Overview

URL baozifenjiage.com/xwfb/tplb/584606.htm
IP104.164.177.166
ASNAS18779 EGIHosting
Location United States
Report completed2019-03-21 05:22:03 CET
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2019-03-21 2 baozifenjiage.com/xwfb/tplb/584606.htm Malware
2019-03-21 2 www.baozifenjiage.com/xwfb/tplb/584606.htm Malware
2019-03-21 2 www.baozifenjiage.com/dbs/ad/WWW.BAOZIFENJIAGE.COM/base.js Malware
2019-03-21 2 www.baozifenjiage.com/dbs/stat/WWW.BAOZIFENJIAGE.COM.js Malware
2019-03-21 2 www.baozifenjiage.com/js/script.js Malware
2019-03-21 2 www.baozifenjiage.com/js/sara_a.js Malware
2019-03-21 2 www.kbf68.com/ Malware
2019-03-21 2 js.users.51.la/19125061.js Malware
2019-03-21 2 www.baozifenjiage.com/js/jquery-1.9.0.min.js Malware
2019-03-21 2 www.baozifenjiage.com/js/jquery-1.9.0.min.js Malware
2019-03-21 2 www.baozifenjiage.com/js/script.js Malware
2019-03-21 2 js.users.51.la/19637641.js Malware
2019-03-21 2 js.users.51.la/19674401.js Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 104.164.177.166

Date UQ / IDS / BL URL IP
2019-06-06 10:04:34 +0200
0 - 0 - 2 baozifenjiage.com/interjishu 104.164.177.166
2019-05-30 21:44:04 +0200
0 - 0 - 2 baozifenjiage.com/xxgk/rsxx 104.164.177.166
2019-05-07 05:43:55 +0200
0 - 0 - 9 baozifenjiage.com/xwfb/zjjdt/584191.htm 104.164.177.166
2019-05-05 16:04:49 +0200
0 - 0 - 1 www.baozifenjiage.com/xxgk/kyxmgl201709042043 (...) 104.164.177.166
2019-05-05 16:02:30 +0200
0 - 0 - 1 www.baozifenjiage.com/xwfb/zjjdt/ttdt20170904 (...) 104.164.177.166
2019-04-25 16:44:50 +0200
0 - 0 - 10 baozifenjiage.com/zcfg/fg 104.164.177.166
2019-04-22 20:07:52 +0200
0 - 0 - 1 baozifenjiage.com/zcfg/fg/xf/index.htm 104.164.177.166
2019-04-22 18:24:49 +0200
0 - 0 - 1 www.baozifenjiage.com/xxgk/ghjh20170904204343 (...) 104.164.177.166
2019-04-22 02:10:20 +0200
0 - 0 - 3 baozifenjiage.com/xxgk/gksq/sqzn2017090420475 (...) 104.164.177.166
2019-04-21 21:56:34 +0200
0 - 0 - 1 www.baozifenjiage.com/xwfb/zjjdt/ttdt20170904 (...) 104.164.177.166

Last 10 reports on ASN: AS18779 EGIHosting

Date UQ / IDS / BL URL IP
2019-06-19 08:01:04 +0200
0 - 0 - 0 ameli-fr.xyz/fr 68.68.98.58
2019-06-18 12:37:38 +0200
1 - 1 - 0 quadrant-com.com//Nb/mailbox/?email=1234@loc.gov 23.27.196.35
2019-06-14 10:14:00 +0200
0 - 0 - 0 www.zenithfestival.com 107.164.128.169
2019-06-12 20:23:12 +0200
0 - 0 - 0 www.gubusoft.com/bzh.php 142.111.177.155
2019-06-11 00:54:15 +0200
0 - 0 - 7 qutmll8.com/reg.htm--view-87a00dbe1614481e.html 103.232.215.144
2019-06-11 00:52:49 +0200
0 - 0 - 6 www.chaopeng88.cc/ 103.232.215.150
2019-06-11 00:49:17 +0200
0 - 0 - 6 www.chaopeng88.cc/se_files/alog.mobile.min.js.htm 103.232.215.150
2019-06-11 00:48:19 +0200
0 - 0 - 1 chinajianzhan.cn/js/ 104.253.79.230
2019-06-11 00:48:06 +0200
0 - 0 - 2 utilbada.com/down2/file_down.php 172.120.191.23
2019-06-11 00:47:26 +0200
0 - 0 - 1 www.18zusou.com/include/8519/1951/7015 172.252.19.55

Last 10 reports on domain: baozifenjiage.com

Date UQ / IDS / BL URL IP
2019-06-06 10:04:34 +0200
0 - 0 - 2 baozifenjiage.com/interjishu 104.164.177.166
2019-05-30 21:44:04 +0200
0 - 0 - 2 baozifenjiage.com/xxgk/rsxx 104.164.177.166
2019-05-07 05:43:55 +0200
0 - 0 - 9 baozifenjiage.com/xwfb/zjjdt/584191.htm 104.164.177.166
2019-05-05 16:04:49 +0200
0 - 0 - 1 www.baozifenjiage.com/xxgk/kyxmgl201709042043 (...) 104.164.177.166
2019-05-05 16:02:30 +0200
0 - 0 - 1 www.baozifenjiage.com/xwfb/zjjdt/ttdt20170904 (...) 104.164.177.166
2019-04-25 16:44:50 +0200
0 - 0 - 10 baozifenjiage.com/zcfg/fg 104.164.177.166
2019-04-22 20:07:52 +0200
0 - 0 - 1 baozifenjiage.com/zcfg/fg/xf/index.htm 104.164.177.166
2019-04-22 18:24:49 +0200
0 - 0 - 1 www.baozifenjiage.com/xxgk/ghjh20170904204343 (...) 104.164.177.166
2019-04-22 02:10:20 +0200
0 - 0 - 3 baozifenjiage.com/xxgk/gksq/sqzn2017090420475 (...) 104.164.177.166
2019-04-21 21:56:34 +0200
0 - 0 - 1 www.baozifenjiage.com/xwfb/zjjdt/ttdt20170904 (...) 104.164.177.166


JavaScript

Executed Scripts (39)


Executed Evals (12)

#1 JavaScript::Eval (size: 3, repeated: 2) - SHA256: fd0ad9026eee596b7072a762941f60bef57e760a230edd450b3a634825685c2a

                                        (1)
                                    

#2 JavaScript::Eval (size: 173, repeated: 3) - SHA256: a1d5043c4c192eb25bbbcc0efd0d7b3ad7ebe95a8160e0e4a2a284df65767d1c

                                        (function() {
    if (typeof G_PLAYER_INIT.checkSwfInterface == 'undefined') {
        return 'undefined';
    } else if (G_PLAYER_INIT.checkSwfInterface()) {
        return 'true';
    } else {
        return 'false';
    }
})()
                                    

#3 JavaScript::Eval (size: 265, repeated: 1) - SHA256: 71fed61f353e8524f22c5e2fed982ef6e24f3bcf42d8359004164a331c9f132d

                                        ({
    "rl": "1176*885",
    "lang": "en-US",
    "ct": "unknow",
    "pf": 1,
    "ins": 0,
    "vd": 2,
    "ce": 1,
    "cd": 24,
    "ds": "",
    "ing": 2,
    "ekc": "",
    "sid": 1553142079190,
    "tt": "��Zi��T�@",
    "kw": "",
    "cu": "http://www.kbf68.com/",
    "pu": "http://www.kbf28.com/ad/bbj.html"
})
                                    

#4 JavaScript::Eval (size: 265, repeated: 1) - SHA256: 7bc4167b89f907e3a7b087576e04331e6522ba793a57b8c5607edee4671e6875

                                        ({
    "rl": "1176*885",
    "lang": "en-US",
    "ct": "unknow",
    "pf": 1,
    "ins": 1,
    "vd": 1,
    "ce": 1,
    "cd": 24,
    "ds": "",
    "ing": 1,
    "ekc": "",
    "sid": 1553142079190,
    "tt": "��Zi��T�@",
    "kw": "",
    "cu": "http://www.kbf68.com/",
    "pu": "http://www.kbf28.com/ad/bbj.html"
})
                                    

#5 JavaScript::Eval (size: 118, repeated: 2) - SHA256: e862e5ea3c2a7e940c82dae70515bd0f56b903a47d2b61c1d7cbe1fd9489d04b

                                        ({
        "rl": "1176*885",
        "lang": "en-US",
        "ct": "unknow",
        "pf": 1,
        "ins": 1,
        "vd": 1,
        "ce": 1,
        "cd": 24,
        "ds": "�S�app
                                    

#6 JavaScript::Eval (size: 59, repeated: 1) - SHA256: a2693a74af1b500a8e4d0f9a2148db282a94c6fbabc2fde420574b57493af15c

                                        ({
    "sid": 1553142079190,
    "vd": 1,
    "expires": 1553143879190
})
                                    

#7 JavaScript::Eval (size: 59, repeated: 1) - SHA256: 048bb4613d8b32ef7a24d7a32860cc15a6b82ac28243b189c534879c26818295

                                        ({
    "sid": 1553142079190,
    "vd": 2,
    "expires": 1553143879202
})
                                    

#8 JavaScript::Eval (size: 4, repeated: 5) - SHA256: 5b8d2b991d2c1f5bf78beb557d17e6650086a267e5ffd4bb6f8aaa942c570f5d

                                        ({})
                                    

#9 JavaScript::Eval (size: 247, repeated: 1) - SHA256: d0aeadccd41938e702d6b40bf10c4a5b73f467ceb738b929b66dc8c2ee8fabd7

                                        [{
    url: "",
    start: 0,
    autoplay: 1,
    quality: 0,
    qualitystr: "000",
    qualitytype: 0,
    subStart: 0,
    subEnd: 0,
    title: "",
    vcut: 0,
    submovieid: 0,
    skipMovieHeadTime: 0,
    skipMovieEndTime: 0,
    streamtype: 0,
    posterUrl: "",
    totleByte: 0,
    totleTime: 0,
    sliceTime: 0,
    finalSub: 0,
    frontpageUrl: ""
}]
                                    

#10 JavaScript::Eval (size: 9993, repeated: 1) - SHA256: 0eddef77e3187d5c0b0e1f990ea5c13a1a67b3c7e2c7290a0161f25d9bd0aefd

                                        function println() {}

function _wdEC() {}

function fesc(a) {
    var b = new String(a);
    return escape(b)
}

function wdhex(a) {
    var c, d, b = "";
    for (d = 7; d >= 0; d--) c = 15 & a >>> 4 * d, b += c.toString(16);
    return b
}

function wdHash(a) {
    var b, c, d, e;
    if (!a || "" == a) return 1;
    for (b = 1732584193, c = 4023233417, d = 0; d < a.length; d++) e = parseInt(a.charCodeAt(d)), b = (b << 6 | c >>> 26) + (b << 16 | c >>> 16) - b, c = 4294967295 & e + (c << 6) - c + (c << 16);
    return wdhex(2147483647 & b) + wdhex(c)
}

function wdGenCID() {
    return wdHash(document.location + document.cookie + document.referrer + navigator.userAgent + curtime.getTime())
}

function getCookie(a) {
    var e, b = null,
        c = document.cookie,
        d = c.indexOf(a);
    return -1 != d && (d += a.length + 1, e = c.indexOf(";", d), -1 == e && (e = c.length), b = c.substring(d, e)), b
}

function wdFlash() {
    var j, fl, v = "",
        n = navigator;
    if (n.plugins && n.plugins.length) {
        for (j = 0; j < n.plugins.length; j++)
            if (-1 != n.plugins[j].name.indexOf("Shockwave Flash")) {
                v = n.plugins[j].description.split("Shockwave Flash ")[1];
                break
            }
    } else if (window.ActiveXObject)
        for (j = 10; j >= 2; j--) try {
            if (fl = eval("new ActiveXObject('ShockwaveFlash.ShockwaveFlash." + j + "');")) {
                v = j + ".0";
                break
            }
        } catch (e) {}
    return v
}

function send_ref(a) {
    a = _wdCA + a, Aimg = new Image(1, 1), Aimg.src = a, Aimg.onload = _wdEC
}

function wd_tracker(a) {
    if (setup_data(), a && "" != a) {
        var b = _wdSL;
        0 != a.toLowerCase().indexOf("http") && (a = _wdLP + "//" + _wdHost + a), _wdSL = a, _wdRP = b
    }
    write_ref()
}

function wd_reptracker(a) {
    setup_data(), a && "" != a && (_wdSL = _wdLP + "//" + _wdHost + a), write_ref()
}

function getmetaContents(a) {
    var c, b = document.getElementsByTagName("meta");
    for (c in b)
        if (b[c].name == a) return b[c].content
}

function setup_metadata() {
    try {
        var a = getmetaContents("author");
        a && "" != a && (a = fesc(a), _wdSL += -1 == _wdSL.indexOf("?") ? "?" : "&", _wdSL += "_wdmd=" + a)
    } catch (b) {}
}

function wd_paramtracker(a) {
    var b, c;
    "_wdxid=undefined" != a && (reset_param(), setup_data(), setup_metadata(), a && "" != a && (_wdSL = -1 == _wdSL.indexOf("?") ? _wdSL + "?" + a : _wdSL + "&" + a), b = _webdigObj.url, c = a.split("="), "01002006070" == c[1].substr(0, 11) && (_webdigObj.comment = _webdigObj.getMeta("keywords"), b += "_wdcm=" + escape(_webdigObj.comment) + "&"), b && "" != b && (_wdSL += -1 == _wdSL.indexOf("?") ? "?" + b : "&" + b), write_ref())
}

