Overview

URL 029smt.com/html/zwgkarticleshow_article.asparticleid47086.html
IP104.223.149.92
ASNAS46573 Global Frag Networks
Location United States
Report completed2018-10-17 04:37:17 CEST
StatusLoading report..
urlQuery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro
Timestamp Severity Source IP Destination IP Alert
2018-10-17 04:36:45 CEST 1  104.223.149.92 Client IP ET TROJAN RAMNIT.A M2
2018-10-17 04:36:47 CEST 1  104.223.149.92 Client IP ET TROJAN RAMNIT.A M1
2018-10-17 04:36:45 CEST 1  104.223.149.92 Client IP ET CURRENT_EVENTS DRIVEBY EXE Embeded in Page Likely Evil M1
2018-10-17 04:36:45 CEST 1  104.223.149.92 Client IP ET TROJAN PE EXE or DLL Windows file download Text


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 104.223.149.92

Date UQ / IDS / BL URL IP
2018-11-15 11:38:52 +0100
0 - 4 - 3 029smt.com/html/zwgkarticleshow_article.aspAr (...) 104.223.149.92
2018-11-15 11:28:57 +0100
0 - 4 - 3 029smt.com/html/zwgkarticleshow_article.aspAr (...) 104.223.149.92
2018-11-15 11:28:34 +0100
0 - 4 - 3 029smt.com/html/wsbsarticleshow_article.aspAr (...) 104.223.149.92
2018-11-15 11:28:23 +0100
0 - 4 - 3 029smt.com/html/zwgkarticleshow_article.aspAr (...) 104.223.149.92
2018-11-15 11:25:32 +0100
0 - 4 - 3 029smt.com/html/zwgkarticleshow_article.aspAr (...) 104.223.149.92
2018-11-15 03:51:40 +0100
0 - 4 - 3 029smt.com/html/zwgkarticleshow_article.aspAr (...) 104.223.149.92
2018-11-15 03:47:55 +0100
0 - 4 - 3 029smt.com/html/zwgkarticleshow_article.aspAr (...) 104.223.149.92
2018-11-15 03:37:01 +0100
0 - 4 - 3 029smt.com/html/zwgkarticleshow_article.aspAr (...) 104.223.149.92
2018-11-15 03:35:38 +0100
0 - 4 - 3 029smt.com/html/wsbsarticleshow_article.aspAr (...) 104.223.149.92
2018-11-11 02:28:39 +0100
0 - 0 - 1 029smt.com/html/mailwrite.asptitle%E6%95%99%E (...) 104.223.149.92

Last 10 reports on ASN: AS46573 Global Frag Networks

Date UQ / IDS / BL URL IP
2018-11-16 21:19:58 +0100
0 - 0 - 2 029cheers.com/html/info1135....gzdtjlhd.html 104.223.149.147
2018-11-16 19:35:01 +0100
0 - 0 - 0 taobaojjl.com 104.148.103.131
2018-11-16 19:04:43 +0100
0 - 0 - 1 bbs.bbs.iy.gov.cn.pxwhctyy.cn/inter 104.223.151.132
2018-11-16 18:45:27 +0100
0 - 0 - 2 ioboxo.com/html/n120160913c99057-28712836.html 104.223.149.157
2018-11-16 18:19:37 +0100
0 - 0 - 1 iphone.juwhctyy.cn/ 192.200.195.212
2018-11-16 17:48:40 +0100
0 - 0 - 0 taobaoyu.net 104.148.37.244
2018-11-16 17:38:57 +0100
0 - 0 - 1 cn.fdwhctyy.cn/51/hot/52115.html 104.148.124.108
2018-11-16 17:38:09 +0100
0 - 0 - 1 p.gov.cn.liwhctyy.cn/bvv 192.200.195.212
2018-11-16 17:32:27 +0100
0 - 0 - 1 8m.imwhctyy.cn/684/hfs.html 104.148.112.252
2018-11-16 16:12:03 +0100
0 - 4 - 12 sunbinmw.cn/html/info10151139.html 107.179.64.151

