!9$(}YSbak+E
2024-05-23 22:22:13 UTC	15160	IN	Data Raw: 5c 2d 1d 1d cf d0 0a 63 0f a4 79 06 f2 e3 7b 1b ed 04 2d 5c c1 86 07 1c ec 66 53 1a 66 9c 05 91 d9 3d 33 33 c9 50 eb 45 3d a4 88 59 c8 a4 98 48 09 6d 6d b5 e1 01 9a 67 aa 92 60 b1 87 71 44 a1 cf 86 76 a6 5b ae db 9a 7b 42 e0 b5 68 ad 19 23 97 04 49 5c d0 c0 43 a7 5f 29 09 d1 9b 44 92 59 f4 4e 9b c9 84 a4 c2 84 fb 7e 57 97 8a 4a f8 44 89 89 86 7a 10 6d e2 d8 43 f7 19 67 19 da 91 77 71 be 19 90 73 e6 f3 77 f5 20 d8 db 9b 86 62 d8 0d ed 30 ff 97 c6 cc c5 d8 49 02 ca d9 62 06 d6 29 84 48 8a bd d3 85 89 6a 10 27 3e 3a 02 3c 00 67 ab b5 86 f6 83 50 81 4e 08 f3 bd 56 fd 33 f1 3c 2a e6 df 72 13 23 83 f6 c2 66 d9 31 ff b6 65 05 0a f8 83 30 1c a1 63 9d ef 61 73 42 05 d6 5b 22 8b 37 d9 d2 28 cb 86 4e 41 a1 7f 67 b1 ae 96 92 13 8b 43 76 3b 8d 14 a3 9e 32 9e 3e 24 72 Data Ascii: \-cy{-\fSf=33PE=YHmmg`qDv[{Bh#I\C_)DYN~WJDzmCgwqsw b0Ib)Hj'>:<gPNV3<*r#f1e0casB["7(NAgCv;2>$r
2024-05-23 22:22:13 UTC	16384	IN	Data Raw: 95 0f 68 15 8f 47 9a 8d c8 ee 46 34 e3 c1 ec 48 7e f8 e2 89 fc de 6f fd 81 ac 5f 7a 5d 16 37 5b f9 d9 9f ff 4f 65 7e 30 91 0e de 94 10 9f 77 b8 ef bd 14 2e 93 05 38 0d 06 5f a9 55 a4 52 7d 40 56 54 99 8e 1a a8 04 c0 a0 c1 99 c9 bb 3a e5 90 a4 68 b2 1d f8 c0 76 21 12 3b 3a 16 b9 2a a7 e9 94 19 1d a2 63 55 e0 da 61 0a 90 1d 24 bd 6d 56 31 ee 90 9a 61 a7 da 7b 66 38 8f 45 ce 6e 9f 49 d7 54 24 18 4e a7 13 39 bb 79 5b 56 cb 0d 47 40 6b 1c ac de cb d1 f1 25 8e 6b 36 e4 69 f4 0c 50 19 a7 e8 cc 73 59 c2 af 79 b3 a5 5b 5d ca 43 24 19 34 9a 12 2d f9 3a 2d 16 82 32 07 95 0b 6b e4 17 3d 70 03 d1 03 a4 63 d6 e5 9a 4c 7b ac 41 e6 67 97 0d 37 66 3e de 74 ed f2 2c 01 3b b3 86 dc 5f bb b8 50 1c 41 0d 08 90 76 51 94 46 75 c6 5e 75 c3 51 34 f0 1b 9c d9 0d f6 61 c0 bb 78 0f Data Ascii: hGF4H~o_z]7[Oe~0w.8_UR}@VT:hv!;:*cUa$mV1a{f8EnIT$N9y[VG@k%k6iPsYy[]C$4-:-2k=pcL{Ag7f>t,;_PAvQFu^uQ4ax
2024-05-23 22:22:13 UTC	15160	IN	Data Raw: 37 02 fb ac 45 a8 8b 1a 13 07 46 bd 09 b6 e7 67 4e 2b 52 97 03 f1 ef d0 a0 24 6c 82 38 ca 46 42 64 99 b9 a5 ed e3 a2 58 99 c9 0c 56 4f e8 ef 1d b7 50 8a ec 12 99 73 12 42 0c 19 2f 28 4f 6a 3b 1c 48 88 11 c3 41 69 36 15 36 a6 13 39 64 55 49 84 3c 0a 14 b5 b7 7e ec a4 ad 2a 92 44 51 a1 b5 64 8e 4d c6 64 64 a1 fc 3c 50 da 6a 3e 03 11 00 83 b2 4e d1 32 c3 7e 91 af 3c bc 40 da 74 41 a9 16 f5 28 3d 7e 66 a9 4b 36 41 16 fa 9a a8 0f b5 da 63 7c 36 c5 64 38 d2 a4 d4 f8 f0 86 ce 8a 75 42 a5 69 85 4b b1 f9 c3 a7 f6 56 f0 b3 ba c1 ae 5c d1 60 a4 a7 2c 37 e6 69 21 9f 6a d3 bd f3 f9 ad 13 a7 02 2f 18 64 9e 97 ee e9 2c cb 49 12 25 23 63 b8 13 26 a4 a6 9b ca 8b dd 2b 8b b8 60 ff f9 d8 b5 d4 c3 8e e5 05 0c 16 57 44 e2 a1 5c 4e 7b 55 5e 27 4a ed a8 d9 55 f6 79 2a 43 9c 40 Data Ascii: 7EFgN+R$l8FBdXVOPsB/(Oj;HAi669dUI<~DQdMdd<Pj>N2~<@tA(=~fK6Ac\|6d8uBiKV\`,7i!j/d,I%#c&+`WD\N{U^'JUyC@
2024-05-23 22:22:13 UTC	16384	IN	Data Raw: 3a e2 7c 50 c9 34 fe b9 1b f7 49 cd 33 db fc 2a 76 2a 83 91 72 94 84 dc 5b 0e 70 ec b0 09 0f f0 2c 9e a1 49 33 e9 49 d9 09 e6 c5 cc d8 c7 64 fa b9 2c 8a 5d 03 5f 93 30 57 bd ab dc 2f 34 56 76 a8 92 53 1c 52 ef 7d e3 54 a7 16 59 51 31 3c d4 ed 9a ac e7 32 14 f2 f0 af c1 e7 16 06 f7 5a 25 99 58 22 ce d0 e9 60 a8 bc 23 9b cd 17 7a 05 1d d0 43 f0 43 70 fb bc fe cf ee 84 cd 36 b6 b7 70 fb c4 7e 4e 97 59 c4 a1 bc 15 86 68 cc df ad 49 c0 60 e5 1a 07 1d 6f ef 85 84 91 8c 14 c5 97 d3 9b 23 b7 68 b9 40 fc 0a be b0 61 b6 ff 6f 7b 43 63 f7 07 9f df db 61 c4 83 93 9b 95 66 4c 45 66 ec 46 47 33 d4 2d c4 c6 5e 5f 6f 36 3e c7 ed b4 8e 32 9f f3 2a 50 dc 8d 57 38 47 54 22 12 51 8e 2c 73 44 7d 18 67 fc a9 8a b7 42 70 bc fe 8d 1f c2 49 b2 37 c5 1f f9 0a b1 c5 1f 6a 13 55 6a Data Ascii: :\|P4I3vr[p,I3Id,]_0W/4VvSR}TYQ1<2Z%X"`#zCCp6p~NYhI`o#h@ao{CcafLEfFG3-^_o6>2*PW8GT"Q,sD}gBpI7jUj
2024-05-23 22:22:13 UTC	15160	IN	Data Raw: 44 93 42 69 44 c5 95 ab 98 dc bc 81 cd fa 1c 0f 5e b8 83 49 3a c3 52 64 a7 16 6f f8 92 2f c1 53 af 7f 13 9e 7e fa 79 9c 9d 9d e0 f6 ad 5b b8 75 eb b6 cd d2 b9 96 7a 4b cf 82 87 67 88 df a2 ae 73 22 85 09 e5 71 33 12 bc 68 20 41 82 2b a1 77 2f 82 cc 4b 3e f1 e0 8e dc 0a 2d 79 c9 f7 e2 dd 29 01 2a 8c b8 bc 29 88 d4 84 04 2b 64 47 79 68 fe 12 b3 bb 2f e5 10 c6 99 2e 3b c0 12 03 ca 6d a9 83 fc 70 31 c5 23 37 8f 71 f5 ca 12 cb 79 21 63 95 8c 26 4e b9 e9 b5 01 43 1c bb 59 8f e3 a3 a5 ba 6c b9 40 25 46 a0 a2 b3 1b 17 87 42 4a 22 60 3e 2d b0 98 4f dc 3f 60 2b d8 9c d7 b3 ac 99 5b 90 d8 2c 36 89 7c 54 97 aa d3 0d 89 5b 42 70 7c 5f d5 81 47 48 9a 67 96 fb 7a 2b 89 ae 35 c8 5c f3 7c 1a 68 24 c1 17 dc cf 27 8d a4 3a 3b 94 63 1b cd 05 3d f5 b8 bf ba c4 33 a4 20 59 d3 Data Ascii: DBiD^I:Rdo/S~y[uzKgs"q3h A+w/K>-y)*)+dGyh/.;mp1#7qy!c&NCYl@%FBJ"`>-O?`+[,6\|T[Bp\|_GHgz+5\\|h$':;c=3 Y
2024-05-23 22:22:13 UTC	16384	IN	Data Raw: f9 18 9b 93 73 35 50 2c ae 34 bb a1 dc a8 a1 47 b5 7c 95 5b 3b b6 28 6b e1 88 c9 5d 5e 14 63 be 3b 07 ba 11 36 4c a2 e9 ed 50 ca 25 b7 4b cd 50 42 e9 4e 1c 49 23 99 9f d0 50 5f 93 ea c8 92 71 22 92 14 49 4e 22 44 dd 26 28 69 eb 58 d5 43 4c 5f 9a 76 22 a6 14 49 a1 26 b5 18 67 da 3b 87 89 39 53 c1 32 64 c9 b9 2b 76 18 5d 68 f0 42 39 0d c6 56 5d 3f f0 27 4d ad 4f 39 95 73 43 3a f7 f7 55 5e ba 4f 9f da d1 f1 fd 97 c6 a5 28 a3 c4 d6 24 a5 a9 26 6a 32 7a 79 46 c4 8c 1d ec 75 de 90 5d bf a8 0c e1 a1 2e 34 d2 bf f1 b5 09 91 9b 38 58 16 9a b4 8f 87 22 a1 51 31 b9 53 8b 7b 8c fa d8 35 f0 ad f9 2a 0b 3c 88 25 e7 31 28 3c 15 aa 93 15 33 c4 0d f7 ce b5 b2 7d 93 d1 04 13 c6 fa 15 13 cc 77 f7 b0 39 5f 63 b5 5e 60 cc f8 c8 45 89 f3 4d 63 ea 82 24 c5 f5 f3 53 3c bc 78 08 Data Ascii: s5P,4G\|[;(k]^c;6LP%KPBNI#P_q"IN"D&(iXCL_v"I&g;9S2d+v]hB9V]?'MO9sC:U^O($&j2zyFu].48X"Q1S{5*<%1(<3}w9_c^`EMc$S<x

Timestamp	Bytes transferred	Direction	Data
2024-05-23 22:22:13 UTC	562	OUT	GET /dingding/open-develop/1.9.0/dingtalk.js HTTP/1.1 Host: g.alicdn.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://new.aj848310310.workers.dev/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-05-23 22:22:13 UTC	873	IN	HTTP/1.1 200 OK Server: Tengine Content-Type: application/javascript Content-Length: 41727 Connection: close Date: Thu, 23 May 2024 22:07:55 GMT Vary: Accept-Encoding Vary: Accept-Encoding x-oss-request-id: 664FBE3BCDAAFE3530736385 Accept-Ranges: bytes x-oss-object-type: Normal x-oss-hash-crc64ecma: 784279744081961369 x-oss-storage-class: Standard Content-MD5: meAephEu3vH5TpgRA+pErg== x-oss-server-time: 17 Cache-Control: max-age=2592000,s-maxage=3600 Access-Control-Allow-Origin: * x-bucket-code: 3 Ali-Swift-Global-Savetime: 1716502075 Via: cache23.l2de2[25,25,200-0,M], cache26.l2de2[28,0], cache26.l2de2[30,0], ens-cache1.de4[0,0,200-0,H], ens-cache1.de4[1,0] Age: 858 X-Cache: HIT TCP_HIT dirn:9:411017793 X-Swift-SaveTime: Thu, 23 May 2024 22:07:55 GMT X-Swift-CacheTime: 3600 Timing-Allow-Origin: * EagleId: 2ff62b1917165029333708713e
2024-05-23 22:22:13 UTC	15511	IN	Data Raw: 28 66 75 6e 63 74 69 6f 6e 28 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 76 61 72 20 65 3d 7b 7d 2c 61 3d 6e 61 76 69 67 61 74 6f 72 2e 75 73 65 72 41 67 65 6e 74 2c 6e 3d 61 2e 6d 61 74 63 68 28 2f 41 6c 69 41 70 70 5c 28 5c 77 2b 5c 2f 28 5b 61 2d 7a 41 2d 5a 30 2d 39 2e 2d 5d 2b 29 5c 29 2f 29 3b 6e 75 6c 6c 3d 3d 3d 6e 26 26 28 6e 3d 61 2e 6d 61 74 63 68 28 2f 44 69 6e 67 54 61 6c 6b 5c 2f 28 5b 61 2d 7a 41 2d 5a 30 2d 39 2e 2d 5d 2b 29 2f 29 29 3b 76 61 72 20 69 3d 6e 26 26 6e 5b 31 5d 3b 65 2e 69 6f 73 3d 2f 69 50 68 6f 6e 65 7c 69 50 61 64 7c 69 50 6f 64 2f 69 2e 74 65 73 74 28 61 29 2c 65 2e 61 6e 64 72 6f 69 64 3d 2f 41 6e 64 72 6f 69 64 2f 69 2e 74 65 73 74 28 61 29 2c 65 2e 76 65 72 73 69 6f 6e 3d 69 2c 65 2e 63 66 67 3d 7b 7d 2c 65 2e 65 78 Data Ascii: (function(){"use strict";var e={},a=navigator.userAgent,n=a.match(/AliApp\(\w+\/([a-zA-Z0-9.-]+)\)/);null===n&&(n=a.match(/DingTalk\/([a-zA-Z0-9.-]+)/));var i=n&&n[1];e.ios=/iPhone\|iPad\|iPod/i.test(a),e.android=/Android/i.test(a),e.version=i,e.cfg={},e.ex
2024-05-23 22:22:13 UTC	16273	IN	Data Raw: 64 3a 22 32 2e 31 31 22 2c 72 65 6c 65 61 73 65 3a 21 31 7d 2c 7b 6e 61 6d 65 73 70 61 63 65 3a 22 62 69 7a 2e 6d 61 70 2e 73 65 61 72 63 68 52 6f 75 74 65 22 2c 6e 61 6d 65 3a 22 e6 9f a5 e8 af a2 e8 b7 af e7 ba bf 22 2c 69 6f 73 3a 22 32 2e 31 31 22 2c 61 6e 64 72 6f 69 64 3a 22 32 2e 31 31 22 2c 72 65 6c 65 61 73 65 3a 21 31 7d 2c 7b 6e 61 6d 65 73 70 61 63 65 3a 22 62 69 7a 2e 63 6f 6e 74 61 63 74 2e 73 65 74 52 75 6c 65 22 2c 6e 61 6d 65 3a 22 e8 ae be e7 bd ae e8 a7 84 e5 88 99 22 2c 69 6f 73 3a 22 32 2e 31 35 22 2c 61 6e 64 72 6f 69 64 3a 22 32 2e 31 35 22 2c 72 65 6c 65 61 73 65 3a 21 31 7d 2c 7b 6e 61 6d 65 73 70 61 63 65 3a 22 62 69 7a 2e 61 75 74 68 2e 72 65 71 75 65 73 74 41 75 74 68 43 6f 64 65 22 2c 6e 61 6d 65 3a 22 4a 53 e5 85 8d e7 99 bb Data Ascii: d:"2.11",release:!1},{namespace:"biz.map.searchRoute",name:"",ios:"2.11",android:"2.11",release:!1},{namespace:"biz.contact.setRule",name:"",ios:"2.15",android:"2.15",release:!1},{namespace:"biz.auth.requestAuthCode",name:"JS
2024-05-23 22:22:13 UTC	9943	IN	Data Raw: 65 3a 21 31 2c 64 65 66 61 75 6c 74 50 61 72 61 6d 73 3a 7b 7d 7d 2c 7b 6e 61 6d 65 73 70 61 63 65 3a 22 69 6e 74 65 72 6e 61 6c 2e 66 61 63 65 53 63 61 6e 2e 73 63 61 6e 22 2c 6e 61 6d 65 3a 22 e4 ba ba e8 84 b8 e8 af 86 e5 88 ab 22 2c 69 6f 73 3a 22 33 2e 34 2e 36 22 2c 61 6e 64 72 6f 69 64 3a 22 33 2e 34 2e 36 22 2c 72 65 6c 65 61 73 65 3a 21 31 2c 64 65 66 61 75 6c 74 50 61 72 61 6d 73 3a 7b 7d 7d 2c 7b 6e 61 6d 65 73 70 61 63 65 3a 22 69 6e 74 65 72 6e 61 6c 2e 6c 6f 67 2e 75 70 6c 6f 61 64 45 78 63 65 70 74 69 6f 6e 22 2c 6e 61 6d 65 3a 22 e4 b8 8a e6 8a a5 e5 bc 82 e5 b8 b8 e6 97 a5 e5 bf 97 e5 88 b0 e6 9c 8d e5 8a a1 e7 ab af 22 2c 69 6f 73 3a 22 33 2e 34 2e 38 22 2c 61 6e 64 72 6f 69 64 3a 22 33 2e 34 2e 38 22 2c 72 65 6c 65 61 73 65 3a 21 31 7d Data Ascii: e:!1,defaultParams:{}},{namespace:"internal.faceScan.scan",name:"",ios:"3.4.6",android:"3.4.6",release:!1,defaultParams:{}},{namespace:"internal.log.uploadException",name:"",ios:"3.4.8",android:"3.4.8",release:!1}

Timestamp	Bytes transferred	Direction	Data
2024-05-23 22:22:13 UTC	660	OUT	GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/more_block.png HTTP/1.1 Host: p2.img.cctvpic.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://new.aj848310310.workers.dev/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-05-23 22:22:14 UTC	541	IN	HTTP/1.1 200 OK Date: Thu, 23 May 2024 22:22:14 GMT Content-Type: image/png Content-Length: 609 Connection: close Expires: Fri, 24 May 2024 10:04:28 GMT Accept-Ranges: bytes ETag: "81ADCEB1BDAA41E239C607C54EF20335" Last-Modified: Thu, 16 Dec 2021 07:57:12 GMT Cache-Control: max-age=86400 X-UA-Compatible: IE=EmulateIE7 Age: 1 X-Via: 1.1 dianxun231:11 (Cdn Cache Server V2.0), 1.1 PShlamstdAMS1mi112:1 (Cdn Cache Server V2.0), 1.1 PS-VIE-01Lw182:6 (Cdn Cache Server V2.0) X-Ws-Request-Id: 664fc196_PS-VIE-01aIr81_14433-55452
2024-05-23 22:22:14 UTC	609	IN	Data Raw: 89 50 4e 47 0d 0a 1a 0a 00 00 00 0d 49 48 44 52 00 00 00 4e 00 00 00 14 08 03 00 00 00 14 61 fb be 00 00 00 01 73 52 47 42 00 ae ce 1c e9 00 00 00 44 65 58 49 66 4d 4d 00 2a 00 00 00 08 00 01 87 69 00 04 00 00 00 01 00 00 00 1a 00 00 00 00 00 03 a0 01 00 03 00 00 00 01 00 01 00 00 a0 02 00 04 00 00 00 01 00 00 00 4e a0 03 00 04 00 00 00 01 00 00 00 14 00 00 00 00 ca e6 d3 2d 00 00 00 a2 50 4c 54 45 00 00 00 00 00 00 40 40 40 33 33 66 24 24 6d 20 40 60 1a 33 66 24 37 5b 1c 2b 63 28 36 5e 24 31 61 24 2e 5b 22 33 5e 27 2e 5d 20 33 60 25 32 5d 22 31 5d 23 2f 5e 24 2f 5f 22 30 5f 23 30 5c 23 30 5e 23 32 5f 23 31 5f 24 30 5e 23 31 5e 22 30 5e 23 31 5e 23 30 5f 23 32 5e 23 31 5f 23 30 5d 23 31 5e 24 32 5d 23 32 5f 22 31 5e 23 32 5f 23 31 5e 22 32 5e 23 31 5e 23 Data Ascii: PNGIHDRNasRGBDeXIfMM*iN-PLTE@@@33f$$m @`3f$7[+c(6^$1a$.["3^'.] 3`%2]"1]#/^$/_"0_#0\#0^#2_#1_$0^#1^"0^#1^#0_#2^#1_#0]#1^$2]#2_"1^#2_#1^"2^#1^#

