Overview

URL 552344.com/Article/lists/5.html
IP23.244.76.90
ASNAS18978 Enzu Inc
Location United States
Report completed2018-07-14 05:06:04 CEST
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro
Timestamp Severity Source IP Destination IP Alert
2018-07-14 05:05:26 CEST 1  208.66.74.107 Client IP ET TROJAN PE EXE or DLL Windows file download Text
2018-07-14 05:05:28 CEST 1  208.66.74.107 Client IP ET TROJAN RAMNIT.A M1
2018-07-14 05:05:26 CEST 1  208.66.74.107 Client IP ET CURRENT_EVENTS DRIVEBY EXE Embeded in Page Likely Evil M1
2018-07-14 05:05:26 CEST 1  208.66.74.107 Client IP ET TROJAN RAMNIT.A M2


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2018-07-14 2 552344.com/Article/lists/5.html Malware
2018-07-14 2 627988.com/ Malware
2018-07-14 2 627988.com/Index/Public/JavaScript/superslide.js Malware
2018-07-14 2 627988.com/Tuku/tuijian Malware
2018-07-14 2 627988.com/Home/kaijiang Malware
2018-07-14 2 www.9a77.com/gg/amjs-db.htm Malware
2018-07-14 2 627988.com/Bbs/sy Malware
2018-07-14 2 627988.com/Index/Public/JavaScript/zzsc.js Malware
2018-07-14 2 627988.com/Index/Public/JavaScript/menu.js Malware
2018-07-14 2 627988.com/Index/Public/JavaScript/layer.min.js Malware
2018-07-14 2 www.9a77.com/gg/nmzl.htm Malware
2018-07-14 2 627988.com/Index/Public/JavaScript/kj.js Malware
2018-07-14 2 627988.com/bbs/tuku.html Malware
2018-07-14 2 www.9a77.com/gg/js/amjs.js Malware
2018-07-14 2 627988.com/Tuku/pic Malware
2018-07-14 2 627988.com/Pic/pic Malware
2018-07-14 2 627988.com/charts/chart.js Malware
2018-07-14 2 9a77.com/gg/js/jquery-1.4.3.min.js Malware
2018-07-14 2 627988.com/Index/Public/JavaScript/bmjs00.js Malware
2018-07-14 2 627988.com/Index/Public/JavaScript/My97DatePicker/WdatePicker.js Malware
2018-07-14 2 627988.com/Index/Public/JavaScript/jQuery-jcMarquee.js Malware
2018-07-14 2 627988.com/charts/preloader.swf Malware
2018-07-14 2 627988.com/Index/Public/JavaScript/ZeroClipboard0.swf Malware
2018-07-14 2 9a77.com/gg/js/jquery.nivo.slider.pack.js Malware
2018-07-14 2 627988.com/charts/chart.swf Malware
2018-07-14 2 627988.com/vbsxml/xml_1_7_25_line.xml?XMLCallDate=1531537537713 Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 9 reports on IP: 23.244.76.90

Date UQ / IDS / BL URL IP
2019-03-26 11:42:28 +0100
0 - 0 - 1 xy444.com/Source/kj/2006 23.244.76.90
2019-03-25 01:36:19 +0100
0 - 0 - 1 552344.com/charts/charts_go.html 23.244.76.90
2019-02-11 03:21:05 +0100
0 - 0 - 1 xy444.com/table/table2.html 23.244.76.90
2019-01-05 19:03:27 +0100
0 - 0 - 1 xy444.com/table/table8.html 23.244.76.90
2019-01-05 19:02:55 +0100
0 - 0 - 1 xy444.com/Source/kj/1979 23.244.76.90
2019-01-04 07:56:07 +0100
0 - 0 - 1 xy444.com/table/table24.html 23.244.76.90
2018-11-05 06:32:33 +0100
0 - 0 - 2 xy444.com/Source/kj/2016/sx.html 23.244.76.90
2018-10-09 19:37:19 +0200
0 - 0 - 1 552344.com/113 23.244.76.90
2018-05-16 10:13:53 +0200
0 - 3 - 3 www.552544.com/heibai/806.html 23.244.76.90

Last 10 reports on ASN: AS18978 Enzu Inc

Date UQ / IDS / BL URL IP
2019-06-27 13:07:33 +0200
0 - 0 - 0 www.yyse.com.cn 104.203.114.140
2019-06-27 13:05:11 +0200
0 - 0 - 0 www.yyse.com.cn/5473347.html 104.203.114.140
2019-06-25 05:10:54 +0200
0 - 1 - 0 accelcheck.com 23.88.207.178
2019-06-18 22:41:45 +0200
0 - 0 - 0 d4rkbbs.site/ 23.89.49.145
2019-06-13 03:26:41 +0200
1 - 0 - 0 musiconline.mrface.com 172.246.160.83
2019-06-13 03:19:41 +0200
1 - 0 - 0 musiconline.mrface.com 172.246.160.83
2019-06-12 23:34:58 +0200
0 - 0 - 0 198.71.81.66 198.71.81.66
2019-06-11 13:35:09 +0200
1 - 0 - 0 musiconline.mrface.com 172.246.160.83
2019-06-11 13:35:07 +0200
1 - 0 - 0 musiconline.mrface.com 172.246.160.83
2019-06-11 13:35:06 +0200
1 - 0 - 0 musiconline.mrface.com 172.246.160.83

Last 2 reports on domain: 552344.com

Date UQ / IDS / BL URL IP
2019-03-25 01:36:19 +0100
0 - 0 - 1 552344.com/charts/charts_go.html 23.244.76.90
2018-10-09 19:37:19 +0200
0 - 0 - 1 552344.com/113 23.244.76.90


JavaScript

Executed Scripts (29)


Executed Evals (3)

#1 JavaScript::Eval (size: 35, repeated: 90) - SHA256: c5844406e612b75ff189a9d6391a1100b161fa5b811978daa022e85398bce214

                                        document.getElementById("ISL_Cont")
                                    

#2 JavaScript::Eval (size: 32, repeated: 2) - SHA256: b4382dda2f4ac17f90deeb087b15be9eb49892365d79831305b25ee0a4a40e8b

                                        document.getElementById("List1")
                                    

#3 JavaScript::Eval (size: 32, repeated: 1) - SHA256: bfb0402ee524857829f3bfdc66d2b14138a925f648e49c0ce9559ac302132faf

                                        document.getElementById("List2")
                                    

Executed Writes (48)

#1 JavaScript::Write (size: 0, repeated: 21) - SHA256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

                                        
                                    

#2 JavaScript::Write (size: 1, repeated: 1) - SHA256: 2b4c342f5433ebe591a1da77e013d1b72475562d48578dca8b84bac6651c3cb9

                                        
                                    

#3 JavaScript::Write (size: 2, repeated: 1) - SHA256: 31609426297325bdb28c86ab3ceeed4a3c438966733fd61b8aea00ee8b23b7bc

                                        
                                    

#4 JavaScript::Write (size: 3, repeated: 2) - SHA256: e740a6faf2db65f5853148d75d9a335d7c4b94ab106fe5f237bc34fdcfc74584

                                        
                                    

#5 JavaScript::Write (size: 19, repeated: 1) - SHA256: 229cc541234b34324ef8d16fe1d0a3e7c50ff54e56555bdd7e390406ca3146d5

                                        			controlNav: false
                                    

#6 JavaScript::Write (size: 21, repeated: 1) - SHA256: e98b6ffd58a10af4c982e951f38d0a7343fd310cb7e1d27efcfc430e3011f320

                                        			directionNav: false
                                    

#7 JavaScript::Write (size: 22, repeated: 1) - SHA256: cb5a5b8d46fb03d4119100deaf0585238cb94619fbbc144f6503bbaf4e44d37e

                                        			directionNav: false,
                                    

#8 JavaScript::Write (size: 6, repeated: 2) - SHA256: 68d6ec09b8f95304c6dc39523b0a107a14d7180f11e7b67b9c2f2ecc95765867

                                        			});
                                    

#9 JavaScript::Write (size: 29, repeated: 1) - SHA256: 5ae167c6c3c5b8eba163580a7ec3255610e5120ccb361c0338458a11385a0649

                                        		$('#s_slider').nivoSlider({
                                    

#10 JavaScript::Write (size: 27, repeated: 1) - SHA256: 9436d820a5e8eb154d396ca9c5988923673c0aa5906ba62fc3ef08efa45c6029

                                        		$('#slider').nivoSlider({
                                    

#11 JavaScript::Write (size: 28, repeated: 1) - SHA256: c85ac9c59d153831a094e9ddfe4a30f9f8954fcd81c4d0cf9586c5f25867f3b3

                                        	$(window).load(function() {
                                    

#12 JavaScript::Write (size: 4, repeated: 1) - SHA256: eeb3378540a4dca9097029153450ed75305e36749ca7f2171abe9e32c0779d6f

                                        	});
                                    

#13 JavaScript::Write (size: 1, repeated: 2) - SHA256: 36a9e7f1c95b82ffb99743e0c5c4ce95d83c9a430aac59f84ef3cbfab6145068

                                        
                                    

#14 JavaScript::Write (size: 9, repeated: 1) - SHA256: 90ea43a05b2464be67bbe87086d61049dccb544924f66f83a2a6067a060d2ed5

                                         	< /head>
                                    

#15 JavaScript::Write (size: 2, repeated: 1) - SHA256: 6c179f21e6f62b629055d8ab40f454ed02e48b68563913473b857d3638e23b28

                                        
                                    

#16 JavaScript::Write (size: 4, repeated: 1) - SHA256: 1a0f564ddc6039457b2fb26b3d6a316c15eba20a886449847c3210c35821a693

                                        
                                    

#17 JavaScript::Write (size: 6, repeated: 5) - SHA256: 399141be1d30ac2656d89eedcf0d8dcedaa72d6c29bf959cae243dc7b1442cf6

                                        
                                    