Last 10 reports on domain: 029smt.com

Date UQ / IDS / BL URL IP
2018-11-15 11:38:52 +0100
0 - 4 - 3 029smt.com/html/zwgkarticleshow_article.aspAr (...) 104.223.149.92
2018-11-15 11:28:57 +0100
0 - 4 - 3 029smt.com/html/zwgkarticleshow_article.aspAr (...) 104.223.149.92
2018-11-15 11:28:34 +0100
0 - 4 - 3 029smt.com/html/wsbsarticleshow_article.aspAr (...) 104.223.149.92
2018-11-15 11:28:23 +0100
0 - 4 - 3 029smt.com/html/zwgkarticleshow_article.aspAr (...) 104.223.149.92
2018-11-15 11:25:32 +0100
0 - 4 - 3 029smt.com/html/zwgkarticleshow_article.aspAr (...) 104.223.149.92
2018-11-15 03:51:40 +0100
0 - 4 - 3 029smt.com/html/zwgkarticleshow_article.aspAr (...) 104.223.149.92
2018-11-15 03:47:55 +0100
0 - 4 - 3 029smt.com/html/zwgkarticleshow_article.aspAr (...) 104.223.149.92
2018-11-15 03:37:01 +0100
0 - 4 - 3 029smt.com/html/zwgkarticleshow_article.aspAr (...) 104.223.149.92
2018-11-15 03:35:38 +0100
0 - 4 - 3 029smt.com/html/wsbsarticleshow_article.aspAr (...) 104.223.149.92
2018-11-11 02:28:39 +0100
0 - 0 - 1 029smt.com/html/mailwrite.asptitle%E6%95%99%E (...) 104.223.149.92


JavaScript

Executed Scripts (1)


Executed Evals (0)


Executed Writes (1)

#1 JavaScript::Write (size: 87, repeated: 1) - SHA256: a72b285b9287c1181927cd290a6f6c08d519ebc6754bc9f04fce904ca106945e

                                        < script src = 'https://s95.b9823852351323h.com/by/dz.js'
type = 'text/javascript' > < /script>
                                    


HTTP Transactions (29)


Request Response
                                        
                                            GET /yesads.js HTTP/1.1 
Host: 029smt.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://029smt.com/html/zwgkarticleshow_article.asparticleid47086.html

                                         
                                         104.223.149.92
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 106
Last-Modified: Thu, 13 Apr 2017 15:53:11 GMT
Accept-Ranges: bytes
Etag: "c0989dd6eb4d21:106e0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 17 Oct 2018 02:36:50 GMT


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   106
Md5:    17a8754edf85068082f8b1ac1519d80e
Sha1:   33a9c0cccfe3d299c1ebb6d77fc4e0097b35f5a9
Sha256: 85965e1cee169e6ea1129285cafdd3c90f4e7b046207290c9ad9bc51bc58afdf
                                        
                                            GET /images/zwgkarticlecssheadcss.css HTTP/1.1 
Host: 029smt.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://029smt.com/html/zwgkarticleshow_article.asparticleid47086.html

                                         
                                         104.223.149.92
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Length: 3904
Last-Modified: Wed, 30 Nov 2016 01:34:52 GMT
Accept-Ranges: bytes
Etag: "644eb5f2a94ad21:106e0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 17 Oct 2018 02:36:50 GMT


