Overview

URL simingqu.sooshong.com/
IP42.159.251.98
ASNAS58593 Microsoft Global Enterprise Services AP
Location China
Report completed2017-11-01 09:19:30 CET
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2017-11-01 2 js.users.51.la/17771164.js Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 42.159.251.98

Date UQ / IDS / BL URL IP
2017-11-23 18:57:34 +0100
0 - 0 - 1 xwl123.sooshong.com/ 42.159.251.98
2017-11-23 17:33:44 +0100
0 - 0 - 1 newborn123.sooshong.com/ 42.159.251.98
2017-11-22 03:36:31 +0100
0 - 0 - 1 dufen3d.sooshong.com/ 42.159.251.98
2017-11-21 22:52:39 +0100
0 - 0 - 1 ucfdizfyx.sooshong.com/ 42.159.251.98
2017-11-18 11:33:15 +0100
0 - 0 - 1 lyklsj.sooshong.com/ 42.159.251.98
2017-11-14 11:42:02 +0100
0 - 0 - 1 njkaitian.sooshong.com/ 42.159.251.98
2017-11-03 09:58:32 +0100
0 - 0 - 1 sdlqklw6.sooshong.com/ 42.159.251.98
2017-10-28 13:03:41 +0200
0 - 0 - 1 7ond6xo7.sooshong.com/ 42.159.251.98
2017-10-27 13:50:14 +0200
0 - 0 - 1 szchekumen.sooshong.com/ 42.159.251.98
2017-10-21 10:31:02 +0200
0 - 0 - 1 8ov4jsra.sooshong.com/link.htm 42.159.251.98

Last 10 reports on ASN: AS58593 Microsoft Global Enterprise Services AP

Date UQ / IDS / BL URL IP
2017-11-23 18:57:34 +0100
0 - 0 - 1 xwl123.sooshong.com/ 42.159.251.98
2017-11-23 17:33:44 +0100
0 - 0 - 1 newborn123.sooshong.com/ 42.159.251.98
2017-11-22 03:36:31 +0100
0 - 0 - 1 dufen3d.sooshong.com/ 42.159.251.98
2017-11-21 22:52:39 +0100
0 - 0 - 1 ucfdizfyx.sooshong.com/ 42.159.251.98
2017-11-21 16:00:14 +0100
0 - 0 - 1 139.217.27.203 139.217.27.203
2017-11-20 21:37:19 +0100
0 - 0 - 4 0763-3929999.com/ 42.159.237.196
2017-11-19 18:05:01 +0100
0 - 0 - 2 download.chasedream.com/gmat/rc/Gmat_Reading_ (...) 139.219.188.169
2017-11-18 11:33:15 +0100
0 - 0 - 1 lyklsj.sooshong.com/ 42.159.251.98
2017-11-15 21:12:47 +0100
0 - 1 - 0 huxuan.com.cn/vb/IE.exe 42.159.253.172
2017-11-15 21:02:10 +0100
0 - 0 - 0 139.217.27.203 139.217.27.203

No other reports on domain: sooshong.com



JavaScript

Executed Scripts (44)


Executed Evals (0)


Executed Writes (10)

#1 JavaScript::Write (size: 170, repeated: 1) - SHA256: f569ccfca15c51d3554f2239446194aa0809048e9ddf6fe603d5069d72381c06

                                        < a href = "https://www.51.la/?17771164"
target = "_blank"
title = "51.La &#x7F51;&#x7AD9;&#x6D41;&#x91CF;&#x7EDF;&#x8BA1;&#x7CFB;&#x7EDF;" > & # x7F51; & # x7AD9; & # x7EDF; & # x8BA1; < /a>
                                    

#2 JavaScript::Write (size: 46, repeated: 1) - SHA256: 34ee8dcff5505a98fa6a0d40020d4d0eba31cb415ea13b704e94f30243c531ca

                                        < div id = "BAIDU_SSP__wrapper_u2073407_0" > < /div>
                                    

#3 JavaScript::Write (size: 48, repeated: 1) - SHA256: 748cca3d4993a229a76a7518d7a78b35ce834a205b4a9101c2209005d428c5f0

                                        < div id = "_36cojaakabe"
style = "width:100%" > < /div>
                                    

#4 JavaScript::Write (size: 48, repeated: 1) - SHA256: a07aca4f4cb8efed17697c3b8e00261de1a1b2a6515ee0a4bfb01e1de42629fd

                                        < div id = "_5cuqjb5u99n"
style = "width:100%" > < /div>
                                    

#5 JavaScript::Write (size: 48, repeated: 1) - SHA256: 70375f3b69049ab486e1fa9aa6d61a9e6d16d7e4ec57d1bfd0c4eeca4403bd67

                                        < div id = "_agubaqv9fau"
style = "width:100%" > < /div>
                                    

#6 JavaScript::Write (size: 48, repeated: 1) - SHA256: 6cfc3a95eaa57ff023cb35edbe8aa0c999044af56ae24dc3da6d2f1902f9348f

                                        < div id = "_i1lpnnm878e"
style = "width:100%" > < /div>
                                    

#7 JavaScript::Write (size: 48, repeated: 1) - SHA256: e3dc7396e5ab3a05ef572f3843e401d892af30cec352e1790bce05284938b830

                                        < div id = "_rpr91lx4xzi"
style = "width:100%" > < /div>
                                    

#8 JavaScript::Write (size: 47, repeated: 1) - SHA256: 13954c35c92d4246749993f4dcb76aa50b95bebf76767e51b6941851e03984e5

                                        < div id = "_txz7f6ieyn"
style = "width:100%" > < /div>
                                    

#9 JavaScript::Write (size: 56, repeated: 1) - SHA256: 5fa53e6b1e2e0a95b2f7969a140ddd577c87a471727410919f4a903febd8574b

                                        < li > < a href = "http://www.sooshong.com" > �FQ < /a></p > < /li>
                                    

#10 JavaScript::Write (size: 105, repeated: 1) - SHA256: 5e7c014cc24c664105e11afff229c6516c616a45e917cf18c17f69eb233dd45f

                                        < script src = ' http://hm.baidu.com/h.js?3a2bf59295995a637abc01fb61aeeb3d'
type = 'text/javascript' > < /script>
                                    


HTTP Transactions (88)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: simingqu.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: text/html;charset=gbk
                                        
Server: nginx/1.8.1
Date: Wed, 01 Nov 2017 07:53:01 GMT
Vary: Accept-Encoding
Expires: Wed, 01 Nov 2017 08:53:01 GMT
Cache-Control: max-age=3600
Age: 1954
X-Cache: HIT from squid
Transfer-Encoding: chunked
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  ISO-8859 HTML document text, with very long lines, with CRLF, LF line terminators
Size:   14687
Md5:    d4c84535028710780fd1dfa55d8d9150
Sha1:   8f5a6e7c8a8bca29981cd32416c0af651094c195
Sha256: 188c0249f62bb5da964b5cc3c68adb3efb8483b4dabdf3894bc1cb8cf9c9e2d0
                                        
                                            GET /img/qq.gif HTTP/1.1 
Host: simingqu.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://simingqu.sooshong.com/

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx/1.8.1
Date: Wed, 01 Nov 2017 07:53:02 GMT
Content-Length: 2997
Last-Modified: Wed, 25 Mar 2015 07:35:09 GMT
Etag: "5512652d-bb5"
Expires: Fri, 01 Dec 2017 07:53:02 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
Age: 1954
X-Cache: HIT from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 77 x 22
Size:   2997
Md5:    7a3180e91ce67db4313157fda0fc2f80
Sha1:   bd8acc0736daf90de062ec8a0ad5dd59c34d8ec2
Sha256: b24dee570fee5294dffdbc5708a267c7004f8b69d5f208a4bc978c977a8b3320
                                        
                                            GET /images/nopic.jpg HTTP/1.1 
Host: simingqu.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://simingqu.sooshong.com/

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx/1.8.1
Date: Wed, 01 Nov 2017 07:53:02 GMT
Content-Length: 3173
Last-Modified: Tue, 19 Sep 2017 00:54:28 GMT
Etag: "59c06ac4-c65"
Expires: Fri, 01 Dec 2017 07:53:02 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
Age: 1954
X-Cache: HIT from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   3173
Md5:    48fcfa923a5a455c645a89dbfae01ce7
Sha1:   b82bdad2d56b846f1c258d82c59dae1fa9f39fa6
Sha256: 21d98a597091a273913b60e93d6907cd5953a4bfb4962c983fed5a0afeeed1a4
                                        
                                            GET /shophome/js/search.js HTTP/1.1 
Host: simingqu.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://simingqu.sooshong.com/

                                         
                                         42.159.251.98
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=gb2312
                                        
Server: nginx/1.8.1
Date: Wed, 01 Nov 2017 08:19:55 GMT
Content-Length: 168
X-Cache: MISS from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document text
Size:   168
Md5:    936524317a13f7da01ff4676bdb271e2
Sha1:   12c56efbd63637bbc40832b24b45e76bd2910072
Sha256: 8feebc27aa326861bdd5197496f28ed3f90d6ea5ce710243b4f954b97d614198
                                        
                                            GET /js/left_link.js HTTP/1.1 
Host: www.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://simingqu.sooshong.com/

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=gb2312
                                        
Server: nginx/1.8.1
Date: Wed, 01 Nov 2017 08:18:05 GMT
Content-Length: 76
Last-Modified: Mon, 21 Mar 2016 09:47:57 GMT
Etag: "56efc34d-4c"
Expires: Wed, 01 Nov 2017 09:18:05 GMT
Cache-Control: max-age=3600
Accept-Ranges: bytes
Age: 391
X-Cache: HIT from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  ISO-8859 text, with no line terminators
Size:   76
Md5:    34e01be067dc21e9c15c91dbca70fe48
Sha1:   cd114c7e7da66668284d735b3ee8cd7c8d97bed0
Sha256: 8f84b0764e001e56a2e76a924d67645348e4b010de9cec377ab78d32891cd125
                                        
                                            GET /img/ico1.png HTTP/1.1 
Host: simingqu.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://simingqu.sooshong.com/

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx/1.8.1
Date: Wed, 01 Nov 2017 07:53:02 GMT
Content-Length: 3380
Last-Modified: Wed, 25 Mar 2015 07:57:27 GMT
Etag: "55126a67-d34"
Expires: Fri, 01 Dec 2017 07:53:02 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
Age: 1954
X-Cache: HIT from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 20 x 20, 8-bit/color RGB, non-interlaced
Size:   3380
Md5:    8b5f3051fb716a19d741225c921ba165
Sha1:   13958c4ba7c51ca44d06825fe94c72a759884ed3
Sha256: 9b8024272847fee03254f7120425a733253716d54a251f57c160d06ea195c703
                                        
                                            GET /vqfwrimwftxywzf.js HTTP/1.1 
Host: 2.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://simingqu.sooshong.com/

                                         
                                         58.211.137.31
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
                                        
Date: Wed, 01 Nov 2017 08:25:36 GMT
Content-Length: 1005
Connection: keep-alive
Set-Cookie: __cfduid=dcb5e61fb791a59819f3bb8856ee807e91509524736; expires=Thu, 01-Nov-18 08:25:36 GMT; path=/; domain=.sooshong.com; HttpOnly
Cache-Control: public, max-age=3600
Content-Encoding: gzip
Expires: Wed, 01 Nov 2017 09:25:36 GMT
Last-Modified: Wed, 11 Oct 2017 13:13:02 GMT
P3p: CP=" OTI DSP COR IVA OUR IND COM "
CF-Cache-Status: HIT
Vary: Accept-Encoding
Server: yunjiasu-nginx
CF-RAY: 3b6d76e2d37e43dd-SZV


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1005
Md5:    08bfdaf3e7250e6d9f45dd38cfc977c0
Sha1:   b870489064514fed22debcc8cf96fb40d42f7836
Sha256: 3d78aed89972581d893db743682e0220b2d1e78b987af3c7c7bcede059d61a87
                                        
                                            GET /bwltvofvczdec.js HTTP/1.1 
Host: 2.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://simingqu.sooshong.com/

                                         
                                         58.211.137.31
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
                                        
Date: Wed, 01 Nov 2017 08:25:36 GMT
Content-Length: 1002
Connection: keep-alive
Set-Cookie: __cfduid=dcdace16fbf06d64718e880805858dca21509524736; expires=Thu, 01-Nov-18 08:25:36 GMT; path=/; domain=.sooshong.com; HttpOnly
Cache-Control: public, max-age=3600
Content-Encoding: gzip
Expires: Wed, 01 Nov 2017 09:25:36 GMT
Last-Modified: Wed, 11 Oct 2017 13:13:03 GMT
P3p: CP=" OTI DSP COR IVA OUR IND COM "
CF-Cache-Status: HIT
Vary: Accept-Encoding
Server: yunjiasu-nginx
CF-RAY: 3b6d76e2f3a74394-SZV


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1002
Md5:    3b3c8ee0fc1050988be6e721c2aed42f
Sha1:   39af21cfe8977e45b0a288433bdd691457a9944d
Sha256: 19737e4d985822ac382840c7c761c721fc9e96420b1a27275647bfb4ffa281d8
                                        
                                            GET /bwlcxoscxzdec.js HTTP/1.1 
Host: 2.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://simingqu.sooshong.com/

                                         
                                         58.211.137.31
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
                                        
Date: Wed, 01 Nov 2017 08:25:36 GMT
Content-Length: 1006
Connection: keep-alive
Set-Cookie: __cfduid=d746aedfa7a2846376b0f187418b6e2651509524736; expires=Thu, 01-Nov-18 08:25:36 GMT; path=/; domain=.sooshong.com; HttpOnly
Cache-Control: public, max-age=3600
Content-Encoding: gzip
Expires: Wed, 01 Nov 2017 09:25:36 GMT
Last-Modified: Wed, 11 Oct 2017 13:13:02 GMT
P3p: CP=" OTI DSP COR IVA OUR IND COM "
CF-Cache-Status: HIT
Vary: Accept-Encoding
Server: yunjiasu-nginx
CF-RAY: 3b6d76e2f09143a7-SZV


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1006
Md5:    3a63bd54f3391361faaf6e70d4b053a4
Sha1:   21a04246eaf2030cac37a68d1a8e865e4195d8f3
Sha256: d195081e5c7a977ea51ef4265b9ccacdfc5a1e185c0d1414e21736d06d726583
                                        
                                            GET /mhwqegpwpkon.js HTTP/1.1 
Host: 2.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://simingqu.sooshong.com/

                                         
                                         58.211.137.31
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
                                        
Date: Wed, 01 Nov 2017 08:25:36 GMT
Content-Length: 1004
Connection: keep-alive
Set-Cookie: __cfduid=d0740de85f324a402f56aa95ebdb1fea71509524736; expires=Thu, 01-Nov-18 08:25:36 GMT; path=/; domain=.sooshong.com; HttpOnly
Cache-Control: public, max-age=3600
Content-Encoding: gzip
Expires: Wed, 01 Nov 2017 09:25:36 GMT
Last-Modified: Wed, 11 Oct 2017 13:13:02 GMT
P3p: CP=" OTI DSP COR IVA OUR IND COM "
CF-Cache-Status: HIT
Vary: Accept-Encoding
Server: yunjiasu-nginx
CF-RAY: 3b6d76e2f78e4388-SZV


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1004
Md5:    51a19d9926e1bfd155a12c83062c09fc
Sha1:   b19b8f298c3da984587af809ff2228e96689049b
Sha256: 25052b8921a8aa9c12e514f90d6b733237d8606f965ebdd8ebf56114e4651bf3
                                        
                                            GET /shophome/img/vip.jpg HTTP/1.1 
Host: simingqu.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://simingqu.sooshong.com/

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx/1.8.1
Date: Wed, 01 Nov 2017 07:53:02 GMT
Content-Length: 22306
Last-Modified: Wed, 25 Mar 2015 02:53:17 GMT
Etag: "5512231d-5722"
Expires: Fri, 01 Dec 2017 07:53:02 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
Age: 1954
X-Cache: HIT from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   22306
Md5:    7b06d06e0343964b990c9a0fd896e77f
Sha1:   5d4d5619687deaf211bbfe246bab9a2fe6a8891b
Sha256: f033496382de7cac519e49362de86827027d671d66cb09973906b5756f36c917
                                        
                                            GET /img/ico2.png HTTP/1.1 
Host: simingqu.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://simingqu.sooshong.com/