#18 JavaScript::Write (size: 41, repeated: 1) - SHA256: 0fd9d262f7a1fc92c0f0e03f3a4ecaa0d63ff45ded7a553bdcb69607b4f97756

                                                  $('.r_close').removeClass('c');
                                    

#19 JavaScript::Write (size: 37, repeated: 1) - SHA256: 12c87d3f881d321c71775cc6b471e473ad765b5e4e51d6245817a6be5bb6b12c

                                                  $('.top_slide .ad').show();
                                    

#20 JavaScript::Write (size: 69, repeated: 1) - SHA256: 30ecad352c8f652a75c746c120cdee39902453b74de5218543095016aab76f03

                                                $('.top_slide .box').animate({
                    height: '310px'
                }, 800, function() {
                                    

#21 JavaScript::Write (size: 417, repeated: 1) - SHA256: af05fedac3c05a2c0eff6845b928dccae62f05706073efc086d921f2449bf4a9

                                                < a target = "_blank"
        href = "http://www.094688.com" > < img src = "http://www.9a77.com/gg/images/1.jpg" / > < /a><a target="_blank" href="http:/ / www.094688. com "><img src="
        http: //www.9a77.com/gg/images/2.jpg"/></a> <a target="_blank" href="http://www.094688.com"><img src="http://www.9a77.com/gg/images/3.jpg"/></a> <a target="_blank" href="http://www.094688.com"><img src="http://www.9a77.com/gg/images/4.jpg"/></a> </div>
                                    

#22 JavaScript::Write (size: 45, repeated: 1) - SHA256: 5b735b3ec6e98cedfd65b1d71181e7d81bcc0f9f1ec3a34b8845a8747b43f7c4

                                                < div id = "slider"
        class = "nivoSlider" >
                                    

#23 JavaScript::Write (size: 33, repeated: 1) - SHA256: 88c45f17f7258854674a387816b2d911fff0e6b46b7ee157b906398befc6d51e

                                                < div id = "slider-wrapper" >
                                    

#24 JavaScript::Write (size: 12, repeated: 4) - SHA256: e452401938e37ca79a4309b50c110c2bd658b4267b8838928cfb7f81768e994a

                                                < dl >
                                    

#25 JavaScript::Write (size: 159, repeated: 1) - SHA256: 78be1d05a095308b1084bead32d26f53b8d4a7e758a9ab9f4fe5be02deb8fbb1

                                                < dt style = "background:url(http://www.9a77.com/gg/images/warp_1.jpg)" > < a target = "_blank"
        href = "http://www.17amjs.com/?Intr=430348"
        class = "tp1" > < /a></dt >
                                    

#26 JavaScript::Write (size: 159, repeated: 1) - SHA256: 1848f1d39efd2302a1556d573fd1df7670dfaff12dc29a678e0f33fc73c59aa8

                                                < dt style = "background:url(http://www.9a77.com/gg/images/warp_2.jpg)" > < a target = "_blank"
        href = "http://www.17amjs.com/?Intr=430348"
        class = "tp2" > < /a></dt >
                                    

#27 JavaScript::Write (size: 159, repeated: 1) - SHA256: 624db381290ee36e06044499b818c24d851a3870749e18f053398c4e1c2dda08

                                                < dt style = "background:url(http://www.9a77.com/gg/images/warp_3.jpg)" > < a target = "_blank"
        href = "http://www.17amjs.com/?Intr=430348"
        class = "tp3" > < /a></dt >
                                    

#28 JavaScript::Write (size: 159, repeated: 1) - SHA256: ece32f18d642de678810267997249f59df3eef3efb8f453f72fbe62f07053589

                                                < dt style = "background:url(http://www.9a77.com/gg/images/warp_4.jpg)" > < a target = "_blank"
        href = "http://www.17amjs.com/?Intr=430348"
        class = "tp4" > < /a></dt >
                                    

#29 JavaScript::Write (size: 30, repeated: 1) - SHA256: 9182050cc5c0e47757965a7ec04a508f34c9c820c443a844f36aa7514aba209d

                                                setTimeout(function() {
                                    

#30 JavaScript::Write (size: 19, repeated: 1) - SHA256: 6927ac6de50bec41dcf5d1e13b37ba9fd2d744c21d58042af30f7f87d14d1e22

                                                })
        }, 11111);
                                    

#31 JavaScript::Write (size: 34, repeated: 1) - SHA256: 05f11a0af440c1f11a4acf8c3bb125dfc2c614479ea61d0d90b7241dee963180

                                              $('.r_close').addClass('c');
                                    

#32 JavaScript::Write (size: 33, repeated: 1) - SHA256: 4bae7fae90fec63af4e1d8fc37d7d465ae7202f1cc0992d3d0950b2c820e7ed7

                                              $('.top_slide .ad').hide();
                                    

#33 JavaScript::Write (size: 67, repeated: 1) - SHA256: 860bc14e36c9b4654c44580048ddcb5e2f01d131f9f53d0a84e5c8cd0f921fe9

                                              $('.top_slide .box').animate({
                  height: '310px'
              }, 800, function() {
                                    

#34 JavaScript::Write (size: 12, repeated: 1) - SHA256: d0e339c0d126d133b9e8c101bd0ccbec051933bff73a98087aa45fdb316b7b74

                                              < /div>
                                    

#35 JavaScript::Write (size: 11, repeated: 4) - SHA256: d9ffb6e0a7be7795af94f8df20a1cdb9353c340a81d8458945987c5379a798b4

                                              < /dl>
                                    

#36 JavaScript::Write (size: 9, repeated: 1) - SHA256: 27d84295815422563f2d718aac33d34717be82ec4a8dfa3900cbdcfe1ee4815c

                                              });
                                    

#37 JavaScript::Write (size: 11, repeated: 2) - SHA256: aa2bfdb349b86c3650a017b06b964cd4fed9503e81782c1867259a159b0924ff

                                             < /div>
                                    

#38 JavaScript::Write (size: 33, repeated: 1) - SHA256: 854dafe5684d4873e8073d37915ea9170335b3ef95422a97dda91f10ea314b36

                                            < div class = "ui_feature_wrap" >
                                    

#39 JavaScript::Write (size: 22, repeated: 1) - SHA256: 5673dfccde990fb7be349fd2cb4e2867996e28ccd46f08f5df46080bf95004a2

                                            < div id = "wrapper" >
                                    

#40 JavaScript::Write (size: 20, repeated: 1) - SHA256: 4885e819c2cac65d14f443f4f40e8370a8e4d70fd04c44d04892a96ca5643cd6

                                           < div class = "box" >
                                    

#41 JavaScript::Write (size: 8, repeated: 2) - SHA256: 4c57a8afdb03336819aa7e8106a07d6dbee031a2aa824d0f875a60693de0a5a3

                                          < /div>
                                    

#42 JavaScript::Write (size: 8, repeated: 1) - SHA256: 6fec525c4c045c785d878674b1d5e3c9b9a953d6dea393b64fa2d6f65bd0f260

                                          < head >
                                    

#43 JavaScript::Write (size: 89, repeated: 1) - SHA256: 23cb5727157b9c3c4389ffff927d0e8b32df39acf4f5b184feac4403d678e379

                                          < link href = "http://9a77.com/gg/css/nivo-slider.css"
  rel = "stylesheet"
  type = "text/css" / >
                                    

#44 JavaScript::Write (size: 90, repeated: 1) - SHA256: 81d3797f4be5d3c9a453c2a24440f9ae44949808d50e831f0eb3f2c48c34fcae

                                          < script type = "text/javascript"
  src = "http://9a77.com/gg/js/jquery-1.4.3.min.js" > < /script>
                                    

#45 JavaScript::Write (size: 97, repeated: 1) - SHA256: 406736a22c42ee9c704279055ea439c15cc299d0fd7dbc858fd2320a70942db0

                                          < script type = "text/javascript"
  src = "http://9a77.com/gg/js/jquery.nivo.slider.pack.js" > < /script>
                                    

#46 JavaScript::Write (size: 24, repeated: 1) - SHA256: 308180a0d30c3bd1852c63ca14c40c8cdbdd540396a73e037588bef02f46111d

                                         < div class = "top_slide" >
                                    

#47 JavaScript::Write (size: 9, repeated: 1) - SHA256: 6c9656210a0202719c1cc3f33bba512135c26bb8d970d2350552e75d257631ca

                                        < /script>
                                    

#48 JavaScript::Write (size: 31, repeated: 1) - SHA256: e7b15ceca5cb0996e9059273b143e36089da34e0c7a8eed2cf7bb8a8ec23d072

                                        < script type = "text/javascript" >
                                    


HTTP Transactions (164)


Request Response
                                        
                                            GET /Article/lists/5.html HTTP/1.1 
Host: 552344.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         23.244.76.90
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Location: http://627988.com
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:37 GMT
Content-Length: 140


--- Additional Info ---
Magic:  HTML document text
Size:   140
Md5:    c09913f6971655a2ea4d17f9472c32da
Sha1:   0807a25ce3268f19de13b8c651d84742813324be
Sha256: a739d2ce34350ae5dfb38e91cc85499236354cd54fc92401f4adb0846591557c

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /Index/Public/css/self.css HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Last-Modified: Mon, 12 Oct 2015 05:00:42 GMT
Accept-Ranges: bytes
Etag: "039e9f1aa4d11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:13 GMT
Content-Length: 1547


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   1547
Md5:    296ef04cb4ebf4473109ebfd5e90db3b
Sha1:   18d46cc8f45338449cac7c3e2d771ffe3107b2b8
Sha256: 5cf03f3e9b5a5155d623a469330418a0ab3c94e98d01bab5f8560a9e4fcc7ac2
                                        
                                            GET /Index/Public/css/foot.css HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Last-Modified: Thu, 24 Mar 2016 09:14:22 GMT
Accept-Ranges: bytes
Etag: "0eb7b8dad85d11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:13 GMT
Content-Length: 3112