Timestamp	Bytes transferred	Direction	Data
2024-05-23 22:22:13 UTC	638	OUT	GET /photoworkspace/2024/04/17/2024041716582311144.jpg HTTP/1.1 Host: p2.img.cctvpic.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://new.aj848310310.workers.dev/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-05-23 22:22:14 UTC	535	IN	HTTP/1.1 200 OK Date: Thu, 23 May 2024 22:22:13 GMT Content-Type: image/jpeg Content-Length: 1347785 Connection: close Expires: Fri, 24 May 2024 09:54:11 GMT Accept-Ranges: bytes ETag: "19AB892F7EF572C0D75B21AB01770906" Last-Modified: Wed, 17 Apr 2024 08:59:22 GMT Cache-Control: max-age=86400 X-UA-Compatible: IE=EmulateIE7 Age: 1 X-Via: 1.1 PSxgHK5yp199:11 (Cdn Cache Server V2.0), 1.1 kf148:6 (Cdn Cache Server V2.0), 1.1 PS-VIE-01Lw182:9 (Cdn Cache Server V2.0) X-Ws-Request-Id: 664fc195_PS-VIE-01aIr81_14433-55451
2024-05-23 22:22:14 UTC	2321	IN	Data Raw: ff d8 ff e0 00 10 4a 46 49 46 00 01 02 00 00 01 00 01 00 00 ff e1 00 36 45 78 69 66 00 00 4d 4d 00 2a 00 00 00 08 00 01 01 32 00 02 00 00 00 14 00 00 00 1a 00 00 00 00 32 30 32 34 3a 30 34 3a 31 32 20 31 35 3a 33 30 3a 30 36 00 ff e1 0f af 68 74 74 70 3a 2f 2f 6e 73 2e 61 64 6f 62 65 2e 63 6f 6d 2f 78 61 70 2f 31 2e 30 2f 00 3c 3f 78 70 61 63 6b 65 74 20 62 65 67 69 6e 3d 22 ef bb bf 22 20 69 64 3d 22 57 35 4d 30 4d 70 43 65 68 69 48 7a 72 65 53 7a 4e 54 63 7a 6b 63 39 64 22 3f 3e 20 3c 78 3a 78 6d 70 6d 65 74 61 20 78 6d 6c 6e 73 3a 78 3d 22 61 64 6f 62 65 3a 6e 73 3a 6d 65 74 61 2f 22 20 78 3a 78 6d 70 74 6b 3d 22 41 64 6f 62 65 20 58 4d 50 20 43 6f 72 65 20 36 2e 30 2d 63 30 30 33 20 37 39 2e 31 36 34 35 32 37 2c 20 32 30 32 30 2f 31 30 2f 31 35 2d 31 Data Ascii: JFIF6ExifMM*22024:04:12 15:30:06http://ns.adobe.com/xap/1.0/<?xpacket begin="" id="W5M0MpCehiHzreSzNTczkc9d"?> <x:xmpmeta xmlns:x="adobe:ns:meta/" x:xmptk="Adobe XMP Core 6.0-c003 79.164527, 2020/10/15-1
2024-05-23 22:22:14 UTC	16384	IN	Data Raw: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 Data Ascii:
2024-05-23 22:22:14 UTC	16384	IN	Data Raw: 16 3f 31 96 ad 33 db cc 73 e5 a4 44 9e 47 76 4a b4 cb 94 3f 4d ca 4f 18 01 ce 0e 17 20 ec d1 d9 0c df e5 03 9c bc f9 a6 1e 9d 35 d9 cb 31 2a 9c 72 cd 79 c5 10 7e 3a 79 61 57 b3 e3 88 ba 9b 2a ad ad 74 55 53 1c f9 04 44 23 53 97 4d d2 61 c9 20 fa a5 0d c8 4b b8 f5 27 13 72 fb 74 a9 47 32 25 76 a2 e9 91 14 c4 f9 a3 27 c3 5d 6f 9e 24 e5 66 52 11 f7 aa 5c 91 99 a5 2e c5 34 db 24 e4 52 00 3f d4 8b 14 90 d8 08 a0 1c bd 7e 5e bb f5 d1 2e 83 1d 6c e5 ea b4 69 9d b4 f6 27 f8 1d d6 16 bd b2 17 cf df b6 4d 6a f4 8a 84 2e c7 64 ec 0c 07 0e 22 23 c4 47 88 74 dc 74 3c e1 81 95 15 49 a3 39 a8 b0 31 94 89 0b 8e 29 b4 9d 66 cf 19 15 03 a0 87 6c 78 2e 43 18 fc 4c 1c fa 74 d5 70 7e 60 b8 d2 f2 3b 74 6a 0f 8d 6a d9 d4 6d 35 55 5a 06 61 32 25 f4 08 ac 1c c2 5c 78 8e e7 21 b9 Data Ascii: ?13sDGvJ?MO 51ry~:yaWtUSD#SMa K'rtG2%v']o$fR\.4$R?~^.li'Mj.d"#Gtt<I91)flx.CLtp~`;tjjm5UZa2%\x!
2024-05-23 22:22:14 UTC	16384	IN	Data Raw: 2d b8 15 47 00 51 00 d8 c6 f4 db 41 c6 d3 23 ea 65 9d 88 af 28 b1 4e 41 c5 f9 07 2d f8 cb 5d 86 aa c5 a8 c4 e8 d8 e3 ca 1f 55 61 28 b7 21 ca d4 cd 45 aa 8e 4c 54 93 dc fc 53 44 80 3d 7d 03 45 42 c2 b9 26 cc 95 f0 ff 00 08 cf 5b 25 6c b3 e4 c6 32 79 76 4e 51 c9 d1 ac 42 c7 a6 2e 51 24 e0 2a a1 bb ee 94 59 a2 66 0d c4 df 30 ad b0 8e dd 07 a6 8c a2 4b 27 21 50 f3 55 bf 6d eb 3c ee 5c ad e7 0f 37 ec d5 ec 77 5e c6 ca a8 a5 4b 1e a3 32 9b a7 4f 55 4c 86 4c 82 ab 06 20 70 3a 3b 1c 47 a8 80 89 80 a3 ed a3 55 cd 22 b5 5e 24 13 f1 16 25 f1 53 26 f9 29 73 67 0c 6b 4e 64 9e 7a e9 c3 4b 0d ce 61 06 2d 29 f0 cd de a6 98 fd 32 48 0f 50 4f 66 e1 c4 0c 5e 9d 7e 23 aa bb 8e 2a 9e 62 59 32 66 14 c1 74 4a 8e 47 c8 ee 3f 4f 94 92 60 92 e8 37 8a 86 66 54 0c 67 a6 0e 20 08 a0 Data Ascii: -GQA#e(NA-]Ua(!ELTSD=}EB&[%l2yvNQB.Q$Yf0K'!PUm<\7w^K2OULL p:;GU"^$%S&)sgkNdzKa-)2HPOf^~#bY2ftJG?O`7fTg
2024-05-23 22:22:14 UTC	9613	IN	Data Raw: 15 03 6d 84 4e 3e 9e 83 ac cd 92 cd af 04 75 ed 59 19 5a c4 2b 7b fb 89 08 ac 1f 88 51 67 2b 0a 41 0b a1 da 59 57 49 18 a5 84 00 78 8a 51 22 63 19 63 06 e2 42 0a 3f c7 4e 28 f2 23 44 a6 bd 32 d0 6f 18 ab 33 a5 52 0a 67 32 b9 a1 5f 9c 26 75 65 29 67 91 74 57 0a 74 dc 00 ea 28 26 37 b7 42 ef a3 2a 92 7c 89 fb 79 86 2f c6 dc 35 e3 d4 8d 0e 0a df 91 52 17 57 85 4e ab 69 86 aa ce 3c 6c e8 56 6c 60 2e ca 22 2a ee 6f 5f 87 5d 51 7f 32 1f ea eb a7 1c 8d 72 ac 3c 6a 87 21 48 d3 13 b7 40 cd 83 e5 93 ee 2f cb ef e4 61 e4 03 f0 eb a1 fa 06 f4 8a 06 f6 49 ba 2b b0 3b 7a 5b 27 91 ee 96 01 28 20 59 39 3d cf b8 6d d0 a2 6d b5 d5 58 1d fd 70 cc af f2 5b c7 69 39 0a 34 8c 16 46 bb 9e 9b 8f fe ad da b1 f7 27 f1 e7 4d 38 d4 cf c4 4c 52 89 80 80 a0 8f f8 b9 06 fa 22 2b 28 cd Data Ascii: mN>uYZ+{Qg+AYWIxQ"ccB?N(#D2o3Rg2_&ue)gtWt(&7B\|y/5RWNi<lVl`."o_]Q2r<j!H@/aI+;z['( Y9=mmXp[i94F'M8LR"+(
2024-05-23 22:22:14 UTC	16384	IN	Data Raw: 6d a1 e5 21 bb b5 38 90 d0 32 50 e4 98 fd 4a 1d d3 f6 d2 8c ba bf 68 ac 42 e9 36 01 f7 0e f7 a0 eb c8 cd 6e c3 2c eb cb 35 bb 5d ad f1 13 10 d5 66 53 71 30 4a 80 ac dc ee 8c 29 18 03 d4 45 23 a6 5f e1 a9 c2 39 12 59 57 03 df 5d 19 08 aa 6b 5b 1c 35 55 b3 b9 7f af e2 0c dd 10 0c a3 61 2f e2 28 09 77 ea 3a 32 1a a8 17 5e bc 48 cd ec c7 61 b1 a1 96 e7 e5 de 3a 30 4a dc c0 a9 a8 a1 c8 1b a0 9a 3b ec 42 7d 81 c8 74 43 ad a3 5d 4c b1 03 a9 57 f2 17 29 63 59 34 e0 ea 52 ad 94 24 b6 c2 e9 17 2d 7e a4 a5 d8 76 e5 b7 f1 d5 d5 41 80 59 6b 4c db ac 60 fe 4e f7 87 6a af 24 59 a4 95 8a 48 81 fa 84 90 f1 2a 2a 1c 4a 1d 48 91 34 6c 0f 39 70 53 73 2e 4c c7 78 16 80 56 a8 d8 88 ad aa ce 8a 8d d0 3b 62 28 22 d1 c1 40 39 8a 9f 60 f2 0f ec d5 8e 21 54 cf ca 22 cc 2c a4 97 95 Data Ascii: m!82PJhB6n,5]fSq0J)E#_9YW]k[5Ua/(w:2^Ha:0J;B}tC]LW)cY4R$-~vAYkL`Nj$YH**JH4l9pSs.LxV;b("@9`!T",
2024-05-23 22:22:14 UTC	8436	IN	Data Raw: 93 32 43 5c 95 35 51 84 b5 35 9a a6 d6 df 39 31 5c 7d 4b a9 79 98 e4 54 22 2a 22 87 19 05 b7 0e ee c7 f4 47 70 f8 6b 53 af 25 d4 94 a1 83 49 70 df 94 3f a5 61 03 cd bc aa 46 47 d1 ec 86 28 3e 8e 96 66 ed a4 8f d2 a3 b9 4b f9 45 0f a6 38 1c 0c 3c 0e 05 11 d0 37 5a b0 76 b5 96 37 3e 33 db 71 34 05 71 d4 87 89 f2 34 3f 1d 18 db 5d 98 ef 8c fe 41 fd 86 dd 28 e4 fb ec 51 1b 31 a2 93 66 5e 46 10 21 13 32 89 8e fd 03 a0 69 35 d7 65 8c 2a 8f 07 ee 76 cd 39 a6 af 82 1f 57 e3 f1 3d c2 b9 9c ab 66 76 26 b8 aa 1f ae 8a cc 40 c0 3f 58 45 10 4d 64 96 50 00 39 02 4a 94 00 37 d8 00 c1 a1 a3 6c a3 c9 39 ea e5 0a c6 2e f3 c5 0c fd 8c dd 62 fc ef 1e fe d6 e2 d0 9a ad ab 37 d8 e7 2c e1 a5 63 db 98 04 0a 2e 7f 46 51 11 13 b7 10 1d ca 9a 65 30 ef f3 10 75 3a ff 00 e9 12 f2 b0 Data Ascii: 2C\5Q591\}KyT""GpkS%Ip?aFG(>fKE8<7Zv7>3q4q4?]A(Q1f^F!2i5ev9W=fv&@?XEMdP9J7l9.b7,c.FQe0u:
2024-05-23 22:22:14 UTC	16060	IN	Data Raw: db 15 25 56 41 45 8e 22 24 1d fa 80 80 86 fe ba cc dd b5 28 cd 8c 69 b7 d4 58 97 c8 2c 46 e7 6b dc 18 ac 85 9b 1b 36 98 80 6c 4d d4 c8 f0 4f 40 cc 81 31 0d c0 ca 32 76 05 51 2d c3 d7 63 9b 43 fe f2 58 02 b7 5f 32 f1 e0 5d 33 96 5f a0 65 5a bc 8d 22 dc cc e9 56 24 7e 66 6f 93 21 05 56 ee 7f 94 e5 f5 e3 c4 7a eb 39 74 e4 ec 0b 55 ac 09 6a 9e 56 64 1c 41 5b 0a 1e 4b 8b 6f 6c 4e b0 06 25 5e de ec c7 4d 47 11 e1 fe 5e e0 80 7c c2 00 1f c7 46 51 7c 94 cb bd 25 e9 88 2e 51 fd dd e4 24 9c bd a5 06 2f 96 b6 d2 50 37 fe a1 1c d6 3d 45 58 a8 74 c7 e4 dc 16 ea 3b 75 d8 75 a2 aa ff 00 29 5d 31 e4 15 b3 f3 d9 95 f1 c2 ce 8d 43 b2 c3 9c 9b 22 d1 a1 ca 64 1b 06 db f1 02 24 7e 9d 34 16 c5 8d 8c 1b 48 bd 53 b3 1e 6c c8 90 ce d2 51 d3 7c 79 5a 15 4c 46 0e c0 01 c3 95 c0 bf Data Ascii: %VAE"$(iX,Fk6lMO@12vQ-cCX_2]3_eZ"V$~fo!Vz9tUjVdA[KolN%^MG^\|FQ\|%.Q$/P7=EXt;uu)]1C"d$~4HSlQ\|yZLF
2024-05-23 22:22:14 UTC	16384	IN	Data Raw: b1 a7 2c a2 4a ba 64 46 8d d4 57 a9 77 31 44 db ac 00 23 eb f6 68 8f dc 27 13 ca 05 7e 81 8c e0 60 13 f2 4b 27 db 5d 47 4f 21 99 25 d4 94 a4 b6 73 f4 46 3a b0 91 0c 92 6c 77 4a a0 60 01 55 23 08 81 93 54 43 8e c3 a8 5b 72 9b 8a ff 00 f8 7e df b7 f9 7c 32 c9 2c a5 f1 fe 00 0d 3a d0 8e 58 5e 84 fd 82 6b a7 2d 1a d4 f2 0b 7a f1 29 80 41 36 c6 f9 ba 18 9b 18 dc 75 a2 aa c3 91 8e 06 73 f7 03 c4 d6 18 8c 37 86 25 a7 1d 1d 49 7a 2c 35 65 84 78 28 90 09 d7 5d 63 28 8a a2 02 5f 43 08 6d b8 7b 68 96 96 02 a0 65 3e 13 3a 45 bd b9 7c 89 f7 45 55 11 22 eb 87 41 05 48 61 11 29 83 e2 5d 09 b3 1e 02 53 08 9e 63 19 09 aa ee 43 b1 c5 38 e6 8b d5 60 fe 85 6d fa f3 4d 73 80 80 7d e2 21 a5 94 c7 f5 16 79 3c fc 0b f9 b1 de 4e 65 47 c4 aa 20 82 8c 66 2c 26 49 36 8a 95 41 00 4d Data Ascii: ,JdFWw1D#h'~`K']GO!%sF:lwJ`U#TC[r~\|2,:X^k-z)A6us7%Iz,5ex(]c(_Cm{he>:E\|EU"AHa)]ScC8`mMs}!y<NeG f,&I6AM
2024-05-23 22:22:14 UTC	6976	IN	Data Raw: 3e 05 2f c9 7c 81 77 ca 34 3b fe 04 94 6a 9b f6 d7 f4 bb 2c 0a 0a 95 31 4c 0e 43 07 22 ac 98 88 80 86 ff 00 e2 d5 96 6c 45 23 33 b1 09 67 22 61 e3 6d ee af 8e f0 ae 4b c1 57 f7 ab c9 d9 db 9c 5b 58 1a 71 31 d3 7a dc 39 83 70 51 c3 93 14 ca 0f 1e 40 1c 3e dd 21 db bd 11 a6 c6 2e 0a 79 0e ce 0a 77 fa 2a 91 05 33 17 12 c0 80 29 9d c9 14 48 89 ec 23 b9 7a 98 e3 b7 c0 44 74 04 36 be 41 8f b3 40 c2 f1 59 bb e4 96 12 77 c5 67 d7 8c 55 24 88 65 04 ae 54 40 e7 44 bc b6 db 89 80 4d eb ed a6 da ad c9 80 5d db 00 de 46 01 a4 3e 43 f1 3b 14 be 7e ab c9 2b 94 f1 9d cd aa b3 b7 67 05 d1 60 d4 cb 86 fc 8c 3c 44 86 30 0e fa d1 c6 a7 e9 b1 73 7c 8e 3b 4b 8e 1b 8c c8 f5 7a ad 8a e8 d2 f3 7e b3 ca a6 d1 b5 56 21 fa 8b 2a 41 75 c8 4a a3 87 ab 01 44 0a 42 a2 6d c3 df d3 59 68 Data Ascii: >/\|w4;j,1LC"lE#3g"amKW[Xq1z9pQ@>!.yw3)H#zDt6A@YwgU$eT@DM]F>C;~+g`<D0s\|;Kz~V!AuJDBmYh

Timestamp	Bytes transferred	Direction	Data
2024-05-23 22:22:13 UTC	638	OUT	GET /photoworkspace/2024/05/06/2024050618341420997.jpg HTTP/1.1 Host: p2.img.cctvpic.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://new.aj848310310.workers.dev/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-05-23 22:22:14 UTC	540	IN	HTTP/1.1 200 OK Date: Thu, 23 May 2024 22:22:13 GMT Content-Type: image/jpeg Content-Length: 250958 Connection: close Expires: Fri, 24 May 2024 12:57:51 GMT Accept-Ranges: bytes Cache-Control: max-age=86400 ETag: "6638b2db-3d44e" Last-Modified: Mon, 06 May 2024 10:37:15 GMT Server: CCTV_WebServer X-Ua-Compatible: IE=EmulateIE7 Age: 1 X-Via: 1.1 PSxgHK5yp199:12 (Cdn Cache Server V2.0), 1.1 kf148:9 (Cdn Cache Server V2.0), 1.1 PS-VIE-01Lw182:9 (Cdn Cache Server V2.0) X-Ws-Request-Id: 664fc195_PS-VIE-01aIr81_14573-51920
2024-05-23 22:22:14 UTC	15844	IN	Data Raw: ff d8 ff e1 00 18 45 78 69 66 00 00 49 49 2a 00 08 00 00 00 00 00 00 00 00 00 00 00 ff ec 00 11 44 75 63 6b 79 00 01 00 04 00 00 00 56 00 00 ff e1 03 31 68 74 74 70 3a 2f 2f 6e 73 2e 61 64 6f 62 65 2e 63 6f 6d 2f 78 61 70 2f 31 2e 30 2f 00 3c 3f 78 70 61 63 6b 65 74 20 62 65 67 69 6e 3d 22 ef bb bf 22 20 69 64 3d 22 57 35 4d 30 4d 70 43 65 68 69 48 7a 72 65 53 7a 4e 54 63 7a 6b 63 39 64 22 3f 3e 20 3c 78 3a 78 6d 70 6d 65 74 61 20 78 6d 6c 6e 73 3a 78 3d 22 61 64 6f 62 65 3a 6e 73 3a 6d 65 74 61 2f 22 20 78 3a 78 6d 70 74 6b 3d 22 41 64 6f 62 65 20 58 4d 50 20 43 6f 72 65 20 39 2e 30 2d 63 30 30 30 20 37 39 2e 31 37 31 63 32 37 66 61 62 2c 20 32 30 32 32 2f 30 38 2f 31 36 2d 32 32 3a 33 35 3a 34 31 20 20 20 20 20 20 20 20 22 3e 20 3c 72 64 66 3a 52 44 46 Data Ascii: ExifII*DuckyV1http://ns.adobe.com/xap/1.0/<?xpacket begin="" id="W5M0MpCehiHzreSzNTczkc9d"?> <x:xmpmeta xmlns:x="adobe:ns:meta/" x:xmptk="Adobe XMP Core 9.0-c000 79.171c27fab, 2022/08/16-22:35:41 "> <rdf:RDF
2024-05-23 22:22:14 UTC	16320	IN	Data Raw: 74 1d ab 11 da 5e d4 26 83 a8 eb df 47 1d 24 5a 8b 3b 43 eb 4a 90 70 39 8c 0c ff 00 13 ca 39 2a ef 77 b9 48 b7 de db 67 63 0a 16 29 93 82 22 ed 09 01 6f 94 b2 76 a9 5b bb f5 d6 6d ef 0a 78 30 75 db 65 38 22 76 63 d1 2f f1 b3 5b 77 15 ca b6 c1 90 fc f6 e3 34 b9 ab 78 b8 88 ad 50 bc bd cb 1f 9d 69 6d 15 db e9 a8 b2 8b 06 63 2d 7d 4f dc 10 73 d2 72 cd 79 87 90 7f c0 92 da 64 48 97 6d 97 2e 43 d1 66 4f 09 d8 a4 b2 b2 d2 7c 43 ba 50 10 9e c3 50 a3 45 4d 80 f4 13 9b 36 04 b3 02 29 31 4c fb 3d ba d9 84 1c 1d af b5 bc 49 79 41 d9 8c 0f 13 a5 5b bf 2b 7b fb 24 83 d7 4d ae a6 ba f9 f4 82 ba 0c f7 c6 fd 9b 83 af b6 eb 7a 51 c9 77 f2 d5 8e 64 1d a2 d0 85 25 11 7c af 7f 3e d4 f7 50 3d 4e 94 dd be a1 81 45 e9 03 ab 6e d1 77 53 88 30 b1 72 e1 eb 74 c9 38 8c 88 13 2e 6b Data Ascii: t^&G$Z;CJp99*wHgc)"ov[mx0ue8"vc/[w4xPimc-}OsrydHm.CfO\|CPPEM6)1L=IyA[+{$MzQwd%\|>P=NEnwS0rt8.k
2024-05-23 22:22:14 UTC	16384	IN	Data Raw: 97 e4 38 a4 2e be e4 50 25 21 5d 7a d6 9a 2c 9e d1 03 61 93 99 2a e1 fb ab 89 59 b4 4c 6d 89 8c c8 46 3d 6a 76 38 68 4a 4c 36 1f 4c 89 6e 3a ba 14 a5 2e 3a 14 15 fe 90 1d 46 aa e2 11 d0 45 94 f4 db ee 57 77 a2 be b5 99 09 94 a7 de 65 dd db 9e de e3 8e 24 95 b6 00 1d 42 6a 91 f8 57 a6 8b 52 60 b6 7d 64 1c 8f 26 45 8d 57 04 48 73 cd 7f 67 74 f4 ca 5b bb 9c f6 a5 2c a0 0a 7a d5 54 00 fa 6a e5 1c c1 bd 67 09 56 e9 78 ce 12 62 be ca 1a bb 5d 66 89 0e 10 90 80 86 d3 47 5c 58 29 eb fc a3 a5 3b eb c7 af 13 84 c8 5c 83 6b 89 73 9c ee 22 60 c9 79 98 f6 25 2d 53 50 53 b1 87 5c 26 41 5a d4 92 2a e2 89 a5 07 a7 7d 75 78 e4 cb 25 73 73 e5 4c c3 53 71 bb 95 21 d7 1a 82 94 1d c5 44 a5 b6 e8 ee e0 9e 9b 50 a1 d0 0f ae aa 3f aa 78 67 1c cb 2b a2 5e 4e 3f 02 cd 11 b2 a7 24 Data Ascii: 8.P%!]z,aYLmF=jv8hJL6Ln:.:FEWwe$BjWR`}d&EWHsgt[,zTjgVxb]fG\X);\ks"`y%-SPS\&AZ}ux%ssLSq!DP?xg+^N?$
2024-05-23 22:22:14 UTC	9947	IN	Data Raw: da ab 54 ee 57 51 d4 f6 1a af 6d d2 aa f0 04 17 62 df 8f 81 25 67 f8 a4 9b 56 49 2e 34 c7 d8 79 61 df 28 7c 10 12 b5 95 75 ef 4a d4 fa 68 4a 2f ee 48 b9 5f 3c c7 37 1e 62 b1 79 6a 3d ba fa cb db 2f 16 f8 5f ae d2 96 3c 6b 56 c2 d9 4f 8c 1e 88 5a 46 91 6c 59 d8 cc 71 38 6f b3 32 ba d1 c2 2c e4 b6 8b b4 4b 1d 9e 6c 27 90 f2 e2 f9 a3 b4 bf 12 dc 51 a8 d8 49 f7 0a fe 1a 1c f9 30 85 73 d2 78 5e f9 e4 c8 56 4f 84 59 fb a1 52 b2 1b 6c 27 9c 8e bf 7a 1d 7b 6a dc a5 09 4a 42 41 25 44 76 1f 5d 35 7f 2a 84 0c 4e b5 85 a6 99 f8 45 f1 63 fc 7d cb b8 ef 13 67 e6 14 3b 74 4b c3 17 e3 6a 96 e0 76 73 31 98 3b 90 d9 61 b0 a0 d9 24 75 de a0 40 f4 d2 d3 b4 ce fc 46 be 1f 4d 9a ee e2 7a 4f 4d da 55 d3 2d 95 3e 4b 6b 92 23 5d 24 45 b6 db 6d 08 40 42 dc 8e 89 21 2a 1b 8d 09 4a Data Ascii: TWQmb%gVI.4ya(\|uJhJ/H_<7byj=/_<kVOZFlYq8o2,Kl'QI0sx^VOYRl'z{jJBA%Dv]5NEc}g;tKjvs1;a$u@FMzOMU->Kk#]$Em@B!J
2024-05-23 22:22:14 UTC	16384	IN	Data Raw: 99 06 a7 1d 26 2e b0 4d 96 1c 75 c6 d7 b5 a4 a4 fe a0 a9 52 94 4f 44 a4 0e e4 9e fa 7c 65 04 46 97 c5 2c 76 7f 20 67 32 f1 d5 dd 62 42 b4 29 05 89 13 25 b9 e3 65 3e 6f 60 a9 35 24 82 49 fc 34 8f cb 31 2a 30 3d 64 49 39 e2 69 0f e9 bd f1 bb 81 de e6 eb df 29 f2 97 26 bf 68 e4 7e 37 cb 51 1e d1 6b 82 94 29 cb 8c 66 5a 50 44 f0 e3 a9 21 e6 94 b3 44 84 8a fd 74 9b 6f 6d 6b a4 16 97 f7 fd 66 c6 f9 35 f2 3f 8e f8 e7 86 ee 1c a4 c3 97 1b fd c9 e7 d5 06 4c 4b 93 ce 3b ee 98 82 ca 1f 61 20 78 d0 da 77 d5 40 f5 f4 1a 4b 4e ff 00 ce 3d b2 36 f0 9c 4c 5d c0 d7 5b f5 86 e1 3d 8c 16 6d cd 8b 1d ec 29 4e 2a d6 f2 52 d7 94 36 40 52 d0 3d df 94 f7 f4 d0 7b 1b 2f 59 89 7e 6b 49 e2 57 43 e1 96 a2 67 4f dc 85 e3 74 d4 dc 1b b8 bb 09 e5 95 3f fa 62 aa a6 fa 54 ab af 53 aa f6 Data Ascii: &.MuROD\|eF,v g2bB)%e>o`5$I410=dI9i)&h~7Qk)fZPD!Dtomkf5?LK;a xw@KN=6L][=m)NR6@R={/Y~kIWCgOt?bTS
2024-05-23 22:22:14 UTC	5516	IN	Data Raw: 11 39 31 a3 8f d7 65 c5 fb ca 92 af 40 6b d4 68 bf 1d 71 65 23 d0 49 25 45 f9 8f ec 53 fa 96 f1 e4 8b 33 d6 fc e6 3d e6 76 36 98 75 54 25 46 0a 42 f7 9a 16 95 52 02 ab eb ab 36 31 08 ad 59 44 41 73 b7 ca 1c e7 e5 ae 5a dd 97 0f 8d 0e db 88 c4 09 46 3d 67 b7 40 40 91 15 2d 27 66 e7 1d 48 dd b8 52 b4 ad 06 bc a8 15 73 2c 57 fa c5 b4 3c db 3d b0 66 89 e3 bc 36 fe f4 6c 96 6a d2 cc d9 ef 80 da 84 82 29 57 54 e0 21 23 f1 d7 0d 00 0e f3 2b 6e b1 8d 84 70 4f 3e 5b f2 38 58 7e 5e d4 cb a3 79 53 ab 5f ef d1 d5 e4 69 2b 40 aa 8a 09 34 49 20 50 93 a1 ce cd 4e 3d bd 44 8a 2a bb 01 3d 83 f8 77 c1 f6 be 0a e1 a7 59 89 15 b6 7c 31 db f3 54 ec 44 99 11 e1 ef 78 d7 d1 b4 92 53 fc 6b a8 d3 d7 33 e8 15 2f 6d 0a 25 e6 33 74 77 1c e1 d4 ae 7a 97 06 e5 70 8a ed c2 f0 f3 8a 52 Data Ascii: 91e@khqe#I%ES3=v6uT%FBR61YDAsZF=g@@-'fHRs,W<=f6lj)WT!#+npO>[8X~^yS_i+@4I PN=D*=wY\|1TDxSk3/m%3twzpR
2024-05-23 22:22:14 UTC	16384	IN	Data Raw: 79 52 4c 48 fc 79 63 88 2e a1 e8 c1 0f 44 0f 3d 09 32 22 b2 f3 df 95 bd fb 85 01 ee 41 03 4a cd c9 65 fd ae 71 0d ad 9c 61 9a 3e 67 e5 7c 53 25 9b 8f 15 dc 32 26 71 69 50 e7 2d e8 17 36 fe d0 ad 2e 2d 4a 71 6e ab ca db 80 a2 80 d7 a5 46 ab a6 e5 0c c0 fe 51 8e bd cd 63 0e 32 66 46 f9 79 c6 d8 85 c2 55 c2 e7 c2 37 eb 2d c2 db 2c fe de 6e 89 71 12 12 a9 29 20 07 56 d0 48 1b b7 55 4a 00 01 43 af 5d b8 94 90 4c 3b c8 f9 27 aa bc 10 33 33 07 3b 33 12 df 7e b6 71 be 53 7d 90 24 c3 b1 b4 27 4f 42 02 0b ca 4b fb c1 09 6c 54 24 9f 6a 00 eb f8 69 96 95 82 e4 2d 30 f7 d8 d7 3f 74 d8 7c 51 c9 fc cb c2 df 1f 2d 7c 61 8a e3 b0 2d 10 67 97 b2 16 03 51 50 2e d3 e4 3e d2 9b 6d d9 2e 74 a9 42 14 56 94 2f a8 34 d2 bb 2e 21 88 8e f4 83 a2 67 11 01 cd 7f 3e 39 36 df 95 58 b8 Data Ascii: yRLHyc.D=2"AJeqa>g\|S%2&qiP-6.-JqnFQc2fFyU7-,nq) VHUJC]L;'33;3~qS}$'OBKlT$ji-0?t\|Q-\|a-gQP.>m.tBV/4.!g>96X
2024-05-23 22:22:14 UTC	9896	IN	Data Raw: cb 60 97 72 c7 24 5a f2 26 4f dc 64 d8 fc a8 b7 68 ca 6d 21 68 76 4c 23 e5 68 04 af b1 5a 80 ad 7d 2b 5d 66 f6 e8 35 b8 c7 19 95 d2 f8 6c 89 a4 6c 3f 2f fe 5d 7c 85 bc 46 c3 ae 68 86 61 f2 12 1a b6 5c 61 c5 a3 21 a4 c8 78 32 86 c2 cd 00 50 52 6a 29 f9 41 27 4b c3 5c 7b b9 ca 83 0c 1b 24 f1 33 ef 35 58 7e 4a 71 63 97 49 7c 89 e3 89 63 6b 2a bb e1 d6 f9 83 c5 72 3f ba 59 92 95 cb 8c a0 3a 29 85 25 c4 d1 7f 43 f8 69 96 b5 23 11 9e 9b 92 79 81 5c 63 91 22 fb 6c bc 5c 1a c4 ad f6 55 b7 18 b5 32 e3 15 4a 75 b6 25 38 36 a5 4c 36 be 81 6b 27 bf a6 8c 14 5a 87 b8 b7 b7 e9 1a 76 ab 71 88 41 86 71 35 db 11 c6 18 97 3e e6 c5 d6 ea c4 d5 ba 21 2d b0 fb 6f b0 f2 92 b5 29 45 5e e0 b4 50 a4 8f a1 e9 a5 7b b6 bb 2b 2d 7d 71 0a d3 d7 1d dc 9e 26 ab e1 eb 4e 15 c9 9f 25 31 Data Ascii: `r$Z&Odhm!hvL#hZ}+]f5ll?/]\|Fha\a!x2PRj)A'K\{$35X~JqcI\|ck*r?Y:)%Ci#y\c"l\U2Ju%86L6k'ZvqAq5>!-o)E^P{+-}q&N%1
2024-05-23 22:22:14 UTC	16384	IN	Data Raw: 9b 1a 36 0a bb b1 cc 58 71 6f 2c 73 6e 0d 8b 47 6d 51 59 bb e2 11 de f2 18 93 51 45 a4 84 94 94 a5 69 ea 06 d3 d3 e9 a2 ec 0a dc 08 05 7a cd d4 88 43 7a f9 bf 69 8d 7d 10 5a c5 d7 1e e7 f6 fb d0 5f 75 2e 21 c5 d3 a2 48 02 a0 1f 4d 09 66 8b 30 3c ce 3e d0 ac f6 98 c4 e7 ff 00 92 7c 83 c7 78 7e 04 ec 54 a1 38 2f 20 63 82 eb 63 ba c6 df 56 9c 65 65 a9 31 89 ee 7c 6b f4 3d 40 d2 dd 4a 96 c6 65 6f 48 51 73 80 c3 d6 06 71 95 ff 00 21 c9 2f 22 5d d5 4e 88 ae 7e b3 72 01 3b 4a f6 fb 88 27 fd 21 4a 8e c4 7e 3a 0e f5 00 e0 46 95 1f 6e 4c 60 30 8b 8c 60 55 06 3c 69 51 7c a7 70 0e ab 72 50 ae e0 81 dc 0f c7 51 0b c4 8f c9 cc 30 b2 aa dd 36 2b 11 c3 8f c7 71 3e f6 5a 78 15 25 b5 fa a4 28 50 d0 8f 4d 54 52 4c 59 88 6d 89 4a ba 5a 1d 08 42 d8 75 a7 fa 25 35 43 94 a7 52 Data Ascii: 6Xqo,snGmQYQEizCzi}Z_u.!HMf0<>\|x~T8/ ccVee1\|k=@JeoHQsq!/"]N~r;J'!J~:FnL`0`U<iQ\|prPQ06+q>Zx%(PMTRLYmJZBu%5CR
2024-05-23 22:22:14 UTC	6976	IN	Data Raw: 92 cb 2d 93 e3 8d f4 52 9b e8 41 e9 ac ee f8 a2 d3 de 10 67 eb 89 c2 73 3a b2 93 c6 1c 19 77 fb 4e 2c bc a9 dc 8e fe b5 c7 89 3a ee e2 64 5b ed 71 91 ee 90 e0 92 e8 48 52 da ae c6 db ea b2 a3 4d 13 af f2 ec 57 da 47 02 4b b0 fa 44 ad af e4 37 26 2b 32 97 2b 1d 7f ee 78 b2 3c a7 a4 5e 6d ce 44 00 c8 53 d4 6d 72 9d 51 05 29 7b a0 52 36 d0 0a 6b 41 4f 8d 5f 87 dd d6 5d f1 7b 66 8d 63 37 7b 9f f0 7b 7e 0f 97 5c 2c f1 78 fb ed 0c 47 df 6b cb 26 69 89 45 36 5f 75 b7 ff 00 2b ad 83 b5 09 41 da 09 a9 ae b2 1e 45 ce 9d bd ca 18 e2 0f da c2 0f de b8 4b 01 e3 cc 86 1d 8f 8a a6 7e d3 8c 49 b6 bb 12 2d ad 4c 89 cb 99 35 94 80 4a 1c 79 49 21 d7 50 7a 80 47 5a 53 54 f8 cf 3f b7 b3 dd de 9d dc ff 00 40 9e e6 1b 70 0d 9e d9 60 76 45 fb 9c a6 64 2b 5c 18 72 2e b1 ec d7 18 Data Ascii: -RAgs:wN,:d[qHRMWGKD7&+2+x<^mDSmrQ){R6kAO_]{fc7{{~\,xGk&iE6_u+AEK~I-L5JyI!PzGZST?@p`vEd+\r.

