Overview

URLxzq.xp510.com/cx/1508314/AdobeIllustratorCS5????????????????@38_11256.exe
IP121.41.10.159
ASNAS37963 Hangzhou Alibaba Advertising Co.,Ltd.
Location China
Report completed2017-03-21 05:36:58 CET
StatusLoading report..
urlQuery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/4.0; InfoPath.2; SV1; .NET CLR 2.0.50727; WOW64)
Referer
Pool
Access Levelpublic


Intrusion Detection Systems

Snort /w Sourcefire VRT No alerts detected
Suricata /w Emerging Threats Pro No alerts detected


Blacklists

Fortinet's Web Filter / fortiguard.com
Added / Verified Severity Host Comment
2017-03-212xzq.xp510.com/cx/1508314/AdobeIllustratorCS5????????????????@38_11256.exeMalware
MDL / malwaredomainlist.com No alerts detected
DNS-BH / malwaredomains.com No alerts detected
mnemonic secure DNS / mnemonic.no No alerts detected
OpenPhish / openphish.com No alerts detected
PhishTank / phishtank.com No alerts detected
Spamhaus DBL / spamhaus.org No alerts detected


Files Captured



Recent reports on same IP/ASN/Domain

Last 6 reports on IP: 121.41.10.159

Date UQ / IDS / BL URL IP
2017-03-26 18:14:430 - 0 - 3down.xiazai2.net/cx/1508314/%C3%93%C3%85%C2%BF%C3%A1PC%C2%BF%C3%8D%C2%BB%C2%A7%C2%B6% (...)121.41.10.159
2017-03-26 18:14:380 - 0 - 3down.xiazai2.net/cxc/2/360%E5%85%8D%E8%B4%B9wifi@60_112952.exe121.41.10.159
2017-03-26 18:10:090 - 0 - 1d1.xz.didown.com/cx/1508312/UC%E6%B5%8F%E8%A7%88%E5%99%A8%E7%94%B5%E8%84%91%E7%89%88@ (...)121.41.10.159
2017-03-26 18:09:470 - 0 - 3down.xiazai2.net/cx/1508314/%C3%8B%C3%91%C2%B9%C2%B7%C3%86%C2%B4%C3%92%C3%B4%C3%8A%C3 (...)121.41.10.159
2017-03-26 18:09:450 - 0 - 3down.xiazai2.net/cx/1508314/%C2%BF%C2%AA%C3%84%C2%BFcapp%C3%88%C3%AD%C2%BC%C3%BE6.0%C (...)121.41.10.159
2017-03-26 18:09:430 - 0 - 3down.xiazai2.net/cx/1508314/%C3%90%C3%87%C2%BA%C3%85%C3%83%C3%9C%C3%82%C3%AB%C2%B2%C3 (...)121.41.10.159

Last 6 reports on ASN: AS37963 Hangzhou Alibaba Advertising Co.,Ltd.

Date UQ / IDS / BL URL IP
2017-03-26 18:45:510 - 0 - 12www.189zx.com/121.40.128.14
2017-03-26 18:30:560 - 0 - 15www.wep123.com/120.25.98.68
2017-03-26 18:30:140 - 0 - 5www.tongruiwenshi.com/139.129.155.147
2017-03-26 18:29:520 - 0 - 6www.totaltech.com.cn/112.125.94.104
2017-03-26 18:25:500 - 0 - 5www.lkbeng.com.cn/121.199.61.135
2017-03-26 18:24:210 - 0 - 1url.tudown.com/down/%E9%85%B7%E7%8B%97%E6%B6%88%E9%99%A4%E5%8E%9F%E9%9F%B3%E6%8F%92%E4%BB%B6@25 (...)123.57.144.183

Last 6 reports on domain: xzq.xp510.com

Date UQ / IDS / BL URL IP
2017-03-25 12:32:520 - 0 - 1xzq.xp510.com/cx/1508314/Windows%C2%B8%C3%BC%C3%90%C3%82%C3%87%C3%A5%C3%80%C3%AD%C2%B9%C2%A4%C2 (...)121.42.224.176
2017-03-24 12:34:280 - 0 - 1xzq.xp510.com/cx/1508314/WinRAR64%CE%BB%28rar%C2%BD%C3%A2%D1%B9%C3%88%C3%AD%C2%BC%C3%BE%29v5.30 (...)121.42.224.176
2017-03-24 12:34:010 - 0 - 1xzq.xp510.com/cx/1508314/DirectX9.0C%C2%B9%D9%B7%C2%BD%C3%96%C3%90%C3%8E%C4%B0%C3%A6@38_18222.e (...)121.41.10.159
2017-03-23 13:33:110 - 0 - 1xzq.xp510.com/cx/1508314/AutoCAD200864%CE%BB%C2%BC%C3%B2%C3%8C%C3%A5%C3%96%C3%90%C3%8E%C3%84%D7 (...)121.43.97.175
2017-03-22 21:57:480 - 0 - 1xzq.xp510.com/cx/1508314/SnagIt12%E4%B8%AD%E6%96%87%E7%89%88%28%E6%88%AA%E5%9B%BE%E5%B7%A5%E5%8 (...)121.42.224.176
2017-03-22 21:54:250 - 0 - 1xzq.xp510.com/cx/1508314/winrar64rarv5.30beta6@38_13495.exe121.41.10.159