--- Additional Info ---
Magic:  UTF-8 Unicode (with BOM) text, with CRLF line terminators
Size:   3112
Md5:    8425f46345318d754f07b6274c438585
Sha1:   fc46bd6ca79bda68705ab4da87929fb54baca133
Sha256: 14b36bfd63cb5119f23e06c8d7b13f63f9be89cf1192a51f0f82266145d414a1
                                        
                                            GET /Index/Public/css/main.css HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Last-Modified: Mon, 12 Sep 2016 04:36:55 GMT
Accept-Ranges: bytes
Etag: "b638e4aafcd21:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:13 GMT
Content-Length: 18266


--- Additional Info ---
Magic:  UTF-8 Unicode C program text, with very long lines, with CRLF line terminators
Size:   18266
Md5:    2249e935e6f6cc1580bccd82caa1fc2b
Sha1:   2b653c0d8b8f0060462e5f855c43ab0a126e100a
Sha256: a660244191b82215d23b5de90a2041a4ea710dad3f98b5d9dc68ae52ef484660
                                        
                                            GET / HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Cache-Control: private
Pragma: no-cache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Server: Microsoft-IIS/7.5
Set-Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0; expires=Mon, 13-Aug-2018 03:05:13 GMT; path=/
X-Powered-By: ThinkPHP, ASP.NET
Date: Sat, 14 Jul 2018 03:05:12 GMT
Content-Length: 166728


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   166728
Md5:    185cc317bbbd692ca27cd6ee98b4b323
Sha1:   b5dd73ac6551ee6586b3f42e47be459634046b0e
Sha256: 1cce6b51a1a4757f110fbae30f201d7783234cabdace43154f4f7b7a973a3208

Alerts:
  Blacklists:
    - fortinet: Malware
  IDS:
    - ET TROJAN PE EXE or DLL Windows file download Text
    - ET TROJAN RAMNIT.A M1
    - ET CURRENT_EVENTS DRIVEBY EXE Embeded in Page Likely Evil M1
    - ET TROJAN RAMNIT.A M2
                                        
                                            GET /Index/Public/JavaScript/superslide.js HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Last-Modified: Mon, 12 Oct 2015 05:07:12 GMT
Accept-Ranges: bytes
Etag: "0805edaab4d11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:13 GMT
Content-Length: 11422


--- Additional Info ---
Magic:  UTF-8 Unicode text, with very long lines, with CRLF line terminators
Size:   11422
Md5:    cd674d9e02f20426d9acf1d11c85539b
Sha1:   74ab51a432e33698a7a627f05baf749472b72cc3
Sha256: 496bdf2635c9f9494f51d0ba63c8a43e5b6dfb7c88b4426e6a56f577d945e3e9

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /jquery/1.9.1/jquery.min.js HTTP/1.1 
Host: libs.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/

                                         
                                         182.61.62.50
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Cache-Control: max-age=2592000
Connection: keep-alive
Content-Encoding: gzip
Date: Sat, 14 Jul 2018 03:05:26 GMT
Expires: Mon, 13 Aug 2018 03:05:26 GMT
Last-Modified: Wed, 07 Jan 2015 09:16:30 GMT
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: Apache
Set-Cookie: BAIDUID=E2BE5DC36ADD529405B8E4C6B104FDE1:FG=1; expires=Thu, 31-Dec-37 23:55:55 GMT; max-age=2145916555; path=/; domain=.baidu.com; version=1
Vary: Accept-Encoding
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   33001
Md5:    7e7ff1c28fb744859c1a6a91efe25c46
Sha1:   2df048d244e15867150772a82da6d44f412a203e
Sha256: a78e1afbaf6236982c4a489f57c03cf3f9c34ae413e064b04567abb99a60dc3e
                                        
                                            GET /Public//gg/2016-11-11/582575b67ff29.gif HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Last-Modified: Fri, 11 Nov 2016 07:39:34 GMT
Accept-Ranges: bytes
Etag: "1f7148bfee3bd21:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:15 GMT
Content-Length: 46065


--- Additional Info ---
Magic:  GIF image data, version 89a, 980 x 80
Size:   46065
Md5:    ffa01cbdcf03e347eadb75cd776fee2d
Sha1:   d79d0be37b62ca2cc3e03b7eafa87ecc3dcbbe63
Sha256: 75da81cf8c10d59412732ddd58abe04af825b586f9bf77258106e46c515a44d7
                                        
                                            GET /Tuku/tuijian HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Cache-Control: private
Pragma: no-cache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Server: Microsoft-IIS/7.5
X-Powered-By: ThinkPHP, ASP.NET
Date: Sat, 14 Jul 2018 03:05:15 GMT
Content-Length: 5388


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   5388
Md5:    8e43517825eb9b0f2b6d3e31f9c59339
Sha1:   c343c3764d8fc9697fd378b715c4b44623675a05
Sha256: 1a0a034e5f1321e0062f970beb1be0181476df95175ea126623082df0e8b480a

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /Home/kaijiang HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Cache-Control: private
Pragma: no-cache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Server: Microsoft-IIS/7.5
X-Powered-By: ThinkPHP, ASP.NET
Date: Sat, 14 Jul 2018 03:05:15 GMT
Content-Length: 5506


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   5506
Md5:    8f15db7f2a9de40f5472c976607e6e19
Sha1:   9da447d109472052cdf4ae6b510d68f4ce0588c1
Sha256: e024cd2202bb1cdacb63cd01d14796b16c699bf01ef91f0d80da5781d417f4fe

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /Public//gg/2016-10-13/57ff9001b9221.gif HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Last-Modified: Thu, 13 Oct 2016 13:45:37 GMT
Accept-Ranges: bytes
Etag: "a9a76b145825d21:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:15 GMT
Content-Length: 27216


--- Additional Info ---
Magic:  GIF image data, version 89a, 1000 x 122
Size:   27216
Md5:    7ba7ecadcba7260f13812d57dab7a238
Sha1:   50a649927a0fbbe4de8b495aad3477f44ccda900
Sha256: d14b61991addf33ce02b42fb9bd8fb05952752ac7ff1b597ee2f0cc74f72262a
                                        
                                            GET /gg/amjs-db.htm HTTP/1.1 
Host: www.9a77.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/

                                         
                                         208.66.74.108
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Last-Modified: Sun, 30 Oct 2016 08:03:28 GMT
Accept-Ranges: bytes
Etag: "c11f1198432d21:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:15 GMT
Content-Length: 477


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   477
Md5:    dc348ab5d2b92d135ed76fc28224a60c
Sha1:   12ba2dda7ba126aa699024d5351fb6213d83328d
Sha256: 241ff72a23a03ff10b126c7bd5ddd0cf0498b694b9514e42484b376f7735b2ce

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /Public//gg/2016-10-13/57ff8faf6aae0.gif HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Last-Modified: Thu, 13 Oct 2016 13:44:15 GMT
Accept-Ranges: bytes
Etag: "246a5ae35725d21:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:15 GMT
Content-Length: 29387


--- Additional Info ---
Magic:  GIF image data, version 89a, 680 x 60
Size:   29387
Md5:    478edf8d559814291497e97bf813eabc
Sha1:   a54e99868ec2d52279e0da728e8954a3d59e7f5f
Sha256: 2f01542553504daf5f3e92b9fc19c1a4078df0d8553a08f16cdca972c462abcd
                                        
                                            GET /Public//gg/2016-11-11/5825757703fea.gif HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Last-Modified: Fri, 11 Nov 2016 07:38:30 GMT
Accept-Ranges: bytes
Etag: "c48d6b99ee3bd21:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:15 GMT
Content-Length: 35456


--- Additional Info ---
Magic:  GIF image data, version 89a, 1000 x 80
Size:   35456
Md5:    5f217f4e380d24466f11605564a2afeb
Sha1:   90936f5d66d5056a87939b2cade02cb129874f27
Sha256: e104156ebb6716c01a35aa7150b62ef3a69a193b826808bb5f70b915fc5f291a
                                        
                                            GET /Bbs/sy HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Cache-Control: private
Pragma: no-cache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Server: Microsoft-IIS/7.5
X-Powered-By: ThinkPHP, ASP.NET
Date: Sat, 14 Jul 2018 03:05:15 GMT
Content-Length: 18660


--- Additional Info ---
Magic:  HTML document text
Size:   18660
Md5:    f1bcd133bcfe11490cda4e3445c7ab84
Sha1:   a6605a9df5ea7cdf1d0b84e4b30a54df901e0dcc
Sha256: f2cfdba2420b5ca1320eee461aebd70449e5cc37fcc74bc33b00cb6e506729f3

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /Public//gg/2017-09-02/59aa9feae0e6d.gif HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Last-Modified: Sat, 02 Sep 2017 12:11:22 GMT
Accept-Ranges: bytes
Etag: "a795b597e423d31:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:15 GMT
Content-Length: 217906


--- Additional Info ---
Magic:  GIF image data, version 89a, 960 x 70
Size:   217906
Md5:    c68f2c8da358015689d97ac1b60f3c59
Sha1:   ed0eb878225d8087f87f4263e5ced7ce82d76d81
Sha256: 62cf968448cf7e05b3028a2c961aaeb777d768ff1cf8f93f3f4809066b273c94
                                        
                                            GET /Index/Public/JavaScript/zzsc.js HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Last-Modified: Sun, 10 Jul 2016 14:39:18 GMT
Accept-Ranges: bytes
Etag: "ebfee1d6b8dad11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:16 GMT
Content-Length: 872


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   872
Md5:    8387d2c72f4f5ca45289adc17a1294ab
Sha1:   d27d5f8538f1b717a69ffbab27c8d4b29cbc4a84
Sha256: 1b297a697f3bcf458d13c5172435fe81f2c71258554046a7f01c241f894f4412