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx/1.8.1
Date: Wed, 01 Nov 2017 07:53:02 GMT
Content-Length: 3108
Last-Modified: Wed, 25 Mar 2015 07:57:50 GMT
Etag: "55126a7e-c24"
Expires: Fri, 01 Dec 2017 07:53:02 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
Age: 1954
X-Cache: HIT from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 20 x 20, 8-bit/color RGB, non-interlaced
Size:   3108
Md5:    296f3835d5c0cf6032e4c0ef327e9ab5
Sha1:   e110e33cb1123f3b85fe00c707a288a79680c03e
Sha256: 1468b38039b90aae3a191f09ca55a0841cf10e7b710a0a8ec33ab744b929f086
                                        
                                            GET /shophome/img/logo.jpg HTTP/1.1 
Host: simingqu.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://simingqu.sooshong.com/

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx/1.8.1
Date: Wed, 01 Nov 2017 07:53:02 GMT
Content-Length: 23937
Last-Modified: Mon, 18 Sep 2017 07:35:29 GMT
Etag: "59bf7741-5d81"
Expires: Fri, 01 Dec 2017 07:53:02 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
Age: 1954
X-Cache: HIT from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   23937
Md5:    565b9083bd4831ba1d6f329ab9035d54
Sha1:   786b3121b5f735ecce181c6d0f675124b7c7a06a
Sha256: 556ecee89cb129017a67fa7eb40532fcb58f56511e3f8e13c7b3170e44bf1229
                                        
                                            GET /cpro/ui/c.js HTTP/1.1 
Host: cpro.baidustatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://simingqu.sooshong.com/

                                         
                                         119.146.74.34
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: JSP3/2.0.14
Date: Wed, 01 Nov 2017 08:25:36 GMT
Content-Length: 32357
Connection: close
Etag: "59f69c55-7e65"
Last-Modified: Mon, 30 Oct 2017 03:28:21 GMT
Expires: Wed, 01 Nov 2017 09:22:11 GMT
Age: 205
Cache-Control: max-age=3600
Accept-Ranges: bytes
Content-Encoding: gzip
Ohc-Response-Time: 1 0 0 0 0 0


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max compression
Size:   32357
Md5:    6810980ba06424b4a4ffc78003d6d027
Sha1:   774889274671a6571ffac01977559e33b2c8b9e7
Sha256: afbf8b6cfeb9268587b4c9430d4073e44be8cf87c6a9eafa0d24a6952bf45dc0
                                        
                                            GET /shophome/1/css/member.css HTTP/1.1 
Host: www.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://simingqu.sooshong.com/

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.8.1
Date: Mon, 18 Sep 2017 04:47:56 GMT
Content-Length: 24470
Last-Modified: Mon, 27 Mar 2017 08:51:37 GMT
Vary: Accept-Encoding
Etag: "58d8d299-5f96"
Expires: Mon, 18 Sep 2017 05:47:56 GMT
Cache-Control: max-age=3600
Accept-Ranges: bytes
Age: 404
X-Cache: HIT from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  ISO-8859 assembler program text, with CRLF line terminators
Size:   24470
Md5:    306dd6d3a572b2a256f36ec214ee5c29
Sha1:   6f5e901f288ac08849519dc44a73f7cd43181eb5
Sha256: 852d062e71a41d6f3a05b9627be650308a804168416aa3b0da1ac849725b013e
                                        
                                            GET /niraahjhqlprx.js HTTP/1.1 
Host: 2.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://simingqu.sooshong.com/

                                         
                                         58.211.137.31
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
                                        
Date: Wed, 01 Nov 2017 08:25:36 GMT
Content-Length: 1007
Connection: keep-alive
Set-Cookie: __cfduid=d5216bea79dedfedbcaa292cfc85652921509524736; expires=Thu, 01-Nov-18 08:25:36 GMT; path=/; domain=.sooshong.com; HttpOnly
Cache-Control: public, max-age=3600
Content-Encoding: gzip
Expires: Wed, 01 Nov 2017 09:25:36 GMT
Last-Modified: Wed, 11 Oct 2017 13:13:02 GMT
P3p: CP=" OTI DSP COR IVA OUR IND COM "
CF-Cache-Status: HIT
Vary: Accept-Encoding
Server: yunjiasu-nginx
CF-RAY: 3b6d76e2f77143b3-SZV


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1007
Md5:    c4414784a11fc2fc2da4255c4db5238a
Sha1:   b1213d38abe436327a4d5d0e3fbd6963cbb9dc22
Sha256: 3276d3f3895dc2c47842f10efd53fa507edc87d72e3e6ccc86ace29f688ba063
                                        
                                            GET /img/ico3.png HTTP/1.1 
Host: simingqu.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://simingqu.sooshong.com/

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx/1.8.1
Date: Wed, 01 Nov 2017 07:53:02 GMT
Content-Length: 2993
Last-Modified: Wed, 25 Mar 2015 07:58:21 GMT
Etag: "55126a9d-bb1"
Expires: Fri, 01 Dec 2017 07:53:02 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
Age: 1954
X-Cache: HIT from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 20 x 20, 8-bit/color RGB, non-interlaced
Size:   2993
Md5:    5586cbaebd51561b58c7cdf92a1db110
Sha1:   362dfc80e0a84d43816a9ba453b69279494f451c
Sha256: b3aabeddeae95c21a50af628ed99c67cd2c0d8031819f9b7c039dd5e4ad19ce5
                                        
                                            GET /img/zx.jpg HTTP/1.1 
Host: simingqu.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://simingqu.sooshong.com/

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx/1.8.1
Date: Wed, 01 Nov 2017 07:53:02 GMT
Content-Length: 15492
Last-Modified: Wed, 25 Mar 2015 08:09:42 GMT
Etag: "55126d46-3c84"
Expires: Fri, 01 Dec 2017 07:53:02 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
Age: 1954
X-Cache: HIT from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   15492
Md5:    39362e73c1384013dd0429b5eea01f66
Sha1:   305fd191ed35a4bf9fa61646b30487883ec53680
Sha256: fe108cee4b7acd77afad9980a007a074ed967eff005d009358bb5b22bf4d97a6
                                        
                                            GET /img/sc.jpg HTTP/1.1 
Host: simingqu.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://simingqu.sooshong.com/

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx/1.8.1
Date: Wed, 01 Nov 2017 07:53:02 GMT
Content-Length: 16107
Last-Modified: Wed, 25 Mar 2015 08:10:01 GMT
Etag: "55126d59-3eeb"
Expires: Fri, 01 Dec 2017 07:53:02 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
Age: 1954
X-Cache: HIT from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   16107
Md5:    9755e4584901f44cedc0e6e7cd8f3050
Sha1:   f8a2875fc9e33def83c9ecdf61e15ed9fbe0bd94
Sha256: 7f8fe19a3320b83873ace750c599db8acb04b6e6682aa4e98e69554139f7ac6e
                                        
                                            GET /js/jquery.min.js HTTP/1.1 
Host: simingqu.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://simingqu.sooshong.com/

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=gb2312
                                        
Server: nginx/1.8.1
Date: Wed, 01 Nov 2017 08:19:55 GMT
Content-Length: 95786
Last-Modified: Thu, 30 Oct 2014 13:59:18 GMT
Etag: "54524436-1762a"
Expires: Wed, 01 Nov 2017 09:19:55 GMT
Cache-Control: max-age=3600
Accept-Ranges: bytes
X-Cache: MISS from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   95786
Md5:    8101d596b2b8fa35fe3a634ea342d7c3
Sha1:   d6c1f41972de07b09bfa63d2e50f9ab41ec372bd
Sha256: 540bc6dec1dd4b92ea4d3fb903f69eabf6d919afd48f4e312b163c28cff0f441
                                        
                                            GET /shophome/js/search.js HTTP/1.1 
Host: simingqu.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://simingqu.sooshong.com/
Cookie: __cfduid=d5216bea79dedfedbcaa292cfc85652921509524736

                                         
                                         42.159.251.98
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=gb2312
                                        
Server: nginx/1.8.1
Date: Wed, 01 Nov 2017 08:19:56 GMT
Content-Length: 168
X-Cache: MISS from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document text
Size:   168
Md5:    936524317a13f7da01ff4676bdb271e2
Sha1:   12c56efbd63637bbc40832b24b45e76bd2910072
Sha256: 8feebc27aa326861bdd5197496f28ed3f90d6ea5ce710243b4f954b97d614198
                                        
                                            GET /lpjnmjnpdmhhmyojn.js HTTP/1.1 
Host: 2.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://simingqu.sooshong.com/
Cookie: __cfduid=d5216bea79dedfedbcaa292cfc85652921509524736

                                         
                                         58.211.137.31
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
                                        
Date: Wed, 01 Nov 2017 08:25:38 GMT
Content-Length: 7177
Connection: keep-alive
Cache-Control: public, max-age=7200
Content-Encoding: gzip
Expires: Wed, 01 Nov 2017 10:25:38 GMT
Last-Modified: Wed, 11 Oct 2017 06:38:32 GMT
P3p: CP=" OTI DSP COR IVA OUR IND COM "
CF-Cache-Status: HIT
Vary: Accept-Encoding
Server: yunjiasu-nginx
CF-RAY: 3b6d76efb65843dd-SZV


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   7177
Md5:    95da4b468848d8b7767a7a0b15f5d845
Sha1:   b59f6716f455665f85cd4b492d871af6323c06f2
Sha256: 6e4f01a0515525c466039f9f7de533e67b3ba8b0c504f032c2e56f66104275cf
                                        
                                            GET /shophome/1/img/sch_btn.png HTTP/1.1 
Host: www.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sooshong.com/shophome/1/css/member.css
Cookie: __cfduid=d5216bea79dedfedbcaa292cfc85652921509524736

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx/1.8.1
Date: Mon, 18 Sep 2017 04:31:10 GMT
Content-Length: 3324
Last-Modified: Mon, 21 Mar 2016 09:47:59 GMT
Etag: "56efc34f-cfc"
Expires: Wed, 18 Oct 2017 04:31:10 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
Age: 365
X-Cache: HIT from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 38 x 25, 8-bit/color RGB, non-interlaced
Size:   3324
Md5:    0bfb1bf4447f840133d1ffd41ea49913
Sha1:   b5642c328fde6a6bea9c7241ba865ca521248735
Sha256: 3919b7863ddd81ef1a4f3f94009db693d9d22f14d4c783df1054eb70c7d1593a
                                        
                                            GET /shophome/1/img/sch_d.png HTTP/1.1 
Host: www.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sooshong.com/shophome/1/css/member.css
Cookie: __cfduid=d5216bea79dedfedbcaa292cfc85652921509524736

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx/1.8.1
Date: Mon, 18 Sep 2017 04:31:10 GMT
Content-Length: 2823
Last-Modified: Mon, 21 Mar 2016 09:47:59 GMT
Etag: "56efc34f-b07"
Expires: Wed, 18 Oct 2017 04:31:10 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
Age: 365
X-Cache: HIT from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 9 x 5, 8-bit/color RGBA, non-interlaced
Size:   2823
Md5:    bb2505b3dff84f95bb189d46d7f70937
Sha1:   f2ba72165076f2152c74ae115b09af5cfed4359f
Sha256: fda03e21c2d5a8fb3f141daa2c3e69e7a6cd2354b96ee4fcfcb839f7d3df214b
                                        
                                            GET /shophome/1/img/tbgx.jpg HTTP/1.1 
Host: www.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sooshong.com/shophome/1/css/member.css
Cookie: __cfduid=d5216bea79dedfedbcaa292cfc85652921509524736

                                         
                                         42.159.251.98
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=gb2312
                                        
Server: nginx/1.8.1
Date: Wed, 01 Nov 2017 08:19:57 GMT
Content-Length: 168
X-Cache: MISS from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document text
Size:   168
Md5:    936524317a13f7da01ff4676bdb271e2
Sha1:   12c56efbd63637bbc40832b24b45e76bd2910072
Sha256: 8feebc27aa326861bdd5197496f28ed3f90d6ea5ce710243b4f954b97d614198
                                        
                                            GET /shophome/1/img/nav.jpg HTTP/1.1 
Host: www.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sooshong.com/shophome/1/css/member.css
Cookie: __cfduid=d5216bea79dedfedbcaa292cfc85652921509524736

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx/1.8.1
Date: Mon, 18 Sep 2017 04:31:10 GMT
Content-Length: 17048
Last-Modified: Mon, 21 Mar 2016 09:47:59 GMT
Etag: "56efc34f-4298"
Expires: Wed, 18 Oct 2017 04:31:10 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
Age: 366
X-Cache: HIT from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   17048
Md5:    0f6cd3273d7eb116b1fc66a58d5f589f
Sha1:   cfcd6fdc1503c2724de9d57948c36a062bb4816c
Sha256: 3d385f765fed4ce64ac2fbd0508b3fc422dcad52fb872c1f0b5e007d955446cf
                                        
                                            GET /shophome/1/img/warn.png HTTP/1.1 
Host: www.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sooshong.com/shophome/1/css/member.css
Cookie: __cfduid=d5216bea79dedfedbcaa292cfc85652921509524736

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx/1.8.1
Date: Mon, 18 Sep 2017 04:31:10 GMT
Content-Length: 3812
Last-Modified: Mon, 21 Mar 2016 09:47:59 GMT
Etag: "56efc34f-ee4"
Expires: Wed, 18 Oct 2017 04:31:10 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
Age: 366
X-Cache: HIT from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  PNG image, 50 x 50, 8-bit/color RGB, non-interlaced
Size:   3812
Md5:    0e4dbafd29c9bd6d1d8c7b61f9531452
Sha1:   8705bb3dc5bb6383059f0a06915421754df7aef8
Sha256: 4cd2ba232a5eba24ba8dbaaf82a03d35168b7d38c213ef24c3adcb40360f9c49
                                        
                                            GET /cpro/ui/pr.js HTTP/1.1 
Host: cpro.baidustatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://simingqu.sooshong.com/

                                         
                                         119.146.74.34
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: JSP3/2.0.14
Date: Wed, 01 Nov 2017 08:25:39 GMT
Content-Length: 59
Connection: close
Etag: "59f69c55-3b"
Last-Modified: Mon, 30 Oct 2017 03:28:21 GMT
Expires: Wed, 01 Nov 2017 09:04:28 GMT
Age: 1271
Cache-Control: max-age=3600
Accept-Ranges: bytes
Content-Encoding: gzip
Ohc-Response-Time: 1 0 0 0 0 0


--- Additional Info ---
Magic:  gzip compressed data, was "pr.js", from Unix, last modified: Wed Apr 12 14:16:46 2017
Size:   59
Md5:    41fb278f99022505e4a8b3021865239b
Sha1:   56902c330e58d6b2028e1c01bdbe655e07737acd
Sha256: c447397f21354227ae353012e7ad20f590f17486ccf0ae58259bc5dbf6373243
                                        
                                            GET /17771164.js HTTP/1.1 
Host: js.users.51.la
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://simingqu.sooshong.com/

                                         
                                         222.187.254.89
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Cache-Control: max-age=300
Content-Length: 1860
Last-Modified: Thu, 08 Jun 2017 08:21:29 GMT
Accept-Ranges: bytes
Etag: "745ab73a30e0d21:6548"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 01 Nov 2017 08:25:40 GMT
Connection: close


--- Additional Info ---
Magic:  ASCII text, with very long lines, with CRLF line terminators
Size:   1860
Md5:    3f4fd2c99244e73ecc272ac9688df7b7
Sha1:   c737876d900a5e74e9a4b1c49ee201cb9c299f7b
Sha256: 2e5e6dd57d9466b364a676e56c07ee8ba6c4f88f5046ac918cf8a9ff1d2dd43d

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /xcpm?di=u2073407&dri=0&dis=0&dai=1&ps=763x329&enu=encoding&dcb=___adblockplus&dtm=SSP_JSONP&dvi=0.0&dci=-1&dpt=none&tsr=0&tpr=1509524738626&ti=%E7%99%BE%E8%B4%A7%E9%94%80%E5%94%AE&ari=2&dbv=0&drs=1&pcs=1159x754&pss=1159x888&cfv=10&cpl=10&chi=1&cce=true&cec=x-gbk&tlm=1509524735&rw=754&ltu=http%3A%2F%2Fsimingqu.sooshong.com%2F&ecd=1&uc=1176x855&pis=-1x-1&sr=1176x885&tcn=1509524739 HTTP/1.1 
Host: pos.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://simingqu.sooshong.com/

                                         
                                         115.239.210.141
HTTP/1.1 200 OK
Content-Type: application/javascript;charset=UTF-8
                                        
Cache-Control: post-check=0, pre-check=0
Connection: keep-alive
Content-Encoding: gzip
Content-Length: 695
Date: Wed, 01 Nov 2017 08:25:39 GMT
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Last-Modified: Wed Nov 1 16:25:39 2017
P3p: CP=" OTI DSP COR IVA OUR IND COM ", CP=" OTI DSP COR IVA OUR IND COM "
Pragma: no-cache
Server: nginx
Set-Cookie: BAIDUID=0F972ABFCEF7A19F0214161F24B42D99:FG=1; expires=Thu, 01-Nov-48 08:25:39 GMT; max-age=31536000; path=/; domain=.baidu.com; version=1
X-Xss-Protection: 0