JavaScript

Executed Scripts (14)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (28)


Request Response
GET /cx/1508314/AdobeIllustratorCS5????????????????@38_11256.exe HTTP/1.1

Host: xzq.xp510.com

User-Agent: Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/4.0; InfoPath.2; SV1; .NET CLR 2.0.50727; WOW64)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
 121.41.10.159
HTTP/1.1 403 Forbidden
Content-Type: text/html
Server: Beaver
Cache-Control: no-cache
Content-Length: 594
Connection: close
GET /favicon.ico HTTP/1.1

Host: xzq.xp510.com

User-Agent: Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/4.0; InfoPath.2; SV1; .NET CLR 2.0.50727; WOW64)
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
 121.41.10.159
HTTP/1.1 403 Forbidden
Content-Type: text/html
Server: Beaver
Cache-Control: no-cache
Content-Length: 594
Connection: close
GET /alww.html HTTP/1.1

Host: batit.aliyun.com

User-Agent: Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/4.0; InfoPath.2; SV1; .NET CLR 2.0.50727; WOW64)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://xzq.xp510.com/cx/1508314/AdobeIllustratorCS5????????????????@38_11256.exe
 42.120.158.95
HTTP/1.1 200 OK
Content-Type: text/html; charset=gbk
Server: Tengine
Date: Tue, 21 Mar 2017 04:35:53 GMT
Content-Length: 335
Last-Modified: Wed, 16 Mar 2016 08:22:48 GMT
Connection: close
Accept-Ranges: bytes
GET /markets/aliyun/beian/blocking/pc HTTP/1.1

Host: m.aliyun.com

User-Agent: Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/4.0; InfoPath.2; SV1; .NET CLR 2.0.50727; WOW64)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://batit.aliyun.com/alww.html
 140.205.172.5
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
Date: Tue, 21 Mar 2017 04:35:55 GMT
Content-Length: 286
Connection: keep-alive
Location: https://m.aliyun.com/markets/aliyun/beian/blocking/pc
Server: Tengine/Aserver
Timing-Allow-Origin: *
GET /favicon.ico HTTP/1.1

Host: xzq.xp510.com

User-Agent: Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/4.0; InfoPath.2; SV1; .NET CLR 2.0.50727; WOW64)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
 121.41.10.159
HTTP/1.1 403 Forbidden
Content-Type: text/html
Server: Beaver
Cache-Control: no-cache
Content-Length: 594
Connection: close
POST /gsorganizationvalsha2g2 HTTP/1.1

Host: ocsp2.globalsign.com

User-Agent: Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/4.0; InfoPath.2; SV1; .NET CLR 2.0.50727; WOW64)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 111
Content-Type: application/ocsp-request
 104.16.28.216
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 21 Mar 2017 04:36:05 GMT
Content-Length: 1570
Connection: keep-alive
Set-Cookie: __cfduid=dab8ae60a484b35cdf578faaa9afcc82f1490070965; expires=Wed, 21-Mar-18 04:36:05 GMT; path=/; domain=.globalsign.com; HttpOnly
Last-Modified: Tue, 21 Mar 2017 00:53:51 GMT
Expires: Sat, 25 Mar 2017 00:53:51 GMT
Etag: "d93a1ec4951bd0d140cb110950a80d118640c544"
Cache-Control: public, no-transform, must-revalidate
CF-Cache-Status: HIT
Server: cloudflare-nginx
CF-RAY: 342e354ce64042c1-OSL
GET /markets/aliyun/beian/blocking/pc HTTP/1.1