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /Index/Public/JavaScript/menu.js HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Last-Modified: Mon, 12 Oct 2015 05:07:00 GMT
Accept-Ranges: bytes
Etag: "07237d3ab4d11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:16 GMT
Content-Length: 561


--- Additional Info ---
Magic:  ASCII C++ program text, with CRLF line terminators
Size:   561
Md5:    69399078fbc6a83dd75ce82eaccf4d5b
Sha1:   65dcb2b28205f3fc9b339333a84a414908c8a722
Sha256: 50c1e1f9201c3527fe230f625481c72be7875c5d952d90419c41e528e14ea871

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /Index/Public/JavaScript/layer.min.js HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Last-Modified: Mon, 12 Oct 2015 05:06:46 GMT
Accept-Ranges: bytes
Etag: "037dfcaab4d11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:16 GMT
Content-Length: 15314


--- Additional Info ---
Magic:  UTF-8 Unicode (with BOM) text, with very long lines, with CRLF line terminators
Size:   15314
Md5:    923b220645bc40f3636ff34753501757
Sha1:   e64609444c7114fc0616ac1b0264814f8c6a3b39
Sha256: 5f570ec484c362fdd59dc441d6c9e6a555363da7cb85fd42b87e2c802599d71d

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /gg/nmzl.htm HTTP/1.1 
Host: www.9a77.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/

                                         
                                         208.66.74.108
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Last-Modified: Tue, 22 May 2018 11:19:02 GMT
Accept-Ranges: bytes
Etag: "017d6afbef1d31:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:15 GMT
Content-Length: 10154


--- Additional Info ---
Magic:  UTF-8 Unicode (with BOM) HTML document text, with CRLF line terminators
Size:   10154
Md5:    efdec7932b29a5c238e6a306c0a0f18d
Sha1:   f05e87d8004f044d63c4b008da34e697eff2f982
Sha256: 7d93c62be3c0a89c8d84a1c54203af01db1d9eb4c7a48e2bc7818df03ede2963

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /Index/Public/JavaScript/kj.js HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Last-Modified: Mon, 12 Oct 2015 05:06:24 GMT
Accept-Ranges: bytes
Etag: "048c2bdab4d11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:16 GMT
Content-Length: 2963


--- Additional Info ---
Magic:  UTF-8 Unicode C++ program text, with CRLF line terminators
Size:   2963
Md5:    9c6b9def15313a0e9e0f26dcb12186ba
Sha1:   5cc29330644a861d219f433aec1565de1d6bc55e
Sha256: eaf3e0b301dffbdf2a4450a59607432a2decc09c72555111e1456b310dac86f6

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /bbs/tuku.html HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Last-Modified: Sun, 10 Jul 2016 13:37:52 GMT
Accept-Ranges: bytes
Etag: "2c6c1c42b0dad11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:16 GMT
Content-Length: 17157


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   17157
Md5:    1230b6031cb743c3f9f7132f4d18cc0d
Sha1:   1dcc4c91c40c2517f0316646f716f2747ec262e6
Sha256: 6f91b70017303075c4ac68b5a4f5abca7d5b43f11a0ebb0a2aa29d09fb65286e

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /gg/js/amjs.js HTTP/1.1 
Host: www.9a77.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.9a77.com/gg/amjs-db.htm

                                         
                                         208.66.74.108
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Last-Modified: Sun, 04 Jun 2017 12:27:06 GMT
Accept-Ranges: bytes
Etag: "d96823e12dddd21:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:16 GMT
Content-Length: 4247


--- Additional Info ---
Magic:  ASCII text, with very long lines, with CRLF line terminators
Size:   4247
Md5:    9e1b7c61ca3a846a03db2cafe407f8b3
Sha1:   00e0a317bbbbd5f7b9486bc87731599d340db2ce
Sha256: fffec82bb036fd6183fb07fbf60e8d9724e16d60e2e4fe2778e6597481f9c0c8

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /Tuku/pic HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Cache-Control: private
Pragma: no-cache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Server: Microsoft-IIS/7.5
X-Powered-By: ThinkPHP, ASP.NET
Date: Sat, 14 Jul 2018 03:05:16 GMT
Content-Length: 15466


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   15466
Md5:    3f67f6566d05844e32032dd1e2568a88
Sha1:   31c1e0d8de9fa8c0a404569f64bb887cdfcfd4da
Sha256: dfab8823869ed655f2fd5ee797a52782234ec71f4c615f1ab8549141d7ef4d42

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            POST /gsorganizationvalsha2g2 HTTP/1.1 
Host: ocsp2.globalsign.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 111
Content-Type: application/ocsp-request

                                         
                                         104.18.20.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 14 Jul 2018 03:05:29 GMT
Content-Length: 1570
Connection: keep-alive
Set-Cookie: __cfduid=d9d9308b33c12d435883918c3551d2e481531537529; expires=Sun, 14-Jul-19 03:05:29 GMT; path=/; domain=.globalsign.com; HttpOnly
Last-Modified: Sat, 14 Jul 2018 02:36:48 GMT
Expires: Wed, 18 Jul 2018 02:36:48 GMT
Etag: "36ef3663f7a9dc452d630d62fd5066d332a4d2f2"
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 43a0c497e7be4297-OSL


--- Additional Info ---
Magic:  data
Size:   1570
Md5:    c217038ff0e81487b3f5820a92dd49e9
Sha1:   36ef3663f7a9dc452d630d62fd5066d332a4d2f2
Sha256: e6ed9c6c8faf8c3e5ce98c9905533021194ac52b4cd665ac08594c59695a8d3a
                                        
                                            GET /Public//gg/2016-11-23/58354edc5c77f.gif HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Last-Modified: Wed, 23 Nov 2016 08:10:04 GMT
Accept-Ranges: bytes
Etag: "d57cedfe6045d21:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:16 GMT
Content-Length: 81273


--- Additional Info ---
Magic:  GIF image data, version 89a, 1000 x 60
Size:   81273
Md5:    4f1cb0a6cb4864d35b8a873ae02792e4
Sha1:   52e4dbf1f368ab3dd0d25a7be2303b5f8aef0e78
Sha256: 434ac739ca7a69608f7965ab53f07bbeda091c733f68d8e6c3a371b1f2552953
                                        
                                            GET /Pic/pic HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Cache-Control: private
Pragma: no-cache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Server: Microsoft-IIS/7.5
X-Powered-By: ThinkPHP, ASP.NET
Date: Sat, 14 Jul 2018 03:05:16 GMT
Content-Length: 5677


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   5677
Md5:    e75350358c13ba43bd2acbfded794fb0
Sha1:   3af4fafc73127f5805bae6b5a9e93f7a7acae714
Sha256: e821a09d8b5836d1cbca54f0d84899debf7a34b94beebd50d637113a72e808c8

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /Index/Public/css/images/kj-logo.png HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Index/Public/css/self.css
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Fri, 14 Oct 2016 05:22:06 GMT
Accept-Ranges: bytes
Etag: "01340e7da25d21:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:16 GMT
Content-Length: 4044


--- Additional Info ---
Magic:  PNG image, 180 x 48, 8-bit colormap, non-interlaced
Size:   4044
Md5:    c45c604b57cfeca511eeaee2618fec85
Sha1:   6c5b272869814ea7b80a803a35afb158605e383d
Sha256: 362b1ac5ad8d400c2a2cb7a558748f60eefb9e351d000229f0121dd112295810
                                        
                                            GET /Index/Public/css/images/kj-logo-m.gif HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Index/Public/css/self.css
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Last-Modified: Fri, 14 Oct 2016 05:20:35 GMT
Accept-Ranges: bytes
Etag: "80932b1da25d21:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:16 GMT
Content-Length: 2027


--- Additional Info ---
Magic:  GIF image data, version 89a, 116 x 45
Size:   2027
Md5:    c336cbe84ad400ea73df51c7499bce6c
Sha1:   13b8a2219155112048a88142648485a50a9f9955
Sha256: e99028227dc5564bdefb788528ec8b5c9d6e5fba25a4d78c26823df0771869c0
                                        
                                            GET /Index/Public/css/images/lottery.png HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Index/Public/css/main.css
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Fri, 17 Jul 2015 09:03:24 GMT
Accept-Ranges: bytes
Etag: "0d6996f6fc0d01:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:16 GMT
Content-Length: 3613


--- Additional Info ---
Magic:  PNG image, 9 x 18, 8-bit colormap, non-interlaced
Size:   3613
Md5:    ea4aed7414c0fc68f50314a2f7da0af8
Sha1:   7d2c85631ec2dac9b978369d2f4e5b579da21f75
Sha256: 2e98923c24a1eb86f13fa3ab3b394b6fe36f99da6a08cbdcf50e84d79fe57dfe
                                        
                                            GET /hm.js?3e8a1c225433cbd34d03129ae387499a HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Home/kaijiang
Cookie: BAIDUID=E2BE5DC36ADD529405B8E4C6B104FDE1:FG=1

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 9150
Date: Sat, 14 Jul 2018 03:05:29 GMT
Etag: a2b6af65ac1e71299ef53beeb4a2cab8
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=E2E3B68F1D63E2E4; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max speed
Size:   9150
Md5:    957aa81f5629f375feda022e695be99c
Sha1:   39e0d868020b81723f287655867cd23704768d3b
Sha256: cc2adeb366283b52843e683aa7a14ae950587e877579493d82b50ed984821771
                                        
                                            GET /Index/Public/css/bg-banner2.gif HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Index/Public/css/main.css
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Server: Microsoft-IIS/7.5
X-Powered-By: PHP/5.3.28, ASP.NET
Date: Sat, 14 Jul 2018 03:05:16 GMT
Content-Length: 0


--- Additional Info ---
                                        
                                            GET /charts/chart.js HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Last-Modified: Fri, 17 Jul 2015 08:59:16 GMT
Accept-Ranges: bytes
Etag: "0ac8db6ec0d01:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:15 GMT
Content-Length: 43393