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   695
Md5:    bbe702d1f55b33251676d544e8a53cdc
Sha1:   93ca04cc6c330ca7542ff419081c09dc15f83c83
Sha256: b401337d7233d58c8a00a5e0d34a8584a444300865bbad7b618aba57a4e603b1
                                        
                                            GET /shophome/img/b_logo.jpg HTTP/1.1 
Host: www.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://simingqu.sooshong.com/
Cookie: __cfduid=d5216bea79dedfedbcaa292cfc85652921509524736

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx/1.8.1
Date: Fri, 29 Sep 2017 08:12:18 GMT
Content-Length: 14655
Last-Modified: Mon, 18 Sep 2017 07:23:31 GMT
Etag: "59bf7473-393f"
Expires: Sun, 29 Oct 2017 08:12:18 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
Age: 393
X-Cache: HIT from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   14655
Md5:    73d1758f1d9f396031fc6d6e7022d343
Sha1:   c4a4ffd74ebe80ff2168aaa3bba27137255912fd
Sha256: e3018b787bd7e9fa38eb2fe6f879193277044dfb4cb573426cca126fc304d70d
                                        
                                            GET /s?hei=100&wid=980&di=u2073402&ltu=http%3A%2F%2Fsimingqu.sooshong.com%2F&tlm=1509524735&cmi=92&pss=1159x888&ccd=24&dis=0&tpr=1509524739322&cfv=10&cpl=10&col=en-US&cja=true&tcn=1509524739&drs=1&chi=1&dtm=HTML_POST&par=1176x855&cdo=-1&dri=1&pcs=1159x754&dai=1&ari=2&ti=%E7%99%BE%E8%B4%A7%E9%94%80%E5%94%AE&dc=2&pis=-1x-1&exps=111000&cec=x-gbk&psr=1176x885&ps=183x89&cce=true&ant=0 HTTP/1.1 
Host: pos.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://simingqu.sooshong.com/

                                         
                                         115.239.210.141
HTTP/1.1 200 OK
Content-Type: text/html;charset=UTF-8
                                        
Cache-Control: post-check=0, pre-check=0
Connection: keep-alive
Content-Encoding: gzip
Content-Length: 9049
Date: Wed, 01 Nov 2017 08:25:40 GMT
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Last-Modified: Wed Nov 1 16:25:40 2017
P3p: CP=" OTI DSP COR IVA OUR IND COM ", CP=" OTI DSP COR IVA OUR IND COM "
Pragma: no-cache
Server: nginx
Set-Cookie: BAIDUID=2F55E9F9F28C7E17A236E4B644796E05:FG=1; expires=Thu, 01-Nov-48 08:25:40 GMT; max-age=31536000; path=/; domain=.baidu.com; version=1
X-Xss-Protection: 0


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   9049
Md5:    b9f453b1da4c0a44819531c2ab4cb2c7
Sha1:   364b44697bf9f30ee5d6fbb71d804e61830fdf75
Sha256: 6bb8f8e8b731410860a1a9c5ae7dc0e6a9cfa3611cd9ffd6b039f382101b7e72
                                        
                                            GET /s?hei=90&wid=728&di=u2073407&ltu=http%3A%2F%2Fsimingqu.sooshong.com%2F&cfv=10&par=1176x855&dis=0&ari=2&cja=true&cpl=10&dai=4&pss=1159x1638&dc=2&tlm=1509524735&ccd=24&cmi=92&ps=618x329&chi=1&tcn=1509524739&cec=x-gbk&tpr=1509524739322&col=en-US&drs=1&pcs=1159x754&cce=true&dtm=HTML_POST&ant=0&dri=1&cdo=-1&psr=1176x885&pis=-1x-1&exps=111000&ti=%E7%99%BE%E8%B4%A7%E9%94%80%E5%94%AE HTTP/1.1 
Host: pos.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://simingqu.sooshong.com/

                                         
                                         115.239.210.141
HTTP/1.1 200 OK
Content-Type: text/html;charset=UTF-8
                                        
Cache-Control: post-check=0, pre-check=0
Connection: keep-alive
Content-Encoding: gzip
Content-Length: 8553
Date: Wed, 01 Nov 2017 08:25:40 GMT
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Last-Modified: Wed Nov 1 16:25:40 2017
P3p: CP=" OTI DSP COR IVA OUR IND COM ", CP=" OTI DSP COR IVA OUR IND COM "
Pragma: no-cache
Server: nginx
Set-Cookie: BAIDUID=2F55E9F9F28C7E17D361947C813D2904:FG=1; expires=Thu, 01-Nov-48 08:25:40 GMT; max-age=31536000; path=/; domain=.baidu.com; version=1
X-Xss-Protection: 0


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   8553
Md5:    520281bf947a13348247122ddb856c15
Sha1:   d7fb02776058a528fce57ec84c6698c7fbad24d5
Sha256: 92df3ef60dcff6efa73a732398057336547d07821460172c83252290b0a031df
                                        
                                            GET /s?hei=90&wid=728&di=u2073407&ltu=http%3A%2F%2Fsimingqu.sooshong.com%2F&dis=0&dtm=HTML_POST&pcs=1159x754&dai=5&pis=-1x-1&drs=1&dri=2&dc=2&tpr=1509524739322&cdo=-1&ari=2&psr=1176x885&ant=0&tcn=1509524739&cec=x-gbk&cpl=10&cfv=10&chi=1&cmi=92&cce=true&ti=%E7%99%BE%E8%B4%A7%E9%94%80%E5%94%AE&pss=1159x1638&ccd=24&exps=111000&par=1176x855&col=en-US&cja=true&ps=818x329&tlm=1509524735 HTTP/1.1 
Host: pos.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://simingqu.sooshong.com/

                                         
                                         115.239.210.141
HTTP/1.1 200 OK
Content-Type: text/html;charset=UTF-8
                                        
Cache-Control: post-check=0, pre-check=0
Connection: keep-alive
Content-Encoding: gzip
Content-Length: 8554
Date: Wed, 01 Nov 2017 08:25:40 GMT
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Last-Modified: Wed Nov 1 16:25:40 2017
P3p: CP=" OTI DSP COR IVA OUR IND COM ", CP=" OTI DSP COR IVA OUR IND COM "
Pragma: no-cache
Server: nginx
Set-Cookie: BAIDUID=2F55E9F9F28C7E17FD405DB6D8B355DB:FG=1; expires=Thu, 01-Nov-48 08:25:40 GMT; max-age=31536000; path=/; domain=.baidu.com; version=1
X-Xss-Protection: 0


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   8554
Md5:    2bc9046237712bbca6f4ed7a70a3e6c7
Sha1:   9d941cbdb19feb55fb481f097ca23c7bdeea1f3d
Sha256: c246bb124ded89fcaf5d5551067013e58b72ecf51d214c6d1d921d3db2f7c36f
                                        
                                            GET /s?hei=250&wid=300&di=u1336769&ltu=http%3A%2F%2Fsimingqu.sooshong.com%2F&dai=3&cdo=-1&cpl=10&cec=x-gbk&tlm=1509524735&tcn=1509524739&dis=0&pss=1159x1638&cja=true&par=1176x855&dri=1&pis=-1x-1&exps=111000&ari=2&ant=0&chi=1&dc=2&dtm=HTML_POST&cmi=92&ccd=24&ps=348x329&cfv=10&pcs=1159x754&drs=1&cce=true&col=en-US&psr=1176x885&tpr=1509524739322&ti=%E7%99%BE%E8%B4%A7%E9%94%80%E5%94%AE HTTP/1.1 
Host: pos.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://simingqu.sooshong.com/

                                         
                                         115.239.210.141
HTTP/1.1 200 OK
Content-Type: text/html;charset=UTF-8
                                        
Cache-Control: post-check=0, pre-check=0
Connection: keep-alive
Content-Encoding: gzip
Content-Length: 9136
Date: Wed, 01 Nov 2017 08:25:40 GMT
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Last-Modified: Wed Nov 1 16:25:40 2017
P3p: CP=" OTI DSP COR IVA OUR IND COM ", CP=" OTI DSP COR IVA OUR IND COM "
Pragma: no-cache
Server: nginx
Set-Cookie: BAIDUID=2F55E9F9F28C7E1768B463C2D5C67662:FG=1; expires=Thu, 01-Nov-48 08:25:40 GMT; max-age=31536000; path=/; domain=.baidu.com; version=1
X-Xss-Protection: 0


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   9136
Md5:    30b25555ed9d18d40211417c211acbe1
Sha1:   1d7e205373101b9f922a141c8f640d77a6a61ad8
Sha256: bd8183ccaff574a6417cffa0c20da20bd8789759a881ac165f3201db5c5604a1
                                        
                                            GET /js/t.js HTTP/1.1 
Host: www.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://simingqu.sooshong.com/
Cookie: __cfduid=d5216bea79dedfedbcaa292cfc85652921509524736

                                         
                                         42.159.251.98
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=gb2312
                                        
Server: nginx/1.8.1
Date: Wed, 01 Nov 2017 08:18:05 GMT
Content-Length: 249
Last-Modified: Mon, 21 Mar 2016 09:47:57 GMT
Etag: "56efc34d-f9"
Expires: Wed, 01 Nov 2017 09:18:05 GMT
Cache-Control: max-age=3600
Accept-Ranges: bytes
Age: 395
X-Cache: HIT from squid
Via: 1.1 squid (squid/3.5.8)
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   249
Md5:    2107f7323cae651c3dd823b547f860d2
Sha1:   a29ffdce89e07353725800114d529c348c7ad43d
Sha256: cc3bfd8c0d99d1dd3d46433ff83428aa25a58f5a15afa44526cfb0d3403c83db
                                        
                                            GET /s?hei=750&wid=200&di=u2563160&ltu=http%3A%2F%2Fsimingqu.sooshong.com%2F&cec=x-gbk&cmi=92&cja=true&chi=1&drs=1&tpr=1509524739322&cpl=10&ps=703x99&cdo=-1&tcn=1509524739&ccd=24&col=en-US&cce=true&dis=0&dc=2&ari=2&par=1176x855&ti=%E7%99%BE%E8%B4%A7%E9%94%80%E5%94%AE&cfv=10&pss=1159x888&pis=-1x-1&dtm=HTML_POST&dai=2&exps=111000&psr=1176x885&pcs=1159x754&dri=1&tlm=1509524735&ant=0 HTTP/1.1 
Host: pos.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://simingqu.sooshong.com/

                                         
                                         115.239.210.141
HTTP/1.1 200 OK
Content-Type: text/html;charset=UTF-8
                                        
Cache-Control: post-check=0, pre-check=0
Connection: keep-alive
Content-Encoding: gzip
Content-Length: 15714
Date: Wed, 01 Nov 2017 08:25:40 GMT
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Last-Modified: Wed Nov 1 16:25:40 2017
P3p: CP=" OTI DSP COR IVA OUR IND COM ", CP=" OTI DSP COR IVA OUR IND COM "
Pragma: no-cache
Server: nginx
Set-Cookie: BAIDUID=2F55E9F9F28C7E171C01B6CEFCBD4F9E:FG=1; expires=Thu, 01-Nov-48 08:25:40 GMT; max-age=31536000; path=/; domain=.baidu.com; version=1
X-Xss-Protection: 0


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   15714
Md5:    46c37d64b5cd2155ab95866dc656eb21
Sha1:   79d63453c9ea7443e9e92ff2065f79a67caf59ac
Sha256: ef81208afef9b7cce7d94c393cdc509acae0dc44edd7a766ee405aeec0dfe2c0
                                        
                                            GET /cpro/ui/noexpire/js/3.1.6/cpro.js HTTP/1.1 
Host: cpro.baidustatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/s?hei=750&wid=200&di=u2563160&ltu=http%3A%2F%2Fsimingqu.sooshong.com%2F&cec=x-gbk&cmi=92&cja=true&chi=1&drs=1&tpr=1509524739322&cpl=10&ps=703x99&cdo=-1&tcn=1509524739&ccd=24&col=en-US&cce=true&dis=0&dc=2&ari=2&par=1176x855&ti=%E7%99%BE%E8%B4%A7%E9%94%80%E5%94%AE&cfv=10&pss=1159x888&pis=-1x-1&dtm=HTML_POST&dai=2&exps=111000&psr=1176x885&pcs=1159x754&dri=1&tlm=1509524735&ant=0

                                         
                                         119.146.74.34
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: JSP3/2.0.14
Date: Wed, 01 Nov 2017 08:25:40 GMT
Content-Length: 18315
Connection: close
Etag: "585cd998-478b"
Last-Modified: Fri, 23 Dec 2016 08:00:24 GMT
Expires: Tue, 22 Dec 2026 15:48:05 GMT
Age: 26930255
Cache-Control: max-age=315360000
Accept-Ranges: bytes
Content-Encoding: gzip
Ohc-Response-Time: 1 0 0 0 0 0


--- Additional Info ---
Magic:  gzip compressed data, from NTFS filesystem (NT), max compression
Size:   18315
Md5:    f01f6026fbd109ddfcaf50e1de3906da
Sha1:   c59675b49466a825b5e56114b3bebde9d794ac39
Sha256: e1cd77d81d1af0959149ddb89f67ad2a99e562661236f75489f87bd7bbd4b3d2
                                        
                                            GET /go.asp?svid=11&id=17771164&tpages=1&ttimes=1&tzone=1&tcolor=24&sSize=1176,885&referrer=&vpage=http%3A//simingqu.sooshong.com/&vvtime=1509524739926 HTTP/1.1 
Host: web.users.51.la
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://simingqu.sooshong.com/

                                         
                                         42.236.74.248
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Cache-Control: private
Expires: Tue, 31 Oct 2017 15:45:40 GMT
Server: Microsoft-IIS/8.5
Date: Wed, 01 Nov 2017 08:25:40 GMT
Content-Length: 0


--- Additional Info ---
                                        
                                            GET /xcpm?rdid=2073407&dc=3&di=u2073407&dri=0&dis=0&dai=1&ps=763x329&enu=encoding&dcb=___adblockplus&dtm=HTML_POST&dvi=0.0&dci=-1&dpt=none&tsr=0&tpr=1509524738626&ti=%E7%99%BE%E8%B4%A7%E9%94%80%E5%94%AE&ari=2&dbv=0&drs=1&pcs=1159x754&pss=1159x888&cfv=10&cpl=10&chi=1&cce=true&cec=x-gbk&tlm=1509524735&rw=754&ltu=http%3A%2F%2Fsimingqu.sooshong.com%2F&ecd=1&uc=1176x855&pis=-1x-1&sr=1176x885&tcn=1509524739&qn=2ce3fe2b685edfbb&tt=1509524738380.914.1615.1710 HTTP/1.1 
Host: pos.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://simingqu.sooshong.com/
Cookie: BAIDUID=0F972ABFCEF7A19F0214161F24B42D99:FG=1

                                         
                                         115.239.210.141
HTTP/1.1 200 OK
Content-Type: text/html;charset=UTF-8
                                        
Cache-Control: post-check=0, pre-check=0
Connection: keep-alive
Content-Encoding: gzip
Content-Length: 9630
Date: Wed, 01 Nov 2017 08:25:40 GMT
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Last-Modified: Wed Nov 1 16:25:40 2017
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Pragma: no-cache
Server: nginx
X-Xss-Protection: 0


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   9630
Md5:    9652917869a8e5d9ed7a4f3c9179d3d6
Sha1:   a1cdd570faa0ec9de56327a249a305c5a4d8e6fa
Sha256: a9fe6536f62f7d51ba210b1d1927d66c551f0702e88b59969097703813da74aa
                                        
                                            GET /cpro/ui/noexpire/img/4.0.0/pc_ads_bear.1x.png HTTP/1.1 
Host: cpro.baidustatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/s?hei=100&wid=980&di=u2073402&ltu=http%3A%2F%2Fsimingqu.sooshong.com%2F&tlm=1509524735&cmi=92&pss=1159x888&ccd=24&dis=0&tpr=1509524739322&cfv=10&cpl=10&col=en-US&cja=true&tcn=1509524739&drs=1&chi=1&dtm=HTML_POST&par=1176x855&cdo=-1&dri=1&pcs=1159x754&dai=1&ari=2&ti=%E7%99%BE%E8%B4%A7%E9%94%80%E5%94%AE&dc=2&pis=-1x-1&exps=111000&cec=x-gbk&psr=1176x885&ps=183x89&cce=true&ant=0