Host: m.aliyun.com

User-Agent: Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/4.0; InfoPath.2; SV1; .NET CLR 2.0.50727; WOW64)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://batit.aliyun.com/alww.html
 140.205.172.5
HTTP/1.1 200 OK
Content-Type: text/html;charset=UTF-8
Date: Tue, 21 Mar 2017 04:36:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: JSESSIONID=L1666Y61-5V6JCAFMVAEA13YXFW7Y1-U7AS1J0J-7MB3; Path=/; HttpOnly maliyun_temporary_console0=1AbLByOMHeZe3G41KYd5Wej6WxsydPxWHW%2Bmu5mg1q6RSFToIGzDOkwD56wwUai7WuylAj7KYMP1b2aX7XK8Yx0P104n5r0LsUTTL47mCWznGRSMzlShxq8A3CBNVGiec%2B6RmpDSwKQ%2FucQvQrhd1w%3D%3D; Path=/; HttpOnly
Content-Language: zh-CN
Content-Encoding: gzip
Server: Tengine/Aserver
Strict-Transport-Security: max-age=31536000
Timing-Allow-Origin: *
POST /gsorganizationvalsha2g2 HTTP/1.1

Host: ocsp2.globalsign.com

User-Agent: Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/4.0; InfoPath.2; SV1; .NET CLR 2.0.50727; WOW64)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 111
Content-Type: application/ocsp-request
Cookie: __cfduid=dab8ae60a484b35cdf578faaa9afcc82f1490070965
 104.16.28.216
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 21 Mar 2017 04:36:15 GMT
Content-Length: 1570
Connection: keep-alive
Last-Modified: Tue, 21 Mar 2017 02:30:08 GMT
Expires: Sat, 25 Mar 2017 02:30:08 GMT
Etag: "cb81775941965db1eb33b0858b8370cc4f056706"
Cache-Control: public, no-transform, must-revalidate
CF-Cache-Status: EXPIRED
Server: cloudflare-nginx
CF-RAY: 342e358a759442c1-OSL
GET /??aliyun/www-dpl/0.3.52/knight/css/cloud.icons.css HTTP/1.1

Host: g.alicdn.com

User-Agent: Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/4.0; InfoPath.2; SV1; .NET CLR 2.0.50727; WOW64)
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://m.aliyun.com/markets/aliyun/beian/blocking/pc
 213.244.178.240
HTTP/1.1 200 OK
Content-Type: text/css
Server: Tengine
Content-Length: 2186
Connection: keep-alive
Date: Tue, 21 Mar 2017 04:06:14 GMT
Vary: Accept-Encoding
x-oss-request-id: 58D0A6B61C5C86D35D70D9CB
x-oss-object-type: Normal
Content-MD5: mDVq6ndbcoFqsHm6asaopQ==
x-oss-server-time: 4
Cache-Control: max-age=2592000,s-maxage=3600
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Via: cache31.l2de1[0,200-0,H], cache63.l2de1[0,0], cache8.nl1[0,200-0,H], cache6.nl1[1,0]
Age: 1801
X-Cache: HIT TCP_MEM_HIT dirn:-2:-2
X-Swift-SaveTime: Tue, 21 Mar 2017 04:23:09 GMT
X-Swift-CacheTime: 2585
Timing-Allow-Origin: *
EagleId: d5f4b28614900709759187802e
GET /??aliyun/www-dpl/0.3.52/knight/css/product.icons.css HTTP/1.1

Host: g.alicdn.com

User-Agent: Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/4.0; InfoPath.2; SV1; .NET CLR 2.0.50727; WOW64)
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://m.aliyun.com/markets/aliyun/beian/blocking/pc
 213.244.178.240
HTTP/1.1 200 OK
Content-Type: text/css
Server: Tengine
Content-Length: 9608
Connection: keep-alive
Date: Tue, 21 Mar 2017 04:28:31 GMT
Vary: Accept-Encoding
x-oss-request-id: 58D0ABEF3458890F7D75D9E4
x-oss-object-type: Normal
Content-MD5: r/o3nNmG2d7IR+dcO+S+1w==
x-oss-server-time: 8
Cache-Control: max-age=2592000,s-maxage=3600
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Via: cache21.l2de1[0,200-0,H], cache35.l2de1[0,0], cache6.nl1[32,200-0,M], cache6.nl1[33,0]
Age: 464
X-Cache: MISS TCP_REFRESH_MISS dirn:-2:-2
X-Swift-SaveTime: Tue, 21 Mar 2017 04:36:15 GMT
X-Swift-CacheTime: 3136
Timing-Allow-Origin: *
EagleId: d5f4b28614900709758987801e
GET /??aliyun/www-dpl/0.3.52/knight/css/global.css,aliyun/www-dpl/0.3.49/knight/css/dpl.css,aliyun/www-dpl/0.3.49/knight/css/iconfont.css,aliyun/www-dpl/0.3.49/knight/css/widget/topbar.css,aliyun/www-dpl/0.3.49/knight/css/widget/cloud_helper.css,aliyun/www-dpl/0.3.49/knight/css/widget/common-header.css,aliyun/www-dpl/0.3.49/knight/css/widget/footer.css HTTP/1.1