--- Additional Info ---
Magic:  ASCII C++ program text, with CRLF line terminators
Size:   43393
Md5:    d73d20a8c4a182296d1f655b8c753af3
Sha1:   216935d44d4a37992a984c49861c814a93d1cced
Sha256: 3bddd200f274a911b15f09b726dedd539b5be8f925c9c7990d6eb99c4f7deec0

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /88111_files/1_01.png HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Thu, 24 Mar 2016 09:18:20 GMT
Accept-Ranges: bytes
Etag: "0d6571bae85d11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:18 GMT
Content-Length: 4303


--- Additional Info ---
Magic:  GIF image data, version 89a, 53 x 55
Size:   4303
Md5:    7272719d733839c7b1247cbfbe7ef49b
Sha1:   a90709eec8eb512a56c7b04ebdb30ac93d764119
Sha256: aba5b41fe1c66a23afdacd926390edff49d3377f12444fdcf80be3f93a48570f
                                        
                                            GET /88111_files/1_02.png HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Thu, 24 Mar 2016 09:18:32 GMT
Accept-Ranges: bytes
Etag: "0e47e22ae85d11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:18 GMT
Content-Length: 4167


--- Additional Info ---
Magic:  GIF image data, version 89a, 49 x 55
Size:   4167
Md5:    30fe956da9e2b7f80a0c532e5d1dc0e1
Sha1:   1bd5b232edbaeda7e5e5927d452b8512353af826
Sha256: 73a7f06ce587640d5a6c92ce5565b73683e73391559d1cabdab5c876337fcd65
                                        
                                            GET /88111_files/1_06.png HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Thu, 24 Mar 2016 09:18:16 GMT
Accept-Ranges: bytes
Etag: "07cf518ae85d11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:18 GMT
Content-Length: 3832


--- Additional Info ---
Magic:  GIF image data, version 89a, 49 x 46
Size:   3832
Md5:    1e7ee178fa4a34d420f9634bed6e8b8e
Sha1:   e1f2aeefabe02d0dd2ad8344e38ac32ad39fa38a
Sha256: b88ea5743ef8579ce6d36b79bd3126d3da62b097746067679df3de2158b3a825
                                        
                                            GET /Public//gg/2016-10-13/57ff90f5192dc.gif HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Last-Modified: Thu, 13 Oct 2016 13:49:41 GMT
Accept-Ranges: bytes
Etag: "fc2077a55825d21:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:16 GMT
Content-Length: 69432


--- Additional Info ---
Magic:  GIF image data, version 89a, 940 x 220
Size:   69432
Md5:    4894dc8b9af4b4cd49a0ccbf48a439df
Sha1:   bf909e4728c02cabdd29c389dbb0452a102fefd1
Sha256: 77fb8e571f59fae4a149eb0ebc285f59fb570aa8661e1fd144ba26d432ca0d00
                                        
                                            GET /88111_files/1_07.png HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Thu, 24 Mar 2016 09:18:26 GMT
Accept-Ranges: bytes
Etag: "05deb1eae85d11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:18 GMT
Content-Length: 4048


--- Additional Info ---
Magic:  GIF image data, version 89a, 48 x 46
Size:   4048
Md5:    624353ed4ab3d61f383094d0fbc46d4a
Sha1:   a0ff8b4e1e61070c39c44ef65f8d2299f7faaef0
Sha256: 09ad7f67bc20b07f9929c7852b825ed06d4f3a5b486561eed695dcf326e2e06d
                                        
                                            GET /88111_files/1_08.png HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Thu, 24 Mar 2016 09:08:26 GMT
Accept-Ranges: bytes
Etag: "0a14ab9ac85d11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:18 GMT
Content-Length: 3939


--- Additional Info ---
Magic:  GIF image data, version 89a, 52 x 46
Size:   3939
Md5:    a54928675c1ca3190c61420a93463c69
Sha1:   482990df3257cc8a9918de85c697d7976b2658bc
Sha256: 485075624908ecf69e4fe73e80e0030a0b256d669564b5e71b4108d857045cd6
                                        
                                            GET /88111_files/1_09.png HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Thu, 24 Mar 2016 09:18:28 GMT
Accept-Ranges: bytes
Etag: "08a1c20ae85d11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:18 GMT
Content-Length: 4156


--- Additional Info ---
Magic:  GIF image data, version 89a, 53 x 50
Size:   4156
Md5:    a634529d999ef3c744eb08a3e6b3dc6c
Sha1:   05a1ce9bcc536f06bc7d54d5186079ee2ae3d77f
Sha256: 2a938536d8ade6c410694a9678f6f06caae45d1ca4690c064b945d7f9b71e25f
                                        
                                            GET /88111_files/1_10.png HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Thu, 24 Mar 2016 09:18:38 GMT
Accept-Ranges: bytes
Etag: "06b1226ae85d11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:18 GMT
Content-Length: 3903


--- Additional Info ---
Magic:  GIF image data, version 89a, 49 x 50
Size:   3903
Md5:    2e0b2e1bb60ee249db629548a1aeec1c
Sha1:   2770eeea497789cc5de6777fa6fc80585b3b2efa
Sha256: f852b245d3574d462c45b5114e8ad2ad1f6c415d96f84ed2a496a76c5d1131ee
                                        
                                            GET /88111_files/1_11.png HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Thu, 24 Mar 2016 09:18:06 GMT
Accept-Ranges: bytes
Etag: "09bff12ae85d11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:18 GMT
Content-Length: 4141


--- Additional Info ---
Magic:  GIF image data, version 89a, 48 x 50
Size:   4141
Md5:    9f086e705356529c749fb1562e5a85ec
Sha1:   6d3ecff161f7cd66c680e1dfc18e790f1960d8fe
Sha256: af0ddb01a6931152681e6947aca275a660ce6ef09f2bf059add2ec19729dd12a
                                        
                                            GET /88111_files/1_12.png HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Thu, 24 Mar 2016 09:18:08 GMT
Accept-Ranges: bytes
Etag: "0c83014ae85d11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:18 GMT
Content-Length: 3532


--- Additional Info ---
Magic:  PNG image, 52 x 50, 8-bit colormap, non-interlaced
Size:   3532
Md5:    0e486ca00452442f068313e1ce57a49d
Sha1:   ee3b8f3b4385b58eff495b593f8f3956b070e4a4
Sha256: 42d26b4e72dd4a042bafded1e1bee76969cd94920830fb3c297fb4a1caa53294
                                        
                                            GET /Public//gg/2017-04-28/5902fde7438c4.gif HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Last-Modified: Fri, 28 Apr 2017 08:31:35 GMT
Accept-Ranges: bytes
Etag: "ee1cdd8f9bfd21:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:15 GMT
Content-Length: 74214


--- Additional Info ---
Magic:  GIF image data, version 89a, 1000 x 60
Size:   74214
Md5:    c606475c1d32090528176d90a75e5dbc
Sha1:   9aed226e974bb1da21aefee09a20cbd43faa790d
Sha256: aa2181cb953330c88e3b01c5fe7b3c1290195aa8db6ed41d223e697876da5d16
                                        
                                            GET /gg/js/jquery-1.4.3.min.js HTTP/1.1 
Host: 9a77.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.9a77.com/gg/amjs-db.htm

                                         
                                         208.66.74.108
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Last-Modified: Sat, 29 Oct 2016 11:56:40 GMT
Accept-Ranges: bytes
Etag: "0c4082db31d21:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:18 GMT
Content-Length: 77746


--- Additional Info ---
Magic:  ASCII English text, with very long lines
Size:   77746
Md5:    e4958bd2e32d9fcd6115a585ed17a9cc
Sha1:   97be02d1785b7bb4f41ae116a6a9bef74cb018d6
Sha256: f800b399e5c7a5254fc66bb407117fe38dbde0528780e68c9f7c87d299f8486a

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /hm.gif?cc=0&ck=1&cl=24-bit&ds=1176x885&vl=180&et=0&fl=10.0&ja=1&ln=en-us&lo=0&rnd=439063309&si=3e8a1c225433cbd34d03129ae387499a&su=http%3A%2F%2F627988.com%2F&v=1.2.33&lv=1&ct=!!&tt=%E5%BC%80%E5%A5%96%E7%9B%B4%E6%92%AD%E4%B8%AD%E5%BF%83%5C%E5%BC%80%E5%A5%96%E7%BB%93%E6%9E%9C&sn=50116 HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Home/kaijiang
Cookie: BAIDUID=E2BE5DC36ADD529405B8E4C6B104FDE1:FG=1; HMACCOUNT=E2E3B68F1D63E2E4

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Date: Sat, 14 Jul 2018 03:05:31 GMT
Pragma: no-cache
Server: apache
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /88111_files/1_03.png HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Thu, 24 Mar 2016 09:18:40 GMT
Accept-Ranges: bytes
Etag: "0984327ae85d11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:18 GMT
Content-Length: 3842


--- Additional Info ---
Magic:  GIF image data, version 89a, 48 x 55
Size:   3842
Md5:    28c8bc7d08c4c6dbc8bda7f64e5c55dc
Sha1:   46932295bc0457f514ab5bf709230034fda86e44
Sha256: d3c4228fef2b16c1874e9bd82b676b176a35c3ccbf86128f0def7edde3164c56
                                        
                                            GET /88111_files/1_04.png HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Thu, 24 Mar 2016 09:18:22 GMT
Accept-Ranges: bytes
Etag: "03891cae85d11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:18 GMT
Content-Length: 3835


--- Additional Info ---
Magic:  GIF image data, version 89a, 52 x 55
Size:   3835
Md5:    76184d6cb8c157b5feadc50b85332e89
Sha1:   9a5a5b0494e2a0e61dbb2962efa740dc5280f94f
Sha256: b13ca8186b85eade0499f65e2ba979545c4544d9dfb77b04f2c66518eb37bc5f
                                        
                                            GET /2.gif HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Last-Modified: Wed, 22 Jun 2016 15:49:13 GMT
Accept-Ranges: bytes
Etag: "20fd12a09dccd11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:19 GMT
Content-Length: 310


