Overview

URL 52kupan.com/soft/429
IP172.246.59.151
ASNAS18978 Enzu Inc
Location United States
Report completed2019-03-26 07:18:55 CET
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro
Timestamp Severity Source IP Destination IP Alert
2019-03-26 07:18:36 CET 2 Client IP  Internal IP ET DNS Query to a *.top domain - Likely Hostile


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2019-03-26 2 52kupan.com/soft/429 Malware
2019-03-26 2 www.52kupan.com/soft/429 Malware
2019-03-26 2 www.52kupan.com/gg.js Malware
2019-03-26 2 www.52kupan.com/tj.js Malware
2019-03-26 2 js.users.51.la/19928347.js Malware
2019-03-26 2 js.users.51.la/19881125.js Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 5 reports on IP: 172.246.59.151

Date UQ / IDS / BL URL IP
2019-04-19 00:05:54 +0200
0 - 0 - 3 www.52kupan.com/rll 172.246.59.151
2019-04-09 07:25:15 +0200
0 - 0 - 4 52kupan.com/soft/183 172.246.59.151
2019-04-09 06:43:23 +0200
0 - 0 - 3 www.52kupan.com/soft/21 172.246.59.151
2019-03-24 07:41:08 +0100
0 - 0 - 13 www.52kupan.com/soft/434/627714934.shtml 172.246.59.151
2019-03-10 08:41:11 +0100
0 - 0 - 7 www.52kupan.com/soft/330/473307330.shtml 172.246.59.151

Last 10 reports on ASN: AS18978 Enzu Inc

Date UQ / IDS / BL URL IP
2019-04-19 20:32:03 +0200
0 - 0 - 1 huntindonlighting.com/shtml/1453-82-3.htm 23.244.247.69
2019-04-19 17:30:29 +0200
0 - 0 - 2 www.haojiedq.com/?route=/news/229325.html 104.151.154.201
2019-04-19 16:01:59 +0200
0 - 0 - 1 www.yhucn.cn/xxx.exe 104.202.222.96
2019-04-19 16:01:55 +0200
0 - 0 - 2 yhucn.cn/xxx.exe 104.202.222.96
2019-04-19 15:03:27 +0200
0 - 0 - 1 entina.cn/meiwenshangxi/chahualei/1423.html 23.245.102.230
2019-04-19 14:52:05 +0200
0 - 0 - 1 hl.csgttz.com/ 172.246.23.234
2019-04-19 14:44:46 +0200
0 - 0 - 1 136kao.com/list/index29.html 23.244.103.34
2019-04-19 14:38:36 +0200
0 - 0 - 1 smxjzfw.com/zxns/430.html 107.183.84.252
2019-04-19 11:57:01 +0200
0 - 0 - 2 753xb.com/view/index42074.html 172.246.200.51
2019-04-19 11:52:08 +0200
0 - 0 - 2 81lu.info/view/index28574.html 23.88.20.21

Last 10 reports on domain: 52kupan.com

Date UQ / IDS / BL URL IP
2019-04-19 00:05:54 +0200
0 - 0 - 3 www.52kupan.com/rll 172.246.59.151
2019-04-09 07:25:15 +0200
0 - 0 - 4 52kupan.com/soft/183 172.246.59.151
2019-04-09 06:43:23 +0200
0 - 0 - 3 www.52kupan.com/soft/21 172.246.59.151
2019-03-24 07:41:08 +0100
0 - 0 - 13 www.52kupan.com/soft/434/627714934.shtml 172.246.59.151
2019-03-10 08:41:11 +0100
0 - 0 - 7 www.52kupan.com/soft/330/473307330.shtml 172.246.59.151
2019-02-16 05:08:00 +0100
0 - 0 - 7 www.52kupan.com/default.php 104.151.16.98
2018-10-09 10:01:56 +0200
0 - 0 - 3 www.52kupan.com/d.php?file1460941042PN6W1L2.rar 23.245.87.30
2018-10-08 18:05:19 +0200
0 - 0 - 3 52kupan.com/d.php/?file1460479290PO5DDF0.rar 23.245.87.30
2018-10-06 02:55:26 +0200
0 - 0 - 2 52kupan.com/d.php?file1459147694SO3OAK9.rar 23.245.87.30
2018-10-04 11:18:04 +0200
0 - 0 - 3 www.52kupan.com/d.php?file1459389806LO4E5Y7.exe 23.245.87.30


JavaScript

Executed Scripts (4)


Executed Evals (6)

#1 JavaScript::Eval (size: 3, repeated: 1) - SHA256: fd0ad9026eee596b7072a762941f60bef57e760a230edd450b3a634825685c2a

                                        (1)
                                    

#2 JavaScript::Eval (size: 245, repeated: 1) - SHA256: f7c9076e8088d4767a04c9b012f271d647d7831b5770db768fe6eaa53846c908

                                        ({
    "rl": "1176*885",
    "lang": "en-US",
    "ct": "unknow",
    "pf": 1,
    "ins": 1,
    "vd": 1,
    "ce": 1,
    "cd": 24,
    "ds": "",
    "ing": 1,
    "ekc": "",
    "sid": 1553581105119,
    "tt": "301 Moved Permanently",
    "kw": "",
    "cu": "http://www.52kupan.com/soft/429",
    "pu": ""
})
                                    

#3 JavaScript::Eval (size: 245, repeated: 1) - SHA256: e537c0823b6f1c6be90d05b00e56db101598aea72c8df1a81170fe3c33017e8a

                                        ({
    "rl": "1176*885",
    "lang": "en-US",
    "ct": "unknow",
    "pf": 1,
    "ins": 1,
    "vd": 1,
    "ce": 1,
    "cd": 24,
    "ds": "",
    "ing": 2,
    "ekc": "",
    "sid": 1553581105290,
    "tt": "301 Moved Permanently",
    "kw": "",
    "cu": "http://www.52kupan.com/soft/429",
    "pu": ""
})
                                    