Host: g.alicdn.com

User-Agent: Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/4.0; InfoPath.2; SV1; .NET CLR 2.0.50727; WOW64)
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://m.aliyun.com/markets/aliyun/beian/blocking/pc
 213.244.178.240
HTTP/1.1 200 OK
Content-Type: text/css
Server: Tengine
Content-Length: 16764
Connection: keep-alive
Date: Tue, 21 Mar 2017 04:26:16 GMT
Vary: Accept-Encoding
x-oss-request-id: 58D0AB68D6F6954C0473487D
x-oss-object-type: Normal
Content-MD5: t+F8WARk6yHqPGQjwoSWWA==
x-oss-server-time: 2
Cache-Control: max-age=2592000,s-maxage=3600
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Via: cache62.l2de1[0,200-0,H], cache35.l2de1[0,0], cache4.nl1[32,200-0,M], cache6.nl1[34,0]
Age: 599
X-Cache: MISS TCP_REFRESH_MISS dirn:-2:-2
X-Swift-SaveTime: Tue, 21 Mar 2017 04:36:15 GMT
X-Swift-CacheTime: 3001
Timing-Allow-Origin: *
EagleId: d5f4b28614900709758737799e
GET /aliyun/www-dpl/0.3.49/knight/js/components/cloud_helper/cloud_helper_config.js?v=20151019 HTTP/1.1

Host: g.alicdn.com

User-Agent: Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/4.0; InfoPath.2; SV1; .NET CLR 2.0.50727; WOW64)
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://m.aliyun.com/markets/aliyun/beian/blocking/pc
 213.244.178.240
HTTP/1.1 200 OK
Content-Type: application/javascript
Server: Tengine
Content-Length: 2790
Connection: keep-alive
Date: Tue, 21 Mar 2017 03:55:56 GMT
Vary: Accept-Encoding
x-oss-request-id: 58D0A44C4F2AB47F7955692B
x-oss-object-type: Normal
Content-MD5: 66fMINOKEOXHKwzWMWjWkA==
x-oss-server-time: 2
Cache-Control: max-age=2592000,s-maxage=3600
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Via: cache39.l2de1[0,200-0,H], cache39.l2de1[0,0], cache5.nl1[0,200-0,H], cache6.nl1[1,0]
Age: 2419
X-Cache: HIT TCP_MEM_HIT dirn:-2:-2
X-Swift-SaveTime: Tue, 21 Mar 2017 04:23:10 GMT
X-Swift-CacheTime: 1966
Timing-Allow-Origin: *
EagleId: d5f4b28614900709759587804e
GET /aliyun/console/1.3.17/styles/product-icons.css HTTP/1.1

Host: g.alicdn.com

User-Agent: Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/4.0; InfoPath.2; SV1; .NET CLR 2.0.50727; WOW64)
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://m.aliyun.com/markets/aliyun/beian/blocking/pc
 213.244.178.240
HTTP/1.1 200 OK
Content-Type: text/css
Server: Tengine
Content-Length: 2908
Connection: keep-alive
Date: Tue, 21 Mar 2017 03:55:56 GMT
Vary: Accept-Encoding
x-oss-request-id: 58D0A44C1B023A9338741198
x-oss-object-type: Normal
Content-MD5: oQ/+zwYgfMzqbpci0KG3Ng==
x-oss-server-time: 10
Cache-Control: max-age=2592000,s-maxage=3600
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Via: cache19.l2de1[0,200-0,H], cache45.l2de1[0,0], cache8.nl1[0,200-0,H], cache6.nl1[1,0]
Age: 2419
X-Cache: HIT TCP_MEM_HIT dirn:-2:-2
X-Swift-SaveTime: Tue, 21 Mar 2017 04:23:09 GMT
X-Swift-CacheTime: 1967
Timing-Allow-Origin: *
EagleId: d5f4b28614900709759597805e
GET /??aliyun/www-dpl/0.4.54/knight/js/help/observer.js HTTP/1.1