--- Additional Info ---
Magic:  GIF image data, version 89a, 120 x 20
Size:   310
Md5:    ce7998ec82ad390663b369b56f9675a1
Sha1:   202a0abd14650ea8ea20a48f933fabff4e718891
Sha256: f6710e1f2b9ff14916632621773c7e7457b19f83f66ac62929957e139161e59a
                                        
                                            GET /Index/Public/css/list.css HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Tuku/tuijian
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Last-Modified: Mon, 12 Oct 2015 04:59:46 GMT
Accept-Ranges: bytes
Etag: "04d88d0aa4d11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:19 GMT
Content-Length: 12714


--- Additional Info ---
Magic:  UTF-8 Unicode C program text, with CRLF line terminators
Size:   12714
Md5:    d31170386336252380ac907b8e94bda0
Sha1:   eb08fcaf04293b7706e9e8cd0542dc20acab9c6b
Sha256: b44f4f81d9244cfd5b65a4daa622073b689e887c7685786bf3b96267ef954968
                                        
                                            GET /Index/Public/JavaScript/bmjs00.js HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Home/kaijiang
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Last-Modified: Sat, 24 Feb 2018 06:32:52 GMT
Accept-Ranges: bytes
Etag: "3630604c39add31:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:19 GMT
Content-Length: 17789


--- Additional Info ---
Magic:  UTF-8 Unicode text, with very long lines, with CRLF line terminators
Size:   17789
Md5:    7f0390cf7e067c145cd4f518a57314e6
Sha1:   042741250b2db781855b223c1d1748e7904892c6
Sha256: a4301f1bfc161276b5b75504303ba9ce8705b52c022c7c6f524a7c5dc552f5f2

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /Index/Public/JavaScript/My97DatePicker/WdatePicker.js HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Pic/pic
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Last-Modified: Fri, 17 Jul 2015 09:08:50 GMT
Accept-Ranges: bytes
Etag: "07de93170c0d01:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:19 GMT
Content-Length: 10235


--- Additional Info ---
Magic:  ASCII C program text, with very long lines, with CRLF line terminators
Size:   10235
Md5:    c6e276ee38a3a8307bfe0134414c254f
Sha1:   10b715e59ee1fbf1c23d4efa71975202fa7638ce
Sha256: 6ddf016f7607b1f0a71ba70c50f08c6a943e4f7b4d42058f8d985b8a406d23d7

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /Index/Public/JavaScript/jQuery-jcMarquee.js HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Pic/pic
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Last-Modified: Mon, 18 Jul 2016 18:48:40 GMT
Accept-Ranges: bytes
Etag: "4a9a31025e1d11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:19 GMT
Content-Length: 2674


--- Additional Info ---
Magic:  UTF-8 Unicode C program text, with CRLF line terminators
Size:   2674
Md5:    71d49e633da74b7ba928d725dea157c2
Sha1:   c90264d4b0a68aaea431c1757eb30ad74d93fff4
Sha256: f6cc48e4c22838e1d6df183ec60e5b2dc1a4a7bf3ce46d6ffc834a8e058e2228

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /tu/i.gif HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Bbs/sy
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Last-Modified: Mon, 12 Sep 2016 13:00:26 GMT
Accept-Ranges: bytes
Etag: "cfe466a1f5cd21:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:19 GMT
Content-Length: 318


--- Additional Info ---
Magic:  GIF image data, version 89a, 30 x 15
Size:   318
Md5:    84d5e57dbcb65ebf5e74d3de01df058a
Sha1:   8129221dd8a5946d6a503326049ab0f3c21eb43f
Sha256: 4649f554e61de8116a172e6b273d75655d117aa258317970139a75891ce9833f
                                        
                                            GET /tu/jing.gif HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Bbs/sy
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Last-Modified: Mon, 12 Sep 2016 13:00:29 GMT
Accept-Ranges: bytes
Etag: "691780a3f5cd21:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:19 GMT
Content-Length: 1990


--- Additional Info ---
Magic:  GIF image data, version 89a, 15 x 15
Size:   1990
Md5:    75bfaacf27bd9daed219d8c68c01ee49
Sha1:   81e7c5dcfdb6c14ae7deda5b10430fc935c415ea
Sha256: 1606c956013fb051e0f8ff8c4ffd8a8659975af9356a317c18255900fac23d14
                                        
                                            GET /bbs/tw_files/arrow_white.gif HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/bbs/tuku.html
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Last-Modified: Wed, 22 Jun 2016 17:24:31 GMT
Accept-Ranges: bytes
Etag: "b063ddefaaccd11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:19 GMT
Content-Length: 1167


--- Additional Info ---
Magic:  GIF image data, version 89a, 10 x 7
Size:   1167
Md5:    9e18def6a03d9b1880b62fa0e4944218
Sha1:   4e31592544dd04d84d4452d7332d6b6dd4eb37e2
Sha256: cd79c37ddd1e5ca9b1438f2639ac96a386529f2cc5e1a60089020fb93428aedd
                                        
                                            GET /charts/preloader.swf HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0; Hm_lvt_3e8a1c225433cbd34d03129ae387499a=1531537531; Hm_lpvt_3e8a1c225433cbd34d03129ae387499a=1531537531

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: application/x-shockwave-flash
                                        
Last-Modified: Fri, 17 Jul 2015 08:59:24 GMT
Accept-Ranges: bytes
Etag: "0be8ce06ec0d01:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:19 GMT
Content-Length: 5502


--- Additional Info ---
Magic:  Macromedia Flash data (compressed), version 9
Size:   5502
Md5:    acb22599c797c32be09a89077c56be8a
Sha1:   ad625c8d4344fcd6aebfbd4c292f8b7064420302
Sha256: 174703546db28dac9e5e148f2843132a26ed6c330fb2b0096c21feeaae0b45f6

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /Index/Public/css/base.css HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Index/Public/css/list.css
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0; Hm_lvt_3e8a1c225433cbd34d03129ae387499a=1531537531; Hm_lpvt_3e8a1c225433cbd34d03129ae387499a=1531537531

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Last-Modified: Mon, 12 Oct 2015 04:59:00 GMT
Accept-Ranges: bytes
Etag: "0421db5aa4d11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:19 GMT
Content-Length: 4080


--- Additional Info ---
Magic:  UTF-8 Unicode (with BOM) C program text, with very long lines, with CRLF line terminators
Size:   4080
Md5:    def117870dd0f3268dc5f2cd4a2a208d
Sha1:   6b6f10d7e9ca7d0701add80662b9d38c6580ab83
Sha256: 529ee61322a50db1d8cc4488c93f9db9e0807e1e623a7da08ea45d20af538e3f
                                        
                                            GET /Index/Public/JavaScript/skin/layer.css HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0; Hm_lvt_3e8a1c225433cbd34d03129ae387499a=1531537531; Hm_lpvt_3e8a1c225433cbd34d03129ae387499a=1531537531

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Last-Modified: Mon, 12 Oct 2015 06:25:12 GMT
Accept-Ranges: bytes
Etag: "0d4ddbfb64d11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:19 GMT
Content-Length: 4450


--- Additional Info ---
Magic:  UTF-8 Unicode (with BOM) text, with very long lines, with CRLF line terminators
Size:   4450
Md5:    b4c154033acb05e1a5cb88454def40d9
Sha1:   26907b41cc8fffa28ba224ed7fd52b2b56fc50f5
Sha256: 23b391c49bfe90bdf2a87fec245b6de225f14307cdb438395a5bde9182b75d91
                                        
                                            GET /?_wv=1027&k=4E0LaTX HTTP/1.1 
Host: jq.qq.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/

                                         
                                         58.251.100.24
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html
                                        
Date: Sat, 14 Jul 2018 03:05:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Server: tws
Content-Encoding: gzip
Location: http://qm.qq.com/cgi-bin/qm/qr?k=A2ZWslg1Gh43sKHhyBpQSQuvAg4SUu5t
Cache-Control: max-age=0, must-revalidate


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   34
Md5:    ae6032220d3fe86efac8c6c63b7c1370
Sha1:   7d02bbc61d97b4566346ce9ce20dd758b6a36d7a
Sha256: 1c8fc17e9af52f0f6534fb4f9aba6dddf72919969457dfd0f6494a91a34e2d1a
                                        
                                            GET /Index/Public/css/images/bg-banner2.gif HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Index/Public/css/main.css
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0; Hm_lvt_3e8a1c225433cbd34d03129ae387499a=1531537531; Hm_lpvt_3e8a1c225433cbd34d03129ae387499a=1531537531

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Last-Modified: Fri, 17 Jul 2015 09:03:06 GMT
Accept-Ranges: bytes
Etag: "041df646fc0d01:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:19 GMT
Content-Length: 59


--- Additional Info ---
Magic:  GIF image data, version 89a, 8 x 8
Size:   59
Md5:    ad139b411c4cf803d5586b63364d21df
Sha1:   b346c00dfe4910b3b3cf0b9236cff92f5e99c8ab
Sha256: 23ae92c8f13100a946280a00eae2535e7ed444ab7c4484a167e274415739863c
                                        
                                            GET /chajian/bmjg.js?_=1531537530924 HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
X-Requested-With: XMLHttpRequest
Referer: http://627988.com/Home/kaijiang
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0; Hm_lvt_3e8a1c225433cbd34d03129ae387499a=1531537531; Hm_lpvt_3e8a1c225433cbd34d03129ae387499a=1531537531

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Last-Modified: Thu, 12 Jul 2018 13:34:29 GMT
Accept-Ranges: bytes
Etag: "9e4722fe519d41:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:19 GMT
Content-Length: 77


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   77
Md5:    8657daa0f65cb0ce1e4d577df54706fd
Sha1:   5608dcc53a576c5092d15922a02a48f0d70daa37
Sha256: 687713a892934fc2c976124400085c9fca5d8124a7290b30011d9dfe8d9bd4df
                                        