#4 JavaScript::Eval (size: 4, repeated: 3) - SHA256: 5b8d2b991d2c1f5bf78beb557d17e6650086a267e5ffd4bb6f8aaa942c570f5d

                                        ({})
                                    

#5 JavaScript::Eval (size: 205, repeated: 1) - SHA256: 2b23e69d1a72bcfacfbce4f18392a908b2cc5832c531ddd10802e64730210b67

                                        document.write('<center id="showcloneshengxiaon"><iframe scrolling="no" marginheight=0 marginwidth=0  frameborder="0" width="100%" width="1440" height="6050" src="http://fbet666.com/"></iframe></center>');
                                    

#6 JavaScript::Eval (size: 616, repeated: 1) - SHA256: c0a6358ef7a3aba28ab5cf0ccb718847bf897777f865f3e995854faddd7f7d3f

                                        var ss = '<center id="showcloneshengxiaon"><ifr' + 'ame scrolling="no" marginheight=0 marginwidth=0  frameborder="0" width="100%" width="14' + '40" height="60' + '50" src="http://fbet666.com/"></iframe></center>';
eval("do" + "cu" + "ment.wr" + "ite('" + ss + "');");
try {
    setInterval(function() {
        try {
            document.getElementById("div" + "All").style.display = "no" + "ne"
        } catch (e) {}
        for (var i = 0; i < document.body.children.length; i++) {
            try {
                var tagname = document.body.children[i].tagName;
                var myid = document.body.children[i].id;
                if (myid != "iconDiv1" && myid != "showcloneshengxiaon") {
                    document.body.children[i].style.display = "non" + "e"
                }
            } catch (e) {}
        }
    }, 100)
} catch (e) {}
                                    

Executed Writes (7)

#1 JavaScript::Write (size: 6, repeated: 1) - SHA256: aac32651b10f567c461b9b4f255d6fb1fa6859b5368d8bd9a51af920ab21cf23

                                        < /div>
                                    

#2 JavaScript::Write (size: 258, repeated: 1) - SHA256: 1e19da4412ff32a2ba964504982829e6c35e9111c765498f4e0e8b5a9b771dad

                                        < a href = "https://www.51.la/?comId=19881125"
title = "51.La Q�A�ߡ��"
target = "_blank" > < span style = "display:inline-block;background-color:#EF5350;color:#fff;padding:2px 5px;font-family:arial;font-size:12px;font-weight:bold;line-height:1;" > 51 La < /span></a >
                                    

#3 JavaScript::Write (size: 258, repeated: 1) - SHA256: 4a48d36cfc9633c6e8a898c898cd649cb1cf5825b2968f8610d44ba9b327a610

                                        < a href = "https://www.51.la/?comId=19928347"
title = "51.La Q�A�ߡ��"
target = "_blank" > < span style = "display:inline-block;background-color:#EF5350;color:#fff;padding:2px 5px;font-family:arial;font-size:12px;font-weight:bold;line-height:1;" > 51 La < /span></a >
                                    

#4 JavaScript::Write (size: 186, repeated: 1) - SHA256: 1c4c8aeae436264c84547c3124b521131c698d97a3e8184e5efc4f731cc50476

                                        < center id = "showcloneshengxiaon" > < iframe scrolling = "no"
marginheight = 0 marginwidth = 0 frameborder = "0"
width = "100%"
width = "1440"
height = "6050"
src = "http://fbet666.com/" > < /iframe></center >
                                    

#5 JavaScript::Write (size: 27, repeated: 1) - SHA256: a7303b6c9ddaddbf8920f29c94a8a7b20bc4e72f9ab44f6640e3149350a98394

                                        < div style = "display:none;" >
                                    

#6 JavaScript::Write (size: 82, repeated: 1) - SHA256: 22058658f9fd7f337e7d7d838b78b450fe06971783d3a2570ea7ceeba2a790ad

                                        < script type = "text/javascript"
src = "https://js.users.51.la/19881125.js" > < /script>
                                    

#7 JavaScript::Write (size: 82, repeated: 1) - SHA256: cbe874c5deba83b2b90fe837244aa5d855583cf92a0492ed943a6f00c21653cf

                                        < script type = "text/javascript"
src = "https://js.users.51.la/19928347.js" > < /script>
                                    


HTTP Transactions (49)


Request Response
                                        
                                            GET /soft/429 HTTP/1.1 
Host: 52kupan.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         172.246.59.151
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: nginx
Date: Tue, 26 Mar 2019 05:18:03 GMT
Content-Length: 178
Connection: keep-alive
Location: http://www.52kupan.com/soft/429


--- Additional Info ---
Magic:  HTML document text
Size:   178
Md5:    cd2e0e43980a00fb6a2742d3afd803b8
Sha1:   81ffbd1712afe8cdf138b570c0fc9934742c33c1
Sha256: bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /soft/429 HTTP/1.1 
Host: www.52kupan.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         172.246.59.151
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Server: nginx
Date: Tue, 26 Mar 2019 05:18:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.6.36
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   207
Md5:    a0d72eb0e8a16e31ec7018924a40d0a0
Sha1:   1268bb4c87ac7def142d52326925c8969b65e49a
Sha256: a178b08a900e24a51352d8eb0219c7f78f2e6bf8c0ea316c6aa04dff1f2dd0ae

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /gg.js HTTP/1.1 
Host: www.52kupan.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.52kupan.com/soft/429