function reset_param() {
    _wdSL = window.location.href
}

function endsWith(a, b) {
    return -1 !== a.indexOf(b, a.length - b.length)
}

function setup_data() {
    try {} catch (a) {
        ROOTDM = null
    }
    try {} catch (a) {
        INCLUDESUBHOST = null
    }
    try {} catch (a) {
        SHOWERRHOST = null
    }
    try {} catch (a) {
        return
    }
    if ("file:" != document.location.protocol) {
        if (document.characterSet ? _wdCS = fesc(document.characterSet) : document.charset && (_wdCS = fesc(document.charset)), INCLUDESUBHOST && null != INCLUDESUBHOST && 0 != INCLUDESUBHOST.length) {
            for (i = 0; i < INCLUDESUBHOST.length; i++)
                if (INCLUDESUBHOST[i] && _wdHost && -1 != INCLUDESUBHOST[i].indexOf(_wdHost)) {
                    _wdErr = "0";
                    break
                }
        } else _wdErr = "0";
        if ("1" != _wdErr || null == SHOWERRHOST || 1 == SHOWERRHOST) {
            if ("1" == _wdErr && println(""), ROOTDM && null != ROOTDM && 0 != ROOTDM.length && _wdHost && "" != _wdHost)
                for (i = 0; i < ROOTDM.length; i++) endsWith(_wdHost, ROOTDM[i]) && (_wdRDM = ROOTDM[i]);
            println("_wdRP=" + _wdRP), _wdRP && "" != _wdRP ? (r = _wdRP.indexOf(document.domain), r >= 0 && 8 >= r || 0 == _wdRP.indexOf("[") && _wdRP.lastIndexOf("]") == _wdRP.length - 1 && (_wdRP = "")) : _wdRP = "", println("_wdRP=" + _wdRP), println("_wdUA=" + _wdUA), println("_wdRUA=" + _wdRUA), _wdIE && (_wdIEV = parseInt(_wdUA.substr(_wdUA.indexOf("MSIE") + 5))), _wdIE && _wdIEV >= 5 && (document.body.addBehavior("#default#clientCaps"), _wdCT = document.body.connectionType, document.body.addBehavior("#default#homePage"), _wdHP = document.body.isHomePage(location.href) ? "1" : "0");
            try {
                _wdIE && (_wdFS = document.fileSize)
            } catch (b) {
                _wdFS = 0
            }
            _wdFl = wdFlash(), _wdTZ = (new Date).getTimezoneOffset() / -60, "undefined" != typeof _wdWS && null != _wdWS && (_wdSW = _wdWS.width, _wdSH = _wdWS.height, _wdCD = _wdWS.colorDepth, _wdSR = _wdSW + "x" + _wdSH, _wdNN && _wdBV >= 4 && (_wdCD = _wdWS.pixelDepth)), (_wdNN && _wdBV >= 4 || _wdOP) && (_wdLG = navigator.language), _wdIE && _wdBV >= 4 && !_wdOP && (_wdLG = navigator.userLanguage), _wdJE = 1 == navigator.javaEnabled() ? "1" : "0", navigator.cookieEnabled && (_wdCK = 1 == navigator.cookieEnabled ? "1" : "0"), 1 == _wdCK && setup_cookie()
        }
    }
}

function setup_cookie() {
    var c, a = document.cookie,
        b = a.indexOf("wdcid=");
    if (0 > b) {
        if (_wdBCID = "0", _wdCID = wdGenCID(), c = "", _wdRDM && "" != _wdRDM && (c = "domain=" + _wdRDM + ";"), document.cookie = "wdcid=" + escape(_wdCID) + ";" + _wdED + c + "path=/;", document.cookie.indexOf("wdcid=") < 0) return _wdCK = 0, void 0
    } else _wdBCID = "1", _wdCID = getCookie("wdcid");
    b = document.cookie.indexOf("wdlast="), 0 > b ? _wdLS = 0 : (_wdLS = parseInt(getCookie("wdlast")), curtime.getTime() / 1e3 - _wdLS < _wdTimeOut && (_wdTO = "0")), document.cookie = "wdlast=" + Math.round(curtime.getTime() / 1e3) + ";" + _wdED + "path=/;"
}

function write_ref() {
    _dgURL = "0" == _wdCK ? getGeneralInfo() + getLocalInfo() : getGeneralInfo() + getCookieInfo() + getLocalInfo(), send_ref(_dgURL)
}

function getGeneralInfo() {
    return "?z=" + _wdUID + "&a=" + curtime.getTime().toString(16) + "&b=" + fesc(_wdDT) + "&B=" + _wdCS + "&c=" + fesc(_wdSL) + "&d=" + fesc(_wdRP) + "&e=" + _wdHP + "&f=" + _wdFS + "&H=" + fesc(_wdHost) + "&E=" + _wdErr
}

function getLocalInfo() {
    return "&i=" + fesc(_wdLG) + "&j=" + _wdJE + "&k=" + _wdSR + "&l=" + _wdCD + "&m=" + _wdFl + "&n=" + fesc(_wdCT) + "&o=" + _wdTZ
}

function getCookieInfo() {
    return "&r=" + _wdCID + "&s=" + _wdBCID + "&t=" + _wdLS + "&u=" + _wdTO
}
var _webdigObj, _wdIF, _wdLP, _wdCA, Aimg, _wdED, _wdCK, _wdJE, _wdHP, _wdFl, _wdTZ, _wdLG, _wdCT, _wdFS, _wdErr, _wdDT, _wdCS, _wdSL, _wdHost, _wdRDM, _wdRP, _wdUA, _wdRUA, _wdWS, _wdBV, _wdNN, _wdMC, _wdIE, _wdOP, _wdIEV, _wdCID, _wdBCID, _wdLS, _wdTO, curtime, _wdTimeOut;
String.prototype.trim = function() {
        var a = /^\s+|\s+$/g;
        return function() {
            return this.replace(a, "")
        }
    }(), _webdigObj = _webdigObj || {}, _webdigObj.meta = document.getElementsByTagName("meta"), _webdigObj.getMeta = function(a) {
        var c, b = _webdigObj.meta;
        if (b)
            for (c = 0; c < b.length; c++)
                if (b[c].name == a) return b[c].content.trim();
        return ""
    }, _wdIF = window.top == self ? 0 : 1, _webdigObj.catalogs = _webdigObj.getMeta("catalogs"), _webdigObj.contentid = _webdigObj.getMeta("contentid"), _webdigObj.filetype = _webdigObj.getMeta("filetype"), _webdigObj.subject = _webdigObj.getMeta("subject"), _webdigObj.publishedtype = _webdigObj.getMeta("publishedtype"), _webdigObj.pagetype = _webdigObj.getMeta("pagetype"), _webdigObj.author = _webdigObj.getMeta("author"), _webdigObj.publishdate = _webdigObj.getMeta("publishdate"), _webdigObj.source = _webdigObj.getMeta("source"), _webdigObj.url = function() {
        var b, a = "";
        return _webdigObj.filetype && _webdigObj.publishedtype && _webdigObj.pagetype && (a += "_wdt=" + escape(_webdigObj.filetype ? _webdigObj.filetype : 0) + escape(_webdigObj.publishedtype ? _webdigObj.publishedtype : 0) + escape(_webdigObj.pagetype ? _webdigObj.pagetype : 0) + "&"), _webdigObj.catalogs && (a += "_wdc=" + escape(_webdigObj.catalogs) + "&"), _webdigObj.subject && (a += "_wds=" + escape(_webdigObj.subject) + "&"), _webdigObj.author && (a += "_wda=" + escape(_webdigObj.author) + "&"), _webdigObj.contentid && (a += "_wdci=" + escape(_webdigObj.contentid) + "&"), _webdigObj.publishdate && (a += "_wdp=" + escape(_webdigObj.publishdate) + "&"), _webdigObj.source ? a += "_wdori=" + escape(_webdigObj.source) + "&" : (b = document.getElementById("source"), b && (a += "_wdori=" + escape(b.innerText) + "&")), a += "_wdif=" + _wdIF + "&"
    }(), _wdLP = location.protocol.indexOf("https") > -1 ? "https:" : "http:", _wdCA = _wdLP + _wecl, _wdED = "expires=Fri, 1 Jan 2038 00:00:00 GMT;", _wdCK = "0", _wdJE = "0", _wdHP = "0", _wdFl = 0, _wdTZ = 0, _wdLG = "", _wdCT = "", _wdFS = 0, _wdErr = "1", _wdDT = document.title, _wdSL = window.location.href, _wdHost = window.location.host, _wdRDM = "", _wdRP = document.referrer, _wdUA = navigator.appName + " " + navigator.appVersion, _wdRUA = navigator.userAgent, _wdWS = window.screen, _wdBV = navigator.appVersion.substring(0, 1), _wdNN = -1 != _wdUA.indexOf("Netscape") ? !0 : !1, _wdMC = -1 != _wdUA.indexOf("Mac") ? !0 : !1, _wdIE = -1 != _wdUA.indexOf("MSIE") ? !0 : !1, _wdOP = -1 != _wdRUA.indexOf("Opera") ? !0 : !1, _wdIEV = 0, _wdBCID = "0", _wdLS = 0, _wdTO = "1", curtime = new Date, window.onerror = _wdEC, _wdTimeOut = 1800,
    function() {
        function e() {
            var b, a = document.getElementsByTagName("meta");
            for (b = 0; b < a.length; b++)
                if ("uctk" == a[b].name && 0 != a[b].value && "disabled" != a[b].value) return !0
        }

        function h(a) {
            var e, b = {
                    z: _wdUID,
                    a: curtime.getTime().toString(16),
                    c: fesc(window.location.href),
                    d: fesc(a),
                    k: d,
                    H: fesc(_wdHost),
                    r: _wdCID
                },
                c = "";
            for (e in b) c += "&" + e + "=" + b[e];
            e = _wdCA.replace("1.gif", "3.gif") + "?" + c.slice(1), refImg = new Image(1, 1), refImg.src = e
        }

        function i(a) {
            var c, d, b = window.innerWidth;
            "number" != typeof b && (b = "CSS1Compat" == document.compatMode ? document.documentElement.clientWidth : document.body.clientWidth), c = window.pageXOffset, "number" != typeof c && (c = "CSS1Compat" == document.compatMode ? document.documentElement.scrollLeft : document.body.scrollLeft), d = window.pageYOffset, "number" != typeof d && (d = "CSS1Compat" == document.compatMode ? document.documentElement.scrollTop : document.body.scrollTop), this.x = c + a.clientX, this.y = d + a.clientY, this.w = b
        }

        function j(b, c) {
            var d = new i(b);
            c && (d.x = b.clientX + c.x, d.y = b.clientY + c.y), a.length > 10 ? l() : a.push(d)
        }

        function k(a) {
            var c, d, b = "";
            for (c = 0; c < a.length; c++) d = a[c], b += d.x + "*" + d.y + "*" + d.w + ",";
            return b.slice(0, b.length - 1)
        }

        function l() {
            if (a.length > 0) {
                var b = k(a.splice(0, a.length));
                h(b)
            }
        }

        function m() {
            var d, a = n("iframe"),
                b = function(a) {
                    return function(b) {
                        j(b, a)
                    }
                };
            if (window.addEventListener)
                for (document.addEventListener("click", function(a) {
                        j(a)
                    }, !0), window.addEventListener("unload", function() {
                        l()
                    }, !0), d = 0; d < a.length; d++) try {
                        a[d].contentWindow.document.addEventListener("click", b(a[d].position), !0)
                    } catch (e) {} else if (window.attachEvent)
                        for (document.attachEvent("onclick", function(a) {
                                j(a)
                            }), window.attachEvent("onbeforeunload", function() {
                                l()
                            }), d = 0; d < a.length; d++) try {
                            a[d].contentWindow.document.attachEvent("onclick", b(a[d].position))
                        } catch (e) {}
                    setInterval(l, 1e3 * c)
        }

        function n(a, b, c) {
            var e, f, h, i, d = b;
            d || (d = []), e = 0;
            try {
                f = c ? c.contentWindow.document.getElementsByTagName(a) : document.getElementsByTagName(a), e = f.length
            } catch (g) {
                e = 0
            }
            for (h = 0; e > h; h++) i = o(f[h]), c && c.position && (i.x += c.position.x, i.y += c.position.y), f[h].position = i, d.push(f[h]), n(a, d, f[h]);
            return d
        }

        function o(a) {
            position = new Object, position.x = 0, position.y = 0;
            for (var b = a; null != b && b != document.body;) position.x += b.offsetLeft, position.y += b.offsetTop, b = b.offsetParent;
            return position
        }
        var a = new Array,
            c = 30,
            d = 0;
        window.screen && "number" == typeof window.screen.width && (d = window.screen.width), window.userAgent, i.prototype.toString = function() {
            return "X: " + this.x + ", Y:" + this.y + ", W:" + this.w
        }, e() && m()
    }();
                                    

#11 JavaScript::Eval (size: 16, repeated: 1) - SHA256: 531120556026ad0b8e3ae937ba23727f08ebf716356d9600749c93e2c81e22ec

                                        moviedata_473025
                                    

#12 JavaScript::Eval (size: 146, repeated: 2) - SHA256: e8c3ba4f1962d43f9e29a968f34405f5d20b420d239b346f5f25fadda6fecd10

                                        navigator['appName'] + '_' + navigator['appVersion'] + '_' + navigator['userAgent'] + '_' + navigator['appCodeName'] + '_' + navigator['platform']
                                    

Executed Writes (9)

#1 JavaScript::Write (size: 244, repeated: 1) - SHA256: 3a741c0b98742d67da4f94f38f2eacab09968688be5ca82f1c4a85b71d65ea31

                                        < a href = "https://www.51.la/?comId=19637641"
title = "51.La Q�A�ߡ��"
target = "_blank" > < span style = "display:inline-block;background-color:#41A5F5;color:#fff;padding:2px 5px;font-family:arial;font-size:12px;font-weight:bold;" > 51 La < /span></a >
                                    

#2 JavaScript::Write (size: 258, repeated: 1) - SHA256: c4b43963194796e80e41ea289b58cb49126f8f091a0b5d4e90ebde38fea92d78

                                        < a href = "https://www.51.la/?comId=19674401"
title = "51.La Q�A�ߡ��"
target = "_blank" > < span style = "display:inline-block;background-color:#EF5350;color:#fff;padding:2px 5px;font-family:arial;font-size:12px;font-weight:bold;line-height:1;" > 51 La < /span></a >
                                    