Timestamp	Bytes transferred	Direction	Data
2024-05-23 22:22:14 UTC	161	OUT	HEAD /fs/windows/config.json HTTP/1.1 Connection: Keep-Alive Accept: / Accept-Encoding: identity User-Agent: Microsoft BITS/7.8 Host: fs.microsoft.com
2024-05-23 22:22:14 UTC	467	IN	HTTP/1.1 200 OK Content-Disposition: attachment; filename=config.json; filename*=UTF-8''config.json Content-Type: application/octet-stream ETag: "0x64667F707FF07D62B733DBCB79EFE3855E6886C9975B0C0B467D46231B3FA5E7" Last-Modified: Tue, 16 May 2017 22:58:00 GMT Server: ECAcc (lpl/EF06) X-CID: 11 X-Ms-ApiVersion: Distribute 1.2 X-Ms-Region: prod-eus-z1 Cache-Control: public, max-age=236857 Date: Thu, 23 May 2024 22:22:14 GMT Connection: close X-CID: 2

Timestamp	Bytes transferred	Direction	Data
2024-05-23 22:22:14 UTC	405	OUT	GET /photoAlbum/page/performance/img/2023/2/9/1675908806957_283.jpeg HTTP/1.1 Host: p2.img.cctvpic.com Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Sec-Fetch-Site: none Sec-Fetch-Mode: cors Sec-Fetch-Dest: empty Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-05-23 22:22:15 UTC	532	IN	HTTP/1.1 200 OK Date: Thu, 23 May 2024 22:22:15 GMT Content-Type: image/jpeg Content-Length: 6897 Connection: close Expires: Fri, 24 May 2024 07:51:52 GMT Accept-Ranges: bytes ETag: "A2EA88DEC0CC1A5667AC0650C19A871C" Last-Modified: Thu, 09 Feb 2023 02:13:30 GMT Cache-Control: max-age=86400 X-UA-Compatible: IE=EmulateIE7 Age: 1 X-Via: 1.1 PSxgHK5dz198:4 (Cdn Cache Server V2.0), 1.1 kf148:9 (Cdn Cache Server V2.0), 1.1 VM-FRA-0124V35:12 (Cdn Cache Server V2.0) X-Ws-Request-Id: 664fc197_VM-FRA-0124V35_39858-15446
2024-05-23 22:22:15 UTC	6897	IN	Data Raw: ff d8 ff e1 00 18 45 78 69 66 00 00 49 49 2a 00 08 00 00 00 00 00 00 00 00 00 00 00 ff ec 00 11 44 75 63 6b 79 00 01 00 04 00 00 00 64 00 00 ff e1 03 2f 68 74 74 70 3a 2f 2f 6e 73 2e 61 64 6f 62 65 2e 63 6f 6d 2f 78 61 70 2f 31 2e 30 2f 00 3c 3f 78 70 61 63 6b 65 74 20 62 65 67 69 6e 3d 22 ef bb bf 22 20 69 64 3d 22 57 35 4d 30 4d 70 43 65 68 69 48 7a 72 65 53 7a 4e 54 63 7a 6b 63 39 64 22 3f 3e 20 3c 78 3a 78 6d 70 6d 65 74 61 20 78 6d 6c 6e 73 3a 78 3d 22 61 64 6f 62 65 3a 6e 73 3a 6d 65 74 61 2f 22 20 78 3a 78 6d 70 74 6b 3d 22 41 64 6f 62 65 20 58 4d 50 20 43 6f 72 65 20 35 2e 36 2d 63 31 34 35 20 37 39 2e 31 36 33 34 39 39 2c 20 32 30 31 38 2f 30 38 2f 31 33 2d 31 36 3a 34 30 3a 32 32 20 20 20 20 20 20 20 20 22 3e 20 3c 72 64 66 3a 52 44 46 20 78 6d Data Ascii: ExifII*Duckyd/http://ns.adobe.com/xap/1.0/<?xpacket begin="" id="W5M0MpCehiHzreSzNTczkc9d"?> <x:xmpmeta xmlns:x="adobe:ns:meta/" x:xmptk="Adobe XMP Core 5.6-c145 79.163499, 2018/08/13-16:40:22 "> <rdf:RDF xm

Timestamp	Bytes transferred	Direction	Data
2024-05-23 22:22:15 UTC	239	OUT	GET /fs/windows/config.json HTTP/1.1 Connection: Keep-Alive Accept: / Accept-Encoding: identity If-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMT Range: bytes=0-2147483646 User-Agent: Microsoft BITS/7.8 Host: fs.microsoft.com
2024-05-23 22:22:15 UTC	535	IN	HTTP/1.1 200 OK Content-Type: application/octet-stream Last-Modified: Tue, 16 May 2017 22:58:00 GMT ETag: "0x64667F707FF07D62B733DBCB79EFE3855E6886C9975B0C0B467D46231B3FA5E7" ApiVersion: Distribute 1.1 Content-Disposition: attachment; filename=config.json; filename*=UTF-8''config.json X-Azure-Ref: 0WwMRYwAAAABe7whxSEuqSJRuLqzPsqCaTE9OMjFFREdFMTcxNQBjZWZjMjU4My1hOWIyLTQ0YTctOTc1NS1iNzZkMTdlMDVmN2Y= Cache-Control: public, max-age=236778 Date: Thu, 23 May 2024 22:22:15 GMT Content-Length: 55 Connection: close X-CID: 2
2024-05-23 22:22:15 UTC	55	IN	Data Raw: 7b 22 66 6f 6e 74 53 65 74 55 72 69 22 3a 22 66 6f 6e 74 73 65 74 2d 32 30 31 37 2d 30 34 2e 6a 73 6f 6e 22 2c 22 62 61 73 65 55 72 69 22 3a 22 66 6f 6e 74 73 22 7d Data Ascii: {"fontSetUri":"fontset-2017-04.json","baseUri":"fonts"}

Timestamp	Bytes transferred	Direction	Data
2024-05-23 22:22:16 UTC	652	OUT	GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/headerDown.png?a HTTP/1.1 Host: p2.img.cctvpic.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://r.img.cctvpic.com/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-05-23 22:22:16 UTC	541	IN	HTTP/1.1 200 OK Date: Thu, 23 May 2024 22:22:16 GMT Content-Type: image/png Content-Length: 237 Connection: close Expires: Fri, 24 May 2024 12:28:34 GMT Accept-Ranges: bytes ETag: "C04CB3A9901E6887233F380AF0F40E3F" Last-Modified: Thu, 06 Jan 2022 07:49:43 GMT Cache-Control: max-age=86400 X-UA-Compatible: IE=EmulateIE7 Age: 1 X-Via: 1.1 dianxun97:4 (Cdn Cache Server V2.0), 1.1 PShlamstdAMS1bm110:10 (Cdn Cache Server V2.0), 1.1 PS-VIE-01aIr81:14 (Cdn Cache Server V2.0) X-Ws-Request-Id: 664fc198_PS-VIE-01aIr81_14433-55508
2024-05-23 22:22:16 UTC	237	IN	Data Raw: 89 50 4e 47 0d 0a 1a 0a 00 00 00 0d 49 48 44 52 00 00 00 0a 00 00 00 0a 08 06 00 00 00 8d 32 cf bd 00 00 00 01 73 52 47 42 00 ae ce 1c e9 00 00 00 7c 49 44 41 54 28 53 8d d0 b1 0d c2 60 0c 84 d1 ef 24 26 60 8c 34 29 58 20 73 d0 40 45 95 b5 68 92 2a 1b 64 81 34 91 32 05 03 d0 44 3a f4 23 88 8c 48 61 d7 cf f6 d9 22 59 4a 3a 64 bb 01 1e 92 96 bd 26 db 27 e0 59 60 05 74 c0 45 d2 14 b1 ed 1a b8 03 ed 7b f5 1e fe a0 1e b8 49 1a b7 8c 11 03 2b 30 00 d7 82 ca b0 9f 63 02 3e 02 e7 2f fa 83 21 c6 41 d2 1c f3 e6 df 93 fd e3 0b 2f 49 2c 6f dc 12 b2 5c 00 00 00 00 49 45 4e 44 ae 42 60 82 65 f7 6c 7b 00 6c 81 b5 a4 47 db 16 7a 3e 92 ae c3 c8 d5 8b be fd 04 74 a7 3c 10 6f 4a 18 50 00 00 00 00 49 45 4e 44 ae 42 60 82 Data Ascii: PNGIHDR2sRGB\|IDAT(S`$&`4)X s@Eh*d42D:#Ha"YJ:d&'Y`tE{I+0c>/!A/I,o\IENDB`el{lGz>t<oJPIENDB`

Timestamp	Bytes transferred	Direction	Data
2024-05-23 22:22:17 UTC	652	OUT	GET /photoAlbum/page/performance/img/2024/5/16/1715852415970_283.jpg HTTP/1.1 Host: p2.img.cctvpic.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://new.aj848310310.workers.dev/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-05-23 22:22:17 UTC	543	IN	HTTP/1.1 200 OK Date: Thu, 23 May 2024 22:22:17 GMT Content-Type: image/jpeg Content-Length: 188910 Connection: close Expires: Fri, 24 May 2024 11:49:17 GMT Accept-Ranges: bytes ETag: "A7AA5D668627AE61C533AB6AD2C77599" Last-Modified: Thu, 16 May 2024 09:40:22 GMT Cache-Control: max-age=86400 X-UA-Compatible: IE=EmulateIE7 Age: 1 X-Via: 1.1 dianxun97:9 (Cdn Cache Server V2.0), 1.1 PShlamstdAMS1bm110:5 (Cdn Cache Server V2.0), 1.1 PS-VIE-01Lw182:4 (Cdn Cache Server V2.0) X-Ws-Request-Id: 664fc199_PS-VIE-01aIr81_12509-41210
2024-05-23 22:22:17 UTC	2313	IN	Data Raw: ff d8 ff e0 00 10 4a 46 49 46 00 01 01 00 00 01 00 01 00 00 ff db 00 84 00 05 03 04 07 08 07 07 07 07 07 07 07 07 07 07 07 07 07 07 07 07 07 07 07 07 07 07 07 07 07 07 07 07 07 07 0a 10 0e 07 08 1a 09 07 07 0e 21 0e 0f 11 1d 1f 1f 1f 07 0b 22 24 22 12 24 10 12 13 12 01 05 05 05 08 07 08 0f 09 09 0f 12 0d 0d 0d 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 15 12 ff c0 00 11 08 02 d0 05 00 03 01 22 00 02 11 01 03 11 01 ff c4 00 1d 00 00 01 05 01 01 01 01 00 00 00 00 00 00 00 00 00 05 02 03 04 06 07 01 00 08 09 ff c4 00 64 10 00 02 00 04 03 04 05 07 07 07 09 04 06 08 00 0f 02 03 00 01 04 12 05 13 22 11 32 42 52 06 21 23 62 72 07 14 31 41 82 92 a2 33 51 61 81 b2 Data Ascii: JFIF!"$"$"d"2BR!#br1A3Qa
2024-05-23 22:22:17 UTC	16384	IN	Data Raw: c2 a9 81 e3 4c 11 45 31 26 0d da 7e ec 35 8f 18 db a7 57 0c 1a 5e 19 cb aa 2b 5d 23 0b 1d 0d 17 6c 75 1a 44 5a 04 b2 eb ad d2 3b c3 06 92 c1 b7 76 d2 1d d8 0b 44 e2 bb 4e ec 4a 65 41 11 5d a6 34 15 49 58 76 96 7c d0 dd 45 12 75 5a 22 25 02 53 52 c1 85 f9 c3 0b 8b da 83 b1 4e 97 7c c7 10 a2 ba d8 b0 50 81 0a f5 15 bc b0 0a 91 d6 94 59 29 ea 04 97 0f 13 36 76 ec 91 d0 b1 67 e5 15 97 2e f7 84 a3 e9 8e 8f b8 85 62 3e 18 f9 ef c9 ac c4 ab 5c 3d d1 2f 74 a3 e8 2c 2e 76 ad 7c bf c3 0d 2f 60 a7 ab 11 8e d7 09 16 58 af 30 87 8b 96 02 d6 23 78 b4 dd c3 de 83 f5 14 3b da ad 1e 1b 62 3b a8 0b 24 b9 87 ec c5 49 94 49 6f 60 0a 7a 4b c4 8a df 66 23 8d 09 71 5a 51 66 a0 a7 d3 68 f2 ea 86 ca 8a d1 e1 b7 9a 1b 50 8a 0e 8a c3 29 b8 74 c3 04 9f 0f c5 04 2b 24 5a 87 4c 42 9d Data Ascii: LE1&~5W^+]#luDZ;vDNJeA]4IXv\|EuZ"%SRN\|PY)6vg.b>\=/t,.v\|/`X0#x;b;$IIo`zKf#qZQfhP)t+$ZLB
2024-05-23 22:22:17 UTC	16384	IN	Data Raw: 33 e4 86 a4 d1 a8 2d a2 68 f1 45 63 1a a3 d5 09 c1 b1 6d 22 b2 28 3b 30 16 91 17 76 1f 99 86 09 e2 66 77 52 a2 12 8e 29 a4 bd 42 56 c5 83 1b a2 b6 ef c6 98 af 9a ed 8a da a3 7c 5a 9c 4d 0b 00 c4 56 69 5d df 28 50 6b 0b ad 21 76 9e 1b 63 26 a7 aa 60 6e 91 45 df a3 98 95 c2 b2 de 66 ab a1 b9 9c dc fc 3e 9d cd a3 0f e9 03 89 22 39 97 69 d5 f8 e6 8f 27 1c 62 ca e1 22 1b 4a e8 a0 e0 78 96 ab 78 62 df 21 59 8d dc b6 c0 8d b7 45 18 f2 68 d8 dd 3c 9b 74 d5 6f 5a c4 88 45 9b a4 31 a8 d3 b8 58 37 0c 7c c1 d0 9e 8b 54 b4 86 a5 2c 24 da 57 5a 3c 43 1b d7 44 9a d1 11 16 15 dc 25 74 3e 5c 2d ab ea 16 ed ec 59 8a 11 b6 1d 9e a8 6f 64 65 14 86 d1 bb 51 44 47 01 41 39 8c 30 d0 88 98 92 8d 82 a6 88 69 92 b6 08 b0 07 da 88 ad 0e 21 82 54 e2 0c 39 f7 61 a2 2e ec 12 6a ae 88 Data Ascii: 3-hEcm"(;0vfwR)BV\|ZMVi](Pk!vc&`nEf>"9i'b"Jxxb!YEh<toZE1X7\|T,$WZ<CD%t>\-YodeQDGA90i!T9a.j
2024-05-23 22:22:17 UTC	16384	IN	Data Raw: 6f 7c 51 3d 14 13 02 9c 81 98 2f 4a 98 4b e5 d3 00 b1 fe 90 56 99 5c bb b8 a2 f8 1d 15 48 f2 c3 c1 d1 b4 f2 8c 3a d2 ba 01 b9 33 3b c3 31 3a d2 de 22 82 3d 1a 7a 1f 8f 50 2f 13 a9 62 29 16 4c bb 51 0a c9 8c 5f 62 4c ee c8 ed 8b ab f0 a4 21 6c 73 2d 15 ac 48 8a 31 6c 6e a7 31 cc 67 33 08 87 bb cb fd 91 d7 ec ee 0e 39 75 49 a2 9c 99 1c 4d ab 13 a4 a9 c3 dd 97 52 36 8b 35 2d c3 a9 2f 1f d2 25 83 d4 43 38 72 9f 16 1b b7 a2 8d d0 2f 2a 55 34 29 f3 0c 4d 0b c5 b0 92 de a6 7f ca a7 bc 87 7a 56 5f aa 2f 92 e8 85 16 30 9f 3b e8 9e 22 2e 2b 6e 66 13 56 c1 1a b4 f3 0a 59 f9 cd 9f 4c 72 38 fe ca 9c 24 ce bf 07 da 29 aa 91 3d 0e 16 0e 92 b4 a2 15 63 2a 55 da 23 57 30 f1 45 07 12 af c4 f0 e7 12 2b 50 f4 38 4a dc b7 09 09 7b 3e a2 1f a6 5b 61 23 d2 f7 71 09 47 1f f9 59 Data Ascii: o\|Q=/JKV\H:3;1:"=zP/b)LQ_bL!ls-H1ln1g39uIMR65-/%C8r/U4)MzV_/0;".+nfVYLr8$)=cU#W0E+P8J{>[a#qGY
2024-05-23 22:22:17 UTC	9612	IN	Data Raw: 31 41 38 90 a2 88 83 38 70 4a 00 5c 4b 0e 17 58 5a 46 2c 06 42 42 36 c5 19 0d 83 b8 56 21 a8 6e 82 99 9a 71 68 9b 59 43 c5 6c 00 a9 a6 21 8b 9c 8c 4f 4c 40 c4 68 b4 c1 e6 36 3c bb 53 2a f4 75 04 a6 09 0f 0c 5a 70 8c 4e fd 22 45 77 2c 57 2b 69 6d 84 e1 d5 24 a6 09 72 c2 b4 85 cf 89 35 b1 b1 60 d5 c4 02 3a bf d5 17 2a 6c 5d c6 bd 25 77 88 a3 2d c0 6b c4 d6 2c 12 ee 94 5b 70 aa db 08 6d d4 31 54 95 1c a6 9c 59 91 92 2a 9a 22 0c 12 21 05 f6 4a 65 cd 11 58 75 82 50 2c db 96 32 bb 6c 84 36 4a 5b 67 3e a8 e8 61 4c 21 b9 97 5a 3a ae 61 5b 6f b4 5b 3f be 0f b3 0d 7d b7 3f 11 a6 40 e9 2b 7c e5 62 cb bc 2b 9c c8 4b e8 96 c8 8f 45 49 4c 6e 58 b3 ce 5e 24 5a 98 4b 21 11 ef 5c cd b3 b7 77 d5 09 71 5e 3f 3f a6 df 33 d0 ea b0 72 a8 d2 22 45 98 b6 5b 6e 61 20 59 53 6d c5 Data Ascii: 1A88pJ\KXZF,BB6V!nqhYCl!OL@h6<SuZpN"Ew,W+im$r5`:l]%w-k,[pm1TY*"!JeXuP,2l6J[g>aL!Z:a[o[?}?@+\|b+KEILnX^$ZK!\wq^??3r"E[na YSm
2024-05-23 22:22:17 UTC	16384	IN	Data Raw: 97 57 dd e2 90 3b a3 78 b0 bc 86 af 13 43 f1 2c b6 09 29 2f af 7a d6 5a 48 73 c9 c5 29 9b 1b 29 96 d1 d9 3b 65 b2 72 98 94 a7 b2 0b 74 c3 ca 15 5e 22 bf 32 42 c6 92 80 6e 1f 34 40 a5 6c 75 c5 98 cc e6 2c 06 49 4c d9 af 25 52 11 da 53 9e ce bd 91 73 96 25 48 6f 46 19 4d 85 d2 79 b0 da 9a 25 d5 bd 74 8f 62 d6 96 7c a3 1d 3c b4 ed d4 5d 7d 52 d9 b3 6c e7 18 f5 28 0d c4 3b a2 44 5a 57 a8 ad 22 2f ce 71 7e b9 41 c3 18 cd db 5e 5f d8 76 da 46 f3 fc 99 70 b2 1a da f7 ac 53 53 4d e6 89 5f 9d dc 2b 7d 23 d8 42 c7 50 65 ed ba c9 c8 44 a7 39 8e ce c9 7b 27 1b d6 57 e2 e8 c6 bf 93 6e 1f db e3 15 65 44 b5 3d 65 4d 48 55 28 7f 60 f1 f3 64 34 96 48 bf 60 9c bb 16 df b3 af ce e7 29 4e 7b 23 69 9c cb 97 e2 86 ce 96 b6 79 be 2a 4d e4 7f 9f 9f 01 b9 ac bf 04 51 e9 e6 7f 0e Data Ascii: W;xC,)/zZHs));ert^"2Bn4@lu,IL%RSs%HoFMy%tb\|<]}Rl(;DZW"/q~A^_vFpSSM_+}#BPeD9{'WneD=eMHU(`d4H`)N{#iy*MQ
2024-05-23 22:22:17 UTC	8436	IN	Data Raw: b7 c5 66 91 fa a2 25 27 ca 2f df b7 d4 d3 1e 02 4f da 94 57 96 e6 ea d7 08 fe 71 7c c3 6d c4 45 ec 8c e7 38 68 9e bb 87 30 9c c1 e5 48 88 91 0d bc 37 4e 7a b6 f5 6d 9c 7c df 2f 29 d8 d3 ea 29 85 95 d9 48 2a ba 6c d5 52 29 54 ca 34 93 d7 98 25 6c a6 5d 61 74 b6 dd e8 9c e3 ea 57 da 39 c2 2b 5a c4 58 cc b5 da 2b b8 47 50 88 97 a6 e9 fa ba fd 5f 4c 47 0c 8b b9 7c 5b fb 03 2e 1c 38 6b 56 a9 f9 34 97 ea 52 71 ce 9f e0 b4 66 4a 7b e9 10 d5 15 a4 a6 bd 8f a9 59 5b ba 48 40 4a d6 fd 13 f9 e2 ab 8b 79 68 a1 b4 85 23 58 fb bf 41 4e aa 11 2f 11 1c e6 7f 5e c8 a4 7f 28 cc 08 8b 14 af af a6 11 cc ce 1c d1 1d 39 e2 48 49 0b 3e 7b e5 e8 9e de be a8 c7 d1 88 17 e3 87 d9 8d 30 e0 5e 48 ea 94 a4 fc a9 7d 0b 70 f1 58 23 ec e3 8a f3 df ea 6d 98 8f 95 ea 92 bb 22 82 99 57 0d Data Ascii: f%'/OWq\|mE8h0H7Nzm\|/))H*lR)T4%l]atW9+ZX+GP_LG\|[.8kV4RqfJ{Y[H@Jyh#XAN/^(9HI>{0^H}pX#m"W
2024-05-23 22:22:17 UTC	16060	IN	Data Raw: bb 87 f3 14 94 c4 37 6a b4 76 e9 19 cf af aa 50 46 b6 45 68 dc 4c 2b b5 5b d9 a2 dd 25 f4 6d 18 88 a4 2c 88 ad 2a 62 b4 8b 2c ad 63 ca d2 b6 ed dd 92 eb d3 eb 89 ad a5 5f 9f a0 ba 53 76 06 9c b0 eb 84 5c 48 f3 9c cb b2 d8 55 35 ac 22 21 e1 12 9c e4 9d 9f 36 cd 9d 71 22 4d 59 ee 8b 85 62 59 65 96 b1 a6 1d 3a b4 ac a5 bb f3 75 41 15 0b 07 4d c5 77 e9 16 95 a5 96 db bb 77 a6 d9 e9 f5 fa a3 89 1d 44 3a 59 da 0f ca 33 30 57 a7 88 87 8a 7f 34 4d 7e e2 69 25 a0 50 4b cc 60 da 59 7a b3 d8 c7 5c 23 69 0d a2 bd 97 17 af 6f d1 0c d2 3c 8a e2 5f c9 af 85 14 99 62 5a 74 90 b1 9b 4b e9 9c e1 34 c6 cd dc c1 58 88 a4 44 96 23 75 ba ad b4 76 69 db f3 fa 60 83 d6 43 aa e7 16 91 b7 31 83 97 de d2 3d 5f 54 51 35 eb 16 45 ec 43 3a 76 90 da c6 34 88 ad 22 16 3f 84 7b a3 f2 63 Data Ascii: 7jvPFEhL+[%m,*b,c_Sv\HU5"!6q"MYbYe:uAMwwD:Y30W4M~i%PK`Yz\#io<_bZtK4XD#uvi`C1=_TQ5EC:v4"?{c
2024-05-23 22:22:17 UTC	16384	IN	Data Raw: 0c 74 6d f9 15 62 2c dd 22 65 33 c7 84 84 88 90 c1 bb 87 64 fa fd 9f 4c bd 31 a7 f9 3c c5 89 58 2e 39 81 b0 87 31 15 ab 78 8f 77 3d 2b 22 5f 30 cf f6 68 ea db b6 32 9a c3 cd 14 55 f1 54 a6 d7 5b c3 52 8b 52 d1 d3 b2 43 b4 32 4e 52 ef fa 25 b6 51 70 c2 de 4d 7d 35 6a f4 f9 cd 27 9b 55 8d ba 73 69 2d b4 be b9 0a cb e8 d5 e9 db 38 cd c7 ef c3 4f fd ac ed ff 00 0f 46 fb 4b 87 ff 00 dc 8b f9 a0 f4 68 b8 8f 4e c2 8f a2 dd 1b 46 1e f5 fe 54 c3 f1 67 d6 4d 44 37 e5 08 9d 7c a5 9a 33 e0 98 56 84 bd 53 eb 2d 9e 8e ac ee 10 41 28 f1 1c 3f 13 2c 4d b8 f5 55 f3 4f ec 7e 87 ed 5e c9 c5 da 11 84 72 f2 c7 2d 55 d1 fa ad 53 f0 dc 5e 35 88 d5 e2 35 8f c4 2b 8f 36 a6 a4 ef 32 b6 d1 dd b4 56 03 e8 90 4a 42 23 29 7a a5 29 46 89 d0 df 2c 0f a2 a2 96 17 8a e1 e8 c6 30 d0 11 5a Data Ascii: tmb,"e3dL1<X.91xw=+"_0h2UT[RRC2NR%QpM}5j'Usi-8OFKhNFTgMD7\|3VS-A(?,MUO~^r-US^55+62VJB#)z)F,0Z
2024-05-23 22:22:17 UTC	2596	IN	Data Raw: 5e c0 c6 5b 25 d0 5c 33 f5 13 e9 e7 fd b3 a0 9c e3 4f 15 8f 16 59 26 b2 2e 49 72 7d 17 91 c4 ec 4e 2b b4 38 1c 12 c6 f8 49 cb 54 a7 2f 6e 0b da 93 75 bb e9 64 cf 2c 22 3f f4 27 a2 32 f9 88 3f fa 56 46 48 95 8d b1 ad d7 f9 7a c3 9e 94 d2 bf a1 74 0f a6 a7 f9 04 b6 ad 2c 42 38 7b 25 1d 04 e4 ae ae ae a9 7a e1 aa 0f 2d 78 3a 4a e5 74 27 0e 55 da 48 94 ea 71 2b 7d 9a 19 5d fa a2 71 38 f0 e5 92 7e 91 72 4b 93 e8 ab b8 9d 8d c6 76 8f 03 8e 50 7c 1c a4 e5 39 cb fc c8 2f 6a 4e 55 cf a5 95 2e 81 b5 82 6f 5a c8 47 34 56 b2 d3 a8 ae 2d 22 25 c3 b6 7e 98 d2 31 74 ac 29 96 91 11 b7 b3 48 f7 84 44 ae 2f ae 7d 71 59 c0 71 aa 3c 4b 1c ac c4 29 e8 65 44 89 ad 44 14 f2 21 2d 8d 94 ac 26 5a 12 19 0f 11 6c 97 af af d7 38 b1 63 d2 12 25 2f 4e 91 22 2e 5b 98 5c 3f f8 7e b8 e9 Data Ascii: ^[%\3OY&.Ir}N+8IT/nud,"?'2?VFHzt,B8{%z-x:Jt'UHq+}]q8~rKvP\|9/jNU.oZG4V-"%~1t)HD/}qYq<K)eDD!-&Zl8c%/N".[\?~