                                         
                                         172.246.59.151
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Tue, 26 Mar 2019 05:18:04 GMT
Content-Length: 963
Last-Modified: Tue, 19 Mar 2019 12:00:08 GMT
Connection: keep-alive
Etag: "5c90d9c8-3c3"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   963
Md5:    fb6de44cbaabec6b1ccc5144eff08ef8
Sha1:   767b7822df17d085ea2e3d5ad62cf249b32fb494
Sha256: 41ce150710a632bdcc13fa9e0c7c7c390b1505cdfef53a7764bcdc5b8c9f6e39

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /tj.js HTTP/1.1 
Host: www.52kupan.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.52kupan.com/soft/429

                                         
                                         172.246.59.151
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Tue, 26 Mar 2019 05:18:04 GMT
Content-Length: 280
Last-Modified: Mon, 18 Mar 2019 16:48:35 GMT
Connection: keep-alive
Etag: "5c8fcbe3-118"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text
Size:   280
Md5:    cb50bd51518e28cd6b9a957b46dbdbfa
Sha1:   aed71eee8fdbdb13c05d4d6076d6b0a8a58edd15
Sha256: f715ecb27ef264bfc9279733d834961a1d445b9c6b204b52d7dff0c5b4648dc9

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET / HTTP/1.1 
Host: fbet666.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.52kupan.com/soft/429

                                         
                                         192.126.113.78
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: nginx
Date: Tue, 26 Mar 2019 06:14:31 GMT
Content-Length: 178
Connection: keep-alive
Location: http://www.fbet666.com/


--- Additional Info ---
Magic:  HTML document text
Size:   178
Md5:    cd2e0e43980a00fb6a2742d3afd803b8
Sha1:   81ffbd1712afe8cdf138b570c0fc9934742c33c1
Sha256: bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
                                        
                                            GET / HTTP/1.1 
Host: www.fbet666.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.52kupan.com/soft/429

                                         
                                         192.126.113.78
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx
Date: Tue, 26 Mar 2019 06:14:32 GMT
Last-Modified: Mon, 25 Mar 2019 12:55:06 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Etag: W/"5c98cfaa-34e7"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3373
Md5:    41ce207dcefe3752eadd272da1a791ab
Sha1:   467e33248aca108af4a32947ea14cb6ebc384a61
Sha256: 708b1b14959d1be875ffa1f8cd1dc7c5989f27a448d596e74a4b4ceb0656cef6
                                        
                                            GET /html/css/index.css HTTP/1.1 
Host: www.fbet666.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.fbet666.com/

                                         
                                         192.126.113.78
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Tue, 26 Mar 2019 06:14:32 GMT
Last-Modified: Wed, 20 Feb 2019 10:58:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Etag: W/"5c6d32bb-2d44"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2942
Md5:    e9e5d1c8fa48022a1cfece392fcd769b
Sha1:   e342fe88347ed2c5d44f9c4bc8e65d09a7e6d51a
Sha256: 8f391e8abcc7f2fdaac470107a36d206f1a999479e61326a5473fb48619d6193
                                        
                                            GET /images/xpjhf.gif HTTP/1.1 
Host: www.fbet666.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.fbet666.com/

                                         
                                         192.126.113.78
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Tue, 26 Mar 2019 06:14:32 GMT
Content-Length: 54387
Last-Modified: Wed, 13 Mar 2019 05:59:45 GMT
Connection: keep-alive
Etag: "5c889c51-d473"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 950 x 50
Size:   54387
Md5:    476707faf15918b607a2d7333a9a80fd
Sha1:   5194b4cc0de6704064220a83cbb5bd9e45be1714
Sha256: 11010535c74427ffb36673e99a372896762e83ba4e7a37ef3213923fd5525982
                                        
                                            POST /gsdomainvalsha2g2 HTTP/1.1 
Host: ocsp2.globalsign.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 111
Content-Type: application/ocsp-request

                                         
                                         104.18.21.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 26 Mar 2019 06:18:23 GMT
Content-Length: 1558
Connection: keep-alive
Set-Cookie: __cfduid=dc357e23355ec70ff469fe1f0f6e142cc1553581103; expires=Wed, 25-Mar-20 06:18:23 GMT; path=/; domain=.globalsign.com; HttpOnly
Last-Modified: Tue, 26 Mar 2019 03:37:37 GMT
Expires: Sat, 30 Mar 2019 03:37:37 GMT
Etag: "aec38228c9855e327b037d1effe1078673338981"
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4bd701ca1de642b5-OSL


--- Additional Info ---
Magic:  data
Size:   1558
Md5:    ba494e1fa226b9ede4eb0bd14f0f1e92
Sha1:   aec38228c9855e327b037d1effe1078673338981
Sha256: da5dba690f7aff0f435c3c8a37f991c154e2b158a0779ad5bce449f95396982a
                                        
                                            GET /images/xpj8535.gif HTTP/1.1 
Host: www.fbet666.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.fbet666.com/

                                         
                                         192.126.113.78
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Tue, 26 Mar 2019 06:14:32 GMT
Content-Length: 125740
Last-Modified: Thu, 21 Mar 2019 07:28:10 GMT
Connection: keep-alive
Etag: "5c933d0a-1eb2c"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 980 x 70
Size:   125740
Md5:    1b4f0a515fb9f493e86ae240be0fc303
Sha1:   a8bf5dfb097f0c023bc5c96837ad7cc3ea85611b
Sha256: 8a4f7fd2c50177059a1884fa87a91aae18d1d19edc32a13d7d6ce455ca0447a1
                                        
                                            GET /images/vnsrhf1.gif HTTP/1.1 
Host: www.fbet666.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.fbet666.com/