#3 JavaScript::Write (size: 224, repeated: 2) - SHA256: 3270e98704a5ae0b79909adb24faa5ca005bfbf0c61279b5163bf1f351819f20

                                        < div style = "background:#fff;position:absolute;top:0;bottom:0;left:0;right:0;z-index:99999999;" >
    < iframe src = "http://www.kbf68.com"
style = "border:0px;width:100%;height:100%;position:relative;"
frameborder = "0" > < /iframe> < /div>
                                    

#4 JavaScript::Write (size: 381, repeated: 2) - SHA256: 3a36105f2d373c5e759e2e583d2fc623d44d4d88b904a00a94ba384991b50c25

                                        < meta name = "viewport"
content = "width=device-width,initial-scale=1" >
    < style > html, body {
        width: 100 % ;height: 100 % ;overflow: hidden!important;
    } < /style> < div style = "background:#fff;position:absolute;top:0;bottom:0;left:0;right:0;z-index:99999999;" >
    < iframe src = "http://www.kbf28.com/ad/bbj.html"
style = "border:0px;width:100%;height:100%;position:relative;"
frameborder = "0" > < /iframe> < /div>
                                    

#5 JavaScript::Write (size: 102, repeated: 1) - SHA256: f52bcfd68e67a953bb42db15cf7f4f032d57353f3720afe3474c42ae7120cbf4

                                        < script language = "javascript"
type = "text/javascript"
src = "http://js.users.51.la/19637641.js" > < /script>
                                    

#6 JavaScript::Write (size: 102, repeated: 1) - SHA256: 7477b43ddce65042d3611a57fc89608b5cf34c1b77c48022d659004757cff73d

                                        < script language = "javascript"
type = "text/javascript"
src = "http://js.users.51.la/19674401.js" > < /script>
                                    

#7 JavaScript::Write (size: 109, repeated: 1) - SHA256: 99a026f4e87776b054df7e24555abdb7a1053f8a06b03f5fdd5af370be2f852b

                                        < script type = "text/javascript"
src = "http://misc.vod.news.cn/v/misc/core_min.js?v=1.1"
charset = "gbk" > < /script>
                                    

#8 JavaScript::Write (size: 111, repeated: 1) - SHA256: 2673f111634eb62e27452f6ef5d17f6cd439d56be4c86be93bad342eb7a10e0d

                                        < script type = "text/javascript"
src = "http://misc.vod.news.cn/v/misc/player_min.js?v=1.1"
charset = "gbk" > < /script>
                                    

#9 JavaScript::Write (size: 104, repeated: 1) - SHA256: eda735ccb686d1257cae855375c8fbc9d5ea5a08c85e400877c3cb5612cd5fa2

                                        < script type = "text/javascript"
src = "http://misc.vod.news.cn/v/misc/swfobject.js"
charset = "gbk" > < /script>
                                    


HTTP Transactions (100)


Request Response
                                        
                                            GET /xwfb/tplb/584606.htm HTTP/1.1 
Host: baozifenjiage.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         104.164.177.166
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:21:45 GMT
Content-Length: 178
Connection: keep-alive
Location: http://www.baozifenjiage.com/xwfb/tplb/584606.htm


--- Additional Info ---
Magic:  HTML document text
Size:   178
Md5:    cd2e0e43980a00fb6a2742d3afd803b8
Sha1:   81ffbd1712afe8cdf138b570c0fc9934742c33c1
Sha256: bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /xwfb/tplb/584606.htm HTTP/1.1 
Host: www.baozifenjiage.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         104.164.177.166
HTTP/1.1 200 OK
Content-Type: text/html; charset=gbk;
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:21:46 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   6190
Md5:    abeff1d366c8a6adc0c0f29ac502c574
Sha1:   9784f3570c2b8acd4996f3b9ec8bd30ddd728545
Sha256: 34097e172f559d1fdb241e444ce17d32c874a85fb78a83a6144e7f151709d911

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /dbs/ad/WWW.BAOZIFENJIAGE.COM/base.js HTTP/1.1 
Host: www.baozifenjiage.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.baozifenjiage.com/xwfb/tplb/584606.htm

                                         
                                         104.164.177.166
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:21:47 GMT
Last-Modified: Sat, 23 Feb 2019 08:18:42 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Etag: W/"5c7101e2-907"
Expires: Thu, 21 Mar 2019 16:21:47 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   609
Md5:    2a46728aef3967fbad8e21f047a3bcc1
Sha1:   986b29233125b32065262cb93db62d24c164ad45
Sha256: 3808b4d084905b8666a09671eafc224ded8dfc6e1fdb23e012dfc86179aee790

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/content/2018-12/20181220132058240838.png HTTP/1.1 
Host: www.baozifenjiage.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.baozifenjiage.com/xwfb/tplb/584606.htm

                                         
                                         104.164.177.166
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:21:47 GMT
Transfer-Encoding: chunked
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   40315
Md5:    610789de4dbb6a3d49339aca1a3917e7
Sha1:   c2ab767ed1c927ac7296c63bd9755edeb0050ef5
Sha256: 3069c2dbc823134df2105a6228e3a7f467bee9cf4a8a6cd45ec56aff32d9b1ee
                                        
                                            GET /ad/bbj.html HTTP/1.1 
Host: www.kbf28.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.baozifenjiage.com/xwfb/tplb/584606.htm

                                         
                                         154.80.254.234
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:21:15 GMT
Content-Length: 675
Last-Modified: Tue, 19 Mar 2019 11:48:35 GMT
Connection: keep-alive
Etag: "5c90d713-2a3"
Cache-Control: no-cache
Accept-Ranges: bytes


--- Additional Info ---
Magic:  HTML document text
Size:   675
Md5:    bc672503ca708cbe297f457ef742eed8
Sha1:   0c0e1f6006657758cfff35a85f726497fd4cfa02
Sha256: 65622b92596ab9a0c41bff7a4def3a4a2144a26833ba4df37d0ac51d1cee8191
                                        
                                            GET /images/logo.png HTTP/1.1 
Host: www.baozifenjiage.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.baozifenjiage.com/xwfb/tplb/584606.htm

                                         
                                         104.164.177.166
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:21:47 GMT
Transfer-Encoding: chunked
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 435 x 120, 8-bit/color RGBA, non-interlaced
Size:   77482
Md5:    a9d3fd8268bfc6dd28778318b0fec210
Sha1:   7a0a0ada773d3be029d32a03cf6afd577caea97c
Sha256: ec9d5037cf8e43c3c86fe443e1213db01a6e3796cc7cec397471ec51397bd210
                                        
                                            GET /dbs/stat/WWW.BAOZIFENJIAGE.COM.js HTTP/1.1 
Host: www.baozifenjiage.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.baozifenjiage.com/xwfb/tplb/584606.htm

                                         
                                         104.164.177.166
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:21:47 GMT
Content-Length: 245
Last-Modified: Fri, 28 Dec 2018 08:59:18 GMT
Connection: keep-alive
Etag: "5c25e5e6-f5"
Expires: Thu, 21 Mar 2019 16:21:47 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text
Size:   245
Md5:    ce1206b9c551d98aa5842661471106e7
Sha1:   d7be8c58886e715342fe3d6ddc6ac713aeb6558a
Sha256: 7b8f1e67b14462084a0af35c07967f86dc7e7a3a146bdeaec83e5db23c291a56

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /js/script.js HTTP/1.1 
Host: www.baozifenjiage.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.baozifenjiage.com/xwfb/tplb/584606.htm

                                         
                                         104.164.177.166
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:21:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2986
Md5:    cccd5ea97632c65a112153c5d40030b0
Sha1:   6ab7bf4c6e1edba2e0f3cf41e69e0ef514fc9973
Sha256: 0b03a4c1207555fb7edd4f12d8fcd11c728ad33faea325f602421976b1f5b082

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /css/style.css HTTP/1.1 
Host: www.baozifenjiage.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.baozifenjiage.com/xwfb/tplb/584606.htm

                                         
                                         104.164.177.166
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:21:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2735
Md5:    f8b4c20bdb886563f7f75f9d63aac0a0
Sha1:   506d8953dcf1abed3994c95465238091bb067b3f
Sha256: 3a21d3a3ac194108198bf75907bada978eee2b77b0aa77616bbeacf320657954
                                        
                                            GET /images/meetings.jpg HTTP/1.1 
Host: www.baozifenjiage.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.baozifenjiage.com/xwfb/tplb/584606.htm

                                         
                                         104.164.177.166
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:21:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   14047
Md5:    24e4e02489b353403453bafb7a6438cb
Sha1:   b0ca9605d290f23fdbed0cde4cfc715ec7dd691f
Sha256: 32ace0cc7325941ccf0ae21f98c2548008f678b85ed781cc02751fc609a5ce39
                                        
                                            GET /js/sara_a.js HTTP/1.1 
Host: www.baozifenjiage.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.baozifenjiage.com/xwfb/tplb/584606.htm

                                         
                                         104.164.177.166
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:21:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   414
Md5:    4da10c33a3e2dc069acc3392fa29e603
Sha1:   e9a2dad6ee42c026abeedf47d3ded85f575a72e1
Sha256: dd362eb2cad747d76444b18eafb663526056184fc014d6d0384296e882c3b392

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/policys.jpg HTTP/1.1 
Host: www.baozifenjiage.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.baozifenjiage.com/xwfb/tplb/584606.htm

                                         
                                         104.164.177.166
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:21:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   15756
Md5:    9782098b1c4749724dff650a0142fe70
Sha1:   44ee5b61f329d7704d260f0d17692fd157a08dd1
Sha256: d0bb4fb346c4ff1cc668bc41ad478d8e3282cb70bf007a6a63bfd24378057ba6
                                        
                                            GET /images/searchs.jpg HTTP/1.1 
Host: www.baozifenjiage.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.baozifenjiage.com/xwfb/tplb/584606.htm

                                         
                                         104.164.177.166
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:21:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   13919
Md5:    8044362eb07d65547a98d004c80e44f6
Sha1:   e888f64016944e7eca1cd3a240cd1caf0fa2636c
Sha256: d899974c6bfe88c0bd57689ab2c66aff5f407d8777294f77ba00193bf1358dd7
                                        
                                            GET /css/subcon.css HTTP/1.1 
Host: www.baozifenjiage.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.baozifenjiage.com/xwfb/tplb/584606.htm

                                         
                                         104.164.177.166
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:21:49 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   7004
Md5:    703d0aab8b26aee67ca70dff22ae2f5e
Sha1:   442213b9d0b4424237081613e4070c1518eb9c85
Sha256: 58af73f2c849452b93267b146d57ff0041d813624919a5bfa14774f70849d240
                                        
                                            GET /images/body_bg.jpg HTTP/1.1 
Host: www.baozifenjiage.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.baozifenjiage.com/css/style.css

                                         
                                         104.164.177.166
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:21:49 GMT
Transfer-Encoding: chunked
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   53302
Md5:    7a35585a973791a28721a7b79759abd0
Sha1:   e32afc624dfeb77b3e2318691bbee595d8b7be03
Sha256: bad912ab4f486e812bd979d8cd419756356847960bd88bf3faa05b86602dbfdd
                                        
                                            GET /ad/bbj.html HTTP/1.1 
Host: www.kbf28.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.baozifenjiage.com/xwfb/tplb/584606.htm
If-Modified-Since: Tue, 19 Mar 2019 11:48:35 GMT
If-None-Match: "5c90d713-2a3"

                                         
                                         154.80.254.234
HTTP/1.1 304 Not Modified
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:21:17 GMT
Last-Modified: Tue, 19 Mar 2019 11:48:35 GMT
Connection: keep-alive
Etag: "5c90d713-2a3"
Cache-Control: no-cache


--- Additional Info ---
                                        
                                            GET / HTTP/1.1 
Host: www.kbf68.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.kbf28.com/ad/bbj.html

                                         
                                         116.66.233.23
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:23:44 GMT
Last-Modified: Wed, 20 Mar 2019 03:29:43 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Etag: W/"5c91b3a7-552a"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4504
Md5:    34bb7016b647af06fedb95759f3e4a9e
Sha1:   3fad8dbaf23c681d31ab19fbef1a68160ee99f44
Sha256: 1d2ec1d0adb310647c7fa1a1f4c31cd14d762e414289fc99371bf1f165cb2329

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/linkImg/biwei.jpg HTTP/1.1 
Host: www.kbf68.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.kbf68.com/

                                         
                                         116.66.233.23
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:23:44 GMT
Content-Length: 8639
Last-Modified: Sat, 09 Sep 2017 20:07:12 GMT
Connection: keep-alive
Etag: "59b449f0-21bf"
Expires: Sat, 20 Apr 2019 04:23:44 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   8639
Md5:    3f4b27a7031a20bb02d45bcb062d15ff
Sha1:   2020025d246b89d650405c8b5faef08a0f986eed
Sha256: b48c86aac047e8caf65bd84277fa0ada6f64b46771a52326c2767a4e4aab4c1b
                                        
                                            GET /css/style.css HTTP/1.1 
Host: www.kbf68.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.kbf68.com/

                                         
                                         116.66.233.23
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:23:44 GMT
Last-Modified: Fri, 08 Mar 2019 09:16:05 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Etag: W/"5c8232d5-5695"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4913
Md5:    9ca297bb4b6d7180397b30494c55423e
Sha1:   cc3942d715fb7dfe143124caaa93b854b4577efa
Sha256: 097d3d68c6703a739ba5c8f6419746f287e5f51890402956b8b2484438b0e50f
                                        
                                            GET /images/hg.gif HTTP/1.1 
Host: www.kbf68.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.kbf68.com/

                                         
                                         116.66.233.23
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:23:44 GMT
Content-Length: 1433
Last-Modified: Mon, 17 Sep 2018 11:07:52 GMT
Connection: keep-alive
Etag: "5b9f8b08-599"
Expires: Sat, 20 Apr 2019 04:23:44 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 16 x 16
Size:   1433
Md5:    c5b85962116a5eb8e2d0001da0f8c062
Sha1:   4d10515e241bebf77e3e5184dbf9794b5cf8548f
Sha256: 807dff362e25b4769ab185289da9a228c015a8ce8c2f7b3ef20662d26cad90a1
                                        