Host: g.alicdn.com

User-Agent: Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/4.0; InfoPath.2; SV1; .NET CLR 2.0.50727; WOW64)
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://m.aliyun.com/markets/aliyun/beian/blocking/pc
 213.244.178.240
HTTP/1.1 200 OK
Content-Type: application/javascript
Server: Tengine
Content-Length: 271
Connection: keep-alive
Date: Tue, 21 Mar 2017 04:06:14 GMT
Vary: Accept-Encoding
x-oss-request-id: 58D0A6B6692AD73354741C4B
x-oss-object-type: Normal
Content-MD5: zVJyAJ1dESIo1z0Iw+Zd1Q==
x-oss-server-time: 5
Cache-Control: max-age=2592000,s-maxage=3600
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Via: cache18.l2de1[0,200-0,H], cache63.l2de1[0,0], cache9.nl1[0,200-0,H], cache6.nl1[1,0]
Age: 1801
X-Cache: HIT TCP_MEM_HIT dirn:-2:-2
X-Swift-SaveTime: Tue, 21 Mar 2017 04:23:09 GMT
X-Swift-CacheTime: 2585
Timing-Allow-Origin: *
EagleId: d5f4b28614900709759607806e
GET /tbc/global/0.0.8/index-min.css HTTP/1.1

Host: g.alicdn.com

User-Agent: Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/4.0; InfoPath.2; SV1; .NET CLR 2.0.50727; WOW64)
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://m.aliyun.com/markets/aliyun/beian/blocking/pc
 213.244.178.240
HTTP/1.1 200 OK
Content-Type: text/css
Server: Tengine
Content-Length: 657
Connection: keep-alive
Date: Tue, 21 Mar 2017 04:34:08 GMT
x-oss-request-id: 58D0AD4016C7B04458761842
Accept-Ranges: bytes
x-oss-object-type: Normal
x-oss-bucket-storage-type: standard
X-Source-Scheme: https
Last-Modified: Tue, 16 Jun 2015 05:12:00 GMT
Cache-Control: max-age=315360000,s-maxage=3600
Access-Control-Allow-Origin: *
Via: cache60.l2de1[0,304-0,H], cache63.l2de1[0,0], cache4.nl1[7,200-0,H], cache6.nl1[9,0]
Age: 128
X-Cache: HIT TCP_REFRESH_HIT dirn:10:644723915
X-Swift-SaveTime: Tue, 21 Mar 2017 04:36:16 GMT
X-Swift-CacheTime: 3472
Timing-Allow-Origin: *
EagleId: d5f4b28614900709759947810e
GET /tms/layouts/0.1.8/layout-hangye-pc.css HTTP/1.1

Host: g.alicdn.com

User-Agent: Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/4.0; InfoPath.2; SV1; .NET CLR 2.0.50727; WOW64)
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://m.aliyun.com/markets/aliyun/beian/blocking/pc
 213.244.178.240
HTTP/1.1 200 OK
Content-Type: text/css
Server: Tengine
Content-Length: 929
Connection: keep-alive
Date: Tue, 21 Mar 2017 03:53:37 GMT
x-oss-request-id: 58D0A3C105CAD29DBA54D74A
Accept-Ranges: bytes
x-oss-object-type: Normal
Content-MD5: HZ7Voe+VxobH1BUwJgGgNg==
x-oss-server-time: 2
Cache-Control: max-age=2592000,s-maxage=3600
Access-Control-Allow-Origin: *
Via: cache48.l2de1[0,200-0,H], cache6.l2de1[0,0], cache1.nl1[0,200-0,H], cache6.nl1[1,0]
Age: 2559
X-Cache: HIT TCP_MEM_HIT dirn:9:12207616
X-Swift-SaveTime: Tue, 21 Mar 2017 03:54:37 GMT
X-Swift-CacheTime: 3540
Timing-Allow-Origin: *
EagleId: d5f4b28614900709760167814e
GET /ali-mod/??wb-zc-xfali-main/0.0.11/index.js HTTP/1.1

Host: g.alicdn.com

User-Agent: Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/4.0; InfoPath.2; SV1; .NET CLR 2.0.50727; WOW64)
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://m.aliyun.com/markets/aliyun/beian/blocking/pc
 213.244.178.240
HTTP/1.1 200 OK
Content-Type: application/javascript
Server: Tengine
Content-Length: 453
Connection: keep-alive
Date: Tue, 21 Mar 2017 04:26:16 GMT
Vary: Accept-Encoding
x-oss-request-id: 58D0AB6810222AED3C748E89
x-oss-object-type: Normal
Content-MD5: miO6Fj2OjfLSxUvSEUSOJQ==
x-oss-server-time: 2
Cache-Control: max-age=2592000,s-maxage=3600
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Via: cache22.l2de1[0,200-0,H], cache63.l2de1[0,0], cache4.nl1[7,200-0,M], cache6.nl1[9,0]
Age: 600
X-Cache: MISS TCP_REFRESH_MISS dirn:8:702241489
X-Swift-SaveTime: Tue, 21 Mar 2017 04:36:16 GMT
X-Swift-CacheTime: 3000
Timing-Allow-Origin: *
EagleId: d5f4b28614900709760267817e
GET /??kissy/k/6.2.1/seed-min.js,tbc/global/0.0.8/index-min.js,aliyun/ali-init/0.0.1/index-min.js,aliyun/www-dpl/0.3.44/knight/js/vendor/jquery-1.11.3.min.js,aliyun/ali-init/0.0.2/lib/jquery.selectric-min.js,aliyun/ali-init/0.0.3/lib/jquery.icheck-min.js HTTP/1.1