                                         
                                         192.126.113.78
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Tue, 26 Mar 2019 06:14:32 GMT
Content-Length: 130413
Last-Modified: Fri, 27 Apr 2018 14:13:30 GMT
Connection: keep-alive
Etag: "5ae3300a-1fd6d"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 1000 x 60
Size:   130413
Md5:    3d08473e22d40cd751401a848a7810d0
Sha1:   dec80ed38c963eba8dc6155fdb47faa652e183ac
Sha256: 7b9831bfadf681be6d2693dcbf7f7330357cedb65e006c8d4d001299e17e9f4c
                                        
                                            GET /images/vnsrhf.gif HTTP/1.1 
Host: www.fbet666.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.fbet666.com/

                                         
                                         192.126.113.78
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Tue, 26 Mar 2019 06:14:32 GMT
Content-Length: 177253
Last-Modified: Wed, 20 Feb 2019 02:31:12 GMT
Connection: keep-alive
Etag: "5c6cbbf0-2b465"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 960 x 80
Size:   177253
Md5:    40c5a20c644663ccb411529e39250f18
Sha1:   1543e1b4f210a2f6e56e67d828672e54d4b38a7d
Sha256: e3461a38cba8e8b063619522d87e8886ac75bec436bc12e0d2f9ca69bb987ff3
                                        
                                            GET /images/weide1.gif HTTP/1.1 
Host: www.fbet666.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.fbet666.com/

                                         
                                         192.126.113.78
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Tue, 26 Mar 2019 06:14:33 GMT
Content-Length: 74741
Last-Modified: Wed, 20 Feb 2019 12:51:30 GMT
Connection: keep-alive
Etag: "5c6d4d52-123f5"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 285 x 160
Size:   74741
Md5:    37c706250cac274ec696290e76cc4093
Sha1:   3c130a137e553b059f7dbfaf88db27d3e3b60957
Sha256: a5ad85c1a44941e0fe5982fa6040ea2f5a8127400b1f3edf695366af9088ce8a
                                        
                                            GET /19928347.js HTTP/1.1 
Host: js.users.51.la
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.52kupan.com/soft/429

                                         
                                         163.171.128.16
HTTP/1.1 200 OK
Content-Type: application/javascript;charset=UTF-8
                                        
Date: Tue, 26 Mar 2019 06:18:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx/1.14.0
id-2: 32AAAQAAEAABAAAQAAEAABAAAQAAEAABCShMK7nuB0XcZN+Dpugnr1VaoUtHvRg4
Etag: "fbd08803811fcd8ba88d079517a5383b"
x-id: 19928347
version-id: G0011169878823A2FFFF90510005FDC5
Last-Modified: Sun Mar 17 01:24:00 CST 2019
request-id: 00000169B6A07EAF904777412E9C106D
x-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc
Content-Disposition: inline;filename=f.txt
Age: 33898
X-Via: 1.1 ld86:9 (Cdn Cache Server V2.0)[0 200 0], 1.1 VMdgflkfFRA1ow64:0 (Cdn Cache Server V2.0)[0 200 0]
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix, last modified: Tue Mar 26 07:18:24 2019
Size:   2547
Md5:    7a1e38d54ab7ced811be7c64ef0c48a0
Sha1:   10eb3eb3d6e8782e24dedec7dea3199ee6bcaff3
Sha256: 9bc4222e488c13f8cca680bd5d131bde2ff74033380b6e1cb9a353f441c6671d

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/mgmhf.gif HTTP/1.1 
Host: www.fbet666.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.fbet666.com/

                                         
                                         192.126.113.78
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Tue, 26 Mar 2019 06:14:32 GMT
Content-Length: 342805
Last-Modified: Fri, 08 Mar 2019 06:33:10 GMT
Connection: keep-alive
Etag: "5c820ca6-53b15"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 1000 x 80
Size:   342805
Md5:    48948b01e467a2ad22b9092d49302fa4
Sha1:   ca9e8fda897379d836c40a057bb187530ec8093b
Sha256: aabadb11bbbcf0ef63648c785e5abd90061f0ce764dec412899882dff2116d70
                                        
                                            GET /images/nb881.gif HTTP/1.1 
Host: www.fbet666.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.fbet666.com/

                                         
                                         192.126.113.78
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Tue, 26 Mar 2019 06:14:33 GMT
Content-Length: 466038
Last-Modified: Sun, 03 Mar 2019 11:06:03 GMT
Connection: keep-alive
Etag: "5c7bb51b-71c76"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 285 x 160
Size:   466038
Md5:    a41922355e24afb4aeb2ab2e111b4479
Sha1:   d4f59fb9e965c397791f6b9112c97577d1837ea1
Sha256: 0d4bfd2c9e9e8b3343bb7f141921f4ba5483843a21be99d0be1318ebc7e1bc46
                                        
                                            GET /19881125.js HTTP/1.1 
Host: js.users.51.la
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.52kupan.com/soft/429

                                         
                                         163.171.128.16
HTTP/1.1 200 OK
Content-Type: application/javascript;charset=UTF-8
                                        
Date: Tue, 26 Mar 2019 06:18:25 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx/1.14.0
id-2: 32AAAQAAEAABAAAQAAEAABAAAQAAEAABCSB0A2RRPRdvhFFWer/SdYs3LB7ugrZT
Etag: "40c798ac7123f5b891f8f0b7af4524c5"
x-id: 19881125
version-id: G0011168FCA8B9F9FFFF900705790A0B
Last-Modified: Mon Feb 18 02:12:22 CST 2019
request-id: 00000169B5B5B8F590061B4786A819CA
x-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc
Content-Disposition: inline;filename=f.txt
Age: 33900
X-Via: 1.1 ld88:3 (Cdn Cache Server V2.0)[0 200 0], 1.1 VMdgflkfFRA1ow64:3 (Cdn Cache Server V2.0)[14 200 0]
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix, last modified: Tue Mar 26 07:18:25 2019
Size:   2546
Md5:    ae001462d458c51c567d056984eb31e6
Sha1:   da1360eb61cecc68dea03e80a90ca413a2df49ae
Sha256: 2138f8b4e67e2cc33141557d655407ed92695ddc0d3615b74cc69eeeb8e525b2