                                         
                                         119.146.74.34
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: JSP3/2.0.14
Date: Wed, 01 Nov 2017 08:25:40 GMT
Content-Length: 956
Connection: close
Etag: "585cd998-3bc"
Last-Modified: Fri, 23 Dec 2016 08:00:24 GMT
Expires: Tue, 22 Dec 2026 15:48:05 GMT
Age: 26930255
Cache-Control: max-age=315360000
Accept-Ranges: bytes
Ohc-Response-Time: 1 0 0 0 0 0


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit/color RGBA, non-interlaced
Size:   956
Md5:    2d1a3e3ace2672c6a2183402ba078b07
Sha1:   c1deb61830a69504b09110b27b1075e6bbd9dac9
Sha256: 8c83c0e9686a8d60124a8cbf7697d5c0dffcafeafffea471bf85e79b242cf85f
                                        
                                            GET /s?hei=100&wid=980&di=u2156929&ltu=http%3A%2F%2Fsimingqu.sooshong.com%2F&cce=true&cja=true&pcs=1159x754&exps=111000&dc=2&col=en-US&cpl=10&tlm=1509524735&cfv=10&pss=1159x2005&drs=1&pis=-1x-1&tcn=1509524739&dai=6&psr=1176x885&dtm=HTML_POST&ps=1647x89&ti=%E7%99%BE%E8%B4%A7%E9%94%80%E5%94%AE&ant=0&dis=0&par=1176x855&cec=x-gbk&ccd=24&ari=2&cmi=92&chi=1&cdo=-1&dri=1&tpr=1509524739322 HTTP/1.1 
Host: pos.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://simingqu.sooshong.com/

                                         
                                         115.239.210.141
HTTP/1.1 200 OK
Content-Type: text/html;charset=UTF-8
                                        
Cache-Control: post-check=0, pre-check=0
Connection: keep-alive
Content-Encoding: gzip
Content-Length: 9061
Date: Wed, 01 Nov 2017 08:25:40 GMT
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Last-Modified: Wed Nov 1 16:25:40 2017
P3p: CP=" OTI DSP COR IVA OUR IND COM ", CP=" OTI DSP COR IVA OUR IND COM "
Pragma: no-cache
Server: nginx
Set-Cookie: BAIDUID=2F55E9F9F28C7E1794E678352A6D6B25:FG=1; expires=Thu, 01-Nov-48 08:25:40 GMT; max-age=31536000; path=/; domain=.baidu.com; version=1
X-Xss-Protection: 0


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   9061
Md5:    a01e9b6d1692106ebec5e2137fcc6430
Sha1:   8230ec1fea5137022a7304950ecc1b961fbc3199
Sha256: 9aeec6ec448abc0caaed360322c88e411a6188cbf2d87f0e971e510e179f4140
                                        
                                            GET /adx.php?c=d25pZD1mNTczNzAxZTc3NzQ1YTdiAHM9ZjU3MzcwMWU3Nzc0NWE3YgB0PTE1MDk1MjQ3NDAAc2U9MQBidT00AHByaWNlPVdmbUZCQUFBSl9oN2pFcGdXNUlBOHNxZ2cycHEyb2Y2QXM5THlnAGNoYXJnZV9wcmljZT0xNDQ4AHNoYXJpbmdfcHJpY2U9MTQ0ODAwMAB3aW5fZHNwPTQAY2htZD0xAGJkaWQ9AGNwcm9pZD0Ad2Q9MABwb3M9MABiY2htZD0wAHY9MQBpPWNkYjdjODM5 HTTP/1.1 
Host: wn.pos.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/s?hei=750&wid=200&di=u2563160&ltu=http%3A%2F%2Fsimingqu.sooshong.com%2F&cec=x-gbk&cmi=92&cja=true&chi=1&drs=1&tpr=1509524739322&cpl=10&ps=703x99&cdo=-1&tcn=1509524739&ccd=24&col=en-US&cce=true&dis=0&dc=2&ari=2&par=1176x855&ti=%E7%99%BE%E8%B4%A7%E9%94%80%E5%94%AE&cfv=10&pss=1159x888&pis=-1x-1&dtm=HTML_POST&dai=2&exps=111000&psr=1176x885&pcs=1159x754&dri=1&tlm=1509524735&ant=0
Cookie: BAIDUID=2F55E9F9F28C7E171C01B6CEFCBD4F9E:FG=1

                                         
                                         106.39.162.36
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Connection: keep-alive
Content-Length: 49
Date: Wed, 01 Nov 2017 08:25:40 GMT
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Server: nginx


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   49
Md5:    ed280a0ea3cc38f3cbbc747acfbef47d
Sha1:   6bdcb32ee75e957a5085c010f4dfd0c716bfdadc
Sha256: 8f69e10876805b747a3ad08a818d46ac7e731b1af417ea6e259d9b6b7deb65c5
                                        
                                            GET /adx.php?c=d25pZD00NDBmNjk5MTc4ZDU0ZjJhAHM9NDQwZjY5OTE3OGQ1NGYyYQB0PTE1MDk1MjQ3NDAAc2U9MQBidT00AHByaWNlPVdmbUZCQUFBbWdaN2pFcGdXNUlBOHBRZ1JYSktuSG1ZektQQm9BAGNoYXJnZV9wcmljZT0xOTMAc2hhcmluZ19wcmljZT0xOTMwMDAAd2luX2RzcD00AGNobWQ9MQBiZGlkPQBjcHJvaWQ9AHdkPTAAcG9zPTAAYmNobWQ9MAB2PTEAaT1mMzU3MTU3Nw HTTP/1.1 
Host: wn.pos.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/s?hei=90&wid=728&di=u2073407&ltu=http%3A%2F%2Fsimingqu.sooshong.com%2F&cfv=10&par=1176x855&dis=0&ari=2&cja=true&cpl=10&dai=4&pss=1159x1638&dc=2&tlm=1509524735&ccd=24&cmi=92&ps=618x329&chi=1&tcn=1509524739&cec=x-gbk&tpr=1509524739322&col=en-US&drs=1&pcs=1159x754&cce=true&dtm=HTML_POST&ant=0&dri=1&cdo=-1&psr=1176x885&pis=-1x-1&exps=111000&ti=%E7%99%BE%E8%B4%A7%E9%94%80%E5%94%AE
Cookie: BAIDUID=2F55E9F9F28C7E17D361947C813D2904:FG=1

                                         
                                         106.39.162.36
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Connection: keep-alive
Content-Length: 49
Date: Wed, 01 Nov 2017 08:25:40 GMT
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Server: nginx


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   49
Md5:    ed280a0ea3cc38f3cbbc747acfbef47d
Sha1:   6bdcb32ee75e957a5085c010f4dfd0c716bfdadc
Sha256: 8f69e10876805b747a3ad08a818d46ac7e731b1af417ea6e259d9b6b7deb65c5
                                        
                                            GET /adx.php?c=d25pZD03NGFhOWZkYzE2ODlhM2U0AHM9NzRhYTlmZGMxNjg5YTNlNAB0PTE1MDk1MjQ3NDAAc2U9MQBidT00AHByaWNlPVdmbUZCQUFBeWxkN2pFcGdXNUlBOHBzTkV4aUgwT1lVZ0hOWGNBAGNoYXJnZV9wcmljZT00NTEAc2hhcmluZ19wcmljZT00NTEwMDAAd2luX2RzcD00AGNobWQ9MQBiZGlkPQBjcHJvaWQ9AHdkPTAAcG9zPTAAYmNobWQ9MAB2PTEAaT0zNmE5YmE0Yg HTTP/1.1 
Host: wn.pos.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/s?hei=250&wid=300&di=u1336769&ltu=http%3A%2F%2Fsimingqu.sooshong.com%2F&dai=3&cdo=-1&cpl=10&cec=x-gbk&tlm=1509524735&tcn=1509524739&dis=0&pss=1159x1638&cja=true&par=1176x855&dri=1&pis=-1x-1&exps=111000&ari=2&ant=0&chi=1&dc=2&dtm=HTML_POST&cmi=92&ccd=24&ps=348x329&cfv=10&pcs=1159x754&drs=1&cce=true&col=en-US&psr=1176x885&tpr=1509524739322&ti=%E7%99%BE%E8%B4%A7%E9%94%80%E5%94%AE
Cookie: BAIDUID=2F55E9F9F28C7E1768B463C2D5C67662:FG=1

                                         
                                         106.39.162.36
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Connection: keep-alive
Content-Length: 49
Date: Wed, 01 Nov 2017 08:25:40 GMT
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Server: nginx


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   49
Md5:    ed280a0ea3cc38f3cbbc747acfbef47d
Sha1:   6bdcb32ee75e957a5085c010f4dfd0c716bfdadc
Sha256: 8f69e10876805b747a3ad08a818d46ac7e731b1af417ea6e259d9b6b7deb65c5
                                        
                                            GET /adx.php?c=d25pZD00ZTg2YmNhZDM2MTMwMGRiAHM9NGU4NmJjYWQzNjEzMDBkYgB0PTE1MDk1MjQ3NDAAc2U9MQBidT00AHByaWNlPVdmbUZCQUFBak1SN2pFcGdXNUlBOGdSclZMdkdQLW50Z0oxQm1nAGNoYXJnZV9wcmljZT0yMzYAc2hhcmluZ19wcmljZT0yMzYwMDAAd2luX2RzcD00AGNobWQ9MQBiZGlkPQBjcHJvaWQ9AHdkPTAAcG9zPTAAYmNobWQ9MAB2PTEAaT0xMzdjZTcxNg HTTP/1.1 
Host: wn.pos.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/s?hei=100&wid=980&di=u2073402&ltu=http%3A%2F%2Fsimingqu.sooshong.com%2F&tlm=1509524735&cmi=92&pss=1159x888&ccd=24&dis=0&tpr=1509524739322&cfv=10&cpl=10&col=en-US&cja=true&tcn=1509524739&drs=1&chi=1&dtm=HTML_POST&par=1176x855&cdo=-1&dri=1&pcs=1159x754&dai=1&ari=2&ti=%E7%99%BE%E8%B4%A7%E9%94%80%E5%94%AE&dc=2&pis=-1x-1&exps=111000&cec=x-gbk&psr=1176x885&ps=183x89&cce=true&ant=0
Cookie: BAIDUID=2F55E9F9F28C7E17A236E4B644796E05:FG=1

                                         
                                         106.39.162.36
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Connection: keep-alive
Content-Length: 49
Date: Wed, 01 Nov 2017 08:25:40 GMT
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Server: nginx


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   49
Md5:    ed280a0ea3cc38f3cbbc747acfbef47d
Sha1:   6bdcb32ee75e957a5085c010f4dfd0c716bfdadc
Sha256: 8f69e10876805b747a3ad08a818d46ac7e731b1af417ea6e259d9b6b7deb65c5
                                        
                                            GET /adx.php?c=d25pZD02NDA2NjdjZDdiNDU3ZjQ3AHM9NjQwNjY3Y2Q3YjQ1N2Y0NwB0PTE1MDk1MjQ3NDAAc2U9MQBidT00AHByaWNlPVdmbUZCQUFBc0haN2pFcGdXNUlBOHFWYkN2NW8zNk9tYWp3YU53AGNoYXJnZV9wcmljZT0xOTcAc2hhcmluZ19wcmljZT0xOTcwMDAAd2luX2RzcD00AGNobWQ9MQBiZGlkPQBjcHJvaWQ9AHdkPTAAcG9zPTAAYmNobWQ9MAB2PTEAaT01Y2I3N2ViZg HTTP/1.1 
Host: wn.pos.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/s?hei=90&wid=728&di=u2073407&ltu=http%3A%2F%2Fsimingqu.sooshong.com%2F&dis=0&dtm=HTML_POST&pcs=1159x754&dai=5&pis=-1x-1&drs=1&dri=2&dc=2&tpr=1509524739322&cdo=-1&ari=2&psr=1176x885&ant=0&tcn=1509524739&cec=x-gbk&cpl=10&cfv=10&chi=1&cmi=92&cce=true&ti=%E7%99%BE%E8%B4%A7%E9%94%80%E5%94%AE&pss=1159x1638&ccd=24&exps=111000&par=1176x855&col=en-US&cja=true&ps=818x329&tlm=1509524735
Cookie: BAIDUID=2F55E9F9F28C7E17FD405DB6D8B355DB:FG=1

                                         
                                         106.39.162.36
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Connection: keep-alive
Content-Length: 49
Date: Wed, 01 Nov 2017 08:25:41 GMT
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Server: nginx


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   49
Md5:    ed280a0ea3cc38f3cbbc747acfbef47d
Sha1:   6bdcb32ee75e957a5085c010f4dfd0c716bfdadc
Sha256: 8f69e10876805b747a3ad08a818d46ac7e731b1af417ea6e259d9b6b7deb65c5
                                        
                                            GET /adx.php?c=d25pZD0yNmMwODEwMjE3MjJjODA5AHM9MjZjMDgxMDIxNzIyYzgwOQB0PTE1MDk1MjQ3NDAAc2U9MQBidT00AHByaWNlPVdmbUZCQUFEMlJ0N2pFcGdXNUlBOHQ1T0FGekNZRkVlX2xjZjNRAGNoYXJnZV9wcmljZT02OQBzaGFyaW5nX3ByaWNlPTY5MDAwAHdpbl9kc3A9NABjaG1kPTEAYmRpZD0AY3Byb2lkPQB3ZD0wAHBvcz0wAGJjaG1kPTAAdj0xAGk9NDBjMGI4OTI HTTP/1.1 
Host: wn.pos.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/s?hei=100&wid=980&di=u2156929&ltu=http%3A%2F%2Fsimingqu.sooshong.com%2F&cce=true&cja=true&pcs=1159x754&exps=111000&dc=2&col=en-US&cpl=10&tlm=1509524735&cfv=10&pss=1159x2005&drs=1&pis=-1x-1&tcn=1509524739&dai=6&psr=1176x885&dtm=HTML_POST&ps=1647x89&ti=%E7%99%BE%E8%B4%A7%E9%94%80%E5%94%AE&ant=0&dis=0&par=1176x855&cec=x-gbk&ccd=24&ari=2&cmi=92&chi=1&cdo=-1&dri=1&tpr=1509524739322
Cookie: BAIDUID=2F55E9F9F28C7E1794E678352A6D6B25:FG=1

                                         
                                         106.39.162.36
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Connection: keep-alive
Content-Length: 49
Date: Wed, 01 Nov 2017 08:25:41 GMT
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Server: nginx


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   49
Md5:    ed280a0ea3cc38f3cbbc747acfbef47d
Sha1:   6bdcb32ee75e957a5085c010f4dfd0c716bfdadc
Sha256: 8f69e10876805b747a3ad08a818d46ac7e731b1af417ea6e259d9b6b7deb65c5
                                        
                                            GET /pixel?allyes_dspid=284&allyes_cm&extra=aa HTTP/1.1 
Host: cm.qtmojo.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/s?hei=750&wid=200&di=u2563160&ltu=http%3A%2F%2Fsimingqu.sooshong.com%2F&cec=x-gbk&cmi=92&cja=true&chi=1&drs=1&tpr=1509524739322&cpl=10&ps=703x99&cdo=-1&tcn=1509524739&ccd=24&col=en-US&cce=true&dis=0&dc=2&ari=2&par=1176x855&ti=%E7%99%BE%E8%B4%A7%E9%94%80%E5%94%AE&cfv=10&pss=1159x888&pis=-1x-1&dtm=HTML_POST&dai=2&exps=111000&psr=1176x885&pcs=1159x754&dri=1&tlm=1509524735&ant=0

                                         
                                         122.225.219.90
HTTP/1.1 302 Found
Content-Type: text/html
                                        
Date: Wed, 01 Nov 2017 08:25:40 GMT
Server: Apache
Set-Cookie: uid=GjQto4B310BTf8F3sLj; expires=Wednesday, 02-Nov-2099 00:00:00 GMT; path=/; domain=.qtmojo.com
Location: http://cm.pos.baidu.com/allyes?allyes_id=re4rqCPZJ5EWExgA05hC3sLj&allyes_cver=2&extra=aa
Content-Length: 0
Connection: close


--- Additional Info ---
                                        
                                            GET /cpro/ui/noexpire/img/2.0.0/cube_1.jpg HTTP/1.1 
Host: cpro.baidustatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/s?hei=250&wid=300&di=u1336769&ltu=http%3A%2F%2Fsimingqu.sooshong.com%2F&dai=3&cdo=-1&cpl=10&cec=x-gbk&tlm=1509524735&tcn=1509524739&dis=0&pss=1159x1638&cja=true&par=1176x855&dri=1&pis=-1x-1&exps=111000&ari=2&ant=0&chi=1&dc=2&dtm=HTML_POST&cmi=92&ccd=24&ps=348x329&cfv=10&pcs=1159x754&drs=1&cce=true&col=en-US&psr=1176x885&tpr=1509524739322&ti=%E7%99%BE%E8%B4%A7%E9%94%80%E5%94%AE