                                            GET /images/linkImg/manbetx.jpg HTTP/1.1 
Host: www.kbf68.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.kbf68.com/

                                         
                                         116.66.233.23
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:23:44 GMT
Content-Length: 8019
Last-Modified: Fri, 21 Dec 2018 07:14:10 GMT
Connection: keep-alive
Etag: "5c1c92c2-1f53"
Expires: Sat, 20 Apr 2019 04:23:44 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   8019
Md5:    c4a7f6a0e083209e40d31d47d527b869
Sha1:   26f0908cbe0a8c4f03a41eddb28883d72797762b
Sha256: 186378a5dab1b9c4a1eeff1b9ee091a8bf5a77933ba55a6bc6a592f7eca56877
                                        
                                            GET /images/re.gif HTTP/1.1 
Host: www.kbf68.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.kbf68.com/

                                         
                                         116.66.233.23
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:23:44 GMT
Content-Length: 1508
Last-Modified: Tue, 18 Sep 2018 09:16:48 GMT
Connection: keep-alive
Etag: "5ba0c280-5e4"
Expires: Sat, 20 Apr 2019 04:23:44 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 13 x 16
Size:   1508
Md5:    55139e0d8881bbcbf369e6c5b1420be0
Sha1:   f33f9d4bf531837957fd1b3e9ed47b74e90b8f8a
Sha256: a88bcd2bafddacac768d8bb7b1e2bfef2cea7109cd6668b49fc6a2bd35a7e91a
                                        
                                            POST /gsdomainvalsha2g2 HTTP/1.1 
Host: ocsp2.globalsign.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 111
Content-Type: application/ocsp-request

                                         
                                         104.18.21.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 21 Mar 2019 04:21:18 GMT
Content-Length: 1558
Connection: keep-alive
Set-Cookie: __cfduid=d13044360b2c0eca4f05f4b502156976f1553142078; expires=Fri, 20-Mar-20 04:21:18 GMT; path=/; domain=.globalsign.com; HttpOnly
Last-Modified: Thu, 21 Mar 2019 02:22:21 GMT
Expires: Mon, 25 Mar 2019 02:22:21 GMT
Etag: "95e38347f6b690ce9455bdf0c2813fdaeb3a620c"
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4bad23693fed427f-OSL


--- Additional Info ---
Magic:  data
Size:   1558
Md5:    2cae79f617bfb8d8131c4c464bd594d6
Sha1:   95e38347f6b690ce9455bdf0c2813fdaeb3a620c
Sha256: 15537ed0a6e94af874a015e2a50a8e259215711c986d315008931b05e3822c71
                                        
                                            GET /images/linkImg/ca88.jpg HTTP/1.1 
Host: www.kbf68.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.kbf68.com/

                                         
                                         116.66.233.23
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:23:44 GMT
Content-Length: 12574
Last-Modified: Tue, 18 Sep 2018 09:29:34 GMT
Connection: keep-alive
Etag: "5ba0c57e-311e"
Expires: Sat, 20 Apr 2019 04:23:44 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   12574
Md5:    10c4a60aaf078a6db46c9bb392a19c99
Sha1:   3228721310eba8602f2b97b0ac4ce2fea907a20b
Sha256: 82061dbcefc04f711b322efee7881d7a6102e1b00b56eac6c784af68d41a39fc
                                        
                                            GET /images/linkImg/msyz.jpg HTTP/1.1 
Host: www.kbf68.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.kbf68.com/

                                         
                                         116.66.233.23
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:23:44 GMT
Content-Length: 17381
Last-Modified: Tue, 18 Sep 2018 09:27:14 GMT
Connection: keep-alive
Etag: "5ba0c4f2-43e5"
Expires: Sat, 20 Apr 2019 04:23:44 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   17381
Md5:    febad41d44f8a318031b0a0ec85fa0da
Sha1:   3975c74d9c1d5bf3044019c21450525304fb87d1
Sha256: a3e7c0f6354d8a27acedb1d7e231e43e53c5d3b06742fdec408f86072388a89c
                                        
                                            GET /images/linkImg/lbjs.jpg HTTP/1.1 
Host: www.kbf68.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.kbf68.com/

                                         
                                         116.66.233.23
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:23:44 GMT
Content-Length: 11315
Last-Modified: Sat, 02 Jun 2018 02:21:24 GMT
Connection: keep-alive
Etag: "5b11ff24-2c33"
Expires: Sat, 20 Apr 2019 04:23:44 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   11315
Md5:    593bcb4599207f2f8e8746f23b685ed4
Sha1:   893fadfd4cf4efeb3ee93d73695af20e95abf03e
Sha256: 4a3c0d00e2e1691ce1073bf2decd0d98c36aaa7cc3ba694aa640c0ba5a42eba0
                                        
                                            GET /images/linkImg/weide.jpg HTTP/1.1 
Host: www.kbf68.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.kbf68.com/

                                         
                                         116.66.233.23
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:23:44 GMT
Content-Length: 9641
Last-Modified: Fri, 09 Jun 2017 01:16:14 GMT
Connection: keep-alive
Etag: "5939f6de-25a9"
Expires: Sat, 20 Apr 2019 04:23:44 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   9641
Md5:    39f143aac93fb81e35b6048993960e91
Sha1:   8ecdf74831d38eaefa804083fa659b7fa845de0e
Sha256: a058f187a7f8d8b872926b6882aaa9c7061942d4f0c72750884a6473565ccf8c
                                        
                                            GET /images/linkImg/xpj.jpg HTTP/1.1 
Host: www.kbf68.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.kbf68.com/

                                         
                                         116.66.233.23
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:23:44 GMT
Content-Length: 8100
Last-Modified: Tue, 18 Sep 2018 10:14:02 GMT
Connection: keep-alive
Etag: "5ba0cfea-1fa4"
Expires: Sat, 20 Apr 2019 04:23:44 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   8100
Md5:    4a6f2c8c00d1fc8fa283c338aa757e16
Sha1:   6d68ae85e262d1fabc5ed8c4606168ca331ee9df
Sha256: 583e5a55fef2acc448ad599c4058afd4ae62eb330f76faccdfc5028bf9395d15
                                        
                                            GET /images/linkImg/vns.jpg HTTP/1.1 
Host: www.kbf68.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.kbf68.com/

                                         
                                         116.66.233.23
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:23:44 GMT
Content-Length: 23338
Last-Modified: Wed, 30 May 2018 06:47:10 GMT
Connection: keep-alive
Etag: "5b0e48ee-5b2a"
Expires: Sat, 20 Apr 2019 04:23:44 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   23338
Md5:    198c8442b9c3d994e9b35ddb15753dbe
Sha1:   2e9e930d134c9ff5a519d98e443f43ee0d98c1e8
Sha256: 4666f3d1768c16f4cae5f62fdc8941dad0c60b59254da3a7c950f3b608764fed
                                        
                                            GET /19125061.js HTTP/1.1 
Host: js.users.51.la
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.kbf68.com/

                                         
                                         163.171.140.202
HTTP/1.1 200 OK
Content-Type: application/javascript;charset=UTF-8
                                        
Date: Thu, 21 Mar 2019 04:21:19 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx/1.14.0
id-2: 32AAAQAAEAABAAAQAAEAABAAAQAAEAABCSJrVvKtxwCosliXwC7R8RjFhSY8hNI0
Etag: "5fb3b8506cdd3a7b9b503d90b0ffd3ad"
x-id: 19125061
version-id: G001116541C5130CFFFF900B007B5174
Last-Modified: Thu Aug 16 16:05:59 CST 2018
request-id: 00000169805DE4179051FC39B4F4AC0D
x-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc
Content-Disposition: inline;filename=f.txt
Age: 76515
X-Via: 1.1 ld89:8 (Cdn Cache Server V2.0)[5 200 0], 1.1 PShlamstdAMS1tq87:0 (Cdn Cache Server V2.0)[0 200 0]
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix, last modified: Thu Mar 21 05:21:19 2019
Size:   2348
Md5:    075af5112a7d9f4f4b323eabbf751192
Sha1:   4b9c72de98385ee1dc4668f05240c454deda0908
Sha256: fbda2f08aa8a4f32c6a217202db51a442b2de9c19571b6e9b0660d51389e03b5

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/linkImg/w88.jpg HTTP/1.1 
Host: www.kbf68.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.kbf68.com/

                                         
                                         116.66.233.23
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:23:45 GMT
Content-Length: 11713
Last-Modified: Mon, 20 Aug 2018 06:55:16 GMT
Connection: keep-alive
Etag: "5b7a65d4-2dc1"
Expires: Sat, 20 Apr 2019 04:23:45 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   11713
Md5:    c087c2a5f2c0b957d2bf48137d91667f
Sha1:   53995dbf7870f53a295e9670241ddf29ea27561e
Sha256: 88be2bb1cdfe28d5802d61f5f7c1a25d5484e00028e31acf29e83fdc0be61431
                                        
                                            GET /images/linkImg/88bf.jpg HTTP/1.1 
Host: www.kbf68.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.kbf68.com/

                                         
                                         116.66.233.23
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:23:45 GMT
Content-Length: 16218
Last-Modified: Thu, 08 Jun 2017 12:42:42 GMT
Connection: keep-alive
Etag: "59394642-3f5a"
Expires: Sat, 20 Apr 2019 04:23:45 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   16218
Md5:    ebead4e848aa232d6190cd4f8d4a92d5
Sha1:   8e2153e318ca978da46ea7069af2ba176d0fbce5
Sha256: 4cfa3b6571822da3aff7b74afb2b8ff43577af9457b7666377a05ae286f9024f
                                        
                                            GET /images/linkImg/bw400.gif HTTP/1.1 
Host: www.kbf68.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.kbf68.com/

                                         
                                         116.66.233.23
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:23:45 GMT
Content-Length: 106988
Last-Modified: Sat, 08 Sep 2018 02:50:12 GMT
Connection: keep-alive
Etag: "5b9338e4-1a1ec"
Expires: Sat, 20 Apr 2019 04:23:45 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 400 x 200
Size:   106988
Md5:    e48040734c053425e7f2350f21baaa0f
Sha1:   999d514668d5675f198de42eee4762f0d6eda2f8
Sha256: 41efc5369b1919fa0d7c1382d36fb87e8c580e4738dc48d404129f26741196b0
                                        
                                            GET /images/linkImg/weide400.gif HTTP/1.1 
Host: www.kbf68.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.kbf68.com/

                                         
                                         116.66.233.23
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:23:45 GMT
Content-Length: 75524
Last-Modified: Mon, 10 Sep 2018 03:10:59 GMT
Connection: keep-alive
Etag: "5b95e0c3-12704"
Expires: Sat, 20 Apr 2019 04:23:45 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 400 x 200
Size:   75524
Md5:    8676625291a7492258580d32d5b64467
Sha1:   51a091cbec38f6f85803389b953b33487532d24d
Sha256: 6e545c9b10dc793f069437992eb6f7133cb48b8047e773f266a25f7ccb927cdb
                                        
                                            GET /go1?id=19125061&rt=1553142079202&rl=1176*885&lang=en-US&ct=unknow&pf=1&ins=0&vd=2&ce=1&cd=24&ds=&ing=2&ekc=&sid=1553142079190&tt=%25E6%25BE%25B3%25E9%2597%25A8%25E5%258D%259A%25E5%25BD%25A9%25E7%259B%25A3%25E5%25AF%259F%25E5%258D%2594%25E8%25AA%25BF%25E5%25B1%2580&kw=&cu=http%253A%252F%252Fwww.kbf68.com%252F&pu=http%253A%252F%252Fwww.kbf28.com%252Fad%252Fbbj.html HTTP/1.1 
Host: ia.51.la
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.kbf68.com/

                                         
                                         183.131.207.78
HTTP/1.1 200
Content-Type: application/octet-stream
                                        
Server: HuaweiCloudWAF
Date: Thu, 21 Mar 2019 04:19:23 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: HWWAFSESID=6235d3eb289fa0a296e; path=/ HWWAFSESTIME=1553141962676; path=/


--- Additional Info ---
                                        
                                            GET /go1?id=19125061&rt=1553142079190&rl=1176*885&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=&ing=1&ekc=&sid=1553142079190&tt=%25E6%25BE%25B3%25E9%2597%25A8%25E5%258D%259A%25E5%25BD%25A9%25E7%259B%25A3%25E5%25AF%259F%25E5%258D%2594%25E8%25AA%25BF%25E5%25B1%2580&kw=&cu=http%253A%252F%252Fwww.kbf68.com%252F&pu=http%253A%252F%252Fwww.kbf28.com%252Fad%252Fbbj.html HTTP/1.1 
Host: ia.51.la
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.kbf68.com/

                                         
                                         183.131.207.78
HTTP/1.1 200
Content-Type: application/octet-stream
                                        
Server: HuaweiCloudWAF
Date: Thu, 21 Mar 2019 04:19:23 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: HWWAFSESID=6235d44e289fa0a296e; path=/ HWWAFSESTIME=1553141962676; path=/


--- Additional Info ---
                                        
                                            GET /images/button.png HTTP/1.1 
Host: www.kbf68.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.kbf68.com/css/style.css

                                         
                                         116.66.233.23
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:23:46 GMT
Content-Length: 13319
Last-Modified: Mon, 17 Sep 2018 03:12:30 GMT
Connection: keep-alive
Etag: "5b9f1b9e-3407"
Expires: Sat, 20 Apr 2019 04:23:46 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 200 x 100, 8-bit colormap, non-interlaced
Size:   13319
Md5:    fca579f301eb6398be416347449ffa9d
Sha1:   fd0c8c9d839ce17fa2b318595789e19cfb1ae065
Sha256: 46176a86d1fb62aaf5d1e90bd67d1359771cd5a42fe502e0b1c1269ad61a786a
                                        