Timestamp	Bytes transferred	Direction	Data
2024-05-23 22:22:18 UTC	406	OUT	GET /photoAlbum/page/performance/img/2021/12/16/1639647987066_668.png HTTP/1.1 Host: p2.img.cctvpic.com Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Sec-Fetch-Site: none Sec-Fetch-Mode: cors Sec-Fetch-Dest: empty Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-05-23 22:22:18 UTC	541	IN	HTTP/1.1 200 OK Date: Thu, 23 May 2024 22:22:18 GMT Content-Type: image/png Content-Length: 2688 Connection: close Expires: Fri, 24 May 2024 19:32:57 GMT Accept-Ranges: bytes ETag: "136730FC39E3B1A1C2B2335F6DB7229B" Last-Modified: Thu, 16 Dec 2021 09:46:35 GMT Cache-Control: max-age=86400 X-UA-Compatible: IE=EmulateIE7 Age: 1 X-Via: 1.1 dianxun97:3 (Cdn Cache Server V2.0), 1.1 PShlamstdAMS1iy111:4 (Cdn Cache Server V2.0), 1.1 VM-FRA-01T6Y27:13 (Cdn Cache Server V2.0) X-Ws-Request-Id: 664fc19a_VM-FRA-0124V35_38420-42128
2024-05-23 22:22:18 UTC	2688	IN	Data Raw: 89 50 4e 47 0d 0a 1a 0a 00 00 00 0d 49 48 44 52 00 00 00 22 00 00 00 1d 08 06 00 00 00 cf 6b be ba 00 00 00 01 73 52 47 42 00 ae ce 1c e9 00 00 00 44 65 58 49 66 4d 4d 00 2a 00 00 00 08 00 01 87 69 00 04 00 00 00 01 00 00 00 1a 00 00 00 00 00 03 a0 01 00 03 00 00 00 01 00 01 00 00 a0 02 00 04 00 00 00 01 00 00 00 22 a0 03 00 04 00 00 00 01 00 00 00 1d 00 00 00 00 21 0b 8e 03 00 00 09 ea 49 44 41 54 48 c7 ad 57 0b 34 96 e9 16 7e 73 eb 42 9a 90 84 11 12 b1 54 12 0d 15 7e 97 10 95 6a ba 99 50 e3 52 a9 64 ba 49 4d 17 45 48 a5 a4 42 a6 24 19 8a 32 ab 08 49 45 e8 94 2e e8 46 19 b9 54 67 55 fc a1 f8 8b 9f e7 ec ef 4f 0d 47 75 ce 3a 73 de b5 f6 fa 7e 9f ef fb f6 b3 f7 fb ec bd 9f 97 b1 bf bf fa 90 49 91 0d 24 53 21 b3 22 f3 25 db a7 a5 a5 55 e0 e0 e0 c0 37 32 32 Data Ascii: PNGIHDR"ksRGBDeXIfMM*i"!IDATHW4~sBT~jPRdIMEHB$2IE.FTgUOGu:s~I$S!"%U722

Timestamp	Bytes transferred	Direction	Data
2024-05-23 22:22:18 UTC	638	OUT	GET /photoworkspace/2024/05/22/2024052210120068335.jpg HTTP/1.1 Host: p2.img.cctvpic.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://new.aj848310310.workers.dev/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-05-23 22:22:18 UTC	530	IN	HTTP/1.1 200 OK Date: Thu, 23 May 2024 22:22:18 GMT Content-Type: image/jpeg Content-Length: 43804 Connection: close Expires: Fri, 24 May 2024 04:35:53 GMT Accept-Ranges: bytes ETag: "3DB28EFA10AE31E1D3170D583B7E9840" Last-Modified: Wed, 22 May 2024 02:12:24 GMT Cache-Control: max-age=86400 X-UA-Compatible: IE=EmulateIE7 Age: 1 X-Via: 1.1 dianxun231:1 (Cdn Cache Server V2.0), 1.1 kf160:0 (Cdn Cache Server V2.0), 1.1 PS-VIE-01aIr81:6 (Cdn Cache Server V2.0) X-Ws-Request-Id: 664fc19a_PS-VIE-01aIr81_14470-59724
2024-05-23 22:22:18 UTC	15000	IN	Data Raw: ff d8 ff e0 00 10 4a 46 49 46 00 01 02 00 00 01 00 01 00 00 ff db 00 43 00 08 06 06 07 06 05 08 07 07 07 09 09 08 0a 0c 14 0d 0c 0b 0b 0c 19 12 13 0f 14 1d 1a 1f 1e 1d 1a 1c 1c 20 24 2e 27 20 22 2c 23 1c 1c 28 37 29 2c 30 31 34 34 34 1f 27 39 3d 38 32 3c 2e 33 34 32 ff db 00 43 01 09 09 09 0c 0b 0c 18 0d 0d 18 32 21 1c 21 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 ff c0 00 11 08 01 c2 03 20 03 01 22 00 02 11 01 03 11 01 ff c4 00 1f 00 00 01 05 01 01 01 01 01 01 00 00 00 00 00 00 00 00 01 02 03 04 05 06 07 08 09 0a 0b ff c4 00 b5 10 00 02 01 03 03 02 04 03 05 05 04 04 00 00 01 7d 01 02 03 00 04 11 05 12 21 31 41 06 13 51 61 07 22 71 14 32 81 91 a1 08 Data Ascii: JFIFC $.' ",#(7),01444'9=82<.342C2!!22222222222222222222222222222222222222222222222222 "}!1AQa"q2
2024-05-23 22:22:18 UTC	16384	IN	Data Raw: 99 ae 38 91 ce 0d 30 46 38 18 e9 52 47 09 66 ed c7 ad 3c 0c 13 45 cd 1d 05 62 96 ab 61 26 ae f1 c8 d2 e2 48 97 0b 9f 4a c2 92 ca ea d0 30 54 dd 8e 4e 2b ab 8e 38 e4 95 15 ce 06 7a d6 86 af a1 a4 16 7f 68 81 89 56 5e 45 52 67 0d 5a 09 1c 52 de 1b fd 35 6d 99 ca 77 61 54 2d 5c 40 ce 57 9e d9 ab b3 5a 24 31 16 53 f3 05 25 eb 2f 2c 40 55 07 24 f0 07 7a b4 79 b5 15 8d ad 32 d0 5e 4a 66 63 f2 27 6f 53 5d 05 94 f2 da 8c c4 70 c7 80 05 72 76 57 b7 3a 5b 18 65 8c a9 3f 36 0f 5c 57 5d a0 df 59 fd b5 24 9f 06 33 eb d8 d5 49 9b 61 9a b9 72 5b 9b b9 40 13 b1 0b 8e 86 a0 ef 9a d4 d5 6e e2 bb 90 18 90 2a af 4f 7a ca 63 8e 6b 26 cf 6e 92 56 17 3c f1 4e 3f 72 98 03 60 36 d3 83 d0 d3 9c ed 8c 92 2a 51 b2 68 80 9c 67 9a 5b 8d 1d b5 3d 29 e4 1c 84 a8 1a 4c e4 57 43 e1 fb b8 Data Ascii: 80F8RGf<Eba&HJ0TN+8zhV^ERgZR5mwaT-\@WZ$1S%/,@U$zy2^Jfc'oS]prvW:[e?6\W]Y$3Iar[@nOzck&nV<N?r`6Qhg[=)LWC
2024-05-23 22:22:18 UTC	12420	IN	Data Raw: 18 6c 76 a0 b5 02 1e 5b 8a 61 6a 09 34 da 60 19 a5 cd 25 2e 0e 29 00 e5 34 fc d3 15 4d 3f 6f 7c 50 31 d9 ef 46 7b 54 a3 cb 16 c4 e7 e6 f4 a8 72 38 ed 40 0e 06 9d 9a 66 69 45 00 38 52 d2 62 94 2d 17 1a 4c 91 3e 61 8d bd 2a f0 8a 23 6d b8 8e 47 4a ad 68 ac f2 ed 40 4e 7d 2a 4b d9 e0 b2 75 8e e2 5d ac c7 00 52 e6 48 76 2b 3c 8a 1d 33 dd 80 22 bd 32 04 8a 7d 3a 3b 69 57 31 3a 00 54 fd 2b cc 6f 6d 6e 21 b9 b7 99 48 68 03 82 d8 f4 af 47 b5 b8 49 20 89 e3 39 4d a3 f0 af 33 15 55 df 41 a4 71 fe 22 f0 b2 68 6f f6 eb 75 f3 2d 89 e9 dd 6b 94 b9 d5 4a df 42 a7 3e 56 f1 bf 8e d5 d4 df f8 c0 cb 7d 7b 6b 32 66 14 3b 42 9e f8 35 85 35 c6 9f 73 11 1e 4a a0 3d 4e 3a 52 84 db 8d 8a b1 e9 3a 45 dc 32 58 ab c7 22 b4 61 73 9c f6 ae 7c f8 c6 ce e6 5b db 3b e8 83 c0 09 55 07 bd Data Ascii: lv[aj4`%.)4M?o\|P1F{Tr8@fiE8Rb-L>a#mGJh@N}Ku]RHv+<3"2}:;iW1:T+omn!HhGI 9M3UAq"hou-kJB>V}{k2f;B55sJ=N:R:E2X"as\|[;U

Timestamp	Bytes transferred	Direction	Data
2024-05-23 22:22:20 UTC	638	OUT	GET /photoworkspace/2024/05/21/2024052110592369702.jpg HTTP/1.1 Host: p1.img.cctvpic.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://new.aj848310310.workers.dev/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-05-23 22:22:20 UTC	546	IN	HTTP/1.1 200 OK Date: Thu, 23 May 2024 22:22:20 GMT Content-Type: image/jpeg Content-Length: 22053 Connection: close Expires: Fri, 24 May 2024 06:42:20 GMT Accept-Ranges: bytes ETag: "2B44019D072F732B9465BC35C89A7EFF" Last-Modified: Tue, 21 May 2024 07:22:35 GMT Cache-Control: max-age=86400 X-UA-Compatible: IE=EmulateIE7 Age: 1 X-Via: 1.1 PSxgHK5dz198:3 (Cdn Cache Server V2.0), 1.1 PShlamstdAMS1bm110:4 (Cdn Cache Server V2.0), 1.1 PS-VIE-01Lw182:16 (Cdn Cache Server V2.0) X-Ws-Request-Id: 664fc19c_PS-VIE-01aIr81_14433-55588
2024-05-23 22:22:20 UTC	15814	IN	Data Raw: ff d8 ff e0 00 10 4a 46 49 46 00 01 02 00 00 01 00 01 00 00 ff db 00 43 00 08 06 06 07 06 05 08 07 07 07 09 09 08 0a 0c 14 0d 0c 0b 0b 0c 19 12 13 0f 14 1d 1a 1f 1e 1d 1a 1c 1c 20 24 2e 27 20 22 2c 23 1c 1c 28 37 29 2c 30 31 34 34 34 1f 27 39 3d 38 32 3c 2e 33 34 32 ff db 00 43 01 09 09 09 0c 0b 0c 18 0d 0d 18 32 21 1c 21 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 ff c0 00 11 08 00 fe 01 c4 03 01 22 00 02 11 01 03 11 01 ff c4 00 1f 00 00 01 05 01 01 01 01 01 01 00 00 00 00 00 00 00 00 01 02 03 04 05 06 07 08 09 0a 0b ff c4 00 b5 10 00 02 01 03 03 02 04 03 05 05 04 04 00 00 01 7d 01 02 03 00 04 11 05 12 21 31 41 06 13 51 61 07 22 71 14 32 81 91 a1 08 Data Ascii: JFIFC $.' ",#(7),01444'9=82<.342C2!!22222222222222222222222222222222222222222222222222"}!1AQa"q2
2024-05-23 22:22:20 UTC	6239	IN	Data Raw: 80 c9 f0 e3 c7 6d e2 81 a6 41 fe a6 08 1e 21 9e 7e 6c 65 8f e7 9a 7d be 81 2d 96 ad 1d fd bb a0 86 47 7f 36 33 d7 07 39 ab 5a 2f 87 63 8f 5f 87 57 d3 6e 59 ec e4 c9 9a 39 0e 64 89 9b b1 f5 5c e7 9a d4 f9 8c e2 28 e3 21 01 f9 9d f8 5e 47 41 eb 4a c3 4e c7 11 e2 4d 5f 50 b5 bb b8 b5 5b 82 52 3f b8 4f f7 48 ff 00 0a db f1 1d 8d c5 c7 83 b4 98 54 a1 7f dd 48 17 76 49 1b 4a ff 00 f5 ea 8f 89 f4 c7 bf f1 4d a5 ac 25 51 ef 62 8e 30 f2 1c 2e 72 57 24 fa 57 64 af a5 59 59 59 d9 5b 48 f3 dd c3 17 92 d2 81 94 dd 80 0f 3f 9e 29 c6 29 04 a4 e4 72 f6 7e 1a d4 6e 3e 1f 4b 14 aa 96 ea d3 c8 eb 24 87 00 88 f9 23 eb e9 59 7e 27 77 be f0 fe 91 a9 81 f7 59 a1 72 3a 0c 8c 8f eb 56 be 20 6a 17 82 e6 ca c4 5c 38 b5 f2 04 9e 50 6f 97 71 63 93 8a 66 98 63 d4 3c 1b 75 6d 70 1f 64 Data Ascii: mA!~le}-G639Z/c_WnY9d\(!^GAJNM_P[R?OHTHvIJM%Qb0.rW$WdYYY[H?))r~n>K$#Y~'wYr:V j\8Poqcfc<umpd

Timestamp	Bytes transferred	Direction	Data
2024-05-23 22:22:20 UTC	413	OUT	GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/more_block.png HTTP/1.1 Host: p2.img.cctvpic.com Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Sec-Fetch-Site: none Sec-Fetch-Mode: cors Sec-Fetch-Dest: empty Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-05-23 22:22:21 UTC	541	IN	HTTP/1.1 200 OK Date: Thu, 23 May 2024 22:22:20 GMT Content-Type: image/png Content-Length: 609 Connection: close Expires: Fri, 24 May 2024 19:33:29 GMT Accept-Ranges: bytes ETag: "81ADCEB1BDAA41E239C607C54EF20335" Last-Modified: Thu, 16 Dec 2021 07:57:12 GMT Cache-Control: max-age=86400 X-UA-Compatible: IE=EmulateIE7 Age: 1 X-Via: 1.1 dianxun231:11 (Cdn Cache Server V2.0), 1.1 PShlamstdAMS1mi112:1 (Cdn Cache Server V2.0), 1.1 VM-FRA-0124V35:5 (Cdn Cache Server V2.0) X-Ws-Request-Id: 664fc19c_VM-FRA-0124V35_39519-39049
2024-05-23 22:22:21 UTC	609	IN	Data Raw: 89 50 4e 47 0d 0a 1a 0a 00 00 00 0d 49 48 44 52 00 00 00 4e 00 00 00 14 08 03 00 00 00 14 61 fb be 00 00 00 01 73 52 47 42 00 ae ce 1c e9 00 00 00 44 65 58 49 66 4d 4d 00 2a 00 00 00 08 00 01 87 69 00 04 00 00 00 01 00 00 00 1a 00 00 00 00 00 03 a0 01 00 03 00 00 00 01 00 01 00 00 a0 02 00 04 00 00 00 01 00 00 00 4e a0 03 00 04 00 00 00 01 00 00 00 14 00 00 00 00 ca e6 d3 2d 00 00 00 a2 50 4c 54 45 00 00 00 00 00 00 40 40 40 33 33 66 24 24 6d 20 40 60 1a 33 66 24 37 5b 1c 2b 63 28 36 5e 24 31 61 24 2e 5b 22 33 5e 27 2e 5d 20 33 60 25 32 5d 22 31 5d 23 2f 5e 24 2f 5f 22 30 5f 23 30 5c 23 30 5e 23 32 5f 23 31 5f 24 30 5e 23 31 5e 22 30 5e 23 31 5e 23 30 5f 23 32 5e 23 31 5f 23 30 5d 23 31 5e 24 32 5d 23 32 5f 22 31 5e 23 32 5f 23 31 5e 22 32 5e 23 31 5e 23 Data Ascii: PNGIHDRNasRGBDeXIfMM*iN-PLTE@@@33f$$m @`3f$7[+c(6^$1a$.["3^'.] 3`%2]"1]#/^$/_"0_#0\#0^#2_#1_$0^#1^"0^#1^#0_#2^#1_#0]#1^$2]#2_"1^#2_#1^"2^#1^#

Timestamp	Bytes transferred	Direction	Data
2024-05-23 22:22:21 UTC	413	OUT	GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/more_white.png HTTP/1.1 Host: p2.img.cctvpic.com Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Sec-Fetch-Site: none Sec-Fetch-Mode: cors Sec-Fetch-Dest: empty Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-05-23 22:22:22 UTC	542	IN	HTTP/1.1 200 OK Date: Thu, 23 May 2024 22:22:21 GMT Content-Type: image/png Content-Length: 834 Connection: close Expires: Fri, 24 May 2024 19:33:29 GMT Accept-Ranges: bytes ETag: "759D1FA37D369F21BE4889D751DAC56D" Last-Modified: Thu, 16 Dec 2021 07:57:17 GMT Cache-Control: max-age=86400 X-UA-Compatible: IE=EmulateIE7 Age: 1 X-Via: 1.1 PSxgHK5yp199:7 (Cdn Cache Server V2.0), 1.1 PShlamstdAMS1bm110:6 (Cdn Cache Server V2.0), 1.1 VM-FRA-01T6Y27:8 (Cdn Cache Server V2.0) X-Ws-Request-Id: 664fc19d_VM-FRA-0124V35_39320-20531
2024-05-23 22:22:22 UTC	834	IN	Data Raw: 89 50 4e 47 0d 0a 1a 0a 00 00 00 0d 49 48 44 52 00 00 00 4e 00 00 00 14 08 06 00 00 00 23 bf 0b 8c 00 00 00 01 73 52 47 42 00 ae ce 1c e9 00 00 00 44 65 58 49 66 4d 4d 00 2a 00 00 00 08 00 01 87 69 00 04 00 00 00 01 00 00 00 1a 00 00 00 00 00 03 a0 01 00 03 00 00 00 01 00 01 00 00 a0 02 00 04 00 00 00 01 00 00 00 4e a0 03 00 04 00 00 00 01 00 00 00 14 00 00 00 00 ca e6 d3 2d 00 00 02 ac 49 44 41 54 58 09 e5 98 41 48 54 41 18 c7 7b 85 52 96 52 1d 4c e8 d0 2a d8 a9 9b 20 79 51 2a 16 6b eb 12 9d aa 4b 2a 9d 8c 88 4a 70 4f a2 20 75 29 24 bc 75 08 44 a8 9b 2c 74 29 b3 6e 52 24 74 4a 30 c1 8b 22 5e 84 0e 21 22 c8 f6 fb 93 c1 b2 8d ef 9b c1 b7 2c be 06 7e b8 3b f3 7b df 37 33 ee 9b 6f df 46 07 02 5a b1 58 cc a2 0f 43 47 c0 65 69 53 37 59 50 3e f2 59 15 1b 76 08 Data Ascii: PNGIHDRN#sRGBDeXIfMMiN-IDATXAHTA{RRL yQkKJpO u)$uD,t)nR$tJ0"^!",~;{73oFZXCGeiS7YP>Yv

Behavior Section

Behavior Chronological

Disassembly

Uncategorized

Graph

Loading Joe Sandbox Report ...

Warning!