                                         
                                         119.146.74.34
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: JSP3/2.0.14
Date: Wed, 01 Nov 2017 08:25:41 GMT
Content-Length: 1226
Connection: close
Etag: "585cd998-4ca"
Last-Modified: Fri, 23 Dec 2016 08:00:24 GMT
Expires: Tue, 22 Dec 2026 15:48:05 GMT
Age: 26930256
Cache-Control: max-age=315360000
Accept-Ranges: bytes
Ohc-Response-Time: 1 0 0 0 0 0


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   1226
Md5:    7f9fa19a765e97f60ec644f5ea89524e
Sha1:   78ca544b47446ddc6864b33d785a7b297bf69764
Sha256: 56306316f08367484ea52b40bd13378a5fb31d0ded09a9c2f97b30955a345578
                                        
                                            GET /?dspid=10045&dspuid=0&gettuid=1 HTTP/1.1 
Host: cm.l.qq.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/s?hei=250&wid=300&di=u1336769&ltu=http%3A%2F%2Fsimingqu.sooshong.com%2F&dai=3&cdo=-1&cpl=10&cec=x-gbk&tlm=1509524735&tcn=1509524739&dis=0&pss=1159x1638&cja=true&par=1176x855&dri=1&pis=-1x-1&exps=111000&ari=2&ant=0&chi=1&dc=2&dtm=HTML_POST&cmi=92&ccd=24&ps=348x329&cfv=10&pcs=1159x754&drs=1&cce=true&col=en-US&psr=1176x885&tpr=1509524739322&ti=%E7%99%BE%E8%B4%A7%E9%94%80%E5%94%AE

                                         
                                         125.39.83.108
HTTP/1.1 302 Object moved
Content-Type: text/html;charset=GB2312
                                        
Date: Wed, 01 Nov 2017 08:25:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://cm.pos.baidu.com/tencent?tuid=AQEBC9hecEWZUEpiuxRlkMEe_DR6JYIy-V3B&ver=1
Set-Cookie: cm_cookie=V1,10045&0&AQEBC9hecEWZUEpiuxRlkMEe_DR6JYIy-V3B&171101&171101;expires=Mon, 30-Apr-2018 08:25:40 GMT;PATH=/; domain=l.qq.com; reduplicate_cookie=10045&0&1509524740;expires=Wed, 01-Nov-2017 09:25:40 GMT;PATH=/; domain=l.qq.com;


--- Additional Info ---
                                        
                                            GET /adx.php?c=d25pZD02MzFlZGNlYzEwNzliNzljAHM9NjMxZWRjZWMxMDc5Yjc5YwB0PTE1MDk1MjQ3NDAAc2U9MQBidT00AHByaWNlPVdmbUZCQUFHb1dKN2pFcGdXNUlBOHJfaTlyMzF6dm5RbkJ5bG9BAGNoYXJnZV9wcmljZT0xNjQAc2hhcmluZ19wcmljZT0xNjQwMDAAd2luX2RzcD00AGNobWQ9MQBiZGlkPTBGOTcyQUJGQ0VGN0ExOUYwMjE0MTYxRjI0QjQyRDk5AGNwcm9pZD0Ad2Q9MABwb3M9MABiY2htZD0wAHY9MQBpPTRkZTEzNzdk HTTP/1.1 
Host: wn.pos.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/xcpm?rdid=2073407&dc=3&di=u2073407&dri=0&dis=0&dai=1&ps=763x329&enu=encoding&dcb=___adblockplus&dtm=HTML_POST&dvi=0.0&dci=-1&dpt=none&tsr=0&tpr=1509524738626&ti=%E7%99%BE%E8%B4%A7%E9%94%80%E5%94%AE&ari=2&dbv=0&drs=1&pcs=1159x754&pss=1159x888&cfv=10&cpl=10&chi=1&cce=true&cec=x-gbk&tlm=1509524735&rw=754&ltu=http%3A%2F%2Fsimingqu.sooshong.com%2F&ecd=1&uc=1176x855&pis=-1x-1&sr=1176x885&tcn=1509524739&qn=2ce3fe2b685edfbb&tt=1509524738380.914.1615.1710
Cookie: BAIDUID=2F55E9F9F28C7E1794E678352A6D6B25:FG=1

                                         
                                         106.39.162.36
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Connection: keep-alive
Content-Length: 49
Date: Wed, 01 Nov 2017 08:25:41 GMT
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Server: nginx


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   49
Md5:    ed280a0ea3cc38f3cbbc747acfbef47d
Sha1:   6bdcb32ee75e957a5085c010f4dfd0c716bfdadc
Sha256: 8f69e10876805b747a3ad08a818d46ac7e731b1af417ea6e259d9b6b7deb65c5
                                        
                                            GET /it/u=195315470,2386469238&fm=76 HTTP/1.1 
Host: f12.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/s?hei=90&wid=728&di=u2073407&ltu=http%3A%2F%2Fsimingqu.sooshong.com%2F&dis=0&dtm=HTML_POST&pcs=1159x754&dai=5&pis=-1x-1&drs=1&dri=2&dc=2&tpr=1509524739322&cdo=-1&ari=2&psr=1176x885&ant=0&tcn=1509524739&cec=x-gbk&cpl=10&cfv=10&chi=1&cmi=92&cce=true&ti=%E7%99%BE%E8%B4%A7%E9%94%80%E5%94%AE&pss=1159x1638&ccd=24&exps=111000&par=1176x855&col=en-US&cja=true&ps=818x329&tlm=1509524735
Cookie: BAIDUID=2F55E9F9F28C7E17FD405DB6D8B355DB:FG=1

                                         
                                         104.193.88.109
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: JSP3/2.0.14
Date: Wed, 01 Nov 2017 08:25:41 GMT
Content-Length: 11138
Connection: keep-alive
Etag: 1c89df2e6f77a69c3dd6b0b1a789dbac
Last-Modified: Thu, 01 Jan 1970 00:00:00 GMT
Expires: Wed, 29 Nov 2017 12:43:34 GMT
Age: 193327
Cache-Control: max-age=2628000
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Ohc-Response-Time: 1 1 0 0 0 1
Timing-Allow-Origin: http://pos.baidu.com


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   11138
Md5:    1c89df2e6f77a69c3dd6b0b1a789dbac
Sha1:   993075e26bcad62299f8d5b08a434f3d2621639d
Sha256: 65ad9aa352dd15100ae621f7a084e71db57f028538e585c4297ab534a7e9e947
                                        
                                            GET /h.js?3a2bf59295995a637abc01fb61aeeb3d HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://simingqu.sooshong.com/
Cookie: BAIDUID=2F55E9F9F28C7E1768B463C2D5C67662:FG=1

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 9034
Date: Wed, 01 Nov 2017 08:25:41 GMT
Etag: 0a214b15e46d074818d45ad60b5f31f2
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=A1F9CE4F5835BFC8; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max speed
Size:   9034
Md5:    71f5a4eee9c5371d734ca1b64a989cdd
Sha1:   1ce6e756377d9f0bc0bf8e5165bb71ab0b67bce4
Sha256: 87b342aa7a979798db23812620c90a3f72a8332e02fc2daa204572f121ae9ada
                                        
                                            GET /it/u=480692597,3247696634&fm=76 HTTP/1.1 
Host: f12.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/s?hei=90&wid=728&di=u2073407&ltu=http%3A%2F%2Fsimingqu.sooshong.com%2F&cfv=10&par=1176x855&dis=0&ari=2&cja=true&cpl=10&dai=4&pss=1159x1638&dc=2&tlm=1509524735&ccd=24&cmi=92&ps=618x329&chi=1&tcn=1509524739&cec=x-gbk&tpr=1509524739322&col=en-US&drs=1&pcs=1159x754&cce=true&dtm=HTML_POST&ant=0&dri=1&cdo=-1&psr=1176x885&pis=-1x-1&exps=111000&ti=%E7%99%BE%E8%B4%A7%E9%94%80%E5%94%AE
Cookie: BAIDUID=2F55E9F9F28C7E17D361947C813D2904:FG=1

                                         
                                         104.193.88.109
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: JSP3/2.0.14
Date: Wed, 01 Nov 2017 08:25:41 GMT
Content-Length: 11638
Connection: keep-alive
Etag: cac6ec56439f1be7536aa0081a924dbd
Last-Modified: Thu, 01 Jan 1970 00:00:00 GMT
Expires: Wed, 29 Nov 2017 12:46:04 GMT
Age: 193177
Cache-Control: max-age=2628000
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Ohc-Response-Time: 1 7 0 0 0 7
Timing-Allow-Origin: http://pos.baidu.com


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   11638
Md5:    cac6ec56439f1be7536aa0081a924dbd
Sha1:   0b290793a39b6632895a47c7a4196a5d75d222a8
Sha256: c08f3d2722d8a1f4a0d4f5b686d7efc3863da3475c5fac536fec6df6c09b75a8
                                        
                                            GET /it/u=309618815,3203122610&fm=76 HTTP/1.1 
Host: f12.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/s?hei=90&wid=728&di=u2073407&ltu=http%3A%2F%2Fsimingqu.sooshong.com%2F&cfv=10&par=1176x855&dis=0&ari=2&cja=true&cpl=10&dai=4&pss=1159x1638&dc=2&tlm=1509524735&ccd=24&cmi=92&ps=618x329&chi=1&tcn=1509524739&cec=x-gbk&tpr=1509524739322&col=en-US&drs=1&pcs=1159x754&cce=true&dtm=HTML_POST&ant=0&dri=1&cdo=-1&psr=1176x885&pis=-1x-1&exps=111000&ti=%E7%99%BE%E8%B4%A7%E9%94%80%E5%94%AE
Cookie: BAIDUID=2F55E9F9F28C7E17D361947C813D2904:FG=1

                                         
                                         104.193.88.109
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: JSP3/2.0.14
Date: Wed, 01 Nov 2017 08:25:41 GMT
Content-Length: 11501
Connection: keep-alive
Etag: bd73435a72af291c2605b8dfbf0a6176
Last-Modified: Thu, 01 Jan 1970 00:00:00 GMT
Expires: Wed, 29 Nov 2017 12:38:41 GMT
Age: 193620
Cache-Control: max-age=2628000
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Ohc-Response-Time: 1 0 0 0 0 0
Timing-Allow-Origin: http://pos.baidu.com


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   11501
Md5:    bd73435a72af291c2605b8dfbf0a6176
Sha1:   8c8d6201ffa449eb0e4ec428a18a5b4649031028
Sha256: 632017e991415229ebbccd17c8305dc42eb201f472d46685fc226367f89d2871
                                        
                                            GET /it/u=74022014,1415069052&fm=76 HTTP/1.1 
Host: f12.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/s?hei=90&wid=728&di=u2073407&ltu=http%3A%2F%2Fsimingqu.sooshong.com%2F&dis=0&dtm=HTML_POST&pcs=1159x754&dai=5&pis=-1x-1&drs=1&dri=2&dc=2&tpr=1509524739322&cdo=-1&ari=2&psr=1176x885&ant=0&tcn=1509524739&cec=x-gbk&cpl=10&cfv=10&chi=1&cmi=92&cce=true&ti=%E7%99%BE%E8%B4%A7%E9%94%80%E5%94%AE&pss=1159x1638&ccd=24&exps=111000&par=1176x855&col=en-US&cja=true&ps=818x329&tlm=1509524735
Cookie: BAIDUID=2F55E9F9F28C7E17FD405DB6D8B355DB:FG=1

                                         
                                         104.193.88.109
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: JSP3/2.0.14
Date: Wed, 01 Nov 2017 08:25:41 GMT
Content-Length: 18957
Connection: keep-alive
Etag: 3b4afc492b1d723f1fb5cdf3f8c2f9da
Last-Modified: Thu, 01 Jan 1970 00:00:00 GMT
Expires: Wed, 29 Nov 2017 21:16:20 GMT
Age: 162561
Cache-Control: max-age=2628000
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Ohc-Response-Time: 1 3 0 0 0 3
Timing-Allow-Origin: http://pos.baidu.com


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   18957
Md5:    3b4afc492b1d723f1fb5cdf3f8c2f9da
Sha1:   05cd20597d07b5a8b233487dc7a1333f02d059a5
Sha256: ffc47ef479d09192fc27e3b15afa1d711f8e1818a2691fcc64bd7f7c47466026
                                        
                                            GET /it/u=235323675,1899257386&fm=76 HTTP/1.1 
Host: f10.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/s?hei=90&wid=728&di=u2073407&ltu=http%3A%2F%2Fsimingqu.sooshong.com%2F&dis=0&dtm=HTML_POST&pcs=1159x754&dai=5&pis=-1x-1&drs=1&dri=2&dc=2&tpr=1509524739322&cdo=-1&ari=2&psr=1176x885&ant=0&tcn=1509524739&cec=x-gbk&cpl=10&cfv=10&chi=1&cmi=92&cce=true&ti=%E7%99%BE%E8%B4%A7%E9%94%80%E5%94%AE&pss=1159x1638&ccd=24&exps=111000&par=1176x855&col=en-US&cja=true&ps=818x329&tlm=1509524735
Cookie: BAIDUID=2F55E9F9F28C7E17FD405DB6D8B355DB:FG=1

                                         
                                         104.193.88.109
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: JSP3/2.0.14
Date: Wed, 01 Nov 2017 08:25:41 GMT
Content-Length: 15567
Connection: keep-alive
Etag: 033994a0a4f8ee3266cb8e8b27556c42
Last-Modified: Thu, 01 Jan 1970 00:00:00 GMT
Expires: Wed, 29 Nov 2017 13:15:53 GMT
Age: 191388
Cache-Control: max-age=2628000
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Ohc-Response-Time: 1 0 0 0 0 0
Timing-Allow-Origin: http://pos.baidu.com


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   15567
Md5:    033994a0a4f8ee3266cb8e8b27556c42
Sha1:   58515f2c1ac01f9aef41dccfa8867605dd766169
Sha256: d6c59163196bcfc857c33a441961226172495d430f2d5801e600b6dfff6fc47b
                                        
                                            GET /it/u=439814094,3218006628&fm=76 HTTP/1.1 
Host: f10.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/s?hei=90&wid=728&di=u2073407&ltu=http%3A%2F%2Fsimingqu.sooshong.com%2F&cfv=10&par=1176x855&dis=0&ari=2&cja=true&cpl=10&dai=4&pss=1159x1638&dc=2&tlm=1509524735&ccd=24&cmi=92&ps=618x329&chi=1&tcn=1509524739&cec=x-gbk&tpr=1509524739322&col=en-US&drs=1&pcs=1159x754&cce=true&dtm=HTML_POST&ant=0&dri=1&cdo=-1&psr=1176x885&pis=-1x-1&exps=111000&ti=%E7%99%BE%E8%B4%A7%E9%94%80%E5%94%AE
Cookie: BAIDUID=2F55E9F9F28C7E17D361947C813D2904:FG=1

                                         
                                         104.193.88.109
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: JSP3/2.0.14
Date: Wed, 01 Nov 2017 08:25:41 GMT
Content-Length: 14642
Connection: keep-alive
Etag: e2e6858eeb3f1645a05bb574ecf74d2c
Last-Modified: Thu, 01 Jan 1970 00:00:00 GMT
Expires: Wed, 29 Nov 2017 12:43:01 GMT
Age: 193360
Cache-Control: max-age=2628000
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Ohc-Response-Time: 1 0 0 0 0 0
Timing-Allow-Origin: http://pos.baidu.com


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   14642
Md5:    e2e6858eeb3f1645a05bb574ecf74d2c
Sha1:   aa53dfc230971e1f541faf13af254ae99670ce84
Sha256: d21adbad9b95448cc36285549d10ed2e14101012e85118fde2b52f1ad5aa215e
                                        
                                            GET /it/u=155576460,1329070415&fm=76 HTTP/1.1 
Host: f10.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/s?hei=90&wid=728&di=u2073407&ltu=http%3A%2F%2Fsimingqu.sooshong.com%2F&dis=0&dtm=HTML_POST&pcs=1159x754&dai=5&pis=-1x-1&drs=1&dri=2&dc=2&tpr=1509524739322&cdo=-1&ari=2&psr=1176x885&ant=0&tcn=1509524739&cec=x-gbk&cpl=10&cfv=10&chi=1&cmi=92&cce=true&ti=%E7%99%BE%E8%B4%A7%E9%94%80%E5%94%AE&pss=1159x1638&ccd=24&exps=111000&par=1176x855&col=en-US&cja=true&ps=818x329&tlm=1509524735
Cookie: BAIDUID=2F55E9F9F28C7E17FD405DB6D8B355DB:FG=1