                                            GET /images/button3.png HTTP/1.1 
Host: www.kbf68.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.kbf68.com/css/style.css

                                         
                                         116.66.233.23
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:23:46 GMT
Content-Length: 13353
Last-Modified: Mon, 17 Sep 2018 03:12:46 GMT
Connection: keep-alive
Etag: "5b9f1bae-3429"
Expires: Sat, 20 Apr 2019 04:23:46 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 200 x 100, 8-bit colormap, non-interlaced
Size:   13353
Md5:    6e153161ab5cbf2308d695e45bd27ab9
Sha1:   56f68487de3e1a389c9d84d31e2f806e4abecdf7
Sha256: d6502fa4c0127b3eb20c13ee0a02198bbe275b57d56691f1dedeee428d223781
                                        
                                            GET /images/header.jpg HTTP/1.1 
Host: www.kbf68.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.kbf68.com/css/style.css

                                         
                                         116.66.233.23
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:23:45 GMT
Content-Length: 157292
Last-Modified: Mon, 17 Sep 2018 03:10:12 GMT
Connection: keep-alive
Etag: "5b9f1b14-2666c"
Expires: Sat, 20 Apr 2019 04:23:45 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data
Size:   157292
Md5:    18cbe15038677b1a5282e76196eeaed8
Sha1:   d3466cd3c32f578a4d6965ee86828dad3fdb4208
Sha256: 91c1ca05ae1640efc4a75579c5072891a18b4770e63905aa04bd11c601c7859a
                                        
                                            GET /images/nameLogo.png HTTP/1.1 
Host: www.kbf68.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.kbf68.com/css/style.css

                                         
                                         116.66.233.23
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:23:46 GMT
Content-Length: 3770
Last-Modified: Mon, 17 Sep 2018 03:10:06 GMT
Connection: keep-alive
Etag: "5b9f1b0e-eba"
Expires: Sat, 20 Apr 2019 04:23:46 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 63 x 63, 8-bit colormap, non-interlaced
Size:   3770
Md5:    2c58e9cb80dc72693dd12fe3f1d48fdf
Sha1:   7fadf91f6bfaae3a067bec40a995ec303bda9856
Sha256: a324dfbf298da58dd650eff6a12dd7cdc2322ad79eaf4c80cd8f3c55bbe2dfbc
                                        
                                            GET /images/logo2.png HTTP/1.1 
Host: www.kbf68.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.kbf68.com/css/style.css

                                         
                                         116.66.233.23
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:23:46 GMT
Content-Length: 6121
Last-Modified: Mon, 17 Sep 2018 03:09:50 GMT
Connection: keep-alive
Etag: "5b9f1afe-17e9"
Expires: Sat, 20 Apr 2019 04:23:46 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 328 x 81, 8-bit colormap, non-interlaced
Size:   6121
Md5:    f4975a82f36e8579aeaf57c4429ed894
Sha1:   1fc79d2bbca975490da210071700679351fdb1f4
Sha256: 80029db98683d03cf42f590fabb9812a1f9027dbd660c42a6b94c7163e226c91
                                        
                                            GET /images/tyc.gif HTTP/1.1 
Host: www.kbf68.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.kbf68.com/

                                         
                                         116.66.233.23
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:23:45 GMT
Content-Length: 213845
Last-Modified: Fri, 08 Mar 2019 10:23:36 GMT
Connection: keep-alive
Etag: "5c8242a8-34355"
Expires: Sat, 20 Apr 2019 04:23:45 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 1000 x 100
Size:   213845
Md5:    c43d61a8908ebfc59c9cd21a5ebe2e44
Sha1:   23a107fddca4cc4d02b4924efef79fda0236994b
Sha256: 834a66de122535da489bc52dabe3e7665887abaed20d2c297fbf08483f9630a7
                                        
                                            GET /images/linkImg/xpj.gif HTTP/1.1 
Host: www.kbf68.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.kbf68.com/

                                         
                                         116.66.233.23
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:23:45 GMT
Content-Length: 276697
Last-Modified: Mon, 17 Sep 2018 11:27:30 GMT
Connection: keep-alive
Etag: "5b9f8fa2-438d9"
Expires: Sat, 20 Apr 2019 04:23:45 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 400 x 200
Size:   276697
Md5:    0f5f17b711db75b6d5f642e9a6d0334d
Sha1:   fc8510971901e9134d1d28cf48abb9c5c915d9bf
Sha256: 39b40928ca815f355b7f533bcff523d47774c34447e6b1ca5b6f8cbc8a0c4420
                                        
                                            GET /images/logo.png HTTP/1.1 
Host: www.kbf68.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.kbf68.com/css/style.css

                                         
                                         116.66.233.23
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:23:46 GMT
Content-Length: 43183
Last-Modified: Tue, 18 Sep 2018 11:09:20 GMT
Connection: keep-alive
Etag: "5ba0dce0-a8af"
Expires: Sat, 20 Apr 2019 04:23:46 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 477 x 242, 8-bit/color RGBA, non-interlaced
Size:   43183
Md5:    3262c3223fc76d28fcd0a7f19e46594f
Sha1:   a18eb3e18ab5132e6291d611bff27b5eaef40663
Sha256: 5477facb092150e49440556f273ed2f9030fd2dc611ec445652cd423a167d004
                                        
                                            GET /images/button_01.png HTTP/1.1 
Host: www.kbf68.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.kbf68.com/css/style.css

                                         
                                         116.66.233.23
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:23:46 GMT
Content-Length: 4355
Last-Modified: Mon, 17 Sep 2018 03:20:40 GMT
Connection: keep-alive
Etag: "5b9f1d88-1103"
Expires: Sat, 20 Apr 2019 04:23:46 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 225 x 66, 8-bit colormap, non-interlaced
Size:   4355
Md5:    9bfaaa023e7bcf5f6d2c4171210de98f
Sha1:   7fce9a9f9c050e7cb7552d7b306dfa49290db564
Sha256: 79770455271bc7bbfe132590f45c06495bfe3a8a5a128202cf156a69318adc0e
                                        
                                            GET /images/linkImg/manbet.jpg HTTP/1.1 
Host: www.kbf68.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.kbf68.com/

                                         
                                         116.66.233.23
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:23:45 GMT
Content-Length: 143608
Last-Modified: Thu, 29 Nov 2018 07:31:48 GMT
Connection: keep-alive
Etag: "5bff95e4-230f8"
Expires: Sat, 20 Apr 2019 04:23:45 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   143608
Md5:    ed7bc86462b0909e8cfe6ecef5208abb
Sha1:   68257bb769e67f2d391c273375a56f2a8b4681f4
Sha256: 4d8ea1e5a03fbc7755922db76346eba7172bfcbe8d78a49a00e9ee515a4a3cd2
                                        
                                            GET /images/linkImg/venetian.png HTTP/1.1 
Host: www.kbf68.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.kbf68.com/css/style.css

                                         
                                         116.66.233.23
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:23:46 GMT
Content-Length: 82200
Last-Modified: Mon, 17 Sep 2018 03:19:24 GMT
Connection: keep-alive
Etag: "5b9f1d3c-14118"
Expires: Sat, 20 Apr 2019 04:23:46 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 380 x 200, 8-bit/color RGBA, non-interlaced
Size:   82200
Md5:    2a74f0248d419b89de11294f4a7ca4e1
Sha1:   628601cfc300da1403bd0cb1163fabb1e813d094
Sha256: 7b2353cafa61271a1a61364daf131ec60737d513b061af5221697966f2821094
                                        
                                            GET /images/linkImg/weide.png HTTP/1.1 
Host: www.kbf68.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.kbf68.com/css/style.css

                                         
                                         116.66.233.23
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:23:47 GMT
Content-Length: 117979
Last-Modified: Tue, 18 Sep 2018 07:50:22 GMT
Connection: keep-alive
Etag: "5ba0ae3e-1ccdb"
Expires: Sat, 20 Apr 2019 04:23:47 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 380 x 200, 8-bit/color RGBA, non-interlaced
Size:   117979
Md5:    72109676f8b0c582b5d6b87fd19d3930
Sha1:   57ca977bc76a0ebdfce216fd2e2ead7c35621937
Sha256: 9481c5e95f772be5f9625558813f00e51195ab24532f88a8dba7b3552145bf42
                                        
                                            GET /images/linkImg/manbet.png HTTP/1.1 
Host: www.kbf68.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.kbf68.com/css/style.css

                                         
                                         116.66.233.23
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:23:47 GMT
Content-Length: 159588
Last-Modified: Thu, 29 Nov 2018 07:10:36 GMT
Connection: keep-alive
Etag: "5bff90ec-26f64"
Expires: Sat, 20 Apr 2019 04:23:47 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 380 x 200, 8-bit/color RGBA, non-interlaced
Size:   159588
Md5:    4365576b5bd3fae082c22f4a23984ad2
Sha1:   7df425c081a1d00faefc2e7ce0e78b4d2b9b5951
Sha256: 7f1568b94900a6a2c335a8f8bd03b9136e209b5eefc9db1d1778280bcb561327
                                        
                                            GET /images/linkImg/w88.png HTTP/1.1 
Host: www.kbf68.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.kbf68.com/css/style.css

                                         
                                         116.66.233.23
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:23:47 GMT
Content-Length: 131889
Last-Modified: Mon, 17 Sep 2018 08:09:56 GMT
Connection: keep-alive
Etag: "5b9f6154-20331"
Expires: Sat, 20 Apr 2019 04:23:47 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 380 x 200, 8-bit/color RGBA, non-interlaced
Size:   131889
Md5:    af487151033747dd811e114759a95541
Sha1:   636509b57d824a8a0d85bc9addf7523c09683403
Sha256: de37970e17d840a8a6eab2df8335f9829cc0b42772dc591cc9ccec9e6242d0b4
                                        
                                            GET /images/linkImg/betway.png HTTP/1.1 
Host: www.kbf68.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.kbf68.com/css/style.css

                                         
                                         116.66.233.23
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:23:47 GMT
Content-Length: 95700
Last-Modified: Mon, 17 Sep 2018 06:25:56 GMT
Connection: keep-alive
Etag: "5b9f48f4-175d4"
Expires: Sat, 20 Apr 2019 04:23:47 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 380 x 200, 8-bit/color RGBA, non-interlaced
Size:   95700
Md5:    0a6829c8bbe9dfc9d160c2e52e876f7c
Sha1:   c0a1ae15685b5da4495f5c427acc57497c68410b
Sha256: 4d25d208468e4d596fd4fa3ce37bbe3ae0ae0d6f52a5d5625d40be49a8f344f8
                                        
                                            GET /images/linkImg/ca88.png HTTP/1.1 
Host: www.kbf68.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.kbf68.com/css/style.css

                                         
                                         116.66.233.23
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:23:47 GMT
Content-Length: 75474
Last-Modified: Fri, 21 Dec 2018 12:27:46 GMT
Connection: keep-alive
Etag: "5c1cdc42-126d2"
Expires: Sat, 20 Apr 2019 04:23:47 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 380 x 200, 8-bit/color RGBA, non-interlaced
Size:   75474
Md5:    a39f67b4d4c7749a1acfc2f87865f34c
Sha1:   73fadcf656843115eac9d13e57e9fd7415929883
Sha256: e7def27e65e6805f90d68f1e7c52c3ce8883355e1258031b9a7508933bb43aaf
                                        
                                            GET /images/linkImg/88bf.png HTTP/1.1 
Host: www.kbf68.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.kbf68.com/css/style.css

                                         
                                         116.66.233.23
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:23:47 GMT
Content-Length: 122632
Last-Modified: Tue, 18 Sep 2018 04:01:52 GMT
Connection: keep-alive
Etag: "5ba078b0-1df08"
Expires: Sat, 20 Apr 2019 04:23:47 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 380 x 200, 8-bit/color RGBA, non-interlaced
Size:   122632
Md5:    4f2e9e79f49baf87941feecdadfe7535
Sha1:   b999fd7fecc0cbead07bb164eaa526d0eba7cd6d
Sha256: f31c8b247039f24919acfcddc7f1cccebdae60a54b4d2162504be57209234f49
                                        
                                            GET /images/linkImg/lbjs.png HTTP/1.1 
Host: www.kbf68.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.kbf68.com/css/style.css

                                         
                                         116.66.233.23
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:23:47 GMT
Content-Length: 111674
Last-Modified: Tue, 18 Sep 2018 03:57:36 GMT
Connection: keep-alive
Etag: "5ba077b0-1b43a"
Expires: Sat, 20 Apr 2019 04:23:47 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 380 x 200, 8-bit/color RGBA, non-interlaced
Size:   111674
Md5:    23ba625e6ae05ded2a49628f77503be7
Sha1:   0b2ff8f92d229efd23455543eacf2bf72cc618a8
Sha256: b238a8ca0548054ddc7b2f14b2b1e40b3e7e22fe2c6db143a52540675b0bd030
                                        
                                            GET /images/linkImg/mgm.gif HTTP/1.1 
Host: www.kbf68.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.kbf68.com/css/style.css

                                         
                                         116.66.233.23
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:23:47 GMT
Content-Length: 297557
Last-Modified: Fri, 08 Mar 2019 09:15:13 GMT
Connection: keep-alive
Etag: "5c8232a1-48a55"
Expires: Sat, 20 Apr 2019 04:23:47 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 320 x 200
Size:   297557
Md5:    464ab31c9c4af57c10c8fb82bdb8d09d
Sha1:   3a4bf06557c7711685cffdb4f21ac4d7810825dd
Sha256: 27ce82d587ffad8e8cc509f3ceb58fd3996c5c63d539572b0f6fa53daee2e6c6
                                        
                                            GET /js/jquery-1.9.0.min.js HTTP/1.1 
Host: www.baozifenjiage.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.baozifenjiage.com/xwfb/tplb/584606.htm

                                         
                                         104.164.177.166
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:21:54 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   36912
Md5:    af4f73859ab1bd12e1f72a14d0ca53f6
Sha1:   9a7d746cf0632f712f24d947da248f970eaa4c0a
Sha256: ecc47602d8e2d13aeeff3def521508c3d33fd1e090c55cad30719257441675fd