                                            GET /tu/bg1.gif HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Bbs/sy
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Last-Modified: Mon, 12 Sep 2016 13:35:55 GMT
Accept-Ranges: bytes
Etag: "c0439f96facd21:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:20 GMT
Content-Length: 49825


--- Additional Info ---
Magic:  GIF image data, version 89a, 505 x 138
Size:   49825
Md5:    69512d9d2c8fbf24b697564788016cce
Sha1:   3a6019d6ab578b3329489c4cb6dedf989ca71795
Sha256: e3fb0f321e071fc964bc712b16a62fef7a416eb590cae24cf464bf95770bd91d
                                        
                                            GET /get/flashplayer/update/current/xml/version_en_win_pl.xml HTTP/1.1 
Host: fpdownload2.macromedia.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         91.135.34.11
HTTP/1.1 200 OK
Content-Type: text/xml
                                        
Server: Apache
Last-Modified: Tue, 10 Jul 2018 09:00:07 GMT
Etag: "60e-570a15b4abfd2"
Accept-Ranges: bytes
Content-Length: 1550
Date: Sat, 14 Jul 2018 03:05:32 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  XML document text\012 XML document text
Size:   1550
Md5:    46219bd9418b94e5f479d9865bbcb673
Sha1:   59dfe58ecf2a7feaecf17560086e3a1d341875f8
Sha256: f6c052497ecfb687ecd7dd378c96dace5bed8b856a844034200703d8ab8734f9
                                        
                                            GET /Index/Public/images//bg-shadow.gif HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Home/kaijiang
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Last-Modified: Sat, 09 Jul 2016 09:43:50 GMT
Accept-Ranges: bytes
Etag: "6b2eb66c6d9d11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:20 GMT
Content-Length: 846


--- Additional Info ---
Magic:  GIF image data, version 89a, 2 x 18
Size:   846
Md5:    d8308820a1d8d803cd01e3abdce524fc
Sha1:   1e078225f4f1bac0361e96e60ca9dc2692679ebc
Sha256: 9db6620545a2bdd756636a21f8cf53344f93582e71a19651dfdf25f5047246b5
                                        
                                            GET /Public//gg/2016-10-13/57ff914e2f948.gif HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Last-Modified: Thu, 13 Oct 2016 13:51:10 GMT
Accept-Ranges: bytes
Etag: "58128fda5825d21:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:19 GMT
Content-Length: 392051


--- Additional Info ---
Magic:  GIF image data, version 89a, 980 x 80
Size:   392051
Md5:    2ec02184518195ccb98161f9f133a7c0
Sha1:   04492aab6045483c0a309763a9ff567778ae4eb3
Sha256: d91e1d9bb7b8e6ddebc271ffb491df09bbd61a6c34e953d76eefb4e5278b58c4
                                        
                                            GET /88111_files/1_05.png HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Thu, 24 Mar 2016 09:18:12 GMT
Accept-Ranges: bytes
Etag: "0229316ae85d11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:20 GMT
Content-Length: 4149


--- Additional Info ---
Magic:  GIF image data, version 89a, 53 x 46
Size:   4149
Md5:    1a05ab7f727cd1585955c175313b5eee
Sha1:   534c5793cc060a507084d2de7af0993b3a874dca
Sha256: afb853abc088a4f49b53c5deecd89616e55e4e7a4ef125665aeca8d3c1eb6f20
                                        
                                            GET /Index/Public/JavaScript/ZeroClipboard0.swf HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Home/kaijiang
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0; Hm_lvt_3e8a1c225433cbd34d03129ae387499a=1531537531; Hm_lpvt_3e8a1c225433cbd34d03129ae387499a=1531537531

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: application/x-shockwave-flash
                                        
Last-Modified: Mon, 12 Oct 2015 08:22:36 GMT
Accept-Ranges: bytes
Etag: "0ee6a26c74d11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:20 GMT
Content-Length: 1071


--- Additional Info ---
Magic:  Macromedia Flash data (compressed), version 9
Size:   1071
Md5:    9f4401cdc4405d0730362256b4c04cc0
Sha1:   406ca1ec9595fd96424e6c8f3802bc898f080116
Sha256: fd10a7c583c9ee895180c4d03bcd9d57eea93a0f169a7149f1c3ad7ec8020676

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /Index/Public/JavaScript/My97DatePicker/skin/WdatePicker.css HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Pic/pic
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0; Hm_lvt_3e8a1c225433cbd34d03129ae387499a=1531537531; Hm_lpvt_3e8a1c225433cbd34d03129ae387499a=1531537531

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Last-Modified: Fri, 17 Jul 2015 09:08:14 GMT
Accept-Ranges: bytes
Etag: "053741c70c0d01:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:20 GMT
Content-Length: 192


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   192
Md5:    d99ed30a1ae98049e3c8c580c0503ed5
Sha1:   a2aac82b4a83286dcbf435f8fab33dbbaef25690
Sha256: 500e8dda281a347eeb4386e900072a7d58679153b1f6404b25d1efe36672ce30
                                        
                                            GET /Index/Public/tuku/pic/tk/27.jpg HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Tuku/tuijian
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Sat, 09 Jul 2016 18:38:11 GMT
Accept-Ranges: bytes
Etag: "36c06cb11dad11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:21 GMT
Content-Length: 7560


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   7560
Md5:    ca1f6ba3388306d8e2c21140ca7204db
Sha1:   0df67650e2b46621360bbef13909e0de37251eef
Sha256: ece7c7f1061ee8d748568c5201e996f1b5cb3b04eb6781a6a6cecf83b1a530da
                                        
                                            GET /gg/css/nivo-slider.css HTTP/1.1 
Host: 9a77.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.9a77.com/gg/amjs-db.htm

                                         
                                         208.66.74.108
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Last-Modified: Sat, 29 Oct 2016 11:56:08 GMT
Accept-Ranges: bytes
Etag: "03c2d6fdb31d21:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:20 GMT
Content-Length: 5260


--- Additional Info ---
Magic:  ASCII C program text, with CRLF line terminators
Size:   5260
Md5:    aa4b9929f707c9fce0972ce98eee5ac0
Sha1:   900860bdda5164d3327cb655dc3f2b9b418ebdfa
Sha256: ae49c8427815b5fa1d2bf9dfe13645a9801e782be8361198d265f7edbde53816
                                        
                                            GET /Index/Public/tuku/pic/tk/28.jpg HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Tuku/tuijian
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Sat, 09 Jul 2016 18:38:16 GMT
Accept-Ranges: bytes
Etag: "e8db8e11dad11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:21 GMT
Content-Length: 11950


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   11950
Md5:    634f28342382da7f4f3259d03dc37d32
Sha1:   d0e29d267273faba6d494ec1c53ed5446002a608
Sha256: 543c232efa8569b608d8081a9a0a6aa307b6c2d2b553295b59362d74ba82a1fa
                                        
                                            GET /Public//gg/2017-09-02/59aa9ed924052.gif HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Last-Modified: Sat, 02 Sep 2017 12:06:49 GMT
Accept-Ranges: bytes
Etag: "84aa85f4e323d31:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:19 GMT
Content-Length: 105517


--- Additional Info ---
Magic:  GIF image data, version 89a, 120 x 260
Size:   105517
Md5:    c66c9b7e4ef0052bdab3a7c31dd60e27
Sha1:   3549084acea4f158de6ad430165a225e537c6a32
Sha256: 7cf67100fbe5b1f40cc9033286c9021c9eb6635a5281411c2a2d52e28a77f1c3
                                        
                                            GET /chajian/bmjg.js?_=1531537530925 HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
X-Requested-With: XMLHttpRequest
Referer: http://627988.com/Home/kaijiang
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0; Hm_lvt_3e8a1c225433cbd34d03129ae387499a=1531537531; Hm_lpvt_3e8a1c225433cbd34d03129ae387499a=1531537531

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Last-Modified: Thu, 12 Jul 2018 13:34:29 GMT
Accept-Ranges: bytes
Etag: "9e4722fe519d41:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:21 GMT
Content-Length: 77


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   77
Md5:    8657daa0f65cb0ce1e4d577df54706fd
Sha1:   5608dcc53a576c5092d15922a02a48f0d70daa37
Sha256: 687713a892934fc2c976124400085c9fca5d8124a7290b30011d9dfe8d9bd4df
                                        
                                            GET /Index/Public/tuku/pic/tk/26.jpg HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Tuku/tuijian
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Sat, 09 Jul 2016 18:38:06 GMT
Accept-Ranges: bytes
Etag: "94cc86811dad11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:20 GMT
Content-Length: 10091


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   10091
Md5:    adaebe8b82632de86744523dc4c069c7
Sha1:   2a85697ec85b512a15c65dc52184035b959d1c56
Sha256: baaa4f38af3b79603b09d28decb1628b77d3e28b343d50154196dbaa2a0c7b90
                                        
                                            GET /gg/js/jquery.nivo.slider.pack.js HTTP/1.1 
Host: 9a77.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.9a77.com/gg/amjs-db.htm

                                         
                                         208.66.74.108
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Last-Modified: Sat, 29 Oct 2016 11:56:55 GMT
Accept-Ranges: bytes
Etag: "80dd308bdb31d21:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:22 GMT
Content-Length: 9287


--- Additional Info ---
Magic:  ASCII C program text, with very long lines, with CRLF line terminators
Size:   9287
Md5:    31ab84f1574e472cdde9df670ebfaabb
Sha1:   28f7b429647cd25c21da6663c7495b22f1b9c106
Sha256: 95a4b037061012fbe566ebf236d100b615c5b1a2d236c22a4acb2e7a832c1500

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /Public//gg/2016-10-13/57ff916a0dcd9.gif HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Last-Modified: Thu, 13 Oct 2016 13:51:37 GMT
Accept-Ranges: bytes
Etag: "16c2aeb5825d21:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:16 GMT
Content-Length: 421421