Windows Analysis Report https://new.aj848310310.workers.dev/

Overview

General Information

Detection

Signatures

Classification

Process Tree

Malware Configuration

Yara Signatures

Sigma Signatures

Snort Signatures

Joe Sandbox Signatures

AV Detection

Phishing

Compliance

Software Vulnerabilities

Networking

System Summary

Mitre Att&ck Matrix

Behavior Graph

Screenshots

Thumbnails

Antivirus, Machine Learning and Genetic Malware Detection

Initial Sample

Dropped Files

Unpacked PE Files

Domains

URLs

Domains and IPs

Contacted Domains

Contacted URLs

URLs from Memory and Binaries

World Map of Contacted IPs

Public IPs

Private

General Information

Warnings

Simulations

Behavior and APIs

LLM Input / Output

Joe Sandbox View / Context

IPs

Domains

ASNs

JA3 Fingerprints

Dropped Files

Created / dropped Files

Chrome Cache Entry: 286

Chrome Cache Entry: 287

Chrome Cache Entry: 288

Chrome Cache Entry: 289

Chrome Cache Entry: 290

Chrome Cache Entry: 291

Chrome Cache Entry: 292

Chrome Cache Entry: 293

Chrome Cache Entry: 294

Chrome Cache Entry: 295

Chrome Cache Entry: 296

Chrome Cache Entry: 297

Chrome Cache Entry: 298

Chrome Cache Entry: 299

Chrome Cache Entry: 300

Chrome Cache Entry: 301

Chrome Cache Entry: 302

Chrome Cache Entry: 303

Chrome Cache Entry: 304

Chrome Cache Entry: 305

Chrome Cache Entry: 306

Chrome Cache Entry: 307

Chrome Cache Entry: 308

Chrome Cache Entry: 309

Chrome Cache Entry: 310

Chrome Cache Entry: 311

Windows Analysis Report
https://new.aj848310310.workers.dev/

Timestamp	Bytes transferred	Direction	Data
2024-05-23 22:22:22 UTC	659	OUT	GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/videoTime.png HTTP/1.1 Host: p2.img.cctvpic.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://new.aj848310310.workers.dev/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-05-23 22:22:23 UTC	526	IN	HTTP/1.1 200 OK Date: Thu, 23 May 2024 22:22:23 GMT Content-Type: image/png Content-Length: 165 Connection: close Expires: Fri, 24 May 2024 11:44:21 GMT Accept-Ranges: bytes ETag: "23C77235A623314095B31FD72EC9755A" Last-Modified: Thu, 16 Dec 2021 08:50:19 GMT Cache-Control: max-age=86400 X-UA-Compatible: IE=EmulateIE7 Age: 1 X-Via: 1.1 dianxun97:7 (Cdn Cache Server V2.0), 1.1 kf148:1 (Cdn Cache Server V2.0), 1.1 PS-VIE-01Lw182:4 (Cdn Cache Server V2.0) X-Ws-Request-Id: 664fc19f_PS-VIE-01aIr81_12117-48067
2024-05-23 22:22:23 UTC	165	IN	Data Raw: 89 50 4e 47 0d 0a 1a 0a 00 00 00 0d 49 48 44 52 00 00 00 08 00 00 00 09 08 06 00 00 00 0f 53 6d 2e 00 00 00 6c 49 44 41 54 18 95 8d d0 21 0e c2 60 14 03 e0 82 9b 43 70 04 0c bb 11 57 19 82 0b 90 4c ed 1a b3 9c 64 07 40 a1 d0 93 1f 59 d8 8f 58 c8 a0 49 9f 68 da 26 7d c1 0d 35 f2 8d d3 99 f0 40 87 fd d2 b4 cd 1b c7 24 63 92 21 49 93 a4 9a f5 4f 43 49 1c d0 e3 8e 13 36 4b 43 e1 65 d6 db bf 1b 76 b8 e2 89 33 aa 12 fa b9 62 fd 0f e4 05 cf 76 d4 cb 99 ed 02 2b 00 00 00 00 49 45 4e 44 ae 42 60 82 Data Ascii: PNGIHDRSm.lIDAT!`CpWLd@YXIh&}5@$c!IOCI6KCev3bv+IENDB`

Timestamp	Bytes transferred	Direction	Data
2024-05-23 22:22:24 UTC	531	OUT	GET /ge.js HTTP/1.1 Host: p.data.cctv.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://new.aj848310310.workers.dev/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-05-23 22:22:24 UTC	389	IN	HTTP/1.1 200 OK Date: Thu, 23 May 2024 22:22:24 GMT Content-Type: application/javascript Content-Length: 91 Connection: close ETag: "oK/WHrBAuCICAQgue684aR4S" stag: 2 Set-Cookie: cna=oK/WHrBAuCICAQgue684aR4S; expires=Sun, 21-May-34 22:22:24 GMT; path=/; domain=.mmstat.com; SameSite=none; Secure Expires: Thu, 01 Jan 1970 00:00:01 GMT Cache-Control: no-cache Pragma: no-cache
2024-05-23 22:22:24 UTC	91	IN	Data Raw: 77 69 6e 64 6f 77 2e 67 6f 6c 64 6c 6f 67 3d 28 77 69 6e 64 6f 77 2e 67 6f 6c 64 6c 6f 67 7c 7c 7b 7d 29 3b 67 6f 6c 64 6c 6f 67 2e 45 74 61 67 3d 22 6f 4b 2f 57 48 72 42 41 75 43 49 43 41 51 67 75 65 36 38 34 61 52 34 53 22 3b 67 6f 6c 64 6c 6f 67 2e 73 74 61 67 3d 32 3b Data Ascii: window.goldlog=(window.goldlog\|\|{});goldlog.Etag="oK/WHrBAuCICAQgue684aR4S";goldlog.stag=2;

Timestamp	Bytes transferred	Direction	Data
2024-05-23 22:22:24 UTC	391	OUT	GET /photoworkspace/2024/05/22/2024052210120068335.jpg HTTP/1.1 Host: p2.img.cctvpic.com Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Sec-Fetch-Site: none Sec-Fetch-Mode: cors Sec-Fetch-Dest: empty Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-05-23 22:22:25 UTC	531	IN	HTTP/1.1 200 OK Date: Thu, 23 May 2024 22:22:25 GMT Content-Type: image/jpeg Content-Length: 43804 Connection: close Expires: Fri, 24 May 2024 04:37:42 GMT Accept-Ranges: bytes ETag: "3DB28EFA10AE31E1D3170D583B7E9840" Last-Modified: Wed, 22 May 2024 02:12:24 GMT Cache-Control: max-age=86400 X-UA-Compatible: IE=EmulateIE7 Age: 1 X-Via: 1.1 dianxun231:1 (Cdn Cache Server V2.0), 1.1 kf160:0 (Cdn Cache Server V2.0), 1.1 VM-FRA-0124V35:14 (Cdn Cache Server V2.0) X-Ws-Request-Id: 664fc1a1_VM-FRA-0124V35_39434-34378
2024-05-23 22:22:25 UTC	15831	IN	Data Raw: ff d8 ff e0 00 10 4a 46 49 46 00 01 02 00 00 01 00 01 00 00 ff db 00 43 00 08 06 06 07 06 05 08 07 07 07 09 09 08 0a 0c 14 0d 0c 0b 0b 0c 19 12 13 0f 14 1d 1a 1f 1e 1d 1a 1c 1c 20 24 2e 27 20 22 2c 23 1c 1c 28 37 29 2c 30 31 34 34 34 1f 27 39 3d 38 32 3c 2e 33 34 32 ff db 00 43 01 09 09 09 0c 0b 0c 18 0d 0d 18 32 21 1c 21 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 ff c0 00 11 08 01 c2 03 20 03 01 22 00 02 11 01 03 11 01 ff c4 00 1f 00 00 01 05 01 01 01 01 01 01 00 00 00 00 00 00 00 00 01 02 03 04 05 06 07 08 09 0a 0b ff c4 00 b5 10 00 02 01 03 03 02 04 03 05 05 04 04 00 00 01 7d 01 02 03 00 04 11 05 12 21 31 41 06 13 51 61 07 22 71 14 32 81 91 a1 08 Data Ascii: JFIFC $.' ",#(7),01444'9=82<.342C2!!22222222222222222222222222222222222222222222222222 "}!1AQa"q2
2024-05-23 22:22:25 UTC	16384	IN	Data Raw: ac 5d d4 c1 1c 8c 02 ed 04 8a e7 c4 59 ad 0e 8a 37 4c 9b 52 77 b9 91 04 3c 00 30 4d 61 dd 69 ad 2c a3 2d c9 e2 92 e3 57 9e 44 29 1a ed 5e d5 48 6a 77 0a 79 19 35 e5 f2 d9 9e ad 3a bc a6 86 83 a7 db b6 a9 3a de 95 31 c4 38 27 d6 b7 22 b6 d2 0d c4 ce 7c bd 80 7c b5 c7 c9 78 ce 1b 1c 16 eb 50 87 ed b8 81 f5 ad 12 34 9d 64 ce ca e6 eb 45 82 66 93 cb 43 b5 02 a8 03 ae 6a 84 b7 d6 72 de 5b c6 81 52 18 97 76 40 ea 6b 9c 77 1e f9 ab 31 94 8a 30 48 c9 34 cc bd a1 b5 7f ab 5b 48 04 b1 20 f3 bc b3 1e df eb 59 92 6a f1 ad dc d3 2a 9f 34 46 12 20 3a 03 8e 6a 8b 10 ce 5b 1d 68 54 52 79 1c 51 62 bd a9 d2 59 78 a5 20 d3 7c 87 80 99 c0 e4 fa 9f 5a b5 07 8b d2 18 90 24 0c 48 ea 4d 72 7c 1e 31 8f 7a 50 72 31 9a 7c a0 f1 0c d5 7f 10 ea 04 dc 05 60 3c d3 c1 f4 14 b6 fe 20 bf Data Ascii: ]Y7LRw<0Mai,-WD)^Hjwy5::18'"\|\|xP4dEfCjr[Rv@kw10H4[H Yj*4F :j[hTRyQbYx \|Z$HMr\|1zPr1\|`<
2024-05-23 22:22:25 UTC	11589	IN	Data Raw: e9 d1 45 58 90 f9 0b b3 ac 87 b7 a5 4a ed 1d 9c 21 06 0c 87 a7 b5 65 df 5c 18 23 ce 73 21 a9 b1 d5 29 b6 67 ea 12 91 26 c0 d9 3d ea 89 39 34 ac c5 d8 b1 eb 9a 6d 32 2e 18 f6 a6 95 cf 3d c5 3e 80 29 35 70 bd 8b 70 eb 1a 84 30 79 51 dc 10 a7 8e 6a 0c b3 39 77 62 ce 7a b1 a6 8e bc d3 94 d4 f2 95 ce c9 10 f3 9c 71 57 61 05 88 35 51 06 79 35 69 26 45 1c 1a 64 dc d0 04 84 e3 ae 2a b3 dc c7 68 a4 47 f3 4c dd 4f a5 40 d7 19 ce 1b 15 1a 40 f3 1c 20 24 9a 62 63 1a 56 95 b7 16 e4 d3 a2 85 a4 6c 2a 93 ef 5a 56 fa 33 30 06 4e 2b 5a 0b 58 ed d4 05 51 4e c4 99 96 da 3b 30 0d 29 c0 f4 ad 38 2c 61 83 90 a0 fd 6a 7d d9 eb 4d 2d cd 16 0b 84 92 08 97 76 df c0 54 29 3b b7 2c b8 15 21 e6 98 62 df d4 f1 4c 2e 23 5c 24 79 de dc 56 6d cd c3 5c 36 23 c9 15 a2 d6 51 37 5e 6a 48 6d Data Ascii: EXJ!e\#s!)g&=94m2.=>)5pp0yQj9wbzqWa5Qy5i&EdhGLO@@ $bcVlZV30N+ZXQN;0)8,aj}M-vT);,!bL.#\$yVm\6#Q7^jHm

Timestamp	Bytes transferred	Direction	Data
2024-05-23 22:22:25 UTC	405	OUT	GET /photoAlbum/templet/common/TPTERE93VfAfo34uSEe8veca211216/yj.png HTTP/1.1 Host: p2.img.cctvpic.com Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Sec-Fetch-Site: none Sec-Fetch-Mode: cors Sec-Fetch-Dest: empty Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-05-23 22:22:26 UTC	547	IN	HTTP/1.1 200 OK Date: Thu, 23 May 2024 22:22:26 GMT Content-Type: image/png Content-Length: 1271 Connection: close Expires: Fri, 24 May 2024 19:47:39 GMT Accept-Ranges: bytes ETag: "487335376C2FD08D3F1C5D3DF72154C9" Last-Modified: Thu, 23 Dec 2021 11:24:34 GMT Cache-Control: max-age=86400 X-UA-Compatible: IE=EmulateIE7 Age: 1 X-Via: 1.1 PS-000-01Zhy223:13 (Cdn Cache Server V2.0), 1.1 PShlamstdAMS1mi112:0 (Cdn Cache Server V2.0), 1.1 VM-FRA-0124V35:3 (Cdn Cache Server V2.0) X-Ws-Request-Id: 664fc1a2_VM-FRA-0124V35_40115-62779
2024-05-23 22:22:26 UTC	1271	IN	Data Raw: 89 50 4e 47 0d 0a 1a 0a 00 00 00 0d 49 48 44 52 00 00 00 1b 00 00 00 1b 08 06 00 00 00 8d d4 f4 55 00 00 00 04 67 41 4d 41 00 00 b1 8f 0b fc 61 05 00 00 00 38 65 58 49 66 4d 4d 00 2a 00 00 00 08 00 01 87 69 00 04 00 00 00 01 00 00 00 1a 00 00 00 00 00 02 a0 02 00 04 00 00 00 01 00 00 00 1b a0 03 00 04 00 00 00 01 00 00 00 1b 00 00 00 00 d5 c7 76 c3 00 00 04 6a 49 44 41 54 48 0d ed 54 5d 4c 5c 55 10 9e 39 77 7f a8 85 54 f9 93 ee 2e 14 f9 d9 a5 5d 6b 8c 54 13 53 ab 5b 59 7e d4 c4 12 0d 36 8d 56 53 a4 0f 18 7d d0 fa a0 0f fa a2 0f fa a0 09 fe d0 1a a3 a9 31 36 a6 b4 b1 86 28 02 4b 53 93 a6 8d a6 24 a4 05 09 b0 4b c2 b2 dd 62 0a ad ac a1 c0 de 7b ce 38 77 c3 c5 5d 90 86 57 13 4e 72 33 e7 9c 99 6f be 33 3f 77 00 36 d6 ff 2d 03 b8 de 07 bb ca eb 8a 6d 08 f7 93 Data Ascii: PNGIHDRUgAMAa8eXIfMM*ivjIDATHT]L\U9wT.]kTS[Y~6VS}16(KS$Kb{8w]WNr3o3?w6-m

Timestamp	Bytes transferred	Direction	Data
2024-05-23 22:22:26 UTC	638	OUT	GET /photoworkspace/2024/05/17/2024051717583175090.jpg HTTP/1.1 Host: p1.img.cctvpic.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://new.aj848310310.workers.dev/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-05-23 22:22:26 UTC	536	IN	HTTP/1.1 200 OK Date: Thu, 23 May 2024 22:22:26 GMT Content-Type: image/jpeg Content-Length: 72871 Connection: close Expires: Fri, 24 May 2024 11:07:15 GMT Accept-Ranges: bytes ETag: "7110D7976E3264B4CE4550C6E22C9336" Last-Modified: Fri, 17 May 2024 09:58:47 GMT Cache-Control: max-age=86400 X-UA-Compatible: IE=EmulateIE7 Age: 1 X-Via: 1.1 PS-000-01Zhy223:1 (Cdn Cache Server V2.0), 1.1 kf160:10 (Cdn Cache Server V2.0), 1.1 PS-VIE-01aIr81:4 (Cdn Cache Server V2.0) X-Ws-Request-Id: 664fc1a2_PS-VIE-01aIr81_15031-47284
2024-05-23 22:22:26 UTC	15180	IN	Data Raw: ff d8 ff e0 00 10 4a 46 49 46 00 01 01 00 00 01 00 01 00 00 ff db 00 84 00 05 03 04 08 05 08 08 07 06 08 06 06 08 07 06 07 06 07 08 07 08 08 07 07 08 07 07 07 08 07 07 07 07 07 07 0a 10 0b 07 08 0e 09 07 07 0d 15 0d 0e 11 11 13 13 13 07 0b 16 18 16 12 18 10 12 13 12 01 05 05 05 08 07 08 0d 08 08 0d 12 0d 0d 0d 12 12 12 12 12 12 12 15 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 ff c0 00 11 08 02 d0 05 00 03 01 22 00 02 11 01 03 11 01 ff c4 00 1d 00 00 02 02 03 01 01 01 00 00 00 00 00 00 00 00 00 01 02 00 03 04 05 06 07 08 09 ff c4 00 65 10 00 02 01 03 02 03 05 04 05 04 07 10 0f 06 06 03 00 01 02 03 04 11 05 12 06 21 31 07 13 41 51 61 08 14 22 71 15 32 42 81 91 23 52 a1 b1 24 Data Ascii: JFIF"e!1AQa"q2B#R$
2024-05-23 22:22:26 UTC	16384	IN	Data Raw: f5 ee 21 be 52 d9 8b 6b 1b b8 d8 d2 96 54 73 5a f3 b9 71 9a 4d af da f7 2e 5c e5 13 e7 3e 37 e1 3e d2 7b 44 a9 fc f4 b3 b9 b7 b4 73 53 85 9b af 6d 61 63 49 66 2e 2e 56 f3 ac a7 5e 51 78 7b aa 6f 9f 5c 63 a1 0e 99 24 f8 7a 9f 6b 3e d4 7a 46 83 be db 87 e3 1e 22 bd 59 87 79 4a 6e 1a 6d 29 f2 c3 95 d2 4f de ba e7 14 b2 b9 35 b9 33 e5 7e 39 e3 0d 77 b4 0a ea b6 b9 75 52 bd 38 d4 75 28 5a 52 5d cd 8d bb 79 4b b9 b7 8f 2d ca 32 6b 7c f7 4f 6b e7 26 7a d7 0f fb 29 eb 8f 6b b9 ab a3 db 2e 5b 94 ab d6 a9 51 2f 1c 2a 34 1c 5b fe 11 e8 1a 2f b3 3d 4b 74 bb dd 4a da 0f 96 7b bb 59 d4 fd f6 37 54 8e 7f d7 a0 15 b5 f3 9f 0e 70 a2 8e 1b 89 df e9 1a 64 68 a5 c8 fa 03 86 bb 0b b4 b2 ab 19 de de 4e fa 94 7f a0 c2 87 ba a9 3f dd cd 55 9c 9c 3d 23 b7 e6 77 77 fc 0d a4 dd d2 Data Ascii: !RkTsZqM.\>7>{DsSmacIf..V^Qx{o\c$zk>zF"YyJnm)O53~9wuR8u(ZR]yK-2k\|Ok&z)k.[Q/*4[/=KtJ{Y7TpdhN?U=#ww
2024-05-23 22:22:26 UTC	645	IN	Data Raw: 5d 19 29 1a 15 8c 1d 84 33 67 45 48 aa 74 81 3a 63 c7 00 95 2d c5 ae 1b 40 05 63 16 74 11 8f 52 d5 1b 16 88 e2 89 b8 9f 74 69 2a 5a b8 94 ca 91 d0 4a 9a 91 8d 56 d3 77 42 6e 0a ee 7c ae 0c 94 b9 0c a4 57 6b ce d2 d4 c8 56 98 c8 7d c4 84 18 84 2f 65 40 c8 50 8c 70 84 99 03 14 74 6c ce 44 52 12 4c 5c 8e 44 ae c8 5b 29 cb 26 e1 dc 42 dc 93 25 7b 82 99 12 03 90 39 2e d2 ec ea 6a 55 63 6f 6d 17 3a 92 78 e5 e0 ba 65 fa 1b e3 80 2d bd 39 d5 9c 69 52 8b ab 52 6f 11 8c 79 bc bf d4 7b 17 67 5d 9a 42 d5 46 eb 51 8a ab 5a 4b 2a 0f ea c3 c5 2c 79 9b 8e ce b8 12 96 89 0e f6 ae 2a dd 49 7c 53 6b 2a 3e 91 5e 07 73 05 cb fc 45 fc 36 c3 00 a5 15 08 a4 96 12 49 47 c9 2f 22 67 01 6c ae a4 b0 46 59 36 c7 12 54 9f 23 0a e2 be de 59 25 d5 7d a6 ba a4 b7 19 65 9e 9b 4c 58 fa 95 Data Ascii: ])3gEHt:c-@ctRtiZJVwBn\|WkV}/e@PptlDRL\D[)&B%{9.jUcom:xe-9iRRoy{g]BFQZK,yI\|Sk>^sE6IG/"glFY6T#Y%}eLX
2024-05-23 22:22:26 UTC	16384	IN	Data Raw: 46 9d ce c9 c1 c2 7b 65 49 46 10 93 4d f3 51 f1 e5 83 86 d0 f8 3a ae 17 26 2d 1e df 72 de 76 9d c3 d6 ff 00 b6 6b 3a 57 8f d4 b9 a7 57 a7 5f da 5b c9 cd ea 7e d0 7c 23 64 dc 67 aa f7 92 58 e5 46 ca fe b2 e7 cf eb c2 df 67 f7 c7 cc 34 b8 1e ac d7 43 26 8f 66 5d ef 39 af d0 1a 1b 7b e5 4f 69 ee 16 4d 2a 75 35 4a f9 cf d4 b2 9a c6 31 8c f7 d2 8f 5c f8 79 14 52 f6 a1 d0 27 d2 cf 88 7e fb 7b 2f ff 00 ba 78 ed af 65 71 8a ca 84 df aa 8b 7f a8 cc a3 d9 85 4a bc a9 50 b8 a8 fc a1 4a 72 7f 82 41 a2 7b a7 06 f6 f7 c3 da f5 cd 1b 2a 75 ae ac ae 2e 6a 2a 34 21 7b 41 52 8c ea c9 e2 14 bb da 53 9d 38 ce 4f 09 6e 92 dc e4 92 e6 f0 7a 95 7a d0 a4 b7 54 94 29 c5 7d a9 49 45 7e 2f e4 7c 65 7b d8 a6 a5 70 bf 25 a7 de 3c e7 1b a9 4a 1f 8e fc 63 ef 34 92 f6 74 d7 ab 4b 34 f4 Data Ascii: F{eIFMQ:&-rvk:WW_[~\|#dgXFg4C&f]9{OiMu5J1\yR'~{/xeqJPJrA{u.j*4!{ARS8OnzzT)}IE~/\|e{p%<Jc4tK4
2024-05-23 22:22:26 UTC	15176	IN	Data Raw: da 84 5f 83 74 21 52 72 c7 f1 88 9e 17 15 b3 af d6 3f 1e 7f a7 f8 bb 32 ff 00 43 bb f2 f5 93 e3 7e d8 25 2a dc 65 ab be 78 8d 4b 1a 69 37 94 94 34 eb 58 bc 79 27 25 27 8f dd 33 ec 83 e5 5e 2d e0 9d 67 51 e2 3d 5e fa 96 9d 7d 2a 15 2f 9a a3 56 70 db 1a 94 e9 53 8d 18 ca 0e 6d 6f 87 e4 be 16 be ce 3d 0e 8f 5c 99 de 9a ce 39 72 b6 fc 49 b6 7d 26 bb fc f8 65 68 d1 71 82 33 67 23 69 a6 f0 76 aa e3 8f 71 ac 9a e5 f1 4a 9c 3d 3e dc 97 91 8d ae 69 17 9a 4e df 7d b7 a9 41 4b 92 9e 63 38 37 d7 6f 79 4e 4e 3b b1 e1 bb c0 fc 77 aa f4 fe ae 6f 3c f8 b2 98 fd ee 37 5f c5 f4 58 72 f1 df d1 99 4d fe f6 10 92 62 aa 8a 5d 00 d9 e6 48 ea 90 1b 15 b0 b6 23 2e 2e 44 c8 a1 62 b2 a2 a0 10 38 08 1d 29 03 90 36 33 a8 c0 a0 e4 3c 5f 42 ef 79 84 23 88 47 32 7d 5b e9 f3 2a 42 61 c9 Data Ascii: _t!Rr?2C~%exKi74Xy'%'3^-gQ=^}/VpSmo=\9rI}&ehq3g#ivqJ=>iN}AKc87oyNN;wo<7_XrMb]H#..Db8)63<_By#G2}[*Ba
2024-05-23 22:22:26 UTC	9102	IN	Data Raw: ae 65 b0 a2 5d 0a 4c 73 23 ed 44 45 06 cc 9a 34 bd 0c 98 d3 da 69 8e e9 e9 85 0b 67 e2 65 51 a0 a0 59 86 15 06 69 21 78 1a 7d 4b a5 45 72 16 95 3e 66 46 37 1a e3 8f 84 ed ad bb b2 71 94 6b 75 db e1 83 36 d5 f2 2d 9f 90 22 b6 95 86 1a be 15 bf 09 59 f2 31 24 64 d5 2a da 69 97 92 8a 9a 11 97 34 c4 94 1f 90 ae cf c2 99 a3 0e b7 56 67 54 4f c8 c6 ab 46 52 e8 8f 3b aa 97 e8 7b 61 6e 1a 0c bb dd 27 f9 ac 68 59 4f c9 9c 13 8f 2f b3 5c 72 24 42 8c ba 76 52 c7 42 e8 69 f2 c7 42 e7 4f c9 7e 83 ba 30 a2 3c 4c f8 69 72 97 83 2e 8e 92 fc 8d 31 e8 f9 6f d2 97 b9 8c f9 ad 62 41 37 30 d2 59 7c 34 6f 43 a7 1f 4b e7 cb e8 57 a8 c2 7d 5a 28 c4 7e ec e8 a1 a2 fa 17 d2 d1 bc d1 d3 87 a2 73 64 8b d5 e1 1c ba a5 e8 34 2d e5 e4 75 d4 f4 65 e4 5f 0d 2d 79 60 e9 c3 f0 df 2d f9 67 Data Ascii: e]Ls#DE4igeQYi!x}KEr>fF7qku6-"Y1$d*i4VgTOFR;{an'hYO/\r$BvRBiBO~0<Lir.1obA70Y\|4oCKW}Z(~sd4-ue_-y`-g