--- Additional Info ---
Magic:  ISO-8859 text, with CRLF line terminators
Size:   3904
Md5:    d7ef22420e1ebafa307a344760d327a0
Sha1:   253766d485a72db24e2f6658f01d30888e0c6a9c
Sha256: 091ec775bcc4a5d2ef76c79ff5b37a88cb23196a41a581aa9dc5f76337d4580a
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.16
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Fri, 12 Oct 2018 14:28:29 GMT
Etag: DB56C3E4EE92E6A85E7FC372EA8A08855BEF05BB
X-OCSP-Responder-ID: rmdccaocsp14
Content-Length: 471
Cache-Control: public, no-transform, must-revalidate, max-age=214902
Expires: Fri, 19 Oct 2018 14:18:28 GMT
Date: Wed, 17 Oct 2018 02:36:46 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   471
Md5:    e89d212667d5383dddf86d20de4e8b92
Sha1:   db56c3e4ee92e6a85e7fc372ea8a08855bef05bb
Sha256: 15056a816eea0c22fe16ccbf42e0dc5573a3b810cfdbb361d52da1c5f8c52091
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.16
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Thu, 11 Oct 2018 21:27:34 GMT
Etag: BA2A0C5A3629F380D127C893536222262AFA5472
X-OCSP-Responder-ID: rmdccaocsp21
Content-Length: 727
Cache-Control: public, no-transform, must-revalidate, max-age=153651
Expires: Thu, 18 Oct 2018 21:17:37 GMT
Date: Wed, 17 Oct 2018 02:36:46 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   727
Md5:    7fd8169768dbdf6a611cdb5e79665e87
Sha1:   ba2a0c5a3629f380d127c893536222262afa5472
Sha256: 6c3e146f02f7f8f3fb86c95aab3329381d0f56163ddff934c721accda8a18628
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.18
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Thu, 11 Oct 2018 21:27:34 GMT
Etag: E8581583C2803974EDDB983E5584CDB37B4F9E14
X-OCSP-Responder-ID: rmdccaocsp14
Content-Length: 471
Cache-Control: public, no-transform, must-revalidate, max-age=153662
Expires: Thu, 18 Oct 2018 21:17:48 GMT
Date: Wed, 17 Oct 2018 02:36:46 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   471
Md5:    5e712a8f20f0ae131a32a41f82c55b67
Sha1:   e8581583c2803974eddb983e5584cdb37b4f9e14
Sha256: 65e0f33f70b334d388d92507b68dacbf8b7390892e3cb264962501c2836b9e79
                                        
                                            GET /html/zwgkarticleshow_article.asparticleid47086.html HTTP/1.1 
Host: 029smt.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         104.223.149.92
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Content-Length: 152565
Last-Modified: Sat, 04 Aug 2018 16:59:20 GMT
Accept-Ranges: bytes
Etag: "8632eb7c142cd41:106e0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 17 Oct 2018 02:36:49 GMT


--- Additional Info ---
Magic:  ISO-8859 HTML document text, with very long lines, with CRLF line terminators
Size:   152565
Md5:    e60f55af0a7cb08168cdf85708b9f5a7
Sha1:   6a3f9a30c9d5a8529859d40f6f9a09fae8733d2e
Sha256: d5e80e821de05427fa550e66b45a9fba0a2e3df9b47d8bf9a623782d3859c2cb

Alerts:
  IDS:
    - ET TROJAN RAMNIT.A M2
    - ET TROJAN RAMNIT.A M1
    - ET CURRENT_EVENTS DRIVEBY EXE Embeded in Page Likely Evil M1
    - ET TROJAN PE EXE or DLL Windows file download Text
                                        
                                            GET /by/dz.js HTTP/1.1 
Host: s95.b9823852351323h.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://029smt.com/html/zwgkarticleshow_article.asparticleid47086.html

                                         
                                         45.65.46.3
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Server: Apache
Date: Wed, 17 Oct 2018 04:32:07 GMT
Content-Length: 599
Connection: keep-alive
Keep-Alive: timeout=60


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   599
Md5:    b212d864ddedcd3a6fba5ec5cb2d46aa
Sha1:   abec0f7c3ffda30b0a448a1c6f96ac6ac7874f42
Sha256: 4a96ac1a869b594176cd7931c8f714d168422f2deb05f55df70c85241baa2c41
                                        