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/mgm1.gif HTTP/1.1 
Host: www.fbet666.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.fbet666.com/

                                         
                                         192.126.113.78
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Tue, 26 Mar 2019 06:14:33 GMT
Content-Length: 305503
Last-Modified: Wed, 13 Mar 2019 05:43:25 GMT
Connection: keep-alive
Etag: "5c88987d-4a95f"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 285 x 160
Size:   305503
Md5:    b96d58db0f018a4e83e9b42379c99ff3
Sha1:   be52fbe65cbe94af46f46da9a503a6f5c710d3d8
Sha256: df294e28386d3d9ff331d9dea37bb7079491639d89f81d66f21866256ea0ff30
                                        
                                            GET /images/vnsr89677.gif HTTP/1.1 
Host: www.fbet666.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.fbet666.com/

                                         
                                         192.126.113.78
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Tue, 26 Mar 2019 06:14:32 GMT
Content-Length: 267140
Last-Modified: Sun, 17 Mar 2019 09:29:36 GMT
Connection: keep-alive
Etag: "5c8e1380-41384"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 1000 x 80
Size:   267140
Md5:    d6ce2be46ee40a9e29c449cbc3e095aa
Sha1:   1333eda6036d1536bdd9cc7c2c6c85567db245e2
Sha256: 3c947ae87017a5c2b780d1e661cede4fc34b6edacd3f682db002ea305f79333a
                                        
                                            GET /images/vnsr1.gif HTTP/1.1 
Host: www.fbet666.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.fbet666.com/

                                         
                                         192.126.113.78
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Tue, 26 Mar 2019 06:14:33 GMT
Content-Length: 439519
Last-Modified: Wed, 20 Feb 2019 12:49:45 GMT
Connection: keep-alive
Etag: "5c6d4ce9-6b4df"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 285 x 160
Size:   439519
Md5:    7f097cde2cf624a44c3831acdf1a38d2
Sha1:   d55bb9ddcf5717a3d8d11dcda8cbf90974fb4dbc
Sha256: 0ec95f66ae9e2291813064c382996e5afbdaea895a848599cf0ce5685ceddfe7
                                        
                                            GET /images/bwinhf.gif HTTP/1.1 
Host: www.fbet666.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.fbet666.com/

                                         
                                         192.126.113.78
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Tue, 26 Mar 2019 06:14:34 GMT
Content-Length: 90978
Last-Modified: Tue, 27 Nov 2018 09:56:21 GMT
Connection: keep-alive
Etag: "5bfd14c5-16362"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 1000 x 60
Size:   90978
Md5:    715b066dc4db7b21e638b1eb4cd0d463
Sha1:   ea840ab43eebe12854b407b99cfe70bc48b4a6a5
Sha256: aa32915b295c8fd9ed2b0af5b3ce89139a850c57a5ee8b3bbdf62887bd524747
                                        
                                            GET /images/ca88hf.gif HTTP/1.1 
Host: www.fbet666.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.fbet666.com/

                                         
                                         192.126.113.78
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Tue, 26 Mar 2019 06:14:34 GMT
Content-Length: 140523
Last-Modified: Wed, 20 Feb 2019 13:53:10 GMT
Connection: keep-alive
Etag: "5c6d5bc6-224eb"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 950 x 80
Size:   140523
Md5:    7b25beaae4f63744ae2002f6256ddad4
Sha1:   9acd0625aa5cccca45a5d8de3f4f237589247ca6
Sha256: 787a5b10c230af4935dd73ad9efdcada86d2de6f5918c5a9d2b0889c4ce6ad6a
                                        
                                            GET /images/weidehf.gif HTTP/1.1 
Host: www.fbet666.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.fbet666.com/

                                         
                                         192.126.113.78
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Tue, 26 Mar 2019 06:14:35 GMT
Content-Length: 121101
Last-Modified: Thu, 03 Jan 2019 08:34:33 GMT
Connection: keep-alive
Etag: "5c2dc919-1d90d"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 1200 x 70
Size:   121101
Md5:    769f73e4d6becedb9bc561406ae9fd9a
Sha1:   4f26638b87a0e8b963abd467cfb8e8e6426fdb5c
Sha256: 92c8dc09142fd44485f4a799e0a2c65c6e55a0fffb167502939d9ea4d75139c7
                                        
                                            GET /images/p960x80.gif HTTP/1.1 
Host: p-p-p-pj.xyz
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.fbet666.com/

                                         
                                         23.234.0.209
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Last-Modified: Mon, 25 Feb 2019 06:59:13 GMT
Accept-Ranges: bytes
Etag: "ecd8899dd7ccd41:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Tue, 26 Mar 2019 06:18:23 GMT
Content-Length: 310396


--- Additional Info ---
Magic:  GIF image data, version 89a, 960 x 80
Size:   310396
Md5:    99f12e3f6b29b1762ed289eda965d193
Sha1:   88feec747c06035dd2f67461c6698aeb10178fe8
Sha256: df50be3cb0f07a44eafd5d4897e5abf12748dab93db929e1f9349f722f5c765f
                                        
                                            GET /images/wlhf.gif HTTP/1.1 
Host: www.fbet666.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.fbet666.com/