Timestamp	Bytes transferred	Direction	Data
2024-05-23 22:22:26 UTC	638	OUT	GET /photoworkspace/2024/05/13/2024051317234563456.jpg HTTP/1.1 Host: p1.img.cctvpic.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://new.aj848310310.workers.dev/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-05-23 22:22:26 UTC	548	IN	HTTP/1.1 200 OK Date: Thu, 23 May 2024 22:22:26 GMT Content-Type: image/jpeg Content-Length: 181519 Connection: close Expires: Fri, 24 May 2024 12:21:06 GMT Accept-Ranges: bytes ETag: "72F09495C4F0C0C3E30F5FBD7C65EB7C" Last-Modified: Mon, 13 May 2024 09:24:55 GMT Cache-Control: max-age=86400 X-UA-Compatible: IE=EmulateIE7 Age: 1 X-Via: 1.1 PS-000-01Zhy223:10 (Cdn Cache Server V2.0), 1.1 PS-FRA-01E6z147:2 (Cdn Cache Server V2.0), 1.1 PS-VIE-01aIr81:13 (Cdn Cache Server V2.0) X-Ws-Request-Id: 664fc1a2_PS-VIE-01aIr81_11846-44311
2024-05-23 22:22:26 UTC	11685	IN	Data Raw: ff d8 ff e0 00 10 4a 46 49 46 00 01 01 00 00 01 00 01 00 00 ff db 00 84 00 05 03 04 09 09 08 09 09 09 09 09 09 09 09 09 08 09 09 09 09 09 08 09 09 09 09 09 08 08 07 08 09 09 09 08 0a 10 0d 09 08 0e 09 08 07 0e 15 0d 0e 11 11 13 13 13 07 0d 16 18 16 12 18 10 12 13 12 01 05 05 05 08 07 08 0f 09 09 0f 12 0d 10 0d 15 12 12 15 15 12 12 15 15 12 15 12 12 15 15 15 15 15 15 15 12 12 15 15 15 15 15 15 15 15 15 15 15 15 15 15 15 15 15 15 15 15 15 15 15 15 15 15 15 15 ff c0 00 11 08 02 d0 05 00 03 01 22 00 02 11 01 03 11 01 ff c4 00 1d 00 00 00 07 01 01 01 00 00 00 00 00 00 00 00 00 00 01 02 03 04 05 06 07 00 08 09 ff c4 00 68 10 00 01 03 02 03 05 03 07 07 07 07 05 0a 0c 02 0b 02 01 03 12 00 04 05 11 22 06 13 21 32 42 31 52 62 07 14 23 41 51 61 72 33 71 81 82 91 92 Data Ascii: JFIF"h"!2B1Rb#AQar3q
2024-05-23 22:22:26 UTC	16384	IN	Data Raw: 45 f1 2b 0d a9 7e 95 5a 62 08 dd b5 db dc 2b 08 87 f2 85 e3 6c 13 89 9b 6d c5 c7 1d 31 94 64 2d 32 24 71 cf 84 b2 ca a8 bb 4f e5 9b 08 b8 b2 ba 61 82 7c cd db 67 81 a2 dc 28 86 f0 9b 21 6f 98 90 90 65 15 ec aa 2f e5 79 83 b9 77 8b 61 00 d0 91 97 9b 5d 44 40 54 89 7d 33 6b a5 05 33 ec 45 aa fe cd ec 31 6e a5 50 c9 47 a2 bc 8c e2 5e 73 81 d9 39 d4 20 e3 4b ff 00 32 f3 8d 7e e8 8a fd 35 4b f2 ce df 9b 62 4c 5c 0f 2d d3 51 5f f3 ac 12 09 7f f2 cd a4 fa 95 35 e4 04 49 ab 4b 9b 42 fc c5 ce f0 7c 2d be da 44 7e fb 4e af d3 56 0f 28 9b 2f fc a4 16 63 c3 f9 bd f5 bb e5 e2 62 50 b8 0f a4 0b 3f a8 95 01 dc 9a d9 ab 5d d5 a5 b3 65 cc 2d 37 2f 8c 86 6e 7e b2 95 64 bf 95 a6 2f 1c 3e cf 0f 12 d5 7d 74 26 63 de 62 d3 27 0b ff 00 9e 76 ab f5 6b 6c af 2e f9 64 bf fe 50 da Data Ascii: E+~Zb+lm1d-2$qOa\|g(!oe/ywa]D@T}3k3E1nPG^s9 K2~5KbL\-Q_5IKB\|-D~NV(/cbP?]e-7/n~d/>}t&cb'vkl.dP
2024-05-23 22:22:26 UTC	4128	IN	Data Raw: ad 50 bc a1 63 1b 8c 4a d5 b9 6a 36 08 88 7c 3b c5 41 fd 32 fb 28 db 4d b5 04 c5 b8 c3 51 9e 91 97 28 f7 88 bb d9 66 9a 7d f5 4d f6 c6 a8 39 cf a2 2d aa b9 59 25 18 f5 65 f9 16 a0 36 a3 68 db b4 0f e9 1c 2d 22 03 94 88 bf 80 a6 79 d6 69 67 b4 d7 80 52 17 cc b4 ea 07 35 01 4b 84 a3 c2 39 54 6d cd eb 8e 19 38 e1 49 c2 8f a4 2e 6f 0f d5 4c 92 b8 3a 8f 1e ae 30 f6 13 cf bf a1 d4 ab c2 a5 bb db 7c 13 d8 ee 30 fd e0 98 9e e0 44 b4 ee c8 64 e0 0f 36 93 2e ac b8 55 2e fe f7 70 6d b6 3a 88 c8 63 2f 46 22 23 9c a5 fa 29 f3 2e 11 17 36 ae 9d 35 1d 73 cc 0d 10 89 11 4b 78 71 d2 23 db a6 5d 39 af ee d7 25 5f 2d 4b 53 97 e3 fb 1b 9c 63 54 5c 22 16 c6 d8 9f 39 4b 50 96 ae df aa 3d be ce 3f 4f be 9d 5d 58 75 08 88 f8 b9 44 77 64 8b aa 39 a9 66 b4 2a a2 23 a0 48 4c 47 e5 Data Ascii: PcJj6\|;A2(MQ(f}M9-Y%e6h-"yigR5K9Tm8I.oL:0\|0Dd6.U.pm:c/F"#).65sKxq#]9%_-KScT\"9KP=?O]XuDwd9f*#HLG
2024-05-23 22:22:26 UTC	16384	IN	Data Raw: 27 00 48 87 d1 91 36 5c 07 57 64 48 7b ab fa b5 4d d6 61 a1 61 0c f0 85 f0 dc 20 66 d9 3f f1 11 89 45 c6 bc 3d ab 2c 95 35 7d 5a 97 bd b4 63 74 e8 b4 3b c1 90 c4 7a a5 de f6 88 e7 c6 9c e0 98 2e ed af 4a 5a bf 38 e0 f7 bb a3 c3 50 fa a9 c3 a4 d9 06 e9 a1 8f f9 4e 52 3f 59 11 77 72 ee f4 e5 5a f8 d8 ba 2f cd 8a a0 d3 ef fb 11 76 18 0b 62 4d b9 78 5b b7 34 96 eb a8 bd 62 4e 08 a6 42 28 99 44 7e 9f 5d 47 e2 3b 53 86 b4 27 bf 93 72 70 84 5a 70 55 d7 df 21 ea 11 14 55 2c 97 a7 a6 a7 1e c3 c5 c6 5c 8b 85 3d 31 73 e5 3d 21 77 a5 cc 39 2f e9 a8 c7 b0 c2 6e c0 9a b9 0b 3d e3 7c b7 6e 67 bb 2f 5e f4 b8 22 89 22 ae 42 32 8f 0f 7d 5f 0b 1f 59 61 2f ab f9 91 28 47 de d9 59 c3 b6 8b 0f 2b af 46 e9 13 44 42 04 51 21 81 f6 93 66 24 9a 48 7a be 7a b7 de da ee e4 e3 04 32 Data Ascii: 'H6\WdH{Maa f?E=,5}Zct;z.JZ8PNR?YwrZ/vbMx[4bNB(D~]G;S'rpZpU!U,\=1s=!w9/n=\|ng/^""B2}_Ya/(GY+FDBQ!f$Hzz2
2024-05-23 22:22:26 UTC	8210	IN	Data Raw: 77 a3 cc 4d 96 72 d5 c6 42 44 be d5 ce b2 1c 4f 00 36 0c 48 e5 12 d4 06 39 f4 f4 97 76 b6 b6 76 98 5d 6b 70 44 4d 1f 2e ad 23 a7 c4 4b a8 57 85 30 1c 34 5c 18 ba 22 43 a8 a4 3a b5 76 8c b8 f3 0f f1 a8 a3 59 38 7d ee 85 d2 d3 c6 41 7c 99 ab 4e 01 4a 32 6c 79 7e 21 fd 61 4f e3 4d 36 8e d5 a1 32 6d b7 37 7b d2 22 20 8c 86 5d ba 7b be ca 89 bb b7 2b 3b 82 dd 39 1e 9e f0 97 8b e1 ed a6 77 0f 13 a7 22 89 7d a3 54 ca 3b a7 b9 3e 0b e3 f7 70 4a e0 98 db f6 97 10 df ea 2e 4e d8 90 95 59 1b bf b9 75 df 4b 12 09 69 8e 7f ad f6 2a d3 1c 2f 0f 68 42 45 a9 c2 1e 6e ef de a7 b6 57 3b b3 6f 54 4b a4 87 c5 c2 b2 ea 2c 52 58 ff 00 62 d8 d1 17 25 26 b9 2e 56 78 9b 83 e8 f5 72 f7 54 7f 1c 2a 77 03 47 77 44 3f 9a 89 69 11 d4 db 63 c4 a2 5d df 5d 55 40 dc 73 54 e4 5f ad 53 bb Data Ascii: wMrBDO6H9vv]kpDM.#KW04\"C:vY8}A\|NJ2ly~!aOM62m7{" ]{+;9w"}T;>pJ.NYuKi/hBEnW;oTK,RXb%&.VxrTwGwD?ic]]U@sT_S
2024-05-23 22:22:26 UTC	16384	IN	Data Raw: a1 8d 70 5c 71 c1 d6 52 cf 22 23 4a a2 d1 11 2b 92 a1 0c 36 c4 aa 95 b4 b7 4e 09 89 48 84 9b 11 16 c8 74 90 8f 18 c4 87 2f 6a d5 d7 10 e5 a8 5d ab c6 ac 6d 81 82 72 cf ce ee 37 0d fc ab aa 2c 08 ea 8e 81 f9 42 f8 bd b5 7d 31 ce 79 c1 45 8f 1d 86 77 b8 a3 ef dc 83 1e 6d e7 c5 e6 b8 71 12 13 44 6e c9 db 2b 77 08 89 f6 72 74 73 22 32 d4 51 e3 9d 3c c4 30 0b 66 9a 23 7c c2 c5 f1 19 0d ab af b7 72 67 f0 8b 3a c3 3f 7c b9 ab 3a da 3f 29 38 9b fe 88 1d f3 46 a2 23 ba b3 14 b6 08 88 a0 08 c9 bf 49 14 11 11 8c b9 43 2a 83 c2 49 d2 39 14 88 8b 98 8b 9b db aa ae b3 6f 3d fe 22 43 77 1d 8d 67 07 21 2e 5a b4 e1 ad 55 37 64 5b 2d 32 ab f5 b2 69 ac 75 c3 93 4c e4 2a 09 46 54 a2 92 d7 67 5a 59 53 cb 19 62 c1 20 2a 7b e4 63 4b 37 81 ff 00 e2 e5 f7 99 68 7f a9 fa 29 ad f0 Data Ascii: p\qR"#J+6NHt/j]mr7,B}1yEwmqDn+wrts"2Q<0f#\|rg:?\|:?)8F#ICI9o="Cwg!.ZU7d[-2iuLFTgZYSb *{cK7h)
2024-05-23 22:22:26 UTC	8210	IN	Data Raw: 41 d1 3d 7a 64 51 4d 24 5c c2 43 9f a9 15 13 c5 9d 41 dc 5c 90 17 57 74 08 46 44 47 15 e5 8f 19 65 52 38 6d d9 10 80 9c 88 84 5b 6d b2 2e 61 11 94 79 91 25 c1 55 35 7b 7d 79 70 a2 c5 ec a6 d0 d9 e4 9a 7d 44 b5 69 2e 92 d2 9d 5f 0f 1e ce 25 4d ef 54 9b 69 81 12 61 b2 61 f6 cd a2 26 db 71 c3 22 15 47 a4 fe 5f 22 89 99 ee 8a 43 24 f5 12 54 55 e3 e2 c1 11 48 46 5d 25 ac 88 74 a3 85 a9 74 e5 fa c5 5d 89 5c 0b 6d 09 99 34 e8 89 0c b4 b8 32 97 1d d1 ff 00 45 21 ed 8c bd b9 f0 ca 8a a3 28 b5 82 b9 3c a6 21 77 66 04 c9 08 10 30 3e 90 9c 62 2e 69 21 8c a0 59 2f f3 72 ce 62 3c b2 e1 c7 24 ae c0 b6 d5 db 3b 71 b6 74 46 e5 a0 28 b5 27 1c 68 c0 44 79 3d 1a 6a 6d 55 33 1e ee 7f 60 60 b8 d9 45 c1 6c b7 6d 9f 33 4d 92 fa 51 17 33 11 2f 5b 91 55 e6 29 7b 72 e3 56 4b 06 ec Data Ascii: A=zdQM$\CA\WtFDGeR8m[m.ay%U5{}yp}Di._%MTiaa&q"G_"C$TUHF]%tt]\m42E!(<!wf0>b.i!Y/rb<$;qtF('hDy=jmU3``Elm3MQ3/[U){rVK
2024-05-23 22:22:27 UTC	16384	IN	Data Raw: b9 27 c5 ce 22 5b c0 e2 22 45 fd 1a 12 6a 12 f6 56 6a 26 9c 92 8f 7c fb f0 59 3a da 83 6f dc 46 59 db b0 ed db e2 4e 91 3e e3 6e 39 bb 12 89 46 42 03 12 cf 22 2c e6 45 4d 1b c1 dc 1c 51 b6 24 6e db 16 a7 df 6c e1 26 38 ae f5 ae c2 11 cd 23 2e 6e 19 fa d2 a9 96 38 fb ee de 99 36 3e 97 7f f2 a3 90 c8 88 95 4b 77 1f ce 20 cc 8b a7 8d 6a 78 da 0b 98 56 f6 3b b2 17 75 c8 a2 e3 8d 46 0e 7a b4 e6 b9 77 7f 4d 6b 9d 38 8e 7e 3c 99 14 da 78 2d 96 9b b6 00 01 a1 8b 6d 8c 46 45 32 8f 7a 5d a4 5c 7a a8 d9 89 46 5a 87 9a 35 07 b3 d7 24 62 23 1f 47 08 8c b3 18 88 f2 ee fb c3 97 0a 91 6a e8 66 4d 09 0c 9b 8e f0 7a 86 7c bf 6a 22 d7 9f ba 52 84 b9 fe 7f 83 ab 0c 34 4a 61 f7 2d b7 f9 be 5e ae f7 de a6 d8 cb db dd 5c b2 e6 8f e3 9a 87 28 8c ba a9 0d e1 11 78 79 7c 35 0e e9 Data Ascii: '"["EjVj&\|Y:oFYN>n9FB",EMQ$nl&8#.n86>Kw jxV;uFzwMk8~<x-mFE2z]\zFZ5$b#GjfMz\|j"R4Ja-^\(xy\|5
2024-05-23 22:22:27 UTC	8210	IN	Data Raw: fb 7b 28 5e b0 6d ad e1 09 10 ef 4a 5b b7 22 43 21 e5 28 fc fc d1 88 96 54 f0 89 b1 12 91 4b 97 c2 3e d9 6a 45 88 cb 3d 3e ff 00 75 2c ee 5c c5 60 78 56 c8 3c 50 c9 a0 89 08 39 2e 4d 72 88 8f 28 8c 91 22 3c 73 22 fa 2a 3a c3 67 1b 26 09 c7 44 89 c2 12 2e f6 9e 72 8c 55 62 4b e1 a9 6b a7 45 f9 89 08 93 71 16 a3 c4 75 4b d2 6a 2c b4 e7 08 fc d9 d4 05 dd a5 f3 42 4d b0 5e 76 d8 89 08 8b 6e 00 bb ca bb 91 93 99 4a 04 bf 5c 6a bd 3c d4 b3 9e bd 8b 6c 8b 5d 3a 0c ee 30 46 da 06 9f 2d c6 f4 b5 6e c5 8d e3 6d c5 b2 6e 4e 11 2a a1 12 8f 37 74 96 b3 6d b2 d9 87 05 0e e7 d1 78 75 6e f9 89 62 2d 37 ca 31 25 05 d2 5e ff 00 6d 68 78 56 33 22 00 7c cb 7f f2 57 8d 6e a3 e9 78 c8 49 ae 88 c6 5e 2e 9a 77 71 84 79 de f5 86 0a 42 d8 ef 0f 7f 1d dc 47 83 80 3d 24 da 96 4a 3d Data Ascii: {(^mJ["C!(TK>jE=>u,\`xV<P9.Mr("<s":g&D.rUbKkEquKj,BM^vnJ\j<l]:0F-nmnN7tmxunb-71%^mhxV3"\|WnxI^.wqyBG=$J=
2024-05-23 22:22:27 UTC	16384	IN	Data Raw: 37 6c 04 61 11 0b e1 04 e2 da 8e 96 6e 78 74 28 e4 07 ec dd b6 be b5 5a f3 6f f2 c3 83 22 1d 32 d3 f1 0f 64 4b e8 aa 75 74 4e 16 34 ff 00 dd 1b b4 2e 36 d6 9a 7f 1f 89 2a c6 34 2d f3 36 3e 19 67 1a 81 da 1d a4 2f 48 db 1c a5 cb 2e 9a 6b 7b 7c 44 3c b4 c2 de dc dd 38 80 48 bf 1a 88 ba 46 8a 6a 4b 99 23 5c e1 c1 0c fb 4f dc 90 89 11 11 7e ad 5b 76 5b 67 41 ae 6d 45 cc 45 fd 51 f0 d4 96 1d 85 83 42 52 e6 2e 62 1f dd f8 6a 7b 05 c3 b7 84 3d 23 2e 6a 6b b5 ce 4b 6c 78 5e e3 37 92 a3 cb e4 1b 0c 33 4f 78 79 a3 c7 ef 46 a4 b0 76 23 a5 d9 46 5e ff 00 d5 ee 97 0f d1 53 b6 6c 35 6c 53 de 4b a6 31 e5 f8 bb b5 20 f5 a8 b8 32 22 d5 d4 3d 5a b9 7d 5e c5 ca b0 ca 6f b0 6d 59 e8 2d b3 c4 db 42 44 d1 4b fc a3 9f ac 43 2e 56 fd 7f 4d 19 eb fd 51 21 1f 11 36 29 a8 4b 35 d4 Data Ascii: 7lanxt(Zo"2dKutN4.6*4-6>g/H.k{\|D<8HFjK#\O~[v[gAmEEQBR.bj{=#.jkKlx^73OxyFv#F^Sl5lSK1 2"=Z}^omY-BDKC.VMQ!6)K5