                                            GET /images/imagesnbedulogo.jpg HTTP/1.1 
Host: 029smt.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://029smt.com/html/zwgkarticleshow_article.asparticleid47086.html

                                         
                                         104.223.149.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 20024
Last-Modified: Tue, 29 Nov 2016 22:39:21 GMT
Accept-Ranges: bytes
Etag: "bac5a86d914ad21:106e0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 17 Oct 2018 02:36:51 GMT


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   20024
Md5:    a84d15a4cba4d1d8f881fd60b0b09d17
Sha1:   5a71daed45ae3e859d02becdfa7dfabf2f5d8c52
Sha256: dd7103b8a2983937bf86eeaaf9061b7aab9b35aca7ee77ac10c7155af3bcf8fe
                                        
                                            GET /images/default_02.jpg HTTP/1.1 
Host: 029smt.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://029smt.com/html/zwgkarticleshow_article.asparticleid47086.html

                                         
                                         104.223.149.92
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 17 Oct 2018 02:36:52 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075
                                        
                                            GET /images/topbg.jpg HTTP/1.1 
Host: 029smt.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://029smt.com/html/zwgkarticleshow_article.asparticleid47086.html

                                         
                                         104.223.149.92
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 17 Oct 2018 02:36:52 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075
                                        
                                            GET /images/imagesjt.gif HTTP/1.1 
Host: 029smt.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://029smt.com/html/zwgkarticleshow_article.asparticleid47086.html

                                         
                                         104.223.149.92
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Content-Length: 55
Last-Modified: Wed, 30 Nov 2016 01:34:10 GMT
Accept-Ranges: bytes
Etag: "e7c29d9a94ad21:106e0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 17 Oct 2018 02:36:52 GMT


--- Additional Info ---
Magic:  GIF image data, version 89a, 7 x 4
Size:   55
Md5:    5e4bb332105e8a96b324e2092ec50f2d
Sha1:   4b459a3041c04945327930bd9256d2d9c56234aa
Sha256: 8408106aa51982c86b85c6747388ac564f9339fc248b80b567ed95a852f68790
                                        
                                            GET /images/default_06.gif HTTP/1.1 
Host: 029smt.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://029smt.com/html/zwgkarticleshow_article.asparticleid47086.html

                                         
                                         104.223.149.92
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 17 Oct 2018 02:36:52 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075
                                        
                                            GET /images/default_08.jpg HTTP/1.1 
Host: 029smt.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://029smt.com/html/zwgkarticleshow_article.asparticleid47086.html

                                         
                                         104.223.149.92
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 17 Oct 2018 02:36:52 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075
                                        
                                            GET /images/zwgkimageszwgklm_17.jpg HTTP/1.1 
Host: 029smt.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://029smt.com/html/zwgkarticleshow_article.asparticleid47086.html

                                         
                                         104.223.149.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 414
Last-Modified: Wed, 30 Nov 2016 01:34:15 GMT
Accept-Ranges: bytes
Etag: "30c9a2dca94ad21:106e0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 17 Oct 2018 02:36:52 GMT


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   414
Md5:    25f9acb7f35bc054e8e971d66961218b
Sha1:   ff406a5806289ef215efb6e1410176ae668c3518
Sha256: 3bd1094a225905ab8f85301cc191ed389f8e0497d626fdc26e1b5cb276f5cc4d
                                        
                                            GET /images/jyzcimagesjyzclm_06.jpg HTTP/1.1 
Host: 029smt.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://029smt.com/html/zwgkarticleshow_article.asparticleid47086.html

                                         
                                         104.223.149.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 6648
Last-Modified: Wed, 30 Nov 2016 01:34:18 GMT
Accept-Ranges: bytes
Etag: "e6f130dea94ad21:106e0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 17 Oct 2018 02:36:52 GMT