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/print.png HTTP/1.1 
Host: www.baozifenjiage.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.baozifenjiage.com/css/subcon.css

                                         
                                         104.164.177.166
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:21:55 GMT
Transfer-Encoding: chunked
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 16 x 14, 8-bit/color RGB, non-interlaced
Size:   1273
Md5:    16223c5af93fcb1aa37eafe9f20bedf9
Sha1:   250f192fbd3d28d208565270b60853e33e403362
Sha256: b3231e49c38134ac6272246269cba55c37e6df36873087ea13b7b74aad6a5e56
                                        
                                            GET /images/footer_bg.png HTTP/1.1 
Host: www.baozifenjiage.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.baozifenjiage.com/css/style.css

                                         
                                         104.164.177.166
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:21:55 GMT
Transfer-Encoding: chunked
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 1920 x 194, 8-bit/color RGB, non-interlaced
Size:   70024
Md5:    adcbb0a1982a8dd13d64d9a1be49ee63
Sha1:   774f2a12081b9b915a9d946511e8e6bb030cbc96
Sha256: fbed2ccd3ea109e39736d3f9cff31c3ef36cfe059aba140f425337d9d6a10059
                                        
                                            GET /static/api/js/share.js?v=89860593.js?cdnversion=431427 HTTP/1.1 
Host: bdimg.share.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.baozifenjiage.com/xwfb/tplb/584606.htm

                                         
                                         111.206.37.189
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 6218
Date: Thu, 21 Mar 2019 04:21:23 GMT
Etag: "2981715462"
Expires: Thu, 21 Mar 2019 04:51:23 GMT
Last-Modified: Fri, 05 Jun 2015 08:50:07 GMT
Server: BWS/1.0
Vary: Accept-Encoding


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   6218
Md5:    a78bd68ac53bbc7eff7039d2c4e2c4ab
Sha1:   52e17a124e5ef7c4729e2000f8a7ffa14c2a4eb9
Sha256: dbaf841ced63da2a82e537cf643b52d50b71620c39b5fbb6c90965ba8b78fd8e
                                        
                                            GET /v/vod.html?vid=473025 HTTP/1.1 
Host: vod.xinhuanet.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.baozifenjiage.com/xwfb/tplb/584606.htm

                                         
                                         163.171.129.140
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Date: Thu, 21 Mar 2019 04:21:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx/1.14.2
Content-Encoding: gzip
X-Via: 1.1 PSzjwzdx10np43:5 (Cdn Cache Server V2.0)[30 200 2], 1.1 PSygldLON2qz66:2 (Cdn Cache Server V2.0)[706 200 2]


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3529
Md5:    b6071832382fc08491cb2b073f1451bc
Sha1:   872d9d83cfc3feb62a726cc169a681b39514242b
Sha256: 8e396ab0cb61adb183bd413bbf82060a7bf1d900a179aa933a15de491ff9f62e
                                        
                                            GET /static/jq.js HTTP/1.1 
Host: www.xinhuanet.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vod.xinhuanet.com/v/vod.html?vid=473025

                                         
                                         91.135.34.43
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Last-Modified: Fri, 03 Aug 2018 00:47:49 GMT
Etag: W/"5b63a635-1853f"
Vary: Accept-Encoding
Date: Thu, 21 Mar 2019 04:21:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive, Transfer-Encoding
Server-Timing: cdn-cache; desc=HIT, edge; dur=8


--- Additional Info ---
Magic:  UTF-8 Unicode text, with very long lines
Size:   99647
Md5:    5a27115249861269b8bd9b6b8a862091
Sha1:   6aeebb80ab21c485f5c56d8d536bd964fda4d53b
Sha256: 19d9d400419b2da1a7d0edc10d17a20ad0f3a8ce003d59cd13525d11762c13b7
                                        
                                            GET /v/misc/webapp.css HTTP/1.1 
Host: misc.vod.news.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vod.xinhuanet.com/v/vod.html?vid=473025

                                         
                                         163.171.140.206
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 21 Mar 2019 04:21:25 GMT
Server: nginx/1.2.2
Last-Modified: Fri, 08 Jan 2016 00:59:55 GMT
Transfer-Encoding: chunked
Content-Encoding: gzip
X-Via: 1.1 bjzwsx10:1 (Cdn Cache Server V2.0), 1.1 PShlamstdAMS1wt94:5 (Cdn Cache Server V2.0)
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2252
Md5:    1fdfbff7e52bb12ae81afe698392ac60
Sha1:   3f7593db53a1e7c076af946b2fd8b940e883c2a4
Sha256: 41055315b45941da5f9309a65979313ebfcb90efc91ac0a1605718c2278d4875
                                        
                                            GET /v/misc/load.js HTTP/1.1 
Host: misc.vod.news.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vod.xinhuanet.com/v/vod.html?vid=473025

                                         
                                         163.171.140.206
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Thu, 21 Mar 2019 04:21:25 GMT
Server: nginx/1.2.2
Last-Modified: Wed, 07 Nov 2018 14:55:50 GMT
Transfer-Encoding: chunked
Content-Encoding: gzip
X-Via: 1.1 bjzwsx10:1 (Cdn Cache Server V2.0), 1.1 td49:13 (Cdn Cache Server V2.0)
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1002
Md5:    178a5c5b37f31cc08e965fcd6a305828
Sha1:   a447ba2d0e87b1042b1cf7477c07e0a4c9076876
Sha256: e1aa88e9654f4e721ab91adb9412bd581d81d012f6cf1ed5a48cd16906cf81ae
                                        
                                            GET /webdig.js?z=1 HTTP/1.1 
Host: webd.home.news.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vod.xinhuanet.com/v/vod.html?vid=473025

                                         
                                         203.192.2.70
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=604800
Connection: close
Content-Encoding: gzip
Content-Length: 4398
Last-Modified: Thu, 07 Mar 2019 02:56:46 GMT
P3p: CP=.
Server: whttpd/5.7
Date: Thu, 21 Mar 2019 04:21:08 GMT


--- Additional Info ---
Magic:  gzip compressed data
Size:   4398
Md5:    468e5fa3910a5f486e31648671bd65bb
Sha1:   33d5525c4cd2d966b92ccb21f2c957cea55fdfd0
Sha256: 82d694f188dd129d67e3da80a59e57334d579ad30c1c68309dc80f2427cc2ab7
                                        
                                            GET /v/misc/swfobject.js HTTP/1.1 
Host: misc.vod.news.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vod.xinhuanet.com/v/vod.html?vid=473025

                                         
                                         163.171.140.206
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Thu, 21 Mar 2019 04:21:28 GMT
Server: nginx/1.2.2
Last-Modified: Fri, 28 Mar 2014 17:12:26 GMT
Transfer-Encoding: chunked
Content-Encoding: gzip
X-Via: 1.1 bjzwsx10:1 (Cdn Cache Server V2.0), 1.1 td48:12 (Cdn Cache Server V2.0)
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1849
Md5:    580c4094d6565b4a0f0cbf0907f7cbbc
Sha1:   b5ace4b747a1b8bf6e40a4e1e6374bee630081ef
Sha256: e2ad319a911326b469fc9f7fbe3a0738dbdb0cf50a4d166467d4c3512eeef44b
                                        
                                            GET /1.gif?z=1&a=1699e7b8189&b=%u65B0%u534E%u7F51&B=UTF-8&c=http%3A//vod.xinhuanet.com/v/vod.html%3Fvid%3D473025%26_wdxid%3D010020120000000000000000011100000000000000%26_wdif%3D1%26&d=http%3A//www.baozifenjiage.com/xwfb/tplb/584606.htm&e=0&f=0&H=vod.xinhuanet.com&E=1&r=4e90585b29b74cf7&s=0&t=0&u=1&i=en-US&j=1&k=1176x885&l=24&m=10.0%20r45&n=&o=1 HTTP/1.1 
Host: webd.home.news.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vod.xinhuanet.com/v/vod.html?vid=473025

                                         
                                         203.192.2.70
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: private, no-cache, no-store, no-cache=Set-Cookie, must-revalidate
Connection: close
Content-Length: 34
Expires: Wed, 26 Apr 1989 12:00:00 GMT
P3p: CP=.
Pragma: no-cache
Server: whttpd/5.7
Date: Thu, 21 Mar 2019 04:21:09 GMT


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   34
Md5:    95649a2fa4185c0f398ed817ac06e310
Sha1:   113d6fa13fe7ff655101c56d0971de1da7cc604c
Sha256: a4067f92b287bbbf6ca1c95e610b100a95a30660fc2a9727d9354741b761eb81
                                        
                                            GET /v/misc/player_min.js?v=1.1 HTTP/1.1 
Host: misc.vod.news.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vod.xinhuanet.com/v/vod.html?vid=473025

                                         
                                         163.171.140.206
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Thu, 21 Mar 2019 04:21:28 GMT
Server: nginx/1.2.2
Last-Modified: Thu, 24 Apr 2014 07:14:25 GMT
Transfer-Encoding: chunked
Content-Encoding: gzip
X-Via: 1.1 bjzwsx10:1 (Cdn Cache Server V2.0), 1.1 PShlamstdAMS1se91:0 (Cdn Cache Server V2.0)
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5458
Md5:    e82e796a446a7f8c4053836373d0c137
Sha1:   39e0fc999cbc3ec590ed80b8a6e2262ef51e3ef5
Sha256: 63201a6bb05dc43f86abc132c80cc6cb2270f354aba4d40117b5bcb5c307242f
                                        
                                            GET /v/misc/core_min.js?v=1.1 HTTP/1.1 
Host: misc.vod.news.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vod.xinhuanet.com/v/vod.html?vid=473025

                                         
                                         163.171.140.206
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Thu, 21 Mar 2019 04:21:28 GMT
Server: nginx/1.2.2
Last-Modified: Thu, 24 Apr 2014 07:14:27 GMT
Transfer-Encoding: chunked
Content-Encoding: gzip
X-Via: 1.1 bjzwsx10:1 (Cdn Cache Server V2.0), 1.1 PShlamstdAMS1wt94:9 (Cdn Cache Server V2.0)
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   7439
Md5:    6d55f621cc858cd0660e01311513ae9e
Sha1:   fc78a58a5d480475bb6ea2ec2e9478e3b299c194
Sha256: 80e64fbd76c6055f7e4cf58827d293d6a0068b2b2b003d3328546440df039f08
                                        
                                            GET /v/misc/KKPlayer2.0_xhn.swf?movieType=null&v=2.9&popup=0 HTTP/1.1 
Host: misc.vod.news.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vod.xinhuanet.com/v/vod.html?vid=473025

                                         
                                         163.171.140.206
HTTP/1.1 200 OK
Content-Type: application/x-shockwave-flash
                                        
Date: Thu, 21 Mar 2019 04:21:30 GMT
Server: nginx/1.2.2
Content-Length: 103112
Last-Modified: Fri, 25 Nov 2016 08:38:59 GMT
Accept-Ranges: bytes
X-Via: 1.1 bjzwsx10:1 (Cdn Cache Server V2.0), 1.1 PShlamstdAMS1uv190:5 (Cdn Cache Server V2.0)
Connection: keep-alive


--- Additional Info ---
Magic:  Macromedia Flash data (compressed), version 11
Size:   103112
Md5:    0c949301538d46031d16d0581e5eb900
Sha1:   62f67bcd7a11404dbd8d1d9b21de6468f3bc08af
Sha256: 5e34b01e5cfc3cbfb89f2de84694bd97debb7f64fdfc7c7e2b82d5a404067737
                                        
                                            GET /get/flashplayer/update/current/xml/version_en_win_pl.xml HTTP/1.1 
Host: fpdownload2.macromedia.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         91.135.34.10
HTTP/1.1 200 OK
Content-Type: text/xml
                                        
Server: Apache
Last-Modified: Tue, 12 Mar 2019 07:20:49 GMT
Etag: "60e-583e0874d57a7"
Accept-Ranges: bytes
Content-Length: 1550
Date: Thu, 21 Mar 2019 04:21:31 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  XML document text\012 XML document text
Size:   1550
Md5:    98c554abfd0ba1a8d6fbfd947dbd0b19
Sha1:   9b0f1e4577ecc7429408ff280486bd2246555cc0
Sha256: 437bea0b833e78655b912de7e65aae12c2c30061b58a9b7bf2a827ddbc6b2d8d
                                        
                                            GET /js/jquery-1.9.0.min.js HTTP/1.1 
Host: www.baozifenjiage.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.baozifenjiage.com/xwfb/tplb/584606.htm

                                         
                                         104.164.177.166
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:22:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   36912
Md5:    af4f73859ab1bd12e1f72a14d0ca53f6
Sha1:   9a7d746cf0632f712f24d947da248f970eaa4c0a
Sha256: ecc47602d8e2d13aeeff3def521508c3d33fd1e090c55cad30719257441675fd

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /vod_video_js/473/473025.js HTTP/1.1 
Host: vod.xinhuanet.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vod.xinhuanet.com/v/vod.html?vid=473025
Cookie: wdcid=4e90585b29b74cf7; wdlast=1553142088

                                         
                                         163.171.129.140
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Thu, 21 Mar 2019 04:21:32 GMT
Content-Length: 768
Connection: keep-alive
Server: nginx/1.2.2
Last-Modified: Fri, 15 Dec 2017 11:45:47 GMT
Accept-Ranges: bytes
X-Via: 1.1 PSzjwzdx10eo45:3 (Cdn Cache Server V2.0)[60 200 2], 1.1 PSygldLON2qz66:5 (Cdn Cache Server V2.0)[777 200 2]


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   768
Md5:    75d65c89b020abe66a49a763deaf0640
Sha1:   8a4fe346d5b442100d8ce4a2d9e03c5d6283a778
Sha256: f02a9233089d3474ef84ecf8442d3bedfbb114357392f95941cf9470706d5387
                                        