                                         
                                         104.193.88.109
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: JSP3/2.0.14
Date: Wed, 01 Nov 2017 08:25:41 GMT
Content-Length: 16566
Connection: keep-alive
Etag: aa9ee09dd5d34d7d00fe713152a4989e
Last-Modified: Thu, 01 Jan 1970 00:00:00 GMT
Expires: Wed, 29 Nov 2017 12:43:10 GMT
Age: 193351
Cache-Control: max-age=2628000
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Ohc-Response-Time: 1 0 0 0 0 0
Timing-Allow-Origin: http://pos.baidu.com


--- Additional Info ---
Magic:  GIF image data, version 89a, 280 x 200
Size:   16566
Md5:    aa9ee09dd5d34d7d00fe713152a4989e
Sha1:   42e27d544f5978b1a74a0f982af6e2b68e6c044c
Sha256: b29977fb72c1f787390a32f0acac1dd97409a4c9dfa34fab78f1228291c2e712
                                        
                                            GET /it/u=553562193,2047015442&fm=76 HTTP/1.1 
Host: f10.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/s?hei=90&wid=728&di=u2073407&ltu=http%3A%2F%2Fsimingqu.sooshong.com%2F&cfv=10&par=1176x855&dis=0&ari=2&cja=true&cpl=10&dai=4&pss=1159x1638&dc=2&tlm=1509524735&ccd=24&cmi=92&ps=618x329&chi=1&tcn=1509524739&cec=x-gbk&tpr=1509524739322&col=en-US&drs=1&pcs=1159x754&cce=true&dtm=HTML_POST&ant=0&dri=1&cdo=-1&psr=1176x885&pis=-1x-1&exps=111000&ti=%E7%99%BE%E8%B4%A7%E9%94%80%E5%94%AE
Cookie: BAIDUID=2F55E9F9F28C7E17D361947C813D2904:FG=1

                                         
                                         104.193.88.109
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: JSP3/2.0.14
Date: Wed, 01 Nov 2017 08:25:41 GMT
Content-Length: 21998
Connection: keep-alive
Etag: 946e78ee5ca99cab2bb116dfc85c7673
Last-Modified: Thu, 01 Jan 1970 00:00:00 GMT
Expires: Wed, 29 Nov 2017 17:43:34 GMT
Age: 175327
Cache-Control: max-age=2628000
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Ohc-Response-Time: 1 1 0 0 0 1
Timing-Allow-Origin: http://pos.baidu.com


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   21998
Md5:    946e78ee5ca99cab2bb116dfc85c7673
Sha1:   3f3c2495dc0b5fb8ac7061dc7d9290293f4975b7
Sha256: ff2ab35812b0018acf6460437e15de1f4d037859cdaaefbe67f984303007a153
                                        
                                            GET /cpro/ui/noexpire/js/4.0.0/adClosefeedbackUpgrade.min.js HTTP/1.1 
Host: cpro.baidustatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/s?hei=100&wid=980&di=u2073402&ltu=http%3A%2F%2Fsimingqu.sooshong.com%2F&tlm=1509524735&cmi=92&pss=1159x888&ccd=24&dis=0&tpr=1509524739322&cfv=10&cpl=10&col=en-US&cja=true&tcn=1509524739&drs=1&chi=1&dtm=HTML_POST&par=1176x855&cdo=-1&dri=1&pcs=1159x754&dai=1&ari=2&ti=%E7%99%BE%E8%B4%A7%E9%94%80%E5%94%AE&dc=2&pis=-1x-1&exps=111000&cec=x-gbk&psr=1176x885&ps=183x89&cce=true&ant=0

                                         
                                         119.146.74.34
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: JSP3/2.0.14
Date: Wed, 01 Nov 2017 08:25:41 GMT
Transfer-Encoding: chunked
Connection: close
Etag: W/"585cd998-7c0f"
Last-Modified: Fri, 23 Dec 2016 08:00:24 GMT
Expires: Tue, 22 Dec 2026 15:48:05 GMT
Age: 26930256
Cache-Control: max-age=315360000
Ohc-Response-Time: 1 0 0 0 0 0
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   8928
Md5:    0d006394985aef7c1843c20b4fd4d719
Sha1:   e57ec22ec5ef186e414ddb8d0049014c5887dd2f
Sha256: 82e02ec328ce46cd9c2a1ef4850535102365a4860eb7d5c3c68b37aa810a2965
                                        
                                            GET /pixel?dspid=6551238&ext_data=CLonEho3M2U3NmE5YjEzYmE1OWY5ODUwNDNlOTAtMBoOMjAxNzExMDExNjI1NDAiYhJgYjQ2YTEyMTUwODk1YTkwNWVhODllZWIzOTE4NWQ0OTNjYTRlYWE2NmMyZTMwNTYyMGM0MjAxYjlmNWM4YmU5MGIwMmNkN2ZkYWE2ZTM0Y2Q3ZDc0ZGM3MDViOGY5YWFkOj8Ioi4Qoi4YvpMDIM2mMEocChM5MjIzMzcyMDMyNTYxODgxOTE5EAEY2AUgWmCQTm0Xt1E4fd0kyUGFAd0kyUFKBDA1MDBSFxIVc2ltaW5ncXUuc29vc2hvbmcuY29tYhcxNTA5NTI0NzQwMzUzMTA2NDgzMDgwNg_019801436E6CCA836379ABA1C5E01284 HTTP/1.1 
Host: cm.pos.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/xcpm?rdid=2073407&dc=3&di=u2073407&dri=0&dis=0&dai=1&ps=763x329&enu=encoding&dcb=___adblockplus&dtm=HTML_POST&dvi=0.0&dci=-1&dpt=none&tsr=0&tpr=1509524738626&ti=%E7%99%BE%E8%B4%A7%E9%94%80%E5%94%AE&ari=2&dbv=0&drs=1&pcs=1159x754&pss=1159x888&cfv=10&cpl=10&chi=1&cce=true&cec=x-gbk&tlm=1509524735&rw=754&ltu=http%3A%2F%2Fsimingqu.sooshong.com%2F&ecd=1&uc=1176x855&pis=-1x-1&sr=1176x885&tcn=1509524739&qn=2ce3fe2b685edfbb&tt=1509524738380.914.1615.1710
Cookie: BAIDUID=2F55E9F9F28C7E1794E678352A6D6B25:FG=1

                                         
                                         111.202.114.35
HTTP/1.1 302 Found
Content-Type: text/html
                                        
Connection: keep-alive
Content-Length: 0
Date: Wed, 01 Nov 2017 08:25:41 GMT
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Location: http://cm.emarbox.com/_cm?&baidu_user_id=be3cc0b58c04050545a3718825aba61eb15e9073a6ee9cb92f5b2093895fa0d36483de22f9d45b347d5c166d0cfb620c&cookie_version=2&timestamp=1509524741&ext_data=CLonEho3M2U3NmE5YjEzYmE1OWY5ODUwNDNlOTAtMBoOMjAxNzExMDExNjI1NDAiYhJgYjQ2YTEyMTUwODk1YTkwNWVhODllZWIzOTE4NWQ0OTNjYTRlYWE2NmMyZTMwNTYyMGM0MjAxYjlmNWM4YmU5MGIwMmNkN2ZkYWE2ZTM0Y2Q3ZDc0ZGM3MDViOGY5YWFkOj8Ioi4Qoi4YvpMDIM2mMEocChM5MjIzMzcyMDMyNTYxODgxOTE5EAEY2AUgWmCQTm0Xt1E4fd0kyUGFAd0kyUFKBDA1MDBSFxIVc2ltaW5ncXUuc29vc2hvbmcuY29tYhcxNTA5NTI0NzQwMzUzMTA2NDgzMDgwNg_019801436E6CCA836379ABA1C5E01284
Server: nginx


--- Additional Info ---
                                        
                                            GET /pixel?dspid=6455766&ext_data= HTTP/1.1 
Host: cm.pos.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/xcpm?rdid=2073407&dc=3&di=u2073407&dri=0&dis=0&dai=1&ps=763x329&enu=encoding&dcb=___adblockplus&dtm=HTML_POST&dvi=0.0&dci=-1&dpt=none&tsr=0&tpr=1509524738626&ti=%E7%99%BE%E8%B4%A7%E9%94%80%E5%94%AE&ari=2&dbv=0&drs=1&pcs=1159x754&pss=1159x888&cfv=10&cpl=10&chi=1&cce=true&cec=x-gbk&tlm=1509524735&rw=754&ltu=http%3A%2F%2Fsimingqu.sooshong.com%2F&ecd=1&uc=1176x855&pis=-1x-1&sr=1176x885&tcn=1509524739&qn=2ce3fe2b685edfbb&tt=1509524738380.914.1615.1710
Cookie: BAIDUID=2F55E9F9F28C7E1794E678352A6D6B25:FG=1

                                         
                                         111.202.114.35
HTTP/1.1 302 Found
Content-Type: text/html
                                        
Connection: keep-alive
Content-Length: 0
Date: Wed, 01 Nov 2017 08:25:41 GMT
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Location: https://ckmap.mediav.com/m?tid=5PURL&baidu_error=2&timestamp=1509524741
Server: nginx


--- Additional Info ---
                                        
                                            GET /aj/static/sync.html HTTP/1.1 
Host: weibo.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/s?hei=100&wid=980&di=u2156929&ltu=http%3A%2F%2Fsimingqu.sooshong.com%2F&cce=true&cja=true&pcs=1159x754&exps=111000&dc=2&col=en-US&cpl=10&tlm=1509524735&cfv=10&pss=1159x2005&drs=1&pis=-1x-1&tcn=1509524739&dai=6&psr=1176x885&dtm=HTML_POST&ps=1647x89&ti=%E7%99%BE%E8%B4%A7%E9%94%80%E5%94%AE&ant=0&dis=0&par=1176x855&cec=x-gbk&ccd=24&ari=2&cmi=92&chi=1&cdo=-1&dri=1&tpr=1509524739322

                                         
                                         114.134.80.162
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Wed, 01 Nov 2017 08:25:41 GMT
Server: Apache
Location: https://www.weibo.com/aj/static/sync.html
Cache-Control: max-age=120
Expires: Wed, 01 Nov 2017 08:27:41 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 203
Connection: close
SINA-LB: aGEuMTY5LmcxLmh5ZHMubGIuc2luYW5vZGUuY29t
SINA-TS: Y2ZlOTgyY2UgMTMgMTMgMCAxNCAwCg==


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   203
Md5:    f84f98f3deacf50bbded3ce4f3b8fdce
Sha1:   bba7d21a18af17627a5ecc67a196c84e616321d1
Sha256: 35527ae7c1e59c97a4ce48a5fef2278582e1dd1c555f163e4bf89118d220dd27
                                        
                                            GET /it/u=855603674,4165705503&fm=76 HTTP/1.1 
Host: f12.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/s?hei=250&wid=300&di=u1336769&ltu=http%3A%2F%2Fsimingqu.sooshong.com%2F&dai=3&cdo=-1&cpl=10&cec=x-gbk&tlm=1509524735&tcn=1509524739&dis=0&pss=1159x1638&cja=true&par=1176x855&dri=1&pis=-1x-1&exps=111000&ari=2&ant=0&chi=1&dc=2&dtm=HTML_POST&cmi=92&ccd=24&ps=348x329&cfv=10&pcs=1159x754&drs=1&cce=true&col=en-US&psr=1176x885&tpr=1509524739322&ti=%E7%99%BE%E8%B4%A7%E9%94%80%E5%94%AE
Cookie: BAIDUID=2F55E9F9F28C7E1768B463C2D5C67662:FG=1

                                         
                                         104.193.88.109
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: JSP3/2.0.14
Date: Wed, 01 Nov 2017 08:25:41 GMT
Content-Length: 36429
Connection: keep-alive
Etag: a9d26966f73d50e71cd598c4b17b0886
Last-Modified: Thu, 01 Jan 1970 00:00:00 GMT
Expires: Wed, 29 Nov 2017 15:05:06 GMT
Age: 184835
Cache-Control: max-age=2628000
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Ohc-Response-Time: 1 0 0 0 0 0
Timing-Allow-Origin: http://pos.baidu.com


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   36429
Md5:    a9d26966f73d50e71cd598c4b17b0886
Sha1:   8a1ccad8bd90188247059818541fdb4b6738e3a3
Sha256: d02b4dfd0f84e8a7512543c35ba7fe4a1f037ba0c429ee38bf6625d2e45e8cb0
                                        
                                            GET /it/u=514757680,3152058626&fm=76 HTTP/1.1 
Host: f11.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/s?hei=90&wid=728&di=u2073407&ltu=http%3A%2F%2Fsimingqu.sooshong.com%2F&cfv=10&par=1176x855&dis=0&ari=2&cja=true&cpl=10&dai=4&pss=1159x1638&dc=2&tlm=1509524735&ccd=24&cmi=92&ps=618x329&chi=1&tcn=1509524739&cec=x-gbk&tpr=1509524739322&col=en-US&drs=1&pcs=1159x754&cce=true&dtm=HTML_POST&ant=0&dri=1&cdo=-1&psr=1176x885&pis=-1x-1&exps=111000&ti=%E7%99%BE%E8%B4%A7%E9%94%80%E5%94%AE
Cookie: BAIDUID=2F55E9F9F28C7E17D361947C813D2904:FG=1

                                         
                                         104.193.88.109
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: JSP3/2.0.14
Date: Wed, 01 Nov 2017 08:25:41 GMT
Content-Length: 39405
Connection: keep-alive
Etag: d568cca1e5da8c1fddad667bfeba6ecd
Last-Modified: Thu, 01 Jan 1970 00:00:00 GMT
Expires: Wed, 29 Nov 2017 12:39:51 GMT
Age: 193550
Cache-Control: max-age=2628000
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Ohc-Response-Time: 1 1 0 0 0 1
Timing-Allow-Origin: http://pos.baidu.com


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   39405
Md5:    d568cca1e5da8c1fddad667bfeba6ecd
Sha1:   05aa07264640b1e7c659c9e9cb75461421b976f3
Sha256: 2edfa4c95bda62f0de6ffba0f9d62927159e320bcb7454259683e4c623723fad
                                        
                                            GET /hm.gif?cc=0&ck=1&cl=24-bit&ds=1176x885&vl=754&et=0&fl=10.0&ja=1&ln=en-us&lo=0&rnd=1238196611&si=3a2bf59295995a637abc01fb61aeeb3d&v=1.2.27&lv=1&ct=!!&tt=%E7%99%BE%E8%B4%A7%E9%94%80%E5%94%AE&sn=57086 HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://simingqu.sooshong.com/
Cookie: BAIDUID=2F55E9F9F28C7E1794E678352A6D6B25:FG=1; HMACCOUNT=A1F9CE4F5835BFC8

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Date: Wed, 01 Nov 2017 08:25:41 GMT
Pragma: no-cache
Server: apache
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /it/u=1841515730,2750678445&fm=76 HTTP/1.1 
Host: f12.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/s?hei=250&wid=300&di=u1336769&ltu=http%3A%2F%2Fsimingqu.sooshong.com%2F&dai=3&cdo=-1&cpl=10&cec=x-gbk&tlm=1509524735&tcn=1509524739&dis=0&pss=1159x1638&cja=true&par=1176x855&dri=1&pis=-1x-1&exps=111000&ari=2&ant=0&chi=1&dc=2&dtm=HTML_POST&cmi=92&ccd=24&ps=348x329&cfv=10&pcs=1159x754&drs=1&cce=true&col=en-US&psr=1176x885&tpr=1509524739322&ti=%E7%99%BE%E8%B4%A7%E9%94%80%E5%94%AE
Cookie: BAIDUID=2F55E9F9F28C7E1768B463C2D5C67662:FG=1

                                         
                                         104.193.88.109
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: JSP3/2.0.14
Date: Wed, 01 Nov 2017 08:25:41 GMT
Content-Length: 68862
Connection: keep-alive
Etag: 6aa359b0dd0ddb3377e2e77a5b3477a0
Last-Modified: Thu, 01 Jan 1970 00:00:00 GMT
Expires: Wed, 29 Nov 2017 12:53:50 GMT
Age: 192711
Cache-Control: max-age=2628000
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Ohc-Response-Time: 1 3 0 0 0 3
Timing-Allow-Origin: http://pos.baidu.com