                                         
                                         192.126.113.78
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Tue, 26 Mar 2019 06:14:35 GMT
Content-Length: 71679
Last-Modified: Fri, 30 Nov 2018 02:44:40 GMT
Connection: keep-alive
Etag: "5c00a418-117ff"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 1000 x 60
Size:   71679
Md5:    95a6a072dd738dd3a5cc44718b3d2879
Sha1:   999e5e0d2488879bc258cde3beecd2d27727d858
Sha256: 442ebfd0b281117fd4fc39fd47abee96596987ad566f4d76a8111d9b9dd976a7
                                        
                                            GET /images/vnsr2.gif HTTP/1.1 
Host: www.fbet666.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.fbet666.com/

                                         
                                         192.126.113.78
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Tue, 26 Mar 2019 06:14:35 GMT
Content-Length: 85911
Last-Modified: Wed, 20 Feb 2019 12:35:04 GMT
Connection: keep-alive
Etag: "5c6d4978-14f97"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 240 x 120
Size:   85911
Md5:    d0cde7f6bf613d8d1c62b706e12caa76
Sha1:   bac7c656c3fc00c6e4c6716253469ea711ac408c
Sha256: 463c088110e61bee8d6598bccdf809439319955f2357436c6ae01481269c4ec1
                                        
                                            GET /go1?id=19928347&rt=1553581105119&rl=1176*885&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=&ing=1&ekc=&sid=1553581105119&tt=301%2520Moved%2520Permanently&kw=&cu=http%253A%252F%252Fwww.52kupan.com%252Fsoft%252F429&pu= HTTP/1.1 
Host: ia.51.la
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.52kupan.com/soft/429

                                         
                                         183.131.207.78
HTTP/1.1 200
Content-Type: application/octet-stream
                                        
Server: HuaweiCloudWAF
Date: Tue, 26 Mar 2019 06:16:26 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: HWWAFSESID=b56f328c68f8ee4cdd5c; path=/ HWWAFSESTIME=1553580981399; path=/


--- Additional Info ---
                                        
                                            GET /images/nb882.gif HTTP/1.1 
Host: www.fbet666.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.fbet666.com/

                                         
                                         192.126.113.78
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Tue, 26 Mar 2019 06:14:37 GMT
Content-Length: 62871
Last-Modified: Wed, 20 Feb 2019 12:31:35 GMT
Connection: keep-alive
Etag: "5c6d48a7-f597"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 240 x 120
Size:   62871
Md5:    a2d36af80b1934204db663a800a84217
Sha1:   73db1702b27f5db48e9952e05fb261a253e2ca70
Sha256: 41a77028dd92796a21f77bf5d926d42a21a2a62883fb4d65a012bb67ee0682dd
                                        
                                            GET /images/weide2.gif HTTP/1.1 
Host: www.fbet666.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.fbet666.com/

                                         
                                         192.126.113.78
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Tue, 26 Mar 2019 06:14:36 GMT
Content-Length: 74647
Last-Modified: Thu, 21 Feb 2019 07:56:16 GMT
Connection: keep-alive
Etag: "5c6e59a0-12397"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 240 x 120
Size:   74647
Md5:    3be93d862a4ba56ef50dc75517d2ec53
Sha1:   165824a892c911ac11e375b91325d28479bf8496
Sha256: f14710c96255da19194b143d462eb3a90ec9cf3f0a55cc5a2256b385f6a8c3e9
                                        
                                            GET /images/xpj801.gif HTTP/1.1 
Host: www.fbet666.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.fbet666.com/

                                         
                                         192.126.113.78
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Tue, 26 Mar 2019 06:14:33 GMT
Content-Length: 571697
Last-Modified: Mon, 25 Feb 2019 08:00:25 GMT
Connection: keep-alive
Etag: "5c73a099-8b931"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 1200 x 80
Size:   571697
Md5:    30d546456b5a195ffaf04edb4d5141cc
Sha1:   00bd1ca2ac92868d8a545d2966b1ce7dee6d9012
Sha256: f4bad6a1fd02153dc92905e5d6bb009e0f513180becddc20c3409855829df0bf
                                        
                                            GET /go1?id=19881125&rt=1553581105290&rl=1176*885&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=&ing=2&ekc=&sid=1553581105290&tt=301%2520Moved%2520Permanently&kw=&cu=http%253A%252F%252Fwww.52kupan.com%252Fsoft%252F429&pu= HTTP/1.1 
Host: ia.51.la
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.52kupan.com/soft/429

                                         
                                         183.131.207.78
HTTP/1.1 200
Content-Type: application/octet-stream
                                        
Server: HuaweiCloudWAF
Date: Tue, 26 Mar 2019 06:18:27 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: HWWAFSESID=fb10e1c9f0501997c530; path=/ HWWAFSESTIME=1553581103295; path=/


--- Additional Info ---
                                        
                                            GET /images/bwin2.gif HTTP/1.1 
Host: www.fbet666.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.fbet666.com/

                                         
                                         192.126.113.78
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Tue, 26 Mar 2019 06:14:37 GMT
Content-Length: 63923
Last-Modified: Thu, 21 Feb 2019 08:18:06 GMT
Connection: keep-alive
Etag: "5c6e5ebe-f9b3"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 240 x 120
Size:   63923
Md5:    ef111e21657f56b8fdcda802e64d9863
Sha1:   a69889ed3b5d2b7620fb5230bd9322a1e9811dbc
Sha256: a2da291e2449b0c3ccfab0bf8a125e815006a7e7e33b69ce22e150d716cc85ed
                                        
                                            GET /images/vnsr896771.gif HTTP/1.1 
Host: www.fbet666.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.fbet666.com/

                                         
                                         192.126.113.78
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Tue, 26 Mar 2019 06:14:36 GMT
Content-Length: 236641
Last-Modified: Sun, 17 Mar 2019 09:32:52 GMT
Connection: keep-alive
Etag: "5c8e1444-39c61"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 240 x 120
Size:   236641
Md5:    6e19285a31c70dff695d1ebf99fdeb10
Sha1:   0b1fef8eb8fc1f10173dceab6cc71616b4ee5710
Sha256: 6cdb8d6cefbb452ba4567e058e924fc6fbcb1d10226a79428a73f24efecafa18
                                        