                                            GET /v/misc/Library2.0_xhn.swf?ver=L1.0 HTTP/1.1 
Host: misc.vod.news.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         163.171.140.206
HTTP/1.1 200 OK
Content-Type: application/x-shockwave-flash
                                        
Date: Thu, 21 Mar 2019 04:21:32 GMT
Server: nginx/1.2.2
Content-Length: 103676
Last-Modified: Thu, 24 Apr 2014 08:19:18 GMT
Accept-Ranges: bytes
X-Via: 1.1 bjzwsx10:1 (Cdn Cache Server V2.0), 1.1 td49:11 (Cdn Cache Server V2.0)
Connection: keep-alive


--- Additional Info ---
Magic:  Macromedia Flash data (compressed), version 10
Size:   103676
Md5:    e9eb31f077cd1d9365b5868ea32c2db1
Sha1:   5e4f773176fba2412f38b75170075d8bcfb2c857
Sha256: bae562b8e824677f45c5856d81f40fb007a31eef0ed38a746dde330799c1308b
                                        
                                            GET /js/script.js HTTP/1.1 
Host: www.baozifenjiage.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.baozifenjiage.com/xwfb/tplb/584606.htm

                                         
                                         104.164.177.166
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:22:05 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2986
Md5:    cccd5ea97632c65a112153c5d40030b0
Sha1:   6ab7bf4c6e1edba2e0f3cf41e69e0ef514fc9973
Sha256: 0b03a4c1207555fb7edd4f12d8fcd11c728ad33faea325f602421976b1f5b082

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /v/misc/Plugins2.0_xhn.swf?ver=P1.0.1.0 HTTP/1.1 
Host: misc.vod.news.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         163.171.140.206
HTTP/1.1 200 OK
Content-Type: application/x-shockwave-flash
                                        
Date: Thu, 21 Mar 2019 04:21:33 GMT
Server: nginx/1.2.2
Content-Length: 11767
Last-Modified: Thu, 24 Apr 2014 08:19:18 GMT
Accept-Ranges: bytes
X-Via: 1.1 bjzwsx10:1 (Cdn Cache Server V2.0), 1.1 PShlamstdAMS1uv190:14 (Cdn Cache Server V2.0)
Connection: keep-alive


--- Additional Info ---
Magic:  Macromedia Flash data (compressed), version 10
Size:   11767
Md5:    938fe8d07737a568882e6698e0478dc1
Sha1:   1fc3b4a53ecc41e0bf70a08b55ffd1f7c6e6a884
Sha256: e402a15ec59f64d14f74b7b1878e84ec7782476e20aca634a442e0c1d1b3113c
                                        
                                            GET //data/cdn_transfer/70/14/7038e7fae8abe14599301ffe954863c260950714.mp4?start=NaN.00&ts=1553142091634&id=sotester&client=FLASH%20WIN%2010,0,45,2&version=6.13.60 HTTP/1.1 
Host: vodfile8.news.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         91.135.34.16
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Server: nginx/1.13.6
Content-Length: 169
Date: Thu, 21 Mar 2019 04:21:33 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document text
Size:   169
Md5:    af6c62757928619f99c9cb6d5313fe8c
Sha1:   cdaffe3976784ca6fdacb6ff38305e089a6af26a
Sha256: 9961cc6ba02760b25a7ed898cf1264215685cc0098392db60f749c1de9a101c9
                                        
                                            GET /getCdnresource_flv?gcid=F772358B5E21A995C80A9C81588AB30F8DD6B644 HTTP/1.1 
Host: p2s.xinhuanet.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vod.xinhuanet.com/v/vod.html?vid=473025
Cookie: wdcid=4e90585b29b74cf7

                                         
                                         163.171.140.206
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Date: Thu, 21 Mar 2019 04:21:33 GMT
X-Powered-By: Express
Content-Length: 383
Etag: W/"17f-wJ0hib9FpvRaOx6H+0edlkb/2YI"
X-Via: 1.1 bjzwsx10:1 (Cdn Cache Server V2.0), 1.1 PShlamstdAMS1cc96:13 (Cdn Cache Server V2.0)
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text, with CRLF, LF line terminators
Size:   383
Md5:    166ac992ad9888dfbcc0214b84d254fd
Sha1:   c09d2189bf45a6f45a3b1e87fb479d9646ffd982
Sha256: ab22ed20d7d230bc628783405c927c586cece50a25f4c2d2187ae92400f9de34
                                        
                                            GET /push.js HTTP/1.1 
Host: push.zhanzhang.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.baozifenjiage.com/xwfb/tplb/584606.htm

                                         
                                         111.206.37.189
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Content-Encoding: gzip
Content-Length: 227
Date: Thu, 21 Mar 2019 04:21:33 GMT
Etag: "4078520125"
Expires: Fri, 20 Mar 2020 04:21:33 GMT
Last-Modified: Wed, 25 Nov 2015 07:46:04 GMT
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: apache
Set-Cookie: BAIDUID=135EFC93F0EE4FD152B4DD9981BEFCA5:FG=1; max-age=31536000; expires=Fri, 20-Mar-20 04:21:33 GMT; domain=.baidu.com; path=/; version=1
Vary: Accept-Encoding


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   227
Md5:    e548b6ce15bb616c2bfba36e9cfbf307
Sha1:   a348285d9928a6548a57569f1fb9d62bdd747f33
Sha256: 7be3e4c53cc47ce5cfa40a5e79b42848a90acee0d7ff71f10ac31a49c81aead5
                                        
                                            GET /19637641.js HTTP/1.1 
Host: js.users.51.la
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.baozifenjiage.com/xwfb/tplb/584606.htm

                                         
                                         163.171.140.202
HTTP/1.1 200 OK
Content-Type: application/javascript;charset=UTF-8
                                        
Date: Thu, 21 Mar 2019 04:21:33 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx/1.14.0
id-2: 32AAAQAAEAABAAAQAAEAABAAAQAAEAABCS7/p9/KztAoA5bwX5ch4pQqwCpr7Yhe
Etag: "0ddb3866309b4867e080dd493483e6e5"
x-id: 19637641
version-id: G0011165AA726A8BFFFF904B001D3F87
Last-Modified: Wed Sep 05 23:55:49 CST 2018
request-id: 0000016990BABC7990471F1B816D026C
x-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc
Content-Disposition: inline;filename=f.txt
Age: 69739
X-Via: 1.1 ld86:9 (Cdn Cache Server V2.0)[0 200 0], 1.1 PShlamstdAMS1uw80:7 (Cdn Cache Server V2.0)[0 200 0]
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix, last modified: Thu Mar 21 05:21:33 2019
Size:   2543
Md5:    6f62c56dbbbf4438c11942d2e69464f2
Sha1:   a931aecb30a0535cc9499b3bd6f703d79c37fb4e
Sha256: 2874b438328fd016f36521f953fe7181faf9efdc2bd2bc14d57545255369362e

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /19674401.js HTTP/1.1 
Host: js.users.51.la
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.baozifenjiage.com/xwfb/tplb/584606.htm

                                         
                                         163.171.140.202
HTTP/1.1 200 OK
Content-Type: application/javascript;charset=UTF-8
                                        
Date: Thu, 21 Mar 2019 04:21:33 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx/1.14.0
id-2: 32AAAQAAEAABAAAQAAEAABAAAQAAEAABCS9NU8x8Y5xxFIcTUJHoSrvpfCt4p5cK
Etag: "81dea0e49499e75a4f610e55e765084b"
x-id: 19674401
version-id: G00111661E42BE2FFFFF900600EBF9A5
Last-Modified: Fri Sep 28 11:39:42 CST 2018
request-id: 000001699152989C9046A94F1E5ABCBC
x-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc
Content-Disposition: inline;filename=f.txt
Age: 55007
X-Via: 1.1 ld83:7 (Cdn Cache Server V2.0)[0 200 0], 1.1 PShlamstdAMS1tq87:7 (Cdn Cache Server V2.0)[0 200 0]
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix, last modified: Thu Mar 21 05:21:34 2019
Size:   2547
Md5:    b7f920c9c0b04eec09e40624b908b8d8
Sha1:   b752d301b07b8ce1a037e6d3b3a3e8f589a1c5bf
Sha256: 519ca12f79f3817d66d64c8683eb3a849768c93e41ee1b75cb833cf9b198077a

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /static/api/js/share/share_api.js?v=226108fe.js HTTP/1.1 
Host: bdimg.share.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.baozifenjiage.com/xwfb/tplb/584606.htm
Cookie: BAIDUID=135EFC93F0EE4FD152B4DD9981BEFCA5:FG=1

                                         
                                         111.206.37.189
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 374
Date: Thu, 21 Mar 2019 04:21:34 GMT
Etag: "2151209923"
Expires: Thu, 21 Mar 2019 04:51:34 GMT
Last-Modified: Fri, 05 Jun 2015 08:50:08 GMT
Server: BWS/1.0
Vary: Accept-Encoding


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   374
Md5:    d83d9b2e8f9991d48228eacaa36ed9d8
Sha1:   43f570d57795ff92f4f9765ca13fe8e7c04004dc
Sha256: 0823a3af4f618739366bd95c18c78716313d835adb2b20bcfa1bf44265fb7cfb
                                        
                                            GET /go1?id=19637641&rt=1553142094006&rl=1176*885&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=%25E5%25BF%2585%25E5%25A8%2581%25E4%25BD%2593%25E8%2582%25B2app%25E6%259C%2580%25E5%258F%2597%25E5%25B9%25BF%25E5%25A4%25A7%25E7%258E%25A9%25E5%25AE%25B6%25E6%25AC%25A2%25E8%25BF%258E%252C%25E5%2587%25BA%25E6%25AC%25BE%25E6%259C%2580%25E5%25BF%25AB%252C%25E6%259C%258D%25E5%258A%25A1%25E6%2580%2581%25E5%25BA%25A6%25E6%259C%2580%25E5%25A5%25BD%252C%25E6%25B8%25B8%25E6%2588%258F&ing=1&ekc=&sid=1553142094006&tt=%25E4%25B9%25A0%25E8%25BF%2591%25E5%25B9%25B3%25E4%25BC%259A%25E8%25A7%2581%25E6%259D%25A5%25E4%25BA%25AC%25E8%25BF%25B0%25E8%2581%258C%25E7%259A%2584%25E5%25B4%2594%25E4%25B8%2596%25E5%25AE%2589-%25E5%259B%25BE%25E7%2589%2587%25E8%25A6%2581%25E9%2597%25BB-%25E5%25BF%2585%25E5%25A8%2581%25E4%25BD%2593%25E8%2582%25B2app&kw=%25E5%25BF%2585%25E5%25A8%2581%25E4%25BD%2593%25E8%2582%25B2app%252C%25E5%25BF%2585%25E5%25A8%2581%25E4%25BD%2593%25E8%2582%25B2%25E5%25AE%25A2%25E6%2588%25B7%25E7%25AB%25AF%252C%25E5%25BF%2585%25E5%25A8%2581%25E4%25BD%2593%25E8%2582%25B2%25E5%25AE%2598%25E7%25BD%2591&cu=http%253A%252F%252Fwww.baozifenjiage.com%252Fxwfb%252Ftplb%252F584606.htm&pu= HTTP/1.1 
Host: ia.51.la
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.baozifenjiage.com/xwfb/tplb/584606.htm
Cookie: HWWAFSESID=6235d44e289fa0a296e; HWWAFSESTIME=1553141962676

                                         
                                         183.131.207.78
HTTP/1.1 200
                                        
Server: HuaweiCloudWAF
Date: Thu, 21 Mar 2019 04:19:37 GMT
Content-Length: 0
Connection: keep-alive


--- Additional Info ---
                                        
                                            GET /go1?id=19674401&rt=1553142094050&rl=1176*885&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=%25E5%25BF%2585%25E5%25A8%2581%25E4%25BD%2593%25E8%2582%25B2app%25E6%259C%2580%25E5%258F%2597%25E5%25B9%25BF%25E5%25A4%25A7%25E7%258E%25A9%25E5%25AE%25B6%25E6%25AC%25A2%25E8%25BF%258E%252C%25E5%2587%25BA%25E6%25AC%25BE%25E6%259C%2580%25E5%25BF%25AB%252C%25E6%259C%258D%25E5%258A%25A1%25E6%2580%2581%25E5%25BA%25A6%25E6%259C%2580%25E5%25A5%25BD%252C%25E6%25B8%25B8%25E6%2588%258F&ing=2&ekc=&sid=1553142094050&tt=%25E4%25B9%25A0%25E8%25BF%2591%25E5%25B9%25B3%25E4%25BC%259A%25E8%25A7%2581%25E6%259D%25A5%25E4%25BA%25AC%25E8%25BF%25B0%25E8%2581%258C%25E7%259A%2584%25E5%25B4%2594%25E4%25B8%2596%25E5%25AE%2589-%25E5%259B%25BE%25E7%2589%2587%25E8%25A6%2581%25E9%2597%25BB-%25E5%25BF%2585%25E5%25A8%2581%25E4%25BD%2593%25E8%2582%25B2app&kw=%25E5%25BF%2585%25E5%25A8%2581%25E4%25BD%2593%25E8%2582%25B2app%252C%25E5%25BF%2585%25E5%25A8%2581%25E4%25BD%2593%25E8%2582%25B2%25E5%25AE%25A2%25E6%2588%25B7%25E7%25AB%25AF%252C%25E5%25BF%2585%25E5%25A8%2581%25E4%25BD%2593%25E8%2582%25B2%25E5%25AE%2598%25E7%25BD%2591&cu=http%253A%252F%252Fwww.baozifenjiage.com%252Fxwfb%252Ftplb%252F584606.htm&pu= HTTP/1.1 
Host: ia.51.la
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.baozifenjiage.com/xwfb/tplb/584606.htm
Cookie: HWWAFSESID=6235d44e289fa0a296e; HWWAFSESTIME=1553141962676

                                         
                                         183.131.207.78
HTTP/1.1 200
                                        
Server: HuaweiCloudWAF
Date: Thu, 21 Mar 2019 04:19:37 GMT
Content-Length: 0
Connection: keep-alive