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   6648
Md5:    ef455043187da779ac370d9cf759180b
Sha1:   5e86b3270f5310c36e83eacf934ba74228f0c2e7
Sha256: 05049f822a5e16edd0498ded74637120fc70b7c4ec34634cf4188af5968187e1
                                        
                                            GET /images/zwgkimageszwgklm_14.jpg HTTP/1.1 
Host: 029smt.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://029smt.com/html/zwgkarticleshow_article.asparticleid47086.html

                                         
                                         104.223.149.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 787
Last-Modified: Wed, 30 Nov 2016 01:34:16 GMT
Accept-Ranges: bytes
Etag: "a8b0bdda94ad21:106e0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 17 Oct 2018 02:36:52 GMT


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   787
Md5:    933df1631c8b72edb92681a6cc668a40
Sha1:   65c92a589de7b69d814d14a19111a42b9a2f8551
Sha256: 9e0107c61b96c128517e688986fc32ea6f8bdad2ae2d65533a94f6a4570f9c6b
                                        
                                            GET /images/imagestj.gif HTTP/1.1 
Host: 029smt.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://029smt.com/html/zwgkarticleshow_article.asparticleid47086.html

                                         
                                         104.223.149.92
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Content-Length: 1482
Last-Modified: Wed, 30 Nov 2016 01:40:38 GMT
Accept-Ranges: bytes
Etag: "9a1cb5c0aa4ad21:106e0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 17 Oct 2018 02:36:52 GMT


--- Additional Info ---
Magic:  GIF image data, version 89a, 91 x 22
Size:   1482
Md5:    4aac7a31eed15afce5ac0f004e8e68a5
Sha1:   70ea66262226655f95ea5554176f806421869e4a
Sha256: 19db80545d0849f09a22648168094d7e1f0bbb0b5e90bc707e81e0e1f4da002c
                                        
                                            GET /images/imageswxwb.jpg HTTP/1.1 
Host: 029smt.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://029smt.com/html/zwgkarticleshow_article.asparticleid47086.html

                                         
                                         104.223.149.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 54550
Last-Modified: Tue, 29 Nov 2016 22:41:55 GMT
Accept-Ranges: bytes
Etag: "20a124c9914ad21:106e0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 17 Oct 2018 02:36:52 GMT


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   54550
Md5:    6ec07eb9c6bba2b51b230bdb9d23da22
Sha1:   434bf43961650c0d363a216c8756cb7fa4ba9634
Sha256: 303a26869b7423a451db23c768c3a2ff1b3ad695a48f46f2ae3ff6659c0a12a3
                                        
                                            GET /images/show/3_10.gif HTTP/1.1 
Host: 029smt.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://029smt.com/html/zwgkarticleshow_article.asparticleid47086.html

                                         
                                         104.223.149.92
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 17 Oct 2018 02:36:52 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075
                                        
                                            GET /images/zwgkimageszwgklm1_26.jpg HTTP/1.1 
Host: 029smt.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://029smt.com/html/zwgkarticleshow_article.asparticleid47086.html

                                         
                                         104.223.149.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 836
Last-Modified: Wed, 30 Nov 2016 01:34:17 GMT
Accept-Ranges: bytes
Etag: "c63572dda94ad21:106e0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 17 Oct 2018 02:36:52 GMT


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   836
Md5:    281fbfc791abac17e7c38ba54ff98844
Sha1:   16c31d182d0d06526d415c2ad417cd3db9b8f375
Sha256: 43965f8a57028dbeef2c9cd7b6427ef47d84e4a461607fd5a66ecba5fb311f9a
                                        
                                            GET /images/zwgkimageszwgklm_03.jpg HTTP/1.1 
Host: 029smt.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://029smt.com/html/zwgkarticleshow_article.asparticleid47086.html

                                         
                                         104.223.149.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 6511
Last-Modified: Wed, 30 Nov 2016 01:34:14 GMT
Accept-Ranges: bytes
Etag: "fa36addba94ad21:106e0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 17 Oct 2018 02:36:52 GMT