Timestamp	Bytes transferred	Direction	Data
2024-05-23 22:22:27 UTC	638	OUT	GET /photoworkspace/2024/05/06/2024050617583884766.jpg HTTP/1.1 Host: p1.img.cctvpic.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://new.aj848310310.workers.dev/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-05-23 22:22:28 UTC	547	IN	HTTP/1.1 200 OK Date: Thu, 23 May 2024 22:22:28 GMT Content-Type: image/jpeg Content-Length: 130120 Connection: close Expires: Fri, 24 May 2024 03:50:45 GMT Accept-Ranges: bytes ETag: "FB2DF3CEFBAE28ECFB8ECDD97C2B12BD" Last-Modified: Mon, 06 May 2024 09:59:50 GMT Cache-Control: max-age=86400 X-UA-Compatible: IE=EmulateIE7 Age: 1 X-Via: 1.1 PSxgHK5dz198:10 (Cdn Cache Server V2.0), 1.1 PShlamstdAMS1bm110:5 (Cdn Cache Server V2.0), 1.1 PS-VIE-01aIr81:5 (Cdn Cache Server V2.0) X-Ws-Request-Id: 664fc1a4_PS-VIE-01aIr81_14203-51410
2024-05-23 22:22:28 UTC	15196	IN	Data Raw: ff d8 ff e0 00 10 4a 46 49 46 00 01 01 00 00 01 00 01 00 00 ff db 00 84 00 05 03 04 08 08 08 08 08 08 08 06 09 09 09 08 08 08 08 08 08 08 08 08 08 08 08 08 07 07 07 07 08 08 08 07 0a 10 0d 07 08 0e 09 07 07 0d 15 0d 0e 11 11 13 13 13 07 0d 16 18 16 12 18 10 12 13 12 01 05 05 05 08 07 08 0d 09 09 0f 12 0d 0d 0d 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 15 12 12 12 12 12 12 12 12 15 12 15 15 ff c0 00 11 08 02 d0 05 00 03 01 22 00 02 11 01 03 11 01 ff c4 00 1d 00 00 01 04 03 01 01 00 00 00 00 00 00 00 00 00 00 04 02 03 05 06 00 01 07 08 09 ff c4 00 65 10 00 01 03 02 04 03 05 04 05 06 08 09 09 04 04 0f 01 00 02 03 04 11 05 12 21 31 06 13 41 07 22 51 61 71 14 32 81 91 08 23 42 52 a1 15 33 62 Data Ascii: JFIF"e!1A"Qaq2#BR3b
2024-05-23 22:22:28 UTC	16384	IN	Data Raw: 11 b5 cc b3 4f a2 ea 9d 87 56 d3 49 85 88 62 2d 12 c3 2c a2 a5 97 ef 67 92 47 3d 8f 3e 4e 66 41 7f d0 23 a2 e6 d5 91 5d a5 52 27 c6 eb f0 5a c1 5f 42 5a 1e d0 5b 24 6f 04 c5 3c 44 82 e8 a5 68 3a b4 90 0d fe cb 80 2a 45 51 47 af d4 0f 68 52 b6 3c 1f 15 7b 8d 9a cc 36 b9 ce 3e 0d 6d 24 c4 9d 3c 81 50 5d 95 f6 9b 87 71 04 37 a6 93 95 54 c1 fc 62 82 57 01 51 11 ea e6 0f e5 e1 fd 36 f8 eb 94 e8 80 fa 4b 63 ad a0 e1 ac 43 5e fd 5b 5b 41 0b 6e 06 77 55 1c 92 81 e9 4e 27 77 f5 13 0a 3c d7 d9 d8 bc 6c f4 0b a1 b6 2d 02 a4 f6 73 4d f5 6c f4 0b a2 36 1d 07 a2 c9 28 f2 18 17 29 67 29 1b ca 59 ca 41 b5 95 40 5c a5 9c a4 69 89 24 c4 aa 8a 05 6c 7f 24 ac 89 c2 16 25 30 92 10 d8 d6 f2 25 12 b4 0a 53 25 09 ca b3 2a 5d d6 81 4a 6a ca 30 04 44 41 32 d0 8c 85 aa e2 a8 76 28 Data Ascii: OVIb-,gG=>NfA#]R'Z_BZ[$o<Dh:EQGhR<{6>m$<P]q7TbWQ6KcC^[[AnwUN'w<l-sMl6()g)YA@\i$l$%0%S%]Jj0DA2v(
2024-05-23 22:22:28 UTC	616	IN	Data Raw: 58 a1 89 ba 74 68 54 5e 37 ec fa 92 5e 65 61 cb 1c 80 17 69 a6 a3 65 d0 6a a4 11 b5 72 de d9 78 9b d9 69 64 ef ee c2 00 bf 52 b3 e5 6a 4b b1 70 b4 f8 2b 98 16 2a 01 b6 76 96 b4 96 fa d9 5c b0 5a 86 b8 e8 77 d5 79 a7 86 f8 b3 24 83 5b dc 9f c7 c5 77 8e 02 ab 12 c6 25 07 57 04 11 c3 28 70 cd 52 fa 96 6a bc 3a e7 3e e2 f7 37 52 58 63 e8 65 1c b9 0f 2f a7 91 28 1f 6f fb 25 47 4d 1c 43 bd 76 8b 9b ee b5 42 54 25 c4 b0 d5 70 85 04 e6 c2 a1 a0 7c 82 0e a3 b3 16 9f cd 54 c4 e0 7c 5c 3e 48 3a 2a 88 8e 9c c6 df d5 16 e9 84 7a 89 1d af 81 d9 6d 83 8b 46 79 6f 5d 99 1e fe c7 ea 9d 33 43 64 61 6b b5 36 22 d6 1e 69 c6 70 d4 74 72 c9 14 81 92 16 6c fd fe 17 52 f4 f8 d4 cd 16 8e 57 da d6 1a ec 9a 9d c2 48 dd 7c c5 ef bf 79 46 a2 bb 03 bf 27 96 55 31 0a 58 a4 26 cd 68 17 Data Ascii: XthT^7^eaiejrxidRjKp+v\Zwy$[w%W(pRj:>7RXce/(o%GMCvBT%p\|T\|\>H:zmFyo]3Cdak6"iptrlRWH\|yF'U1X&h
2024-05-23 22:22:28 UTC	15807	IN	Data Raw: d3 48 06 ce 06 c8 63 39 55 9e 89 69 30 e4 f6 3a a6 15 c6 2e 23 eb 32 b9 bd 4f 80 f3 41 71 bf 0c b2 b6 36 d5 e1 e1 ad 94 6a f6 e8 04 80 f8 79 ae 7b 84 44 25 82 a0 4b 2b 98 f6 30 ba 36 de d9 dd e1 e6 11 9c 01 c4 f5 62 d0 3a 47 17 0e f8 1e 21 bb b5 23 51 38 cd 6c c8 bb 9c fc fe 98 a1 72 c4 f9 5d d7 86 33 15 4b a2 77 2a 66 b9 8f 06 c4 3b 43 e1 71 e4 a7 71 5a 58 a3 6c 66 37 67 2e 68 2e 3e 7e 09 aa ce 28 c3 b1 a3 24 2d 8d f1 d6 40 72 ea 2c 5e 46 fa f5 08 16 83 18 e5 bb de 6e 84 78 2e 0e 5c 0b 1d d7 2b c3 f6 33 b8 49 7d a5 4f d8 b2 60 72 f2 80 92 f9 9a 77 17 d5 aa ef 83 63 0c 9d b2 43 21 6b c3 98 43 41 ea 2d 6b 2e 63 85 cd a9 17 d1 db a9 77 b8 d2 e5 99 ba d8 8b fa 78 2e be 8b 55 49 1c dc f8 6d 9c 1b b7 8e 0e f6 4a f9 66 8b 2b 63 91 c4 b9 a3 41 7f 15 cb a7 a5 70 Data Ascii: Hc9Ui0:.#2OAq6jy{D%K+06b:G!#Q8lr]3Kw*f;CqqZXlf7g.h.>~($-@r,^Fnx.\+3I}O`rwcC!kCA-k.cwx.UImJf+cAp
2024-05-23 22:22:28 UTC	15807	IN	Data Raw: ea 4d c5 82 c8 69 9c da a9 1d 23 dc ce fb 4e c0 db 60 a8 b1 be 7a 03 20 cb f5 6d 77 76 fe 17 d9 5d bf 28 4a e2 5c e7 6a 4d d3 8d 88 54 df 9b 1e 68 c0 d4 db f5 95 a2 95 12 ea f7 76 02 c3 f1 9f aa 6d 54 45 a4 01 79 1b d4 7c 12 eb f8 f0 4c 1a d0 2d d0 0f 1f 82 8a c4 38 79 d0 be 49 29 1a f9 23 73 0f 35 ad 04 b5 a3 a1 5b c3 20 a5 01 b2 65 69 7b 5b 6c 8e b0 37 ea a4 a6 d7 06 37 82 0d ee 4a c9 da 2a b9 a6 6f d6 0c ad fc 0f 82 6e aa 9c 01 a7 c5 2a 97 16 86 6b 47 f9 a7 34 d8 35 da 03 f1 4b 7d 34 84 fb cd 23 c3 c7 d1 0d d9 51 54 fd 88 72 cb 3b 51 70 8c ab a6 8e a6 23 09 d0 9f 75 d6 f7 4a 38 d0 03 be e8 1a a0 62 3a 74 40 e3 46 94 d3 ec 54 c4 14 c5 d2 d2 4e d6 b5 e0 e5 6b f6 cc 3c 42 ab f1 1e 0d 2d 0f 7a 29 1d ca cc 3b a1 dd d2 6f a8 21 4c f1 d5 0c ad a9 15 7d e2 d7 Data Ascii: Mi#N`z mwv](J\jMThvmTEy\|L-8yI)#s5[ ei{[l77JonkG45K}4#QTr;Qp#uJ8b:t@FTNk<B-z);o!L}
2024-05-23 22:22:28 UTC	15807	IN	Data Raw: 05 a3 ca 05 ac 54 a6 c7 f0 87 e9 9b 14 5a 30 27 5d 30 2b 4e a4 21 36 c8 95 ed 06 d0 e5 d6 e2 05 2d ad b2 c7 3c 22 5c 14 63 9c 92 1c 99 99 f7 5a 8b 74 32 92 b2 e8 20 04 e3 5a 52 e2 62 5a 34 04 98 15 74 17 0a ad 8a 60 41 c0 c9 24 d0 c1 1d ec 24 94 ee 7c 18 d1 ab bf b1 59 b1 9a 9e 5b 7e 0b 9f f6 8b 88 b8 9a 60 3d c7 52 c6 e6 f8 12 4b 84 9f 1c e1 c3 e0 99 04 bb 80 ec 02 a7 06 a1 bf fd 37 4e df 2f 66 9b f7 a3 30 5c 2a 8c 19 0b 31 38 2a 9c d8 2a 5c d8 44 12 30 b9 cc a6 99 c0 87 38 d8 65 20 3b fa 8a 96 ca 09 25 37 52 38 3e 19 3b 24 fa b2 ec d9 24 bd b7 e5 98 9e 26 f8 72 f3 a6 da f6 02 99 d1 b8 60 82 d0 ad 41 ba 2a 7f 09 46 40 17 57 10 fd 12 25 c0 d8 a3 10 f2 cb 64 43 4a 6e a2 20 ef 22 81 c8 30 0a a8 44 ac 2b 9b 71 97 05 b6 7b f7 77 f2 5d 43 d9 08 d0 16 db cd 24 Data Ascii: TZ0']0+N!6-<"\cZt2 ZRbZ4t`A$$\|Y[~`=RK7N/f0\18\D08e ;%7R8>;$$&r`AF@W%dCJn "0D+q{w]C$
2024-05-23 22:22:28 UTC	15807	IN	Data Raw: bd 26 95 82 d9 5c 1a ec dd 7c 16 8c 79 25 17 40 34 9f 27 85 38 cf b2 d7 50 62 35 34 b9 f2 42 d2 64 a7 91 e6 e5 f0 9d 85 fa 91 b7 c1 23 86 30 33 01 71 a3 a9 cb 33 ec d7 39 c4 06 72 ef ad bc f7 5e ad ed 9b b2 a1 8a b1 b5 34 d2 f2 ea 22 69 6b 5a 4f 75 e0 f4 70 ea 17 9b 3b 41 ec e7 1e c1 e2 12 cb 4b 9e 22 75 92 9b 33 dc cf e9 34 0b d9 37 ad 91 ca bc 1a 71 38 be e4 77 14 62 13 c5 3c 50 49 37 32 06 30 b5 ee 02 c4 02 35 36 1a 12 aa 9f 95 e3 81 ee 10 e6 73 33 12 d2 77 d7 a9 bf c5 37 59 2c f2 45 cb 10 cc 5c 77 fa b7 dc 79 6d ba 3b 87 f8 03 16 ab 2d e5 d1 55 06 38 8e fb da 63 16 3d 7b d6 29 db a3 57 26 6d 8b a5 44 56 33 88 9a 86 81 a6 fd 3d 36 b2 80 7f 77 fb d9 7a 2f 85 7e 8d f5 55 36 35 75 d1 52 b3 42 5b 18 0e 94 8f 5e 85 74 ce 1f fa 32 f0 cc 44 3a a5 d5 b5 24 58 Data Ascii: &\\|y%@4'8Pb54Bd#03q39r^4"ikZOup;AK"u347q8wb<PI72056s3w7Y,E\wym;-U8c={)W&mDV3=6wz/~U65uRB[^t2D:$X
2024-05-23 22:22:28 UTC	15807	IN	Data Raw: 47 03 da d6 97 66 1f e6 ee bd 05 5d 47 71 aa 83 a7 e1 b6 cd 35 cc 6d ee eb b2 a8 37 07 c3 a2 b2 25 2e e4 47 03 e3 d8 ad 35 23 19 36 25 8d 4f 2b 86 69 24 a8 ae ab 99 d9 8e b9 5a 64 90 e5 1e 4a 7a 8f 8b ab 6e e1 2c f5 f2 b1 f0 54 42 e8 a4 a8 95 cc 3c f8 25 85 ae 2d 73 88 39 5c f6 bb fa 8a 5a 2e 1e fd 0b 24 3f 00 20 ec 9f 2d 57 d4 ce b0 58 ce 09 29 b0 fd aa 62 77 f7 7e 08 48 69 39 63 65 92 cd 6d 17 0b 57 35 67 4b 14 68 1b 35 d3 10 62 90 d2 3f 9d 2d 33 2a 0b 45 e3 8e 47 96 c6 d9 2e 08 7b 9a 01 e6 01 af 77 4d fc 93 95 33 00 ab 78 cc 85 cb 9f 1c 9d 36 a4 bb af a5 ff 00 53 5b 86 e8 d3 21 fb 4d e3 2c 47 14 bb 27 99 c2 20 6e da 78 af 1c 0d b6 c7 20 3d f2 3c 5c 5c 75 5c d4 61 45 c7 50 af 35 90 6a 6f b2 04 c6 c1 7f 15 a3 27 a9 37 cb 76 fd c4 43 4c 97 1d 91 60 fa 33 Data Ascii: Gf]Gq5m7%.G5#6%O+i$ZdJzn,TB<%-s9\Z.$? -WX)bw~Hi9cemW5gKh5b?-3*EG.{wM3x6S[!M,G' nx =<\\u\aEP5jo'7vCL`3
2024-05-23 22:22:28 UTC	16384	IN	Data Raw: 76 1b 03 5d a4 05 c4 75 b6 e7 c1 45 f0 d0 a1 8e 79 27 71 8b bc 74 66 9a 79 a1 f8 74 9f da 2b f6 d4 ab 88 9e 6c 7f 66 f5 c0 7e 61 a3 cf 29 43 ff 00 00 ea 43 ae e8 9c 40 f0 6a f6 41 c5 b0 f2 3f 92 23 c3 44 d3 2a b0 dd 80 80 5f c8 26 7c 34 7c 48 52 f5 fc 9e 62 78 ee 5e 18 73 6f f5 56 f5 6a 85 c4 78 4b 98 6e 34 f4 f1 5e d0 c5 e8 f0 b9 23 70 c9 01 24 58 5a d7 0a b6 ce 0b c2 64 1a 68 ee ba ec 85 e1 71 7f 2c 87 43 d7 1b ee 8f 1f cb c1 f2 83 7b 5c 78 f5 40 57 f0 cc ed d4 33 4f 15 ec 6a ee ce 70 f7 8e ec b9 4f 85 d5 6b 15 ec ce 36 b0 98 e6 6b ad 73 62 ad 4b 2c 79 bb 34 43 d5 a2 fb 9e 4e fc 93 28 f7 83 87 86 89 a3 86 4b f7 6e bb 67 12 e0 82 02 1b 95 ae 2e 7e 5b e9 a1 f1 43 1e 0f ce cb e6 65 fc 3c d1 2d 4c cd 90 f5 08 3e f4 71 73 46 e1 b8 29 26 0f 2f c1 75 91 c2 ed Data Ascii: v]uEy'qtfyt+lf~a)CC@jA?#D*_&\|4\|HRbx^soVjxKn4^#p$XZdhq,C{\x@W3OjpOk6ksbK,y4CN(Kng.~[Ce<-L>qsF)&/u
2024-05-23 22:22:28 UTC	2505	IN	Data Raw: 57 55 6e 6c 8e 00 6c 1a 6d 7f 32 ab 9c d5 a3 3a 06 a2 dd d0 1d 1b 0f 92 67 38 ea f7 9f 8a 5b 25 b7 9a 8b 33 ad 8a 90 89 86 b0 12 ed 9f ce cb 6e aa 77 de 77 cd 45 0a 94 be 72 53 29 e2 2c 78 7f 13 55 c1 ee cb 76 8f b2 ed 42 9b a5 ed 06 51 f9 d8 da ef 12 0e ea 82 67 05 29 b2 b5 22 58 63 2e e8 1e 87 d0 e8 33 f6 8e cb 77 61 75 fc 09 e8 ab 98 c7 68 95 8e 05 b1 35 b1 7e 96 e6 df b0 aa d5 44 83 a2 89 9a 7d fc fc 55 e2 d2 62 bb 6a fe f1 90 c0 8d d5 55 c9 23 cc 92 b9 d2 39 c6 f9 89 b9 f3 b2 62 59 ba 26 9e e4 d3 9e ba 5c 1a 63 84 5f 3e 46 fb ae 70 03 60 0d bf 52 2e 8f 89 ab e1 23 97 53 28 fd 12 6e 14 6b 8a 1a 47 21 96 38 cb ba 4f f0 0a 58 91 7b a0 ed 47 10 8f f3 9c a9 05 b6 3f af 65 2f 4f da d4 6e d2 7a 5b 8d 35 d0 8f 95 b4 5c a1 cf 49 59 e7 a1 c4 fc 7e 40 7c 3a f6 Data Ascii: WUnllm2:g8[%3nwwErS),xUvBQg)"Xc.3wauh5~D}UbjU#9bY&\c_>Fp`R.#S(nkG!8OX{G?e/Onz[5\IY~@\|:

Timestamp	Bytes transferred	Direction	Data
2024-05-23 22:22:27 UTC	638	OUT	GET /photoworkspace/2024/05/11/2024051117253591294.jpg HTTP/1.1 Host: p2.img.cctvpic.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://new.aj848310310.workers.dev/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-05-23 22:22:28 UTC	545	IN	HTTP/1.1 200 OK Date: Thu, 23 May 2024 22:22:28 GMT Content-Type: image/jpeg Content-Length: 180565 Connection: close Expires: Fri, 24 May 2024 10:24:59 GMT Accept-Ranges: bytes ETag: "9532AB2F7F1590ABA949700A7838270E" Last-Modified: Sat, 11 May 2024 09:26:04 GMT Cache-Control: max-age=86400 X-UA-Compatible: IE=EmulateIE7 Age: 1 X-Via: 1.1 dianxun231:1 (Cdn Cache Server V2.0), 1.1 PShlamstdAMS1iy111:9 (Cdn Cache Server V2.0), 1.1 PS-VIE-01Lw182:15 (Cdn Cache Server V2.0) X-Ws-Request-Id: 664fc1a4_PS-VIE-01aIr81_15672-51992
2024-05-23 22:22:28 UTC	5231	IN	Data Raw: ff d8 ff e0 00 10 4a 46 49 46 00 01 01 00 00 01 00 01 00 00 ff db 00 84 00 05 03 04 09 09 0d 09 09 09 09 09 09 09 08 08 07 08 08 08 08 08 07 08 08 08 08 07 07 07 07 07 07 07 07 07 0a 10 0e 07 08 0e 09 08 07 0d 15 0e 0e 11 11 13 13 13 07 0d 16 18 16 12 18 10 12 13 12 01 05 05 05 08 07 08 0f 09 09 0f 12 0d 10 0d 15 15 15 15 15 15 15 15 15 15 15 15 15 15 15 15 15 15 15 15 15 15 15 15 15 15 15 15 15 15 15 15 15 15 15 15 15 15 15 15 15 15 15 15 15 15 15 15 15 15 ff c0 00 11 08 02 d0 05 00 03 01 22 00 02 11 01 03 11 01 ff c4 00 1d 00 00 02 03 01 01 01 01 01 00 00 00 00 00 00 00 00 04 05 03 06 07 02 01 00 08 09 ff c4 00 68 10 00 01 02 04 03 04 05 08 06 06 05 05 0a 09 0a 07 02 01 03 00 04 11 12 05 21 22 06 13 31 32 41 42 51 52 61 07 23 62 71 72 81 91 f0 14 33 82 Data Ascii: JFIF"h!"12ABQRa#bqr3
2024-05-23 22:22:28 UTC	16384	IN	Data Raw: bc a2 76 82 24 36 e0 4d a6 60 24 ef 88 66 25 e0 72 66 d8 63 35 c6 21 28 c6 6a 46 63 01 f8 81 2a c0 58 8b f6 a4 10 fa e6 50 af 12 2d 25 15 1b 89 c0 96 95 bc 5a 60 a8 51 47 c6 df 22 bb 54 5a b1 ad 5f b3 15 1c 4d 33 8d 2d 35 1b 4e 4c 8f 34 89 56 9d 99 3a 96 a8 55 3f 32 44 9c da a2 c2 ec 91 38 b6 88 95 c4 51 74 d9 3f 26 04 ea 6f 1f b9 b0 bb 96 dd 44 9d ab 1b cb 7d 75 e3 30 6f 63 b0 98 9a c9 ba ea da 20 44 5e 8f f1 8b c6 c3 f9 2a 7d f5 13 74 6d 6f 2b 84 8a b9 2a e6 9c 3b 23 f4 0e 07 b0 72 81 6e ed b1 d3 d5 cb e3 16 b9 29 01 1d 22 36 c5 75 1e 2e f8 da 98 10 27 02 53 b6 13 60 e5 25 90 6c 6f 97 bc 29 d1 d8 be f8 d0 19 97 16 d3 4d b6 c7 b2 cd 0b 70 2b 78 9b 64 64 25 d5 8c 6b 35 1f f3 1e 4c 13 0c f5 38 99 90 12 5b ad bb ad 0b dc 73 76 42 d8 8f ec c5 99 10 69 a7 f8 Data Ascii: v$6M`$f%rfc5!(jFcXP-%Z`QG"TZ_M3-5NL4V:U?2D8Qt?&oD}u0oc D^}tmo+*;#rn)"6u.'S`%lo)Mp+xdd%k5L8[svBi
2024-05-23 22:22:28 UTC	16384	IN	Data Raw: f0 f9 ca 3b 61 33 84 11 8a d9 c7 cc 64 92 44 6c 0a 54 d3 d6 89 e5 04 bd 1f 67 ab f0 88 a5 16 0b 6b 8f b3 1e ab 48 a5 86 41 99 77 1c 49 a4 c4 47 97 9b ba 3c a2 ab d8 bd bf c2 1f e1 d6 db fd ad 4a a5 e3 c2 10 88 da 57 77 ba b9 69 f8 43 9c 21 cb 54 b5 0d a5 a8 44 72 b7 a1 51 69 9f 64 7a bf 0d 02 b6 02 65 6a b9 19 91 bd 30 f8 98 f2 ee cb 48 96 6b 72 f1 4a 2f 6d 3a 20 d6 27 da 22 b4 b9 ba a2 59 66 9e 1d be 10 62 36 25 6f 5a de 5f 45 29 4a fd d0 82 77 0d 02 21 74 be b5 b2 d3 6d 6d aa 2e 85 b2 b4 55 a2 d2 b1 ad 72 d9 5e 59 4c 45 71 67 07 89 2c db a3 aa d2 bb 52 f2 f5 7a 33 4e 85 ae 50 9e 70 b9 bb d0 6d d7 16 af 64 bd 2e ca d3 8d 3b 61 66 3e 82 0a 56 96 9c b4 fb b3 cd 7c 63 cb 78 a3 1b 2b 2c 7f b4 d5 d2 0c 30 58 0c e9 77 4a d2 f9 e3 15 9c 4b 13 2b 84 44 84 8c af Data Ascii: ;a3dDlTgkHAwIG<JWwiC!TDrQidzej0HkrJ/m: '"Yfb6%oZ_E)Jw!tmm.Ur^YLEqg,Rz3NPpmd.;af>V\|cx+,0XwJK+D
2024-05-23 22:22:28 UTC	16384	IN	Data Raw: d0 c8 b2 ce de a8 53 8e ab b8 52 99 c3 ba 2f 51 c0 07 6f b6 60 6e 72 47 3d cf 95 8d 56 8f 31 75 86 8a 23 4a 70 bd 78 41 2d b5 9f 58 84 69 ec 95 6d b1 51 3b aa 8b 5f 79 40 b3 48 22 97 96 bb 4b 56 a4 b8 6a 01 a1 0a 8a 89 55 ce 91 33 38 b8 12 75 89 44 93 ce 5a 96 f4 d0 d2 8b 54 1c e9 f2 b1 a7 a7 5a 6b 2d bc f3 16 72 e4 64 4e df 41 15 b0 84 ae 2f ab e9 e2 84 76 a2 f0 05 54 15 4d 50 26 0e e0 ef ca 5c 88 ae 1e a9 55 06 e3 df b9 62 56 b7 52 84 bf e3 04 94 c3 64 bf 57 71 90 b8 d8 e9 71 5c fa 97 13 77 79 f2 69 aa 75 b9 ba 22 79 96 50 9e 95 70 39 c4 8d b7 2d a1 0b 6d 18 3a 6a 06 b5 e2 8a 80 3e e8 d8 d3 a2 92 0a 91 c1 fe 50 0d 6b 0c a9 f8 81 cf ce be c2 4c 10 96 f7 e8 a5 71 4a 93 68 2e 38 c2 85 e0 eb 0e d6 a6 aa 97 25 c5 a6 e6 dc 1e 84 8c d7 6c 31 b3 9c 98 12 07 4b Data Ascii: SR/Qo`nrG=V1u#JpxA-XimQ;_y@H"KVjU38uDZTZk-rdNA/vTMP&\UbVRdWqq\wyiu"yPp9-m:j>PkLqJh.8%l1K
2024-05-23 22:22:28 UTC	9613	IN	Data Raw: b4 3b bf 9e 58 c8 f6 8f 1a 71 c2 2d 5d bc bd 90 ee 8f 46 d6 98 bb 5c 0f 52 d3 8f 6d 40 92 17 be df 5c 67 38 84 e9 b8 57 11 17 f2 88 95 c5 2e 98 f2 5e 5c 8c 90 44 6a 45 f8 74 ac 7a 5d 3e 95 69 11 2b 9c b6 0c 6f b2 f2 84 e1 72 fb 3f 18 d9 fc 9f e1 9b b4 1b 87 ad dd ed 8e 7c 98 6c 3d c8 d6 9e aa 7b 5d ab 1b 64 9e c7 36 36 da 30 0b aa 6b 4e 44 18 d4 04 ee 07 83 35 6a 41 f3 43 e8 fc f8 43 ac 3b 00 1e 52 e5 86 c3 b3 a2 49 05 a7 4b b4 73 12 b6 fd ed 91 29 98 66 d3 3b 2c a2 25 a9 bb bb cb 70 a7 ab a6 34 cd 9a da 61 74 44 ae f9 58 44 e6 c8 b6 5d 58 2e 57 67 05 b4 d3 75 d0 71 59 06 05 99 65 e5 a9 d1 24 8e d6 64 62 8c f1 be 09 a7 55 be e8 ad e2 fb 5b 38 d2 fd 41 17 b3 55 fb d2 1b 06 2e 44 d7 c2 60 7b d1 2a 2c 62 58 6f 94 87 2a 3b d6 1d 6f d2 21 d2 29 16 bc 1b ca 0b Data Ascii: ;Xq-]F\Rm@\g8W.^\DjEtz]>i+or?\|l={]d660kND5jACC;RIKs)f;,%p4atDXD]X.WguqYe$dbU[8AU.D`{,bXo;o!)
2024-05-23 22:22:28 UTC	16384	IN	Data Raw: 30 fa 88 8c 4e f0 40 45 c6 1e cc 4b 42 89 c9 72 15 8b 6d 90 0c 26 4d c8 33 e9 70 9e 55 eb 56 27 7c a2 bb 40 93 09 7e 6e 16 cc e2 24 31 d8 84 41 33 2f 74 44 83 03 77 68 6d 5d 30 a7 14 da 17 09 0a 0d 7a 47 38 19 30 db 96 22 5a 52 26 67 8a e1 74 8a d7 3a ae 5d 69 0d 3d 38 d1 b6 1f ca 70 8a b6 d4 cb a3 d0 3b c2 a2 7b d6 9f 8c 04 ce cc 86 a2 71 b1 3d e1 2d c3 c6 d4 ed 48 26 4b c9 bc b3 8a 3e 6f 4f ca d2 33 db 4e db f7 2c 65 6d 05 70 7a 9b 4e 17 8a b4 f8 a1 01 89 7b 24 8b f8 70 80 36 9e 53 7a 37 8e a2 1e 61 f4 22 9b b3 db 17 f4 35 b9 87 1c 11 2e 61 b9 6d 2c ea 95 45 f5 c5 a5 94 74 79 be 7b 61 fa 9d 87 06 28 ea 33 c4 73 25 2a 22 83 ee fb a0 ee 88 af a6 38 d0 a7 30 c2 8c 43 6c 5b 6f f5 83 cb 04 de 7d a5 0f 12 ec a7 1c a3 a3 5e 6f ca 31 fc 5b ca 73 62 b6 b5 73 8e Data Ascii: 0N@EKBrm&M3pUV'\|@~n$1A3/tDwhm]0zG80"ZR&gt:]i=8p;{q=-H&K>oO3N,empzN{$p6Sz7a"5.am,Ety{a(3s%*"80Cl[o}^o1[sbs
2024-05-23 22:22:28 UTC	8436	IN	Data Raw: 2f ce 51 ab ec c6 28 56 db dd a4 62 db a8 d8 f9 8f 79 01 84 d9 18 9e bb 96 3c 7f 12 70 7a a4 45 f9 45 3b 08 c4 bd 28 b7 e0 4e b6 e5 a3 0f 51 ab 06 23 7e 9b 12 69 4c 75 da fd 59 5b 0c 83 15 32 8b 46 09 86 b6 49 ca 30 dd 36 79 a2 ea f3 7a bf 84 3f 58 c8 99 f6 1c 4c f9 27 bd a8 2a 4e 62 e8 b3 4f ec b0 8a 5c 23 01 cb e1 a2 30 c2 a9 11 76 6c ce 64 da 2e 62 83 10 72 8f 10 23 d2 28 b4 1f 73 e6 9b b6 2c 98 59 e4 31 5c 12 86 72 0e f5 60 2d c7 30 c0 71 2c 41 11 4c b1 74 7d 29 05 a2 41 97 91 07 11 bd 21 01 3b 25 16 83 6c 60 69 89 58 e2 25 83 4a eb 63 6c 32 96 78 49 22 39 b9 42 80 c4 48 56 07 89 7c c6 4f 04 7c d2 da b1 cb 0a 44 91 db d2 c5 1d b6 52 4c e1 66 31 f1 0c 29 6d d2 ba db 79 69 07 cb 3a 44 56 8f 2f 7a 08 65 73 33 ec 03 1a df 80 ea 2b 9b ea 96 5f 84 59 a7 e6 Data Ascii: /Q(Vby<pzEE;(NQ#~iLuY[2FI06yz?XL'*NbO\#0vld.br#(s,Y1\r`-0q,ALt})A!;%l`iX%Jcl2xI"9BHV\|O\|DRLf1)myi:DV/zes3+_Y
2024-05-23 22:22:28 UTC	16060	IN	Data Raw: eb 17 ed 2f 4c 79 3f b4 2d b8 4e 34 3f 68 bc 7a 51 3d 50 24 b1 0d 74 c2 3b f7 1e 0c 61 53 68 e4 46 2c c9 93 9c c4 57 43 a9 0c 24 46 20 c1 75 15 df 35 8b 33 69 94 19 6b c4 a1 b0 c4 93 ad 10 27 d9 8a 86 34 f1 16 98 bd e2 4c dd a6 2b 53 18 46 ab 88 a2 18 4b 03 2b 12 52 42 45 77 37 0f ba 19 df 9d be 92 41 f3 0c 08 e9 1f e1 0a da 1d 63 ed 24 4c e3 2c f2 32 e3 1d cf 31 6c 15 28 ce 43 03 e2 ab 94 58 2e 25 01 8b e4 de b4 87 da 87 cc 6a 4f 8c 53 02 67 3f b5 16 cc 2d fb 84 62 eb 25 a4 ce 84 34 97 e5 18 56 6b 0d 65 b9 46 2f 04 d2 39 c6 6e 18 a9 e2 98 55 d1 73 54 88 49 81 8e 2b 91 39 4e 0c c9 f1 3c 24 86 e2 b6 15 28 fe d7 76 35 4c 6e 54 69 19 f4 f3 03 79 5b 19 77 20 56 e2 3f 56 58 66 2d 62 64 9b 5b a2 eb b3 d8 90 92 0d de 11 59 fa 14 72 c0 13 4b 70 c1 ab 3b 7b 83 b1 Data Ascii: /Ly?-N4?hzQ=P$t;aShF,WC$F u53ik'4L+SFK+RBEw7Ac$L,21l(CX.%jOSg?-b%4VkeF/9nUsTI+9N<$(v5LnTiy[w V?VXf-bd[YrKp;{
2024-05-23 22:22:28 UTC	16060	IN	Data Raw: 7e 3a 88 52 9b 8c 0d a9 d1 75 ef aa 13 12 20 2d 23 52 22 e7 45 45 a2 20 aa 29 21 78 c3 f6 25 40 56 e1 d2 3d 5b 4a a3 4b 78 25 32 54 45 52 cf d1 8a de 19 2e 57 df 5b 8c 7a c4 48 84 e2 70 a8 05 10 50 69 4c bb b6 a7 44 3f 69 e1 1d 36 f3 7a 29 c7 35 57 11 41 16 88 aa aa b4 f1 8a 68 2f 0c 84 be 39 24 89 7d 42 1c fa 61 32 a0 dd d7 69 b8 6c b4 9b ae f3 35 43 a5 f5 cd 6d 44 42 48 a8 6d 99 85 0f 9a ed e0 5a 37 52 d4 70 0d 41 ab 15 12 a0 8a 0e 22 db da 5d 89 0d 31 4c 43 76 3e 87 2d a4 5c d9 d0 e8 94 ae f2 e5 11 f4 af f0 8a 66 2c e0 ce 03 bb d7 c0 4d 91 5f a3 b6 42 a2 57 82 56 9a d6 e0 70 ad 44 a6 92 12 2a e7 58 61 f5 49 60 f2 f1 09 a6 a1 95 bc c3 3b c1 1b d2 db 8e bb bc de 69 6c 4a 89 e6 f5 23 b4 37 1c 56 c1 52 d5 b8 0b 50 90 d3 25 48 64 b2 a4 44 a4 0e 5c d1 5e e6 Data Ascii: ~:Ru -#R"EE )!x%@V=[JKx%2TER.W[zHpPiLD?i6z)5WAh/9$}Ba2il5CmDBHmZ7RpA"]1LCv>-\f,M_BWVpD*XaI`;ilJ#7VRP%HdD\^
2024-05-23 22:22:28 UTC	16384	IN	Data Raw: 8c 30 77 e2 e7 83 4f 45 33 0e 96 b5 61 fc b9 db 17 ad 08 30 37 9d c2 6a 18 39 89 27 c2 1a 3c 36 c5 0f 01 c6 c4 53 57 84 3a 1d a0 6c ba d1 af 45 8b d4 cc b2 b3 2c 2a 91 dc ab 77 2f b3 02 e1 33 42 ea 69 28 b2 48 4b 0c 69 d3 cc 46 df 4c ee 4e 58 45 35 0f 34 1c 29 6a 47 4b 6c 7a b0 f2 01 12 66 c9 89 b1 19 b7 47 ea c4 bf bb 15 8c 6b 19 c5 18 42 70 98 07 5a 1e b0 de 84 df b6 14 a1 a4 68 08 d0 f7 62 64 93 12 4f 8e 9e ae a4 b5 72 f5 41 ba 18 94 33 12 c0 b1 b9 99 b9 8d e8 dc d9 0b 77 7f 9b f5 51 23 57 92 c4 5f b0 6e 1b 8b 2d 5c 3d 7c 63 bc 3b 66 98 61 48 9b 01 1d 4b ca 3d 10 d1 65 72 b7 f8 40 56 b2 1b 32 c4 f1 29 7b 49 e5 1d 89 13 dd 3a 2e 11 da 85 6d b4 e6 e0 97 ae 9a f8 45 8f 66 f6 89 a9 d0 43 6c 48 7d 12 1a db eb 21 ca 10 6d 5e c3 35 36 a4 e1 8d c5 6f 36 77 78 Data Ascii: 0wOE3a07j9'<6SW:lE,*w/3Bi(HKiFLNXE54)jGKlzfGkBpZhbdOrA3wQ#W_n-\=\|c;faHK=er@V2){I:.mEfClH}!m^56o6wx