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   68862
Md5:    6aa359b0dd0ddb3377e2e77a5b3477a0
Sha1:   ec3dd02d05a9f5d2fab3c6ab0aef138559aacab9
Sha256: 5e56e754bab3c6deac7cf3360594d47e2fdddcd6a3503a2d43ea3fe0ef19f9ef
                                        
                                            GET /tencent?tuid=AQEBC9hecEWZUEpiuxRlkMEe_DR6JYIy-V3B&ver=1 HTTP/1.1 
Host: cm.pos.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/s?hei=250&wid=300&di=u1336769&ltu=http%3A%2F%2Fsimingqu.sooshong.com%2F&dai=3&cdo=-1&cpl=10&cec=x-gbk&tlm=1509524735&tcn=1509524739&dis=0&pss=1159x1638&cja=true&par=1176x855&dri=1&pis=-1x-1&exps=111000&ari=2&ant=0&chi=1&dc=2&dtm=HTML_POST&cmi=92&ccd=24&ps=348x329&cfv=10&pcs=1159x754&drs=1&cce=true&col=en-US&psr=1176x885&tpr=1509524739322&ti=%E7%99%BE%E8%B4%A7%E9%94%80%E5%94%AE
Cookie: BAIDUID=2F55E9F9F28C7E1794E678352A6D6B25:FG=1

                                         
                                         111.202.114.35
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Connection: keep-alive
Content-Length: 43
Date: Wed, 01 Nov 2017 08:25:41 GMT
Last-Modified: Mon, 28 Sep 1970 06:00:00 GMT
Server: nginx


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /allyes?allyes_id=re4rqCPZJ5EWExgA05hC3sLj&allyes_cver=2&extra=aa HTTP/1.1 
Host: cm.pos.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/s?hei=750&wid=200&di=u2563160&ltu=http%3A%2F%2Fsimingqu.sooshong.com%2F&cec=x-gbk&cmi=92&cja=true&chi=1&drs=1&tpr=1509524739322&cpl=10&ps=703x99&cdo=-1&tcn=1509524739&ccd=24&col=en-US&cce=true&dis=0&dc=2&ari=2&par=1176x855&ti=%E7%99%BE%E8%B4%A7%E9%94%80%E5%94%AE&cfv=10&pss=1159x888&pis=-1x-1&dtm=HTML_POST&dai=2&exps=111000&psr=1176x885&pcs=1159x754&dri=1&tlm=1509524735&ant=0
Cookie: BAIDUID=2F55E9F9F28C7E1794E678352A6D6B25:FG=1

                                         
                                         111.202.114.35
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Connection: keep-alive
Content-Length: 43
Date: Wed, 01 Nov 2017 08:25:41 GMT
Last-Modified: Mon, 28 Sep 1970 06:00:00 GMT
Server: nginx


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /it/u=4205738214,3452857966&fm=76 HTTP/1.1 
Host: f10.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/s?hei=90&wid=728&di=u2073407&ltu=http%3A%2F%2Fsimingqu.sooshong.com%2F&dis=0&dtm=HTML_POST&pcs=1159x754&dai=5&pis=-1x-1&drs=1&dri=2&dc=2&tpr=1509524739322&cdo=-1&ari=2&psr=1176x885&ant=0&tcn=1509524739&cec=x-gbk&cpl=10&cfv=10&chi=1&cmi=92&cce=true&ti=%E7%99%BE%E8%B4%A7%E9%94%80%E5%94%AE&pss=1159x1638&ccd=24&exps=111000&par=1176x855&col=en-US&cja=true&ps=818x329&tlm=1509524735
Cookie: BAIDUID=2F55E9F9F28C7E17FD405DB6D8B355DB:FG=1

                                         
                                         104.193.88.109
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: JSP3/2.0.14
Date: Wed, 01 Nov 2017 08:25:41 GMT
Content-Length: 96987
Connection: keep-alive
Etag: 3d07d951d4a5444a50d79583a4347c68
Last-Modified: Thu, 01 Jan 1970 00:00:00 GMT
Expires: Thu, 30 Nov 2017 23:17:00 GMT
Age: 68921
Cache-Control: max-age=2628000
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Ohc-Response-Time: 1 2 0 0 0 2
Timing-Allow-Origin: http://pos.baidu.com


--- Additional Info ---
Magic:  PNG image, 280 x 200, 8-bit/color RGBA, non-interlaced
Size:   96987
Md5:    3d07d951d4a5444a50d79583a4347c68
Sha1:   01cd903ed83c1eafe54c8d3a22b5ab3623203558
Sha256: 38866d21952066ad4062b6c75756681eeb25e13c416fa6a98a94c2085af0cfda
                                        
                                            GET /cpro/ui/noexpire/img/4.0.0/pc_ads.1x.png HTTP/1.1 
Host: cpro.baidustatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/s?hei=100&wid=980&di=u2073402&ltu=http%3A%2F%2Fsimingqu.sooshong.com%2F&tlm=1509524735&cmi=92&pss=1159x888&ccd=24&dis=0&tpr=1509524739322&cfv=10&cpl=10&col=en-US&cja=true&tcn=1509524739&drs=1&chi=1&dtm=HTML_POST&par=1176x855&cdo=-1&dri=1&pcs=1159x754&dai=1&ari=2&ti=%E7%99%BE%E8%B4%A7%E9%94%80%E5%94%AE&dc=2&pis=-1x-1&exps=111000&cec=x-gbk&psr=1176x885&ps=183x89&cce=true&ant=0

                                         
                                         119.146.74.34
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: JSP3/2.0.14
Date: Wed, 01 Nov 2017 08:25:42 GMT
Content-Length: 611
Connection: close
Etag: "585cd998-263"
Last-Modified: Fri, 23 Dec 2016 08:00:24 GMT
Expires: Tue, 22 Dec 2026 15:48:05 GMT
Age: 26930257
Cache-Control: max-age=315360000
Accept-Ranges: bytes
Ohc-Response-Time: 1 0 0 0 0 0


--- Additional Info ---
Magic:  PNG image, 30 x 16, 8-bit/color RGBA, non-interlaced
Size:   611
Md5:    09ad5377f14a7fe42cfe2859acf7819a
Sha1:   d1ac93121923b100a04535f2a2ee3551b0962be7
Sha256: 9be3b35721fafc7ede5b0040b63379bd50c1601227042841f798723a0f77b4b4
                                        
                                            GET /cpro/exp/closead/img/bd_logo.png HTTP/1.1 
Host: cpro.baidustatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/s?hei=100&wid=980&di=u2073402&ltu=http%3A%2F%2Fsimingqu.sooshong.com%2F&tlm=1509524735&cmi=92&pss=1159x888&ccd=24&dis=0&tpr=1509524739322&cfv=10&cpl=10&col=en-US&cja=true&tcn=1509524739&drs=1&chi=1&dtm=HTML_POST&par=1176x855&cdo=-1&dri=1&pcs=1159x754&dai=1&ari=2&ti=%E7%99%BE%E8%B4%A7%E9%94%80%E5%94%AE&dc=2&pis=-1x-1&exps=111000&cec=x-gbk&psr=1176x885&ps=183x89&cce=true&ant=0

                                         
                                         119.146.74.34
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: JSP3/2.0.14
Date: Wed, 01 Nov 2017 08:25:42 GMT
Content-Length: 2781
Connection: close
Etag: "59f69c54-add"
Last-Modified: Mon, 30 Oct 2017 03:28:20 GMT
Expires: Wed, 01 Nov 2017 16:10:03 GMT
Age: 58539
Cache-Control: max-age=86400
Accept-Ranges: bytes
Ohc-Response-Time: 1 0 0 0 0 0


--- Additional Info ---
Magic:  PNG image, 59 x 19, 8-bit/color RGBA, non-interlaced
Size:   2781
Md5:    83a417759a4b7c28d9ea937b30d4b4d2
Sha1:   0dd9f86f689a5b8ee9f2f6894379628bfd6a72b1
Sha256: 7b398494507aa0e9e6046520b8ee83046d6646b93c129a46633a9117bf7118a2
                                        
                                            POST / HTTP/1.1 
Host: ss.symcd.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         23.43.139.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx/1.10.2
Content-Length: 1609
Content-Transfer-Encoding: binary
Cache-Control: max-age=436706, public, no-transform, must-revalidate
Last-Modified: Mon, 30 Oct 2017 09:44:08 GMT
Expires: Mon, 6 Nov 2017 09:44:08 GMT
Date: Wed, 01 Nov 2017 08:25:42 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1609
Md5:    d9c2e2f317d5518751190f4e3c2c4768
Sha1:   60077fead2c00a600680dc30f114f3a25db59466
Sha256: 14a4d3d194b7e0e7d92c13a5921584146a66d933c06c2380fc788d516d2c25db
                                        
                                            GET /_cm?&baidu_user_id=be3cc0b58c04050545a3718825aba61eb15e9073a6ee9cb92f5b2093895fa0d36483de22f9d45b347d5c166d0cfb620c&cookie_version=2&timestamp=1509524741&ext_data=CLonEho3M2U3NmE5YjEzYmE1OWY5ODUwNDNlOTAtMBoOMjAxNzExMDExNjI1NDAiYhJgYjQ2YTEyMTUwODk1YTkwNWVhODllZWIzOTE4NWQ0OTNjYTRlYWE2NmMyZTMwNTYyMGM0MjAxYjlmNWM4YmU5MGIwMmNkN2ZkYWE2ZTM0Y2Q3ZDc0ZGM3MDViOGY5YWFkOj8Ioi4Qoi4YvpMDIM2mMEocChM5MjIzMzcyMDMyNTYxODgxOTE5EAEY2AUgWmCQTm0Xt1E4fd0kyUGFAd0kyUFKBDA1MDBSFxIVc2ltaW5ncXUuc29vc2hvbmcuY29tYhcxNTA5NTI0NzQwMzUzMTA2NDgzMDgwNg_019801436E6CCA836379ABA1C5E01284&trytype=2&newdmpid=1509524742419624478078&olddmpid= HTTP/1.1 
Host: cm.emarbox.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/xcpm?rdid=2073407&dc=3&di=u2073407&dri=0&dis=0&dai=1&ps=763x329&enu=encoding&dcb=___adblockplus&dtm=HTML_POST&dvi=0.0&dci=-1&dpt=none&tsr=0&tpr=1509524738626&ti=%E7%99%BE%E8%B4%A7%E9%94%80%E5%94%AE&ari=2&dbv=0&drs=1&pcs=1159x754&pss=1159x888&cfv=10&cpl=10&chi=1&cce=true&cec=x-gbk&tlm=1509524735&rw=754&ltu=http%3A%2F%2Fsimingqu.sooshong.com%2F&ecd=1&uc=1176x855&pis=-1x-1&sr=1176x885&tcn=1509524739&qn=2ce3fe2b685edfbb&tt=1509524738380.914.1615.1710
Cookie: _edc=1509524742419624478078

                                         
                                         123.59.18.179
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Server: Tengine/1.5.1
Date: Wed, 01 Nov 2017 08:25:42 GMT
Content-Length: 761
Connection: keep-alive
P3p: policyref="/w3c/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC "
Location: http://cm.emarbox.com/_cm?&baidu_user_id=be3cc0b58c04050545a3718825aba61eb15e9073a6ee9cb92f5b2093895fa0d36483de22f9d45b347d5c166d0cfb620c&cookie_version=2&timestamp=1509524741&ext_data=CLonEho3M2U3NmE5YjEzYmE1OWY5ODUwNDNlOTAtMBoOMjAxNzExMDExNjI1NDAiYhJgYjQ2YTEyMTUwODk1YTkwNWVhODllZWIzOTE4NWQ0OTNjYTRlYWE2NmMyZTMwNTYyMGM0MjAxYjlmNWM4YmU5MGIwMmNkN2ZkYWE2ZTM0Y2Q3ZDc0ZGM3MDViOGY5YWFkOj8Ioi4Qoi4YvpMDIM2mMEocChM5MjIzMzcyMDMyNTYxODgxOTE5EAEY2AUgWmCQTm0Xt1E4fd0kyUGFAd0kyUFKBDA1MDBSFxIVc2ltaW5ncXUuc29vc2hvbmcuY29tYhcxNTA5NTI0NzQwMzUzMTA2NDgzMDgwNg_019801436E6CCA836379ABA1C5E01284&trytype=1&ctype=5050&newcid=be3cc0b58c04050545a3718825aba61eb15e9073a6ee9cb92f5b2093895fa0d36483de22f9d45b347d5c166d0cfb620c_1509524742825&oldcid=
Set-Cookie: _edc_tmp=; domain=.emarbox.com; path=/; expires=Sun, 20-Sep-2020 15:59:58 GMT _edc_5050=be3cc0b58c04050545a3718825aba61eb15e9073a6ee9cb92f5b2093895fa0d36483de22f9d45b347d5c166d0cfb620c_1509524742825; domain=.emarbox.com; path=/; expires=Fri, 01-Nov-2019 08:25:42 GMT
Cache-Control: no-cache, private


--- Additional Info ---
Magic:  ASCII English text, with very long lines
Size:   761
Md5:    b6fd8dac21d11342b405a092da0b570c
Sha1:   7575111ac0c7af6725c92399d8ebeeec7fbb029b
Sha256: 0c7b89dea88c685f49c8fad25e2913e0cbf37a6229ec3dcec612e3c1816b233a
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 116
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 01 Nov 2017 08:25:42 GMT
Server: Apache
Last-Modified: Mon, 30 Oct 2017 05:54:56 GMT
Expires: Mon, 06 Nov 2017 05:54:56 GMT
Etag: C17C346AD69008C6B06B00D7F3001AB289B0D7BD
Cache-Control: max-age=422353,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp32
Content-Length: 472
Connection: close


--- Additional Info ---
Magic:  data
Size:   472
Md5:    558040debf34e2c2a1d18be72d714aed
Sha1:   c17c346ad69008c6b06b00d7f3001ab289b0d7bd
Sha256: e124d3a100b039134a93a28db87af227aa2c4eef98c46ce486f606464078464e
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 01 Nov 2017 08:25:42 GMT
Server: Apache
Last-Modified: Sat, 28 Oct 2017 21:42:49 GMT
Expires: Sat, 04 Nov 2017 21:42:49 GMT
Etag: DC57DB7517F7E58B92E3E7423310C8B4CD495466
Cache-Control: max-age=306426,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp13
Content-Length: 727
Connection: close


--- Additional Info ---
Magic:  data
Size:   727
Md5:    3bc20a76e1f4902f3cf7d51fe39e283c
Sha1:   dc57db7517f7e58b92e3e7423310c8b4cd495466
Sha256: b6808eea6df9376ef0f4bc46a89fc2b6799b81014908cc3f091778310aa6ab1c
                                        
                                            GET /_cm?&baidu_user_id=be3cc0b58c04050545a3718825aba61eb15e9073a6ee9cb92f5b2093895fa0d36483de22f9d45b347d5c166d0cfb620c&cookie_version=2&timestamp=1509524741&ext_data=CLonEho3M2U3NmE5YjEzYmE1OWY5ODUwNDNlOTAtMBoOMjAxNzExMDExNjI1NDAiYhJgYjQ2YTEyMTUwODk1YTkwNWVhODllZWIzOTE4NWQ0OTNjYTRlYWE2NmMyZTMwNTYyMGM0MjAxYjlmNWM4YmU5MGIwMmNkN2ZkYWE2ZTM0Y2Q3ZDc0ZGM3MDViOGY5YWFkOj8Ioi4Qoi4YvpMDIM2mMEocChM5MjIzMzcyMDMyNTYxODgxOTE5EAEY2AUgWmCQTm0Xt1E4fd0kyUGFAd0kyUFKBDA1MDBSFxIVc2ltaW5ncXUuc29vc2hvbmcuY29tYhcxNTA5NTI0NzQwMzUzMTA2NDgzMDgwNg_019801436E6CCA836379ABA1C5E01284&trytype=1&ctype=5050&newcid=be3cc0b58c04050545a3718825aba61eb15e9073a6ee9cb92f5b2093895fa0d36483de22f9d45b347d5c166d0cfb620c_1509524742825&oldcid= HTTP/1.1 
Host: cm.emarbox.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/xcpm?rdid=2073407&dc=3&di=u2073407&dri=0&dis=0&dai=1&ps=763x329&enu=encoding&dcb=___adblockplus&dtm=HTML_POST&dvi=0.0&dci=-1&dpt=none&tsr=0&tpr=1509524738626&ti=%E7%99%BE%E8%B4%A7%E9%94%80%E5%94%AE&ari=2&dbv=0&drs=1&pcs=1159x754&pss=1159x888&cfv=10&cpl=10&chi=1&cce=true&cec=x-gbk&tlm=1509524735&rw=754&ltu=http%3A%2F%2Fsimingqu.sooshong.com%2F&ecd=1&uc=1176x855&pis=-1x-1&sr=1176x885&tcn=1509524739&qn=2ce3fe2b685edfbb&tt=1509524738380.914.1615.1710
Cookie: _edc=1509524742419624478078; _edc_tmp=; _edc_5050=be3cc0b58c04050545a3718825aba61eb15e9073a6ee9cb92f5b2093895fa0d36483de22f9d45b347d5c166d0cfb620c_1509524742825