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   6511
Md5:    0acdea1a31b8f25c180387c784464d16
Sha1:   aa1b6474433714ba4d3e245f767d079fcff5aa10
Sha256: e1ec5b37f8875100c0255337aaf3f492969022e12884a5057d0890fba196fb84
                                        
                                            GET /jyzc/images/jyzclm_07.jpg HTTP/1.1 
Host: 029smt.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://029smt.com/html/zwgkarticleshow_article.asparticleid47086.html

                                         
                                         104.223.149.92
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 17 Oct 2018 02:36:52 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075
                                        
                                            GET /images/zwgklm_05.jpg HTTP/1.1 
Host: 029smt.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://029smt.com/html/zwgkarticleshow_article.asparticleid47086.html

                                         
                                         104.223.149.92
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 17 Oct 2018 02:36:52 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075
                                        
                                            GET /images/default_246.jpg HTTP/1.1 
Host: 029smt.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://029smt.com/html/zwgkarticleshow_article.asparticleid47086.html

                                         
                                         104.223.149.92
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 17 Oct 2018 02:36:52 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075
                                        
                                            GET /images/imagesba.png HTTP/1.1 
Host: 029smt.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://029smt.com/html/zwgkarticleshow_article.asparticleid47086.html

                                         
                                         104.223.149.92
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Content-Length: 19256
Last-Modified: Tue, 29 Nov 2016 22:41:32 GMT
Accept-Ranges: bytes
Etag: "bea0d5bb914ad21:106e0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 17 Oct 2018 02:36:52 GMT


--- Additional Info ---
Magic:  PNG image, 20 x 20, 8-bit/color RGBA, non-interlaced
Size:   19256
Md5:    d0289dc0a46fc5b15b3363ffa78cf6c7
Sha1:   29c400bc3b89f6085766dac4e0330ded5cb73d52
Sha256: a20583c81805fe64f7fa210851ce29754af9d25fd6aa5a3225a9557529602513
                                        
                                            GET /get/flashplayer/update/current/xml/version_en_win_pl.xml HTTP/1.1 
Host: fpdownload2.macromedia.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         91.135.34.8
HTTP/1.1 200 OK
Content-Type: text/xml
                                        
Server: Apache
Last-Modified: Tue, 09 Oct 2018 08:27:38 GMT
Etag: "60e-577c782b457e7"
Accept-Ranges: bytes
Content-Length: 1550
Date: Wed, 17 Oct 2018 02:36:48 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  XML document text\012 XML document text
Size:   1550
Md5:    36e84d97795bce84cee349edcab22018
Sha1:   94429b6b430b9044e798093ebff3e1525f8dc785
Sha256: 9db73f3916c58164ec192187d5eed6a150a8f75c799f19db946f1f0cedca9312
                                        
                                            GET /images/imagesindex.swf HTTP/1.1 
Host: 029smt.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://029smt.com/html/zwgkarticleshow_article.asparticleid47086.html

                                         
                                         104.223.149.92
HTTP/1.1 200 OK
Content-Type: application/x-shockwave-flash
                                        
Content-Length: 26393
Last-Modified: Wed, 30 Nov 2016 01:34:09 GMT
Accept-Ranges: bytes
Etag: "f66e9ad8a94ad21:106e0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 17 Oct 2018 02:36:53 GMT


--- Additional Info ---
Magic:  Macromedia Flash data (compressed), version 7
Size:   26393
Md5:    b5a372e68d2f64ffdf31a58b0fd5a79a
Sha1:   c5d99dd73a654d8e8c7e3eef4793d71636d214fd
Sha256: edd1ce02ee2f662b969a74f62f1315b88afc0952b970a26b3c4d485df378a414
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: 029smt.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         104.223.149.92
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 17 Oct 2018 02:36:53 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: 029smt.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         104.223.149.92
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 17 Oct 2018 02:36:57 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075