--- Additional Info ---
                                        
                                            GET /s.gif?l=http://www.baozifenjiage.com/xwfb/tplb/584606.htm HTTP/1.1 
Host: api.share.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.baozifenjiage.com/xwfb/tplb/584606.htm
Cookie: BAIDUID=135EFC93F0EE4FD152B4DD9981BEFCA5:FG=1

                                         
                                         111.206.37.189
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: no-cache, no-store, must-revalidate
Date: Thu, 21 Mar 2019 04:21:34 GMT
Expires: 0
Pragma: no-cache
Server: apache
Content-Length: 0


--- Additional Info ---
                                        
                                            GET /static/api/js/view/share_view.js?v=3ae6026d.js HTTP/1.1 
Host: bdimg.share.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.baozifenjiage.com/xwfb/tplb/584606.htm
Cookie: BAIDUID=135EFC93F0EE4FD152B4DD9981BEFCA5:FG=1

                                         
                                         111.206.37.189
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 751
Date: Thu, 21 Mar 2019 04:21:34 GMT
Etag: "2738411398"
Expires: Thu, 21 Mar 2019 04:51:34 GMT
Last-Modified: Fri, 05 Jun 2015 08:50:09 GMT
Server: BWS/1.0
Vary: Accept-Encoding


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   751
Md5:    2f70d93b9f03bdfbd94c882baa358ba0
Sha1:   f2ff3411db7c99b8c38f88ef83d8d2c1e36cc97c
Sha256: 2d79560384a4a5d390dc9979d68b9db79d01076b2e89a110d16a42af3dbfaadc
                                        
                                            GET /v/misc/StartAnimation.swf HTTP/1.1 
Host: misc.vod.news.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         163.171.140.206
HTTP/1.1 200 OK
Content-Type: application/x-shockwave-flash
                                        
Date: Thu, 21 Mar 2019 04:21:34 GMT
Server: nginx/1.2.2
Content-Length: 208626
Last-Modified: Tue, 29 Apr 2014 00:44:20 GMT
Accept-Ranges: bytes
X-Via: 1.1 bjzwsx10:1 (Cdn Cache Server V2.0), 1.1 PShlamstdAMS1se91:10 (Cdn Cache Server V2.0)
Connection: keep-alive


--- Additional Info ---
Magic:  Macromedia Flash data, version 6
Size:   208626
Md5:    7d7f565c7c178f2e9eaa3ea78a68abad
Sha1:   9418dc9bb4ee5972754c5a1a2f81ed910c966a64
Sha256: aaa031fe9a3f3dfa577eae17f6aaf7522547ad32c8c997182315fa9dae003189
                                        
                                            GET /static/api/js/view/view_base.js HTTP/1.1 
Host: bdimg.share.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.baozifenjiage.com/xwfb/tplb/584606.htm
Cookie: BAIDUID=135EFC93F0EE4FD152B4DD9981BEFCA5:FG=1

                                         
                                         111.206.37.189
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 728
Date: Thu, 21 Mar 2019 04:21:34 GMT
Etag: "2688079746"
Expires: Thu, 21 Mar 2019 04:51:34 GMT
Last-Modified: Fri, 05 Jun 2015 08:50:09 GMT
Server: BWS/1.0
Vary: Accept-Encoding


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   728
Md5:    7ee144ca4be853ced65e63463259e6eb
Sha1:   a171d2b09ecb55590628a71a7f50fc05eb2d7e92
Sha256: 89119613d47f7bd1c2daf15d878fea5cfbca158fbd90930fcf106b4dc177d9f6
                                        
                                            GET /static/api/js/share/api_base.js HTTP/1.1 
Host: bdimg.share.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.baozifenjiage.com/xwfb/tplb/584606.htm
Cookie: BAIDUID=135EFC93F0EE4FD152B4DD9981BEFCA5:FG=1

                                         
                                         111.206.37.189
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 580
Date: Thu, 21 Mar 2019 04:21:34 GMT
Etag: "3610826631"
Expires: Thu, 21 Mar 2019 04:51:34 GMT
Last-Modified: Fri, 05 Jun 2015 08:50:08 GMT
Server: BWS/1.0
Vary: Accept-Encoding


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   580
Md5:    a2f2cddb86ee350731a332b4c44f5e0d
Sha1:   e8ec70d2a62da5fff2ce1b684a4a9d112d640315
Sha256: 142e59628a500e248c6155c8fe279eeb70bc6aebf516c1bb6cd9486ea1b207b1
                                        
                                            GET /static/api/js/base/tangram.js?v=37768233.js HTTP/1.1 
Host: bdimg.share.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.baozifenjiage.com/xwfb/tplb/584606.htm
Cookie: BAIDUID=135EFC93F0EE4FD152B4DD9981BEFCA5:FG=1

                                         
                                         111.206.37.189
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 36055
Date: Thu, 21 Mar 2019 04:21:34 GMT
Etag: "814241156"
Expires: Thu, 21 Mar 2019 04:51:34 GMT
Last-Modified: Fri, 05 Jun 2015 08:50:07 GMT
Server: BWS/1.0
Vary: Accept-Encoding


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   36055
Md5:    1a17164900cba54de0776f3d66b38647
Sha1:   115ecb2a379ead464545695c324301d95164b16c
Sha256: 2eb4ae8ab6cc0e3b820134d3da036902344908846eecc4f7d0adb6dbdab23a79
                                        
                                            GET /static/api/js/component/partners.js?v=96dbe85a.js HTTP/1.1 
Host: bdimg.share.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.baozifenjiage.com/xwfb/tplb/584606.htm
Cookie: BAIDUID=135EFC93F0EE4FD152B4DD9981BEFCA5:FG=1

                                         
                                         111.206.37.189
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 790
Date: Thu, 21 Mar 2019 04:21:35 GMT
Etag: "3493386128"
Expires: Thu, 21 Mar 2019 04:51:35 GMT
Last-Modified: Fri, 05 Jun 2015 08:50:07 GMT
Server: BWS/1.0
Vary: Accept-Encoding


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   790
Md5:    1fe5dfa0f217378c6a269d0907572b26
Sha1:   e02e330ef145b006002710a57642d06bfcf5bd76
Sha256: 53912ed51acc9f854c807eb4e0ce6a23e51e6614e1c9881c0e0eaaae7b65bb94
                                        
                                            GET /static/api/css/share_style0_24.css HTTP/1.1 
Host: bdimg.share.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.baozifenjiage.com/xwfb/tplb/584606.htm
Cookie: BAIDUID=135EFC93F0EE4FD152B4DD9981BEFCA5:FG=1

                                         
                                         111.206.37.189
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Accept-Ranges: bytes
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 821
Date: Thu, 21 Mar 2019 04:21:35 GMT
Etag: "2688079635"
Expires: Thu, 21 Mar 2019 04:51:35 GMT
Last-Modified: Fri, 05 Jun 2015 08:50:04 GMT
Server: BWS/1.0
Vary: Accept-Encoding


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   821
Md5:    76537f9162db8453003ff2e950c3698a
Sha1:   c2567981e327d43e7d5417303ae681ac99f2be69
Sha256: 868e41c81e09f4bdccad9135d65f4310e1734d229952024c9cd4ddd754f5bb7b
                                        
                                            GET /static/api/img/share/icons_0_24.png?v=4c3f13b3.png HTTP/1.1 
Host: bdimg.share.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://bdimg.share.baidu.com/static/api/css/share_style0_24.css
Cookie: BAIDUID=135EFC93F0EE4FD152B4DD9981BEFCA5:FG=1

                                         
                                         111.206.37.189
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Accept-Ranges: bytes
Cache-Control: max-age=604800
Content-Length: 21968
Date: Thu, 21 Mar 2019 04:21:36 GMT
Etag: "3610855312"
Expires: Thu, 28 Mar 2019 04:21:36 GMT
Last-Modified: Fri, 05 Jun 2015 08:50:05 GMT
Server: BWS/1.0


--- Additional Info ---
Magic:  PNG image, 24 x 3160, 8-bit colormap, non-interlaced
Size:   21968
Md5:    6fd70e02d2925d02f885d3564c3f13b3
Sha1:   1394e4d8c341394535895e75fabcb494c5bb024e
Sha256: 585d0b1a974a830c0a3e6866a7c0da1e00c51e3f2ec6a69ac56ef3d4de805fed
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.baozifenjiage.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __tins__19637641=%7B%22sid%22%3A%201553142094006%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201553143894006%7D; __51cke__=; __51laig__=2; __tins__19674401=%7B%22sid%22%3A%201553142094050%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201553143894050%7D

                                         
                                         104.164.177.166
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Server: nginx
Date: Thu, 21 Mar 2019 04:22:09 GMT
Content-Length: 1406
Last-Modified: Wed, 28 Nov 2018 03:59:32 GMT
Connection: keep-alive
Etag: "5bfe12a4-57e"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon
Size:   1406
Md5:    478b63898983c4a3dae2b3f6d5cddd38
Sha1:   cf9a75175a6a35117545e5f753b8d8a39e0cb5f6
Sha256: bb4cade158dac50abf0dd18cef77f729d2edecf846202612065a941ff395be85
                                        
                                            GET /static/api/js/trans/logger.js?v=60603cb3.js HTTP/1.1 
Host: bdimg.share.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.baozifenjiage.com/xwfb/tplb/584606.htm
Cookie: BAIDUID=135EFC93F0EE4FD152B4DD9981BEFCA5:FG=1

                                         
                                         111.206.37.189
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 1034
Date: Thu, 21 Mar 2019 04:21:37 GMT
Etag: "3887650637"
Expires: Thu, 21 Mar 2019 04:51:37 GMT
Last-Modified: Fri, 05 Jun 2015 08:50:08 GMT
Server: BWS/1.0
Vary: Accept-Encoding


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1034
Md5:    56b6c00869999857d8a8f9c27a2b53f9
Sha1:   e38f99caca30ca16e0bae04ddcbee49785d1fb37
Sha256: 4e41ba0ecfe5cae8269b3fdab5fe6bdc96cd6c9bb3379f85b18a74945c3dc2a4
                                        
                                            GET /v.gif HTTP/1.1 
Host: api.share.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.baozifenjiage.com/xwfb/tplb/584606.htm
Cookie: BAIDUID=135EFC93F0EE4FD152B4DD9981BEFCA5:FG=1

                                         
                                         111.206.37.189
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: no-cache, no-store, must-revalidate
Content-Length: 0
Date: Thu, 21 Mar 2019 04:21:37 GMT
Expires: 0
Pragma: no-cache
Server: apache


--- Additional Info ---
                                        
                                            GET /v.gif?pid=307&type=3071&sign=&desturl=&linkid=jti4pca10bp&apitype=1 HTTP/1.1 
Host: nsclick.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.baozifenjiage.com/xwfb/tplb/584606.htm
Cookie: BAIDUID=135EFC93F0EE4FD152B4DD9981BEFCA5:FG=1

                                         
                                         61.135.186.152
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Accept-Ranges: bytes
Cache-Control: max-age=0
Content-Length: 0
Date: Thu, 21 Mar 2019 04:21:38 GMT
Etag: "4280832337"
Expires: Thu, 21 Mar 2019 04:21:38 GMT
Last-Modified: Fri, 23 Oct 2009 08:06:04 GMT
Pragma: no-cache
Server: BWS/1.0


--- Additional Info ---
                                        
                                            GET //data/cdn_transfer/D8/06/d884800e6d4c3143f016d51951c90825dec1df06.mp4?key=769fa6ad6f2f3bc7836e85166c5803e7&key1=1553142078&start=0&ts=1553142093805&id=sotester&client=FLASH%20WIN%2010,0,45,2&version=6.13.60 HTTP/1.1 
Host: vodfile9.news.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         91.135.34.16
HTTP/1.1 200 OK
Content-Type: video/mp4
                                        
Server: nginx/1.13.6
Content-Length: 12626312
Last-Modified: Fri, 15 Dec 2017 11:34:56 GMT
X-Mod-H264-Streaming: version=2.2.7
Accept-Ranges: bytes
Cache-Control: max-age=3600
Expires: Thu, 21 Mar 2019 05:21:35 GMT
Date: Thu, 21 Mar 2019 04:21:35 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  ISO Media, MPEG v4 system, version 1
Size:   12626312
Md5:    0ba0fdbf578542099ca8e5f1c0bbb478
Sha1:   5a2ec42a3aeaf6644af61629a691bad769b44048
Sha256: 4f79d5fce63221e48b07bb4929d092c1f8a4a2b866108b9f8efd42229c600156
                                        
                                            GET /wm/api/visit/write/channel?siteID=6fe9b7fd4e6643ba9249ead672032120&channelID=5811&channelName=%25E5%259B%25BE%25E7%2589%2587%25E8%25A6%2581%25E9%2597%25BB HTTP/1.1 
Host: 114.215.78.48:8080
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.baozifenjiage.com/xwfb/tplb/584606.htm
Origin: http://www.baozifenjiage.com

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /wm/api/visit/write/article?siteID=6fe9b7fd4e6643ba9249ead672032120&articleID=584606&articleName=%25E4%25B9%25A0%25E8%25BF%2591%25E5%25B9%25B3%25E4%25BC%259A%25E8%25A7%2581%25E6%259D%25A5%25E4%25BA%25AC%25E8%25BF%25B0%25E8%2581%258C%25E7%259A%2584%25E5%25B4%2594%25E4%25B8%2596%25E5%25AE%2589 HTTP/1.1 
Host: 114.215.78.48:8080
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.baozifenjiage.com/xwfb/tplb/584606.htm
Origin: http://www.baozifenjiage.com

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /wm/api/visit/write/site?siteID=6fe9b7fd4e6643ba9249ead672032120 HTTP/1.1 
Host: 114.215.78.48:8080
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.baozifenjiage.com/xwfb/tplb/584606.htm
Origin: http://www.baozifenjiage.com

                                         
                                         0.0.0.0
                                        


--- Additional Info ---