Timestamp	Bytes transferred	Direction	Data
2024-05-23 22:22:27 UTC	638	OUT	GET /photoworkspace/2024/04/30/2024043017005531784.jpg HTTP/1.1 Host: p1.img.cctvpic.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://new.aj848310310.workers.dev/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-05-23 22:22:28 UTC	544	IN	HTTP/1.1 200 OK Date: Thu, 23 May 2024 22:22:28 GMT Content-Type: image/jpeg Content-Length: 121411 Connection: close Expires: Fri, 24 May 2024 10:33:22 GMT Accept-Ranges: bytes ETag: "28BF905AF99AEDC61C19C3ADB173C919" Last-Modified: Tue, 30 Apr 2024 09:01:23 GMT Cache-Control: max-age=86400 X-UA-Compatible: IE=EmulateIE7 Age: 1 X-Via: 1.1 dianxun231:2 (Cdn Cache Server V2.0), 1.1 PShlamstdAMS1mi112:0 (Cdn Cache Server V2.0), 1.1 PS-VIE-01Lw182:5 (Cdn Cache Server V2.0) X-Ws-Request-Id: 664fc1a4_PS-VIE-01aIr81_15672-51993
2024-05-23 22:22:28 UTC	3772	IN	Data Raw: ff d8 ff e0 00 10 4a 46 49 46 00 01 01 00 00 01 00 01 00 00 ff db 00 84 00 05 03 04 08 08 08 08 08 06 08 06 09 08 08 08 08 08 08 08 08 07 08 08 08 08 08 08 07 07 07 07 08 08 07 07 0a 10 0d 07 08 0e 09 07 07 0d 15 0d 0e 11 11 13 13 13 07 0d 16 18 16 12 18 10 12 13 12 01 05 05 05 08 07 08 0f 09 09 0f 12 0d 0f 0d 12 12 12 12 12 12 12 15 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 15 15 15 12 12 12 12 12 15 15 12 15 15 12 15 15 15 15 ff c0 00 11 08 02 d0 05 00 03 01 22 00 02 11 01 03 11 01 ff c4 00 1d 00 00 01 05 01 01 01 01 00 00 00 00 00 00 00 00 00 03 01 02 04 05 06 00 07 08 09 ff c4 00 66 10 00 01 03 02 04 04 02 05 08 05 03 0c 0e 08 03 09 01 00 02 03 04 11 05 12 21 31 06 13 41 51 22 61 07 14 32 71 81 08 23 42 52 91 a1 b1 f0 15 Data Ascii: JFIF"f!1AQ"a2q#BR
2024-05-23 22:22:28 UTC	16384	IN	Data Raw: 1b 79 f7 ba d9 60 dc 43 b0 71 bd 93 c6 6f a6 53 93 05 9e a5 1c c0 a3 82 b1 94 38 b8 24 6a b4 54 75 97 b2 b5 4d 33 0e 4c 2d 13 25 86 e3 e8 aa 1c 43 0c 00 e6 6e 55 a0 12 5d 02 66 5d 49 ab 06 39 38 99 5a 9c 38 38 2c 9f 11 70 e0 70 25 a3 55 e8 f3 40 a1 cf 47 7f 68 2a 9a b3 64 33 51 e1 18 ae 05 23 6f 94 6d ba a1 6d ef e2 cd a2 f7 cc 4f 03 07 56 8f 7f 9a c7 e2 fc 26 09 25 ac cb 7b 9d 92 38 33 4c 72 26 79 bb 1c a4 c7 2a 9d 8a e0 32 46 4e 51 b2 a7 73 4b 74 76 8a a6 ec d1 19 16 91 54 90 ac e9 2b 88 59 d6 39 1e 29 2d d7 a6 ca 89 e1 be 46 de 6c 68 71 4f 35 a4 c3 31 4d b5 5e 71 47 56 36 72 b1 a5 af b5 b2 95 42 85 72 09 25 2e cf 59 a1 c5 46 9a ab ea 1a f0 7a af 21 a6 c5 ad 6d 7c fe c5 b4 c2 61 ae 30 b2 76 53 54 3e 17 0c c2 48 9a 64 16 b5 c9 3c bb e5 02 de 5b 2d ba 6c Data Ascii: y`CqoS8$jTuM3L-%CnU]f]I98Z88,pp%U@Ghd3Q#ommOV&%{83Lr&y2FNQsKtvT+Y9)-FlhqO51M^qGV6rBr%.YFz!m\|a0vST>Hd<[-l
2024-05-23 22:22:28 UTC	12044	IN	Data Raw: ef 1b 8f 88 eb af 9a 0b 38 70 f6 55 3d 64 11 6a d2 4d 9f a8 f5 1c 4f 86 c6 2f 2e 21 86 b0 13 60 5f 5b 4e d0 4f 60 5c fd d0 3f ab 4c 1b fb ad 83 7f f1 1a 5f fc c5 f9 88 ce 1a 3d 91 db c3 07 b2 a9 f8 8e 34 5b ff 00 0f c8 7e 91 7f b6 a7 0b ff 00 ca 3e 17 ff 00 e3 78 7f fe 7a 58 fd 27 f0 d3 88 63 38 87 86 5c e7 10 d6 b5 b8 d5 03 9c e7 38 d8 35 a0 4d 72 49 20 5b cd 7e 71 c5 c2 e7 b2 95 1f 0a 79 2a ff 00 e2 98 c6 ff 00 87 64 3f 49 1b c6 38 41 d1 b8 ae 10 49 36 00 62 14 a4 92 7a 0f 9c dd 1b 10 aa a5 ab 82 78 22 a9 a5 93 9b 0c 91 10 c9 a3 79 f9 c6 39 83 d9 76 eb f3 7a 2e 0f bf 45 a1 e1 be 14 31 b8 1b 75 08 4f c5 31 50 17 87 e4 b3 e9 7f 47 38 d9 92 36 e6 3d 02 f4 ca 4a bb 80 bc 47 80 e3 31 31 be e0 bd 32 82 b7 41 aa f2 93 ce a3 3e 0e cf d9 de de 4d a4 33 29 2c 95 Data Ascii: 8pU=djMO/.!`_[NO`\?L_=4[~>xzX'c8\85MrI [~qy*d?I8AI6bzx"y9vz.E1uO1PG86=JG112A>M3),
2024-05-23 22:22:28 UTC	16384	IN	Data Raw: 0e fa 8f b0 2f 33 c1 87 85 67 cc 5b 8c b2 29 2e 91 2d 96 6d a6 85 2a 1e d3 f9 e8 a8 b8 8b 03 64 d7 7c 5e 17 5b 56 9d 8f b9 5d 5d 73 8a af 26 25 24 5d 87 53 2c 72 b2 bf e4 c3 1c b4 9c 67 86 36 f9 1b 3b 2b e1 94 1d 03 d9 fa 3e a6 76 b7 7d 7e 76 08 4f c0 2f ba d7 c7 9e 86 a2 1f d5 46 12 eb 36 e2 59 ec 7a ff 00 bc 6a 42 fb 0d 6c d2 47 6c 2b e6 66 d6 cd 4e 7b 97 b1 cb f3 c3 8b b8 86 a2 2e 22 c7 8d 3b 9a 59 fa 73 15 2d 07 62 df d2 35 16 b7 6d 2c bf 43 d7 e7 07 0b f0 e5 6e 3b 8f d7 d2 e1 51 31 d3 cb 59 5f 51 96 49 19 1b 59 10 a9 7b 9c e7 39 c7 5b 66 68 b3 6f ba cf e2 58 dc e0 92 56 cb fc 32 4a 39 1b 7d 51 ea bc 2b c5 ee 92 31 a4 4d 7d bc 61 db 1e f6 3d 16 ca 93 16 04 0c ed c8 c7 9f 0b b5 ca 48 b5 ec 7b 8b 8f b4 2f 3f c6 bd 0f f1 2e 1b 11 95 f4 6e 9a 26 8b c8 ea Data Ascii: /3g[).-m*d\|^[V]]s&%$]S,rg6;+>v}~vO/F6YzjBlGl+fN{.";Ys-b5m,Cn;Q1Y_QIY{9[fhoXV2J9}Q+1M}a=H{/?.n&
2024-05-23 22:22:28 UTC	14276	IN	Data Raw: 72 69 93 1a cf 47 a4 ae 04 f8 0e fd 15 ed 16 22 41 1a af 32 c2 eb 32 9e eb 43 4f 8c 02 6d b1 5c cc 9a 4a e8 47 04 cf 53 c2 b1 53 70 1d a8 2b 44 d9 6e 2e d3 b8 5e 43 47 8a 16 eb 7b ad 2e 11 8c eb e1 7f 41 ba 10 9b c7 f0 c8 c3 9f 4a 99 be a4 c4 64 8f 47 e6 70 fc 15 b4 33 09 05 c2 c8 d1 e2 b1 c9 a3 b4 2a c6 3a ce 5e ad 37 1b ad d0 6a bb 39 59 74 d4 5f b9 a8 4e 62 89 41 8a 07 68 fd 15 8d 81 d7 a2 2d 5f 28 cb cc 5f 24 09 45 90 a7 37 00 76 52 6b 1a a1 b8 2a 9e 57 17 46 a8 3b e4 ab c6 30 78 ea 63 2c 78 d4 8d 1c 34 20 fb d6 61 9c 1f 47 48 04 8f 6b ea 26 7d 81 6b b5 0d 1d 4b 5a b7 4d 29 b2 46 1d ef ee b6 69 b2 63 ed a5 66 b8 6a 25 1e 2c c7 53 60 58 64 25 e6 a2 16 96 bd 84 b1 b6 f6 5d 63 71 f6 d9 56 4d c2 54 15 4c 6f a8 44 f7 57 48 6c e6 b3 f9 38 1b f5 dd d0 2d a1 Data Ascii: riG"A22COm\JGSSp+Dn.^CG{.AJdGp3:^7j9Yt_NbAh-_(_$E7vRkWF;0xc,x4 aGHk&}kKZM)Ficfj%,S`Xd%]cqVMTLoDWHl8-
2024-05-23 22:22:28 UTC	16384	IN	Data Raw: 06 ba 79 05 a1 4e c4 8b b4 43 a7 a8 9f 9c 59 39 6b cf 53 d0 1e 8a db 0c a7 74 95 71 cc e9 1d 9d 84 5b 5e 9f 54 2a 49 5b 28 90 c8 e0 f3 73 db 5f 7a b7 c0 a9 a5 ce 26 b3 d8 c6 9b dd e0 82 ef 70 28 85 96 18 fc f5 31 54 c9 48 c6 b9 c2 70 d7 86 01 ab 9c 4f 42 7a 22 19 ea a9 23 0d 9c b2 3b 78 79 6d b5 cd f4 24 fd ca 65 6d 49 87 36 21 59 23 79 d9 1d 15 3c 5f 4a e4 68 6c 7a ac 15 5d 3d 4c 92 17 ce 65 2e 71 be 67 3c 93 ae b6 1d 93 74 2e 27 6a 8d 75 5e 03 2b a1 e6 b2 a6 22 09 16 85 9e d9 2e 54 b2 c7 2d 33 c0 7b 65 61 3b 38 83 f7 10 a2 47 29 60 01 b2 3b 4e e4 ee a6 b7 89 2a a2 16 73 99 2c 5d 59 20 05 c3 f6 5d d1 2f 0c 6b 92 64 fa 1a 8e 5c 81 ef 3a 5e ce ee 41 e8 99 88 be 0e 6b db 14 6f 73 48 cc 24 be ee 3b 8d 75 42 e4 8a a8 bd 66 97 46 b3 f9 46 9f a2 a1 1c 47 5b 38 Data Ascii: yNCY9kStq[^TI[(s_z&p(1THpOBz"#;xym$emI6!Y#y<_Jhlz]=Le.qg<t.'ju^+".T-3{ea;8G)`;Ns,]Y ]/kd\:^AkosH$;uBfFFG[8
2024-05-23 22:22:28 UTC	14276	IN	Data Raw: db 16 ed 75 2c e2 4e 8e ee cd 9a 57 3c b9 e4 80 6e db 58 32 dd 00 47 c2 e1 9a a9 b2 c9 13 1a 44 5e d6 b6 b9 de c0 77 b2 5f 42 de 81 4d 3b ed c9 cc ee 4b 88 2f 67 72 35 07 ee 42 f5 c0 f9 c3 9c 1c 40 6d 80 60 2e 76 9b 68 13 39 b7 91 a1 e2 de 20 d7 5f 76 df a9 be d6 56 f4 38 a4 78 4d 4c e6 97 95 33 a5 8b 97 77 59 c1 81 db 91 e6 82 e4 69 7c 89 7c 2f 36 1f 3b aa 99 5a df 1e 5f 98 7b b4 c8 6d 63 be c6 ea bb 06 c3 e9 1d 2d 4b 6b e6 b4 14 ed 2e 6b 9b ed 48 75 b3 58 aa ea da 1c 73 5a c4 ea 4f 5d 75 51 5f 4f d4 1b fe 7a a3 b9 0c a0 99 63 4c f8 c4 73 06 7f 3c 72 b0 13 ac 6c 07 73 fa c4 59 34 3b 28 0d 69 b8 1a 5f 40 84 ca 57 c7 6c da 67 e8 a7 32 06 9b 7b 95 33 66 b8 41 16 fc 1c 29 8c d2 0a d7 5a 23 13 b2 93 60 03 c6 c7 cd 1f 02 c6 20 a4 15 31 cf 1b a5 6c c0 b6 37 75 Data Ascii: u,NW<nX2GD^w_BM;K/gr5B@m`.vh9 _vV8xML3wYi\|\|/6;Z_{mc-Kk.kHuXsZO]uQ_OzcLs<rlsY4;(i_@Wlg2{3fA)Z#` 1l7u
2024-05-23 22:22:28 UTC	16384	IN	Data Raw: c7 0d 3e 7a 3a 87 b2 bd b7 7c cd 2e 6b 9b a8 00 9d 0b be c5 6f 87 54 43 77 b9 99 5f 50 5c eb 0b 75 3e ca ed c3 44 ab e1 74 73 27 ac 97 36 ad 7e a6 6d dc 2a ea cd 6a 62 6d c8 d4 c8 7c 47 e0 36 50 71 cf 47 d4 70 51 4d 2d 34 4d 35 96 b4 4e 6b 89 b6 b7 3a 77 b5 fe d5 af c5 4d 45 3c 6c 3a 97 38 93 2b f7 b9 3a d8 76 ec aa f1 da c9 79 6d 9a 92 2c e0 02 d3 1f 5c dd ca ae 5a 6c 11 bf 86 e5 ee 3e 1d 66 79 38 b5 2a 8d fa 75 c7 a1 e5 3c 39 53 27 3c b7 d9 73 74 73 4e fa 79 15 b8 a0 96 57 1f 18 ca 06 de 68 35 fc 25 2d 64 62 a9 ff 00 d6 b5 8d 19 81 66 c7 f5 1d dd 50 50 d7 d5 c0 e2 c9 dd 99 c2 e1 c1 c2 d7 37 b5 db 7e 8b 80 f4 d3 c2 f9 4e 9f af f4 3b f2 d4 43 50 be 1a b5 d9 a4 9c 91 33 5e d3 a6 80 8f 35 37 1a 99 d7 6b 21 7b 8b dc 35 ca 76 f2 2a 87 12 c6 21 05 82 f6 70 6f Data Ascii: >z:\|.koTCw_P\u>Dts'6~mjbm\|G6PqGpQM-4M5Nk:wME<l:8+:vym,\Zl>fy8u<9S'<stsNyWh5%-dbfPP7~N;CP3^57k!{5v*!po
2024-05-23 22:22:28 UTC	5516	IN	Data Raw: 2e 31 fe 0e 93 5e be d5 42 59 7f da d7 f7 e8 c7 c6 bf fd bf 2f af fe 32 af e5 1b 5f 5b 17 16 96 61 55 15 10 54 54 d3 50 d3 35 d0 4c f8 5c f3 2b f2 c7 1b 9e d2 3c 25 f9 3e c5 8b c6 b1 8e 2f a2 e6 fa ed 57 12 42 d8 64 31 c8 f9 25 aa 11 35 e1 d9 6d ce be 47 02 7d 92 d3 e2 ba d8 fa 76 7d f8 da 85 df df 30 9f ba 76 af 5c f9 51 cf 7e 18 ad 1f df a9 3f d2 a2 48 f1 ee 73 95 b5 4d 9a 71 6b 23 86 1a 5c 6f 1c 66 b2 46 29 b6 b9 5c a5 fa 1f 38 70 7f 1f 63 6f c4 28 23 7e 2d 8a b9 8f ac a6 63 da ea b9 4b 5c d7 4e c0 e6 90 5d a8 20 91 65 f4 ef ca 43 11 a8 a5 e1 da c9 e8 a6 9e 09 99 25 2e 59 61 7b a3 91 a1 d5 50 87 59 cd d4 02 09 1f 15 f1 e7 05 7f c2 78 7f fc fa 97 fd 21 8b ea ff 00 95 1b ef c3 95 5f e1 e9 7f d2 1a a6 96 72 78 a6 ef fb a2 78 de 9b 1c 7c 43 4c a3 15 14 e4 Data Ascii: .1^BY/2_[aUTTP5L\+<%>/WBd1%5mG}v}0v\Q~?HsMqk#\ofF)\8pco(#~-cK\N] eC%.Ya{PYx!_rxx\|CL
2024-05-23 22:22:28 UTC	5991	IN	Data Raw: c6 d4 6f d5 db bf c2 cf 68 f4 ad c0 87 1d 6d 34 7e b3 ea fe af 24 8f bf 27 9b 9b 98 d6 b6 d6 ce db 5b 2f de b0 ed f9 3c 5f ff 00 e2 bf fe c5 ff 00 f9 96 3e 6f 4d 3c 40 0f 8a 6a 50 40 69 37 a4 83 4c c0 11 7b 0d 2f 71 f6 a6 8f 4e 18 ff 00 f6 fa 5f f3 48 7f 82 4c 99 b4 f3 7b a4 9d ff 00 7f 33 46 97 c3 7c 63 4f 8d 63 c5 92 0a 2b e8 fb fb 9b 37 78 5f a0 3f 56 a9 82 76 e2 79 f9 13 45 36 5f 54 b6 6e 5b da fc b7 e6 e9 7c ab 5f f2 8a 07 fa 9c ab 3f df 69 7f d2 58 bc 5b fd bc 71 ff 00 f8 cd 2f f9 a4 1f c1 56 71 5f a5 5c 63 13 a4 92 8a be 6a 77 41 23 98 e7 35 b4 f1 46 eb c6 e0 f6 d9 cd 17 1a 80 87 da 30 c6 12 8c 13 e5 7f 7e a3 af 08 f1 2c da 9c 79 75 13 8b 58 e4 9f b7 16 9b e9 2f 63 3f c1 5f f0 9e 1f ff 00 3e a4 ff 00 48 89 7d 47 f2 95 61 1c 3b 56 7f bf 52 ff 00 a4 Data Ascii: ohm4~$'[/<_>oM<@jP@i7L{/qN_HL{3F\|cOc+7x_?VvyE6_Tn[\|_?iX[q/Vq_\cjwA#5F0~,yuX/c?_>H}Ga;VR

Timestamp	Bytes transferred	Direction	Data
2024-05-23 22:22:29 UTC	665	OUT	GET /favicon.ico HTTP/1.1 Host: new.aj848310310.workers.dev Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://new.aj848310310.workers.dev/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: country_code=US; cna=oK/WHrBAuCICAQgue684aR4S
2024-05-23 22:22:29 UTC	1051	IN	HTTP/1.1 200 OK Date: Thu, 23 May 2024 22:22:29 GMT Content-Type: image/x-icon Content-Length: 1150 Connection: close CF-Ray: 888871e86ba91811-EWR CF-Cache-Status: HIT Accept-Ranges: bytes Age: 37268 Cache-Control: max-age=4272897 ETag: "0x8D8E9B8DA87465B" Expires: Thu, 11 Jul 2024 22:56:18 GMT Last-Modified: Thu, 18 Mar 2021 02:52:22 GMT Vary: Accept-Encoding cdncip: 209.127.110.214 cdnsip: 23.48.224.115 server-timing: cdn-cache; desc=HIT server-timing: edge; dur=1 server-timing: ak_p; desc="1716465681545_398664787_51016020_93_488_0_0_15";dur=1 x-ak-request-id: 0.5324c317.1716465681.30a7154 x-ua-compatible: IE=Edge,chrome=1 Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rbn5XvTranmH5%2BO9hRTJXZFoby8teZX3CvZ6q4hK%2BsK1oAXjAf9czHaXWpnYO1gSEh3hZ8USCKADizWXH2AhLLpeUGg%2BEGt7ksLFre1BFxITS%2BKHIjjgYk90V0aW%2BRvjsSV75NODK6VCLnreOis%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare alt-svc: h3=":443"; ma=86400
2024-05-23 22:22:29 UTC	318	IN	Data Raw: 00 00 01 00 01 00 10 10 00 00 01 00 20 00 68 04 00 00 16 00 00 00 28 00 00 00 10 00 00 00 20 00 00 00 01 00 20 00 00 00 00 00 00 04 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 73 73 73 02 15 15 15 3c 09 09 09 7e 06 06 06 ab 05 05 05 c3 00 00 00 c7 05 05 05 c1 07 07 07 a3 13 13 13 28 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 62 62 62 02 0e 0e 0e 64 04 04 04 dd 00 00 00 ff 00 00 00 ff 00 00 00 ff 00 00 00 ff 00 00 00 ff 00 00 00 ff 00 00 00 ff 06 06 06 91 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 24 24 24 14 07 07 07 bf 00 00 00 ff 00 00 00 ff 00 00 00 ff 02 02 02 f7 05 05 05 c3 06 06 06 9d 07 07 07 87 04 04 04 81 08 08 08 87 18 18 18 20 00 00 00 00 00 Data Ascii: h( sss<~(bbbd$$$
2024-05-23 22:22:29 UTC	832	IN	Data Raw: 00 00 00 00 00 00 00 00 08 08 08 a1 00 00 00 ff 00 00 00 ff 07 07 07 c5 2c 27 9d 34 21 18 d1 c7 1b 12 d0 ff 1b 12 d0 ff 1b 12 d0 ff 1b 12 d0 ff 1b 12 d0 ff 1b 12 d0 ff 22 1a d1 8d 00 00 00 00 00 00 00 00 1b 1b 1b 24 01 01 01 fd 00 00 00 ff 04 04 04 e1 2e 2a 8c 28 1d 15 d0 e5 1b 12 d0 ff 1b 12 d0 ff 1f 17 d1 d5 22 19 d1 8b 22 1a d1 6c 22 19 d1 6a 24 1b d1 70 37 2f d5 14 00 00 00 00 00 00 00 00 0a 0a 0a 74 00 00 00 ff 00 00 00 ff 0b 0b 0b 6a 22 1a d1 9b 1b 12 d0 ff 1b 12 d0 ff 25 1c d2 89 77 72 e3 02 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 03 03 03 9b 00 00 00 ff 00 00 00 ff 15 15 15 2e 1f 16 d0 e5 1b 12 d0 ff 1d 14 d0 fb 4f 48 da 08 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Data Ascii: ,'4!"$.*(""l"j$p7/tj"%wr.OH