                                            GET /images/wl2.gif HTTP/1.1 
Host: www.fbet666.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.fbet666.com/

                                         
                                         192.126.113.78
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Tue, 26 Mar 2019 06:14:37 GMT
Content-Length: 56375
Last-Modified: Thu, 21 Feb 2019 08:03:43 GMT
Connection: keep-alive
Etag: "5c6e5b5f-dc37"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 240 x 120
Size:   56375
Md5:    edbb7c64467c4393102de8f5f1e1272d
Sha1:   1c87838230a86c563f8be83437de8330dab5bb34
Sha256: 6ba67bfc22fb08f185e1e4bd056ef2ac387896803cc2d4f06fda094ce347f709
                                        
                                            GET /images/vnsr3.jpg HTTP/1.1 
Host: www.fbet666.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.fbet666.com/

                                         
                                         192.126.113.78
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Tue, 26 Mar 2019 06:14:37 GMT
Content-Length: 9815
Last-Modified: Wed, 20 Feb 2019 12:55:14 GMT
Connection: keep-alive
Etag: "5c6d4e32-2657"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   9815
Md5:    c3f6a396ff9af1042e8fa3c064a1b978
Sha1:   d25c40dea1514999f79452944ada729d65201bc4
Sha256: d37fee0cced5be568216cbc148cdb6b6923b5d2a5fba390d8b79a39fa8bd089e
                                        
                                            GET /images/weide3.jpg HTTP/1.1 
Host: www.fbet666.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.fbet666.com/

                                         
                                         192.126.113.78
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Tue, 26 Mar 2019 06:14:38 GMT
Content-Length: 4185
Last-Modified: Wed, 20 Feb 2019 13:12:59 GMT
Connection: keep-alive
Etag: "5c6d525b-1059"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   4185
Md5:    3b3021e6cd5106e3019f9bf31d425ce8
Sha1:   3790265fa57b25105b3919eeea0b714710bd765d
Sha256: b6083aa812f644026ed0f524209e5ba3f329f0473ef9b58b90f2295aa8c28d8a
                                        
                                            GET /images/bwin365.gif HTTP/1.1 
Host: www.fbet666.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.fbet666.com/

                                         
                                         192.126.113.78
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Tue, 26 Mar 2019 06:14:34 GMT
Content-Length: 568548
Last-Modified: Thu, 28 Feb 2019 07:45:39 GMT
Connection: keep-alive
Etag: "5c7791a3-8ace4"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 1100 x 70
Size:   568548
Md5:    19bd8c581be51a6655c2a116380a006a
Sha1:   7c6e4499437d94b3bb7f60c33873768dac1349dc
Sha256: 7dd109bf835665eb96c450a740a4599909383ce85916ee96b7bbadf52372642e
                                        
                                            GET /images/nb883.jpg HTTP/1.1 
Host: www.fbet666.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.fbet666.com/

                                         
                                         192.126.113.78
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Tue, 26 Mar 2019 06:14:38 GMT
Content-Length: 7466
Last-Modified: Wed, 20 Feb 2019 13:00:47 GMT
Connection: keep-alive
Etag: "5c6d4f7f-1d2a"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   7466
Md5:    c978bfe166ca9f66a76ae6169d29a9dc
Sha1:   78474f6744646e9fc51ca41aa66a4af49e7ec9a0
Sha256: fd339a60f9c4c944219b4db567b4f341a33c27c2476e2d592e658b3501ff8620
                                        
                                            GET /html/images/logo.png HTTP/1.1 
Host: www.fbet666.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.fbet666.com/html/css/index.css

                                         
                                         192.126.113.78
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 26 Mar 2019 06:14:39 GMT
Content-Length: 2720
Last-Modified: Wed, 20 Feb 2019 04:12:24 GMT
Connection: keep-alive
Etag: "5c6cd3a8-aa0"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 51 x 40, 8-bit/color RGBA, non-interlaced
Size:   2720
Md5:    0181c9c5ef853e59dcdf2a7c21d4d2e6
Sha1:   42ad10d8fd466b18391b7abdb02214029484f075
Sha256: 4422e5c008bf9cbd00f8f57289b148761395e929170207579bfc110436e9529c
                                        
                                            GET /html/images/tt.png HTTP/1.1 
Host: www.fbet666.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.fbet666.com/html/css/index.css

                                         
                                         192.126.113.78
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 26 Mar 2019 06:14:39 GMT
Content-Length: 143
Last-Modified: Tue, 19 Feb 2019 13:58:30 GMT
Connection: keep-alive
Etag: "5c6c0b86-8f"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 6 x 30, 8-bit/color RGBA, non-interlaced
Size:   143
Md5:    d1d547ca99b3e51084431f92c5439e57
Sha1:   96cf9a81633ae1c74c9460abe939514545230575
Sha256: ee424503279124b6def83eb796664902e8a8b07d9c59be67b6c14baf08d95b57
                                        
                                            GET /images/nb88hf.gif HTTP/1.1 
Host: www.fbet666.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.fbet666.com/

                                         
                                         192.126.113.78
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Tue, 26 Mar 2019 06:14:35 GMT
Content-Length: 437687
Last-Modified: Thu, 28 Feb 2019 13:04:08 GMT
Connection: keep-alive
Etag: "5c77dc48-6adb7"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 1200 x 70
Size:   437687
Md5:    e52c75569a210fcae8415944d19e350b
Sha1:   38bd81cdb04ed089fd90f580097751af8bec5a88
Sha256: e69fa72fea8d87644a291df3d79d0fadc83160927e3933ae23ef251c726ff076
                                        