                                         
                                         123.59.18.179
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Server: Tengine/1.5.1
Date: Wed, 01 Nov 2017 08:25:43 GMT
Content-Length: 110
Connection: keep-alive
P3p: policyref="/w3c/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC "
Location: http://cm.yigao.com/sspcm/cm?dsp_id=81065&dsp_uid=1509524742419624478078
Set-Cookie: _edc_tmp=5050,; domain=.emarbox.com; path=/; expires=Sun, 20-Sep-2020 15:59:58 GMT
Cache-Control: no-cache, private


--- Additional Info ---
Magic:  ASCII English text, with very long lines
Size:   523
Md5:    f92b666ed2b3159371b3c2c9ec1578a7
Sha1:   cc44c8c833116917175cecf392447df62bf23d0e
Sha256: 2173392e88bdb5bf370804efd3e5436e048f541cbec239aed8753dc80c64a4c5
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 01 Nov 2017 08:25:43 GMT
Server: Apache
Last-Modified: Sat, 28 Oct 2017 21:42:49 GMT
Expires: Sat, 04 Nov 2017 21:42:49 GMT
Etag: E9604F0B062218DECA799DB0B90037A612A99983
Cache-Control: max-age=306425,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp13
Content-Length: 471
Connection: close


--- Additional Info ---
Magic:  data
Size:   471
Md5:    75b2ab10ac59cb1dfa9cc2ee11ca642c
Sha1:   e9604f0b062218deca799db0b90037a612a99983
Sha256: 06180b58340ac76936b5bc5d4dc0246230fe903ad509746f0621c688594c2610
                                        
                                            GET /m?tid=5PURL&baidu_error=2&timestamp=1509524741 HTTP/1.1 
Host: ckmap.mediav.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/xcpm?rdid=2073407&dc=3&di=u2073407&dri=0&dis=0&dai=1&ps=763x329&enu=encoding&dcb=___adblockplus&dtm=HTML_POST&dvi=0.0&dci=-1&dpt=none&tsr=0&tpr=1509524738626&ti=%E7%99%BE%E8%B4%A7%E9%94%80%E5%94%AE&ari=2&dbv=0&drs=1&pcs=1159x754&pss=1159x888&cfv=10&cpl=10&chi=1&cce=true&cec=x-gbk&tlm=1509524735&rw=754&ltu=http%3A%2F%2Fsimingqu.sooshong.com%2F&ecd=1&uc=1176x855&pis=-1x-1&sr=1176x885&tcn=1509524739&qn=2ce3fe2b685edfbb&tt=1509524738380.914.1615.1710

                                         
                                         112.65.70.28
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Wed, 01 Nov 2017 08:25:43 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: v=vV%?[-^oyF9x[jrJ@Yg%; expires=Wednesday, 02-Nov-2099 00:00:00 GMT; path=/; domain=.mediav.com
Pragma: no-cache
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Cache-Control: no-cache, no-store, must-revalidate
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   56
Md5:    eebed1f68d26000e93aa24144f7d4d73
Sha1:   dc18ab1cb2d1097d8a57126caffb4f7d293cbe5c
Sha256: 68ea8e4d82da8a934a44fbc1554ebcb23bcb3cb489a8e7ec9cbcb322c998d269
                                        
                                            GET /sspcm/cm?dsp_id=81065&dsp_uid=1509524742419624478078 HTTP/1.1 
Host: cm.yigao.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/xcpm?rdid=2073407&dc=3&di=u2073407&dri=0&dis=0&dai=1&ps=763x329&enu=encoding&dcb=___adblockplus&dtm=HTML_POST&dvi=0.0&dci=-1&dpt=none&tsr=0&tpr=1509524738626&ti=%E7%99%BE%E8%B4%A7%E9%94%80%E5%94%AE&ari=2&dbv=0&drs=1&pcs=1159x754&pss=1159x888&cfv=10&cpl=10&chi=1&cce=true&cec=x-gbk&tlm=1509524735&rw=754&ltu=http%3A%2F%2Fsimingqu.sooshong.com%2F&ecd=1&uc=1176x855&pis=-1x-1&sr=1176x885&tcn=1509524739&qn=2ce3fe2b685edfbb&tt=1509524738380.914.1615.1710

                                         
                                         123.59.18.149
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Server: IIS/6.0
Date: Wed, 01 Nov 2017 08:25:43 GMT
Content-Length: 108
Connection: keep-alive
Location: http://cm.emarbox.com/_cm?yguid=4a0d7043139e4faba66893d31aea87d8&ver=1
Set-Cookie: uid=4a0d7043139e4faba66893d31aea87d8; domain=yigao.com; path=/; expires=Fri, 01-Nov-2019 08:25:43 GMT


--- Additional Info ---
Magic:  ASCII English text
Size:   108
Md5:    65508e745384f39ad8dce41e46301005
Sha1:   936ef5ed8b7cff16cc86031f691e49bcc1d6ef0b
Sha256: f5b58dcd18cec8f4adfdc3e7ca4064de83acb3c0028fc06b4adc98b13b46d70e
                                        
                                            GET /_cm?yguid=4a0d7043139e4faba66893d31aea87d8&ver=1 HTTP/1.1 
Host: cm.emarbox.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/xcpm?rdid=2073407&dc=3&di=u2073407&dri=0&dis=0&dai=1&ps=763x329&enu=encoding&dcb=___adblockplus&dtm=HTML_POST&dvi=0.0&dci=-1&dpt=none&tsr=0&tpr=1509524738626&ti=%E7%99%BE%E8%B4%A7%E9%94%80%E5%94%AE&ari=2&dbv=0&drs=1&pcs=1159x754&pss=1159x888&cfv=10&cpl=10&chi=1&cce=true&cec=x-gbk&tlm=1509524735&rw=754&ltu=http%3A%2F%2Fsimingqu.sooshong.com%2F&ecd=1&uc=1176x855&pis=-1x-1&sr=1176x885&tcn=1509524739&qn=2ce3fe2b685edfbb&tt=1509524738380.914.1615.1710
Cookie: _edc=1509524742419624478078; _edc_tmp=5050,; _edc_5050=be3cc0b58c04050545a3718825aba61eb15e9073a6ee9cb92f5b2093895fa0d36483de22f9d45b347d5c166d0cfb620c_1509524742825

                                         
                                         123.59.18.179
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Server: Tengine/1.5.1
Date: Wed, 01 Nov 2017 08:25:43 GMT
Content-Length: 191
Connection: keep-alive
P3p: policyref="/w3c/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC "
Location: http://cm.emarbox.com/_cm?yguid=4a0d7043139e4faba66893d31aea87d8&ver=1&trytype=1&ctype=5040&newcid=4a0d7043139e4faba66893d31aea87d8_1509524743970&oldcid=
Set-Cookie: _edc_tmp=5050,5050; domain=.emarbox.com; path=/; expires=Sun, 20-Sep-2020 15:59:58 GMT _edc_5040=4a0d7043139e4faba66893d31aea87d8_1509524743970; domain=.emarbox.com; path=/; expires=Fri, 01-Nov-2019 08:25:43 GMT
Cache-Control: no-cache, private


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   1613
Md5:    fd68f2a104ccb71e562e5bd75c827875
Sha1:   7da5963d339beb56fb1611a9806700cd04ecc114
Sha256: 18dfa350c23550b4c9a7fa4bd6606e27daedf369cfa7ed03f6f4b9d89046687e
                                        
                                            GET /_cm?yguid=4a0d7043139e4faba66893d31aea87d8&ver=1&trytype=1&ctype=5040&newcid=4a0d7043139e4faba66893d31aea87d8_1509524743970&oldcid= HTTP/1.1 
Host: cm.emarbox.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/xcpm?rdid=2073407&dc=3&di=u2073407&dri=0&dis=0&dai=1&ps=763x329&enu=encoding&dcb=___adblockplus&dtm=HTML_POST&dvi=0.0&dci=-1&dpt=none&tsr=0&tpr=1509524738626&ti=%E7%99%BE%E8%B4%A7%E9%94%80%E5%94%AE&ari=2&dbv=0&drs=1&pcs=1159x754&pss=1159x888&cfv=10&cpl=10&chi=1&cce=true&cec=x-gbk&tlm=1509524735&rw=754&ltu=http%3A%2F%2Fsimingqu.sooshong.com%2F&ecd=1&uc=1176x855&pis=-1x-1&sr=1176x885&tcn=1509524739&qn=2ce3fe2b685edfbb&tt=1509524738380.914.1615.1710
Cookie: _edc=1509524742419624478078; _edc_tmp=5050,5050; _edc_5050=be3cc0b58c04050545a3718825aba61eb15e9073a6ee9cb92f5b2093895fa0d36483de22f9d45b347d5c166d0cfb620c_1509524742825; _edc_5040=4a0d7043139e4faba66893d31aea87d8_1509524743970

                                         
                                         123.59.18.179
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Server: Tengine/1.5.1
Date: Wed, 01 Nov 2017 08:25:44 GMT
Content-Length: 100
Connection: keep-alive
P3p: policyref="/w3c/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC "
Location: http://cm.qtmojo.com/pixel?allyes_dspid=207&allyes_cm&extra=aa
Set-Cookie: _edc_tmp=5040,5050,5050; domain=.emarbox.com; path=/; expires=Sun, 20-Sep-2020 15:59:58 GMT
Cache-Control: no-cache, private


--- Additional Info ---
Magic:  ASCII English text
Size:   100
Md5:    4be620ef551051d727c77d23527cba18
Sha1:   10d0df725f62175948fd1538c1c2ad51ea32a5b4
Sha256: 4026f612920ae2db37a6df5075030b312d259699c7773048c387a8c510608c1d
                                        
                                            GET /pixel?allyes_dspid=207&allyes_cm&extra=aa HTTP/1.1 
Host: cm.qtmojo.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/xcpm?rdid=2073407&dc=3&di=u2073407&dri=0&dis=0&dai=1&ps=763x329&enu=encoding&dcb=___adblockplus&dtm=HTML_POST&dvi=0.0&dci=-1&dpt=none&tsr=0&tpr=1509524738626&ti=%E7%99%BE%E8%B4%A7%E9%94%80%E5%94%AE&ari=2&dbv=0&drs=1&pcs=1159x754&pss=1159x888&cfv=10&cpl=10&chi=1&cce=true&cec=x-gbk&tlm=1509524735&rw=754&ltu=http%3A%2F%2Fsimingqu.sooshong.com%2F&ecd=1&uc=1176x855&pis=-1x-1&sr=1176x885&tcn=1509524739&qn=2ce3fe2b685edfbb&tt=1509524738380.914.1615.1710
Cookie: uid=GjQto4B310BTf8F3sLj

                                         
                                         122.225.219.90
HTTP/1.1 302 Found
Content-Type: text/html
                                        
Date: Wed, 01 Nov 2017 08:25:44 GMT
Server: Apache
Location: http://cm.emarbox.com/_cm?pt=5060&allyes_id=re4rqCPZJ5EWExgA05hC3sLj&allyes_cver=2&extra=aa
Content-Length: 0
Connection: close


--- Additional Info ---
                                        
                                            GET /_cm?pt=5060&allyes_id=re4rqCPZJ5EWExgA05hC3sLj&allyes_cver=2&extra=aa HTTP/1.1 
Host: cm.emarbox.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/xcpm?rdid=2073407&dc=3&di=u2073407&dri=0&dis=0&dai=1&ps=763x329&enu=encoding&dcb=___adblockplus&dtm=HTML_POST&dvi=0.0&dci=-1&dpt=none&tsr=0&tpr=1509524738626&ti=%E7%99%BE%E8%B4%A7%E9%94%80%E5%94%AE&ari=2&dbv=0&drs=1&pcs=1159x754&pss=1159x888&cfv=10&cpl=10&chi=1&cce=true&cec=x-gbk&tlm=1509524735&rw=754&ltu=http%3A%2F%2Fsimingqu.sooshong.com%2F&ecd=1&uc=1176x855&pis=-1x-1&sr=1176x885&tcn=1509524739&qn=2ce3fe2b685edfbb&tt=1509524738380.914.1615.1710
Cookie: _edc=1509524742419624478078; _edc_tmp=5040,5050,5050; _edc_5050=be3cc0b58c04050545a3718825aba61eb15e9073a6ee9cb92f5b2093895fa0d36483de22f9d45b347d5c166d0cfb620c_1509524742825; _edc_5040=4a0d7043139e4faba66893d31aea87d8_1509524743970

                                         
                                         123.59.18.179
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Server: Tengine/1.5.1
Date: Wed, 01 Nov 2017 08:25:44 GMT
Content-Length: 204
Connection: keep-alive
P3p: policyref="/w3c/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC "
Location: http://cm.emarbox.com/_cm?pt=5060&allyes_id=re4rqCPZJ5EWExgA05hC3sLj&allyes_cver=2&extra=aa&trytype=1&ctype=5060&newcid=re4rqCPZJ5EWExgA05hC3sLj_1509524744800&oldcid=
Set-Cookie: _edc_tmp=5040,5050,5040; domain=.emarbox.com; path=/; expires=Sun, 20-Sep-2020 15:59:58 GMT _edc_5060=re4rqCPZJ5EWExgA05hC3sLj_1509524744800; domain=.emarbox.com; path=/; expires=Fri, 01-Nov-2019 08:25:44 GMT
Cache-Control: no-cache, private


--- Additional Info ---
Magic:  ASCII English text
Size:   204
Md5:    06280062663ca0ad2f996a1fe56006cc
Sha1:   5c5084d977cb3d09a8399704fb95473168821a58
Sha256: 69ab342e74a47fc66fbef8b77948a513a67533e52bad4c32559aa2d07e04d449
                                        
                                            GET /_cm?pt=5060&allyes_id=re4rqCPZJ5EWExgA05hC3sLj&allyes_cver=2&extra=aa&trytype=1&ctype=5060&newcid=re4rqCPZJ5EWExgA05hC3sLj_1509524744800&oldcid= HTTP/1.1 
Host: cm.emarbox.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pos.baidu.com/xcpm?rdid=2073407&dc=3&di=u2073407&dri=0&dis=0&dai=1&ps=763x329&enu=encoding&dcb=___adblockplus&dtm=HTML_POST&dvi=0.0&dci=-1&dpt=none&tsr=0&tpr=1509524738626&ti=%E7%99%BE%E8%B4%A7%E9%94%80%E5%94%AE&ari=2&dbv=0&drs=1&pcs=1159x754&pss=1159x888&cfv=10&cpl=10&chi=1&cce=true&cec=x-gbk&tlm=1509524735&rw=754&ltu=http%3A%2F%2Fsimingqu.sooshong.com%2F&ecd=1&uc=1176x855&pis=-1x-1&sr=1176x885&tcn=1509524739&qn=2ce3fe2b685edfbb&tt=1509524738380.914.1615.1710
Cookie: _edc=1509524742419624478078; _edc_tmp=5040,5050,5040; _edc_5050=be3cc0b58c04050545a3718825aba61eb15e9073a6ee9cb92f5b2093895fa0d36483de22f9d45b347d5c166d0cfb620c_1509524742825; _edc_5040=4a0d7043139e4faba66893d31aea87d8_1509524743970; _edc_5060=re4rqCPZJ5EWExgA05hC3sLj_1509524744800

                                         
                                         123.59.18.179
HTTP/1.1 200 OK
                                        
Server: Tengine/1.5.1
Date: Wed, 01 Nov 2017 08:25:45 GMT
Content-Length: 0
Connection: keep-alive
P3p: policyref="/w3c/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC "
Set-Cookie: _edc_tmp=5040,5050,5060,5040; domain=.emarbox.com; path=/; expires=Sun, 20-Sep-2020 15:59:58 GMT
Cache-Control: no-cache, private


--- Additional Info ---
                                        
                                            GET /inc/m_status.jsp HTTP/1.1 
Host: member.sooshong.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://simingqu.sooshong.com/
Cookie: __cfduid=d5216bea79dedfedbcaa292cfc85652921509524736; Hm_lvt_3a2bf59295995a637abc01fb61aeeb3d=1509524741; Hm_lpvt_3a2bf59295995a637abc01fb61aeeb3d=1509524741

                                         
                                         0.0.0.0
                                        


--- Additional Info ---