Host: g.alicdn.com

User-Agent: Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/4.0; InfoPath.2; SV1; .NET CLR 2.0.50727; WOW64)
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://m.aliyun.com/markets/aliyun/beian/blocking/pc
 213.244.178.240
HTTP/1.1 200 OK
Content-Type: application/javascript
Server: Tengine
Content-Length: 70857
Connection: keep-alive
Date: Tue, 21 Mar 2017 04:26:16 GMT
Vary: Accept-Encoding
x-oss-request-id: 58D0AB68A676F4D71C7629BF
x-oss-object-type: Normal
Content-MD5: P7NUR3VMHXykibYzZJJf4A==
x-oss-server-time: 1
Cache-Control: max-age=2592000,s-maxage=3600
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Via: cache48.l2de1[0,200-0,H], cache23.l2de1[0,0], cache2.nl1[31,200-0,M], cache6.nl1[32,0]
Age: 600
X-Cache: MISS TCP_REFRESH_MISS dirn:-2:-2
X-Swift-SaveTime: Tue, 21 Mar 2017 04:36:16 GMT
X-Swift-CacheTime: 3000
Timing-Allow-Origin: *
EagleId: d5f4b28614900709760247815e
GET /ali-mod/??wb-zc-xfali-main/0.0.11/index.css HTTP/1.1

Host: g.alicdn.com

User-Agent: Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/4.0; InfoPath.2; SV1; .NET CLR 2.0.50727; WOW64)
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://m.aliyun.com/markets/aliyun/beian/blocking/pc
 213.244.178.240
HTTP/1.1 200 OK
Content-Type: text/css
Server: Tengine
Content-Length: 686
Connection: keep-alive
Date: Tue, 21 Mar 2017 04:36:16 GMT
Vary: Accept-Encoding
x-oss-request-id: 58D0ADC004A5E66E2275F7E9
x-oss-object-type: Normal
Content-MD5: onovS3fJaGxtxvid4Ht6mA==
x-oss-server-time: 1
Cache-Control: max-age=2592000,s-maxage=3600
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Via: cache23.l2de1[215,200-0,M], cache63.l2de1[215,0], cache8.nl1[246,200-0,M], cache6.nl1[247,0]
X-Cache: MISS TCP_REFRESH_MISS dirn:-2:-2
X-Swift-SaveTime: Tue, 21 Mar 2017 04:36:16 GMT
X-Swift-CacheTime: 3600
Timing-Allow-Origin: *
EagleId: d5f4b28614900709760157813e
GET /??aliyun/www-dpl/0.3.49/knight/js/base-all.js,aliyun/www-dpl/0.3.49/knight/js/widget/common-header.js HTTP/1.1

Host: g.alicdn.com

User-Agent: Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/4.0; InfoPath.2; SV1; .NET CLR 2.0.50727; WOW64)
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://m.aliyun.com/markets/aliyun/beian/blocking/pc
 213.244.178.240
HTTP/1.1 200 OK
Content-Type: application/javascript
Server: Tengine
Content-Length: 102380
Connection: keep-alive
Date: Tue, 21 Mar 2017 04:36:15 GMT
Vary: Accept-Encoding
x-oss-request-id: 58D0ADBF50F640FE2D742CDC
Accept-Ranges: bytes
x-oss-object-type: Normal
Content-MD5: 8SE9oiIIhv72ePl0mNdnAA==
x-oss-server-time: 4
Cache-Control: max-age=2592000,s-maxage=3600
Access-Control-Allow-Origin: *
Via: cache16.l2de1[0,200-0,H], cache35.l2de1[0,0], cache4.nl1[8,200-0,M], cache6.nl1[9,0]
Age: 1
X-Cache: MISS TCP_REFRESH_MISS dirn:-2:-2
X-Swift-SaveTime: Tue, 21 Mar 2017 04:36:16 GMT
X-Swift-CacheTime: 3599
Timing-Allow-Origin: *
EagleId: d5f4b28614900709760257816e
GET /kg/??datalazyload/2.0.2/index-min.js HTTP/1.1