                                            GET /images/vnsr896772.gif HTTP/1.1 
Host: www.fbet666.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.fbet666.com/

                                         
                                         192.126.113.78
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Tue, 26 Mar 2019 06:14:38 GMT
Content-Length: 218709
Last-Modified: Sun, 17 Mar 2019 09:33:51 GMT
Connection: keep-alive
Etag: "5c8e147f-35655"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 214 x 121
Size:   218709
Md5:    7cdb0e4948cd20d08a5e8cdd8f1b49db
Sha1:   ca840e6109f3d57a8abdaef39cecac1932254701
Sha256: 525bfe19888e12ffd0084fc45b78545d7c808e10f601987d15be7087107b9b24
                                        
                                            GET /html/images/mk2.png HTTP/1.1 
Host: www.fbet666.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.fbet666.com/html/css/index.css

                                         
                                         192.126.113.78
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 26 Mar 2019 06:14:39 GMT
Content-Length: 170
Last-Modified: Tue, 19 Feb 2019 14:15:56 GMT
Connection: keep-alive
Etag: "5c6c0f9c-aa"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 2 x 41, 8-bit/color RGBA, non-interlaced
Size:   170
Md5:    cfc453365cc0e3e8f5b06ece58cf0e29
Sha1:   9bc81f457cda19b4d79b1f311e8fb1765bb78902
Sha256: 78004f67527fa53b72cc6d03e071069bc2483de30783dc059dcba0ed18506093
                                        
                                            GET /html/images/yxk_icon1.png HTTP/1.1 
Host: www.fbet666.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.fbet666.com/html/css/index.css

                                         
                                         192.126.113.78
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 26 Mar 2019 06:14:39 GMT
Content-Length: 72063
Last-Modified: Tue, 19 Feb 2019 14:34:58 GMT
Connection: keep-alive
Etag: "5c6c1412-1197f"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 579 x 555, 8-bit/color RGBA, non-interlaced
Size:   72063
Md5:    ae8610373e141b3fcd3382787cb8fd5c
Sha1:   faadca8757231941c3a3e28fb5245fffd7e7998a
Sha256: 7cc6002d50768f51fc9360e82f1ab9973f42e9ae1ada83de7c4c00104895a36b
                                        
                                            GET /images/weide4.gif HTTP/1.1 
Host: www.fbet666.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.fbet666.com/

                                         
                                         192.126.113.78
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Tue, 26 Mar 2019 06:14:39 GMT
Content-Length: 186001
Last-Modified: Thu, 21 Feb 2019 07:58:23 GMT
Connection: keep-alive
Etag: "5c6e5a1f-2d691"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 440 x 200
Size:   186001
Md5:    1197e8e803a0dbc75e6b78de9f4e843d
Sha1:   3975285fcf01ed65769a6535d5bbc6f3b9377259
Sha256: 10e8568935470963906fb1e90a53a5f28fab2a330d3331ae50a71af47b1e29bc
                                        
                                            GET /images/vnsr4.gif HTTP/1.1 
Host: www.fbet666.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.fbet666.com/

                                         
                                         192.126.113.78
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Tue, 26 Mar 2019 06:14:38 GMT
Content-Length: 198197
Last-Modified: Wed, 20 Feb 2019 13:28:08 GMT
Connection: keep-alive
Etag: "5c6d55e8-30635"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 440 x 200
Size:   198197
Md5:    6b9702aab3eb4317ef70d0032ea8180f
Sha1:   88bac5814c595362811e0d97a4906ee0054c870f
Sha256: 6b7dca859e50f9fc73d82cb2803dca97333c9a67289aab157363a51dc9300582
                                        
                                            GET /images/nb884.gif HTTP/1.1 
Host: www.fbet666.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.fbet666.com/

                                         
                                         192.126.113.78
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Tue, 26 Mar 2019 06:14:38 GMT
Content-Length: 539966
Last-Modified: Wed, 20 Feb 2019 14:09:23 GMT
Connection: keep-alive
Etag: "5c6d5f93-83d3e"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 440 x 200
Size:   539966
Md5:    9312656cbf43208ed65b14fd43ebc807
Sha1:   a19398c7da34647af6745b5e4cb54c10e16311ad
Sha256: d4db6b76e9edf38f873c2a9728b4b3a5867a35b25271108ef5b8fe371331ce69
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.52kupan.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __tins__19928347=%7B%22sid%22%3A%201553581105119%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201553582905119%7D; __51cke__=; __51laig__=2; __tins__19881125=%7B%22sid%22%3A%201553581105290%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201553582905290%7D

                                         
                                         172.246.59.151
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Server: nginx
Date: Tue, 26 Mar 2019 05:18:19 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.6.36
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   256
Md5:    04487ae1cc621382a4edeb5d64b991a9
Sha1:   54c37fe26f79b49a61ce9c017722c0c48dd9c2eb
Sha256: e3eb6df3c3f899eb0e1e077a359ea19bd1f99d37b95ef77eebdf270038441fa0
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.52kupan.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __tins__19928347=%7B%22sid%22%3A%201553581105119%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201553582905119%7D; __51cke__=; __51laig__=2; __tins__19881125=%7B%22sid%22%3A%201553581105290%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201553582905290%7D

                                         
                                         172.246.59.151
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Server: nginx
Date: Tue, 26 Mar 2019 05:18:22 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.6.36
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   256
Md5:    04487ae1cc621382a4edeb5d64b991a9
Sha1:   54c37fe26f79b49a61ce9c017722c0c48dd9c2eb
Sha256: e3eb6df3c3f899eb0e1e077a359ea19bd1f99d37b95ef77eebdf270038441fa0