--- Additional Info ---
Magic:  GIF image data, version 89a, 1000 x 80
Size:   421421
Md5:    2ea91e3092838e708a137df67d038cfe
Sha1:   e137ae48e9aaacf52f038b57ad4d4fd83fb05a53
Sha256: f7bed97f6d34d7fd2bc30c0c4c1783a31b28f28af7e92d2331e733ceba4dd16d
                                        
                                            GET /Index/Public/tuku/pic/tk/20.jpg HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Tuku/tuijian
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Sat, 09 Jul 2016 18:37:31 GMT
Accept-Ranges: bytes
Etag: "1139eaf310dad11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:22 GMT
Content-Length: 11874


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   11874
Md5:    ec6c665d8292108526a581c188a02b97
Sha1:   593e84809253f176a1a63ed43237b58eea4f974d
Sha256: 9c75b301c911eb780ab9b7c97b6c08220a419a9a50e616ad1a0c4e91c1491b59
                                        
                                            GET /cgi-bin/r.cgi?flag1=7832&flag2=19&flag3=2&1=21 HTTP/1.1 
Host: isdspeed.qq.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://qm.qq.com/cgi-bin/qm/qr?k=A2ZWslg1Gh43sKHhyBpQSQuvAg4SUu5t

                                         
                                         125.39.133.14
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Date: Sat, 14 Jul 2018 03:05:33 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Server: QZHTTP-2.38.38
Content-Encoding: gzip


--- Additional Info ---
                                        
                                            GET /report/bnl?data=0,11780,0,pc HTTP/1.1 
Host: cgi.pub.qq.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://qm.qq.com/cgi-bin/qm/qr?k=A2ZWslg1Gh43sKHhyBpQSQuvAg4SUu5t

                                         
                                         203.205.151.201
HTTP/1.1 200 OK
Content-Type: application/json;charset=utf-8
                                        
Date: Sat, 14 Jul 2018 03:05:34 GMT
Content-Length: 9
Connection: keep-alive
Server: tws


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   9
Md5:    7356645231da9cfecc34610420982100
Sha1:   4e6d5bf58d719360518ecccb073248d0293dd346
Sha256: 2c2237045b54bb664bd76b7d6f1da237fd50de74712edf261e90c1c0d7f2e822
                                        
                                            GET /gg/images/logo2.jpg HTTP/1.1 
Host: 9a77.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://9a77.com/gg/css/nivo-slider.css

                                         
                                         208.66.74.108
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Sat, 29 Oct 2016 12:20:29 GMT
Accept-Ranges: bytes
Etag: "80240d6de31d21:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:22 GMT
Content-Length: 27757


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   27757
Md5:    7f53389c579cb950713e687de70006ce
Sha1:   fcacb1b6290db65383380917f2249eb062e24190
Sha256: 409e7b39ce10578ab91037b888dce49b6c2795bbab38f37bee8706cba3d5d960
                                        
                                            GET /Index/Public/tuku/pic/tk/21.jpg HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Tuku/tuijian
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Sat, 09 Jul 2016 18:37:37 GMT
Accept-Ranges: bytes
Etag: "944983f710dad11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:22 GMT
Content-Length: 5498


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   5498
Md5:    37acdca98a99149f7878c0f9d62621c4
Sha1:   d1b6c791c99d5e62faee9d536e7fcb0041a9eac7
Sha256: c771ae355e6dc0dbd78b8e3fdc2f1714140d46da90c6a4898de4ae5c543f36ad
                                        
                                            GET /Index/Public/tuku/pic/tk/23.jpg HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Tuku/tuijian
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Sat, 09 Jul 2016 18:37:51 GMT
Accept-Ranges: bytes
Etag: "1217adff10dad11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:22 GMT
Content-Length: 11346


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   11346
Md5:    cac987ab8c8e3b9d684d4af8e9110952
Sha1:   0e986a07714fc880769d82ff81087807b4f5c5ec
Sha256: 8845a9528cef4129f23a71cb8b20804bd97f2f3a3e93a7b4c93b62b865360b13
                                        
                                            GET /gg/images/logo1.jpg HTTP/1.1 
Host: 9a77.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://9a77.com/gg/css/nivo-slider.css

                                         
                                         208.66.74.108
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Sat, 29 Oct 2016 12:20:22 GMT
Accept-Ranges: bytes
Etag: "07d4d1de31d21:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:22 GMT
Content-Length: 29235


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   29235
Md5:    99804aad0c69003d7389314c8c76ab84
Sha1:   49589ba5b1b824bda91d68fea2f5aeed395e9b9f
Sha256: 445d2eb26ae5ee414bde7d0775043ca2f0751bd55c29331188921ff17d48cffb
                                        
                                            GET /Index/Public/tuku/pic/tk/22.jpg HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Tuku/tuijian
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Sat, 09 Jul 2016 18:37:44 GMT
Accept-Ranges: bytes
Etag: "b5177cfb10dad11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:22 GMT
Content-Length: 6425


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   6425
Md5:    2bc698fc12e3f3e77e918ff5e6ef121f
Sha1:   51f3beb783cf3a09309ae567d28d2ed3ea4e7f5e
Sha256: d7cd06a1b7c0e0cbd8bd54a76700ba787f8409b55054ba2d59db7f25696e0d46
                                        
                                            GET /gg/images/warp_1.jpg HTTP/1.1 
Host: www.9a77.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.9a77.com/gg/amjs-db.htm

                                         
                                         208.66.74.108
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Sat, 29 Oct 2016 12:22:16 GMT
Accept-Ranges: bytes
Etag: "0cc715df31d21:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:22 GMT
Content-Length: 51418


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   51418
Md5:    d8c7a6f7f1dc823f3618e96e4bf7594d
Sha1:   50300922a329c834f557b182bc6aa6e20935885a
Sha256: 39bbf2b5ac84e388e5b45b030dcbcc467b07be00194bb98d5f86e4390e1b1cac
                                        
                                            GET /gg/images/warp_2.jpg HTTP/1.1 
Host: www.9a77.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.9a77.com/gg/amjs-db.htm

                                         
                                         208.66.74.108
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Sat, 29 Oct 2016 12:22:23 GMT
Accept-Ranges: bytes
Etag: "8029f319df31d21:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:22 GMT
Content-Length: 52994


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   52994
Md5:    9e309562d92321f85330cff93d6247dd
Sha1:   eeaee8bca06688a39ae7433c602b612daefdfc13
Sha256: 0d1cf799ce799184bcf129721717681ebe302c0b3eed422c846c9528766bdbac
                                        
                                            GET /gg/images/3.jpg HTTP/1.1 
Host: www.9a77.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.9a77.com/gg/amjs-db.htm

                                         
                                         208.66.74.108
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Mon, 04 Sep 2017 05:59:05 GMT
Accept-Ranges: bytes
Etag: "805a21ea4225d31:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:22 GMT
Content-Length: 75455


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   75455
Md5:    016e345008b1ad8867d2fcb07724c5ac
Sha1:   4f8d7aed54d7c9adb457bd22727f813197d9efd0
Sha256: e571708af9ca4d72d17afd74bfb494cbd4ff69caf1e268b3b164e5a5db798f74
                                        
                                            GET /chajian/bmjg.js?_=1531537530926 HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
X-Requested-With: XMLHttpRequest
Referer: http://627988.com/Home/kaijiang
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0; Hm_lvt_3e8a1c225433cbd34d03129ae387499a=1531537531; Hm_lpvt_3e8a1c225433cbd34d03129ae387499a=1531537531

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Last-Modified: Thu, 12 Jul 2018 13:34:29 GMT
Accept-Ranges: bytes
Etag: "9e4722fe519d41:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:23 GMT
Content-Length: 77


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   77
Md5:    8657daa0f65cb0ce1e4d577df54706fd
Sha1:   5608dcc53a576c5092d15922a02a48f0d70daa37
Sha256: 687713a892934fc2c976124400085c9fca5d8124a7290b30011d9dfe8d9bd4df
                                        
                                            GET /Index/Public/tuku/pic/tk/35.jpg HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Tuku/tuijian
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Sat, 09 Jul 2016 18:39:01 GMT
Accept-Ranges: bytes
Etag: "cec6422911dad11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:23 GMT
Content-Length: 4875


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   4875
Md5:    83986bea722d985533c805c173a25202
Sha1:   2101e4097eb35b1b8092904cbcc99953f7260ded
Sha256: f6f08e2855182b0d005778e8d1cc5bf7c4cbf3c241293eecaf0a0bbcd07878bc
                                        
                                            GET /Index/Public/tuku/pic/tk/29.jpg HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Tuku/tuijian
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Sat, 09 Jul 2016 18:38:21 GMT
Accept-Ranges: bytes
Etag: "9e5dcf1111dad11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:23 GMT
Content-Length: 5292


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   5292
Md5:    896fca5f6f3f3d50bcb507bcd93c5c7a
Sha1:   5039a0c3f5dd7f1cf2ea67c1971043dced23cb56
Sha256: ee80efe1efd08bf913a7720b1d1db9fb61f5092b00faf6213be5fc93511bca9e
                                        
                                            GET /gg/images/warp_4.jpg HTTP/1.1 
Host: www.9a77.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.9a77.com/gg/amjs-db.htm

                                         
                                         208.66.74.108
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Sat, 29 Oct 2016 12:22:37 GMT
Accept-Ranges: bytes
Etag: "80644b22df31d21:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:23 GMT
Content-Length: 53598


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   53598
Md5:    4ad08ac39fe93eee24f076687c895553
Sha1:   9c4dda4bdae9e17edc4f7948ae3bc3e52d5881cd
Sha256: ce665f8fba011da8370de35d75572f86c32110fcc8a39fe65f8ffff07808c5d1
                                        
                                            GET /Index/Public/tuku/pic/shqm_left_pic.gif HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Tuku/pic