Host: g.alicdn.com

User-Agent: Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/4.0; InfoPath.2; SV1; .NET CLR 2.0.50727; WOW64)
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://m.aliyun.com/markets/aliyun/beian/blocking/pc
 213.244.178.240
HTTP/1.1 200 OK
Content-Type: application/javascript
Server: Tengine
Content-Length: 2852
Connection: keep-alive
Date: Tue, 21 Mar 2017 04:02:34 GMT
Vary: Accept-Encoding
x-oss-request-id: 58D0A5DAC90C02E3387164DA
x-oss-object-type: Normal
Content-MD5: 6FhMDOWyhwc0+HF+2qRD5Q==
x-oss-server-time: 48
Cache-Control: max-age=2592000,s-maxage=3600
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Via: cache40.l2de1[0,200-0,H], cache8.l2de1[0,0], cache7.nl1[0,200-0,H], cache6.nl1[1,0]
Age: 2022
X-Cache: HIT TCP_MEM_HIT dirn:-2:-2
X-Swift-SaveTime: Tue, 21 Mar 2017 04:12:12 GMT
X-Swift-CacheTime: 3022
Timing-Allow-Origin: *
EagleId: d5f4b28614900709767217852e
GET /kissy/k/6.2.1/??node-min.js,dom-base-min.js,query-selector-base-min.js,event-dom-base-min.js,event-base-min.js,event-gesture-min.js,anim-timer-min.js,anim-base-min.js,promise-min.js HTTP/1.1

Host: g.alicdn.com

User-Agent: Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/4.0; InfoPath.2; SV1; .NET CLR 2.0.50727; WOW64)
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://m.aliyun.com/markets/aliyun/beian/blocking/pc
 213.244.178.240
HTTP/1.1 200 OK
Content-Type: application/javascript
Server: Tengine
Transfer-Encoding: chunked
Connection: keep-alive
Date: Tue, 21 Mar 2017 04:36:16 GMT
Vary: Accept-Encoding
x-oss-request-id: 58D0ADC05CC59A88A158D863
x-oss-object-type: Normal
Content-MD5: KtCaLAHEApoZYjurK3UGrA==
x-oss-server-time: 2
Cache-Control: max-age=2592000,s-maxage=3600
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Via: cache33.l2de1[213,200-0,M], cache56.l2de1[213,0], cache6.nl1[245,200-0,M], cache6.nl1[247,0]
X-Cache: MISS TCP_REFRESH_MISS dirn:8:95745655
X-Swift-SaveTime: Tue, 21 Mar 2017 04:36:16 GMT
X-Swift-CacheTime: 3600
Timing-Allow-Origin: *
EagleId: d5f4b28614900709767217851e
GET /s/aplus_v2.js HTTP/1.1

Host: s.tbcdn.cn

User-Agent: Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/4.0; InfoPath.2; SV1; .NET CLR 2.0.50727; WOW64)
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://m.aliyun.com/markets/aliyun/beian/blocking/pc
 195.59.70.250
HTTP/1.1 200 OK
Content-Type: application/javascript
Server: Tengine
Content-Length: 1888
Connection: keep-alive
Date: Tue, 21 Mar 2017 03:53:29 GMT
Vary: Accept-Encoding
x-oss-request-id: 58D0A3B96075479E326F8A66
x-oss-object-type: Normal
Content-MD5: KFWCAjgn3DnGKh/IZnOLgw==
x-oss-server-time: 3
Cache-Control: max-age=7200
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Via: cache9.l2de1[0,200-0,H], cache49.l2de1[1,0], cache6.uk1[0,200-0,H], cache9.uk1[0,0]
Age: 2568
X-Cache: HIT TCP_MEM_HIT dirn:4:386088970
X-Swift-SaveTime: Tue, 21 Mar 2017 03:55:54 GMT
X-Swift-CacheTime: 3455
Expires: Tue, 21 Mar 2017 06:36:17 GMT
Timing-Allow-Origin: *
EagleId: c33b46d114900709772025954e
GET /alilog/s/6.1.11/aplus_v2.js HTTP/1.1

Host: g.alicdn.com

User-Agent: Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/4.0; InfoPath.2; SV1; .NET CLR 2.0.50727; WOW64)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://m.aliyun.com/markets/aliyun/beian/blocking/pc
Origin: https://m.aliyun.com
 213.244.178.240
HTTP/1.1 200 OK
Content-Type: application/javascript
Server: Tengine
Content-Length: 25699
Connection: keep-alive
Date: Tue, 21 Mar 2017 04:23:38 GMT
Vary: Accept-Encoding
x-oss-request-id: 58D0AACA94200676AD588C2C
x-oss-object-type: Normal
Content-MD5: /M2nKbyQQp8Hl76sOc9YPQ==
x-oss-server-time: 1
Cache-Control: max-age=2592000,s-maxage=3600
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Via: cache47.l2de1[0,200-0,H], cache63.l2de1[1,0], cache5.nl1[0,200-0,H], cache6.nl1[1,0]
Age: 759
X-Cache: HIT TCP_MEM_HIT dirn:-2:-2
X-Swift-SaveTime: Tue, 21 Mar 2017 04:23:52 GMT
X-Swift-CacheTime: 3586
Timing-Allow-Origin: *
EagleId: d5f4b28614900709773937874e
GET /secdev/entry/index.js?t=206954 HTTP/1.1

Host: g.alicdn.com

User-Agent: Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/4.0; InfoPath.2; SV1; .NET CLR 2.0.50727; WOW64)
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://m.aliyun.com/markets/aliyun/beian/blocking/pc
 213.244.178.240
HTTP/1.1 200 OK
Content-Type: application/javascript
Server: Tengine
Content-Length: 438
Connection: keep-alive
Date: Tue, 21 Mar 2017 04:02:56 GMT
x-oss-request-id: 58D0A5F0D106617F185447FB
Accept-Ranges: bytes
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 1361838533456252923
Content-MD5: RQUi1lzS0GcfydNbWK1Tow==
x-oss-server-time: 10
Cache-Control: max-age=2592000,s-maxage=3600
Access-Control-Allow-Origin: *
Via: cache23.l2de1[0,200-0,H], cache6.l2de1[0,0], cache1.nl1[0,200-0,H], cache6.nl1[1,0]
Age: 2003
X-Cache: HIT TCP_MEM_HIT dirn:7:14024485
X-Swift-SaveTime: Tue, 21 Mar 2017 04:02:57 GMT
X-Swift-CacheTime: 3599
Timing-Allow-Origin: *
EagleId: d5f4b28614900709792677958e
GET /secdev/adblk/index.js?v=1715 HTTP/1.1

Host: g.alicdn.com

User-Agent: Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/4.0; InfoPath.2; SV1; .NET CLR 2.0.50727; WOW64)
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://m.aliyun.com/markets/aliyun/beian/blocking/pc
 213.244.178.240
HTTP/1.1 200 OK
Content-Type: application/javascript
Server: Tengine
Content-Length: 1893
Connection: keep-alive
Date: Tue, 21 Mar 2017 04:32:00 GMT
Vary: Accept-Encoding
x-oss-request-id: 58D0ACC0110528DBDC5806C1
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 4784294843197107184
Content-MD5: wPWXnzDWvP+8+KEfhnh6Bw==
x-oss-server-time: 1
Cache-Control: max-age=2592000,s-maxage=3600
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Via: cache53.l2de1[0,200-0,H], cache13.l2de1[0,0], cache1.nl1[0,200-0,H], cache6.nl1[1,0]
Age: 259
X-Cache: HIT TCP_MEM_HIT dirn:-2:-2
X-Swift-SaveTime: Tue, 21 Mar 2017 04:32:00 GMT
X-Swift-CacheTime: 3600
Timing-Allow-Origin: *
EagleId: d5f4b28614900709793057963e
GET /secdev/sufei_data/2.2.0/index.js HTTP/1.1

Host: g.alicdn.com

User-Agent: Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/4.0; InfoPath.2; SV1; .NET CLR 2.0.50727; WOW64)
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://m.aliyun.com/markets/aliyun/beian/blocking/pc
 213.244.178.240
HTTP/1.1 200 OK
Content-Type: application/javascript
Server: Tengine
Content-Length: 17720
Connection: keep-alive
Date: Tue, 21 Mar 2017 03:46:32 GMT
Vary: Accept-Encoding
x-oss-request-id: 58D0A218F163CB567E702382
Accept-Ranges: bytes
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 15313830097482303144
Content-MD5: PlT2L3N+azdT0PXaQAEQrw==
x-oss-server-time: 1
Cache-Control: max-age=2592000,s-maxage=3600
Access-Control-Allow-Origin: *
Via: cache23.l2de1[0,200-0,H], cache63.l2de1[0,0], cache4.nl1[0,200-0,H], cache6.nl1[0,0]
Age: 2987
X-Cache: HIT TCP_MEM_HIT dirn:0:711929135
X-Swift-SaveTime: Tue, 21 Mar 2017 03:46:35 GMT
X-Swift-CacheTime: 3597
Timing-Allow-Origin: *
EagleId: d5f4b28614900709793067965e
GET /eg.js HTTP/1.1

Host: log.mmstat.com

User-Agent: Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/4.0; InfoPath.2; SV1; .NET CLR 2.0.50727; WOW64)
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://m.aliyun.com/markets/aliyun/beian/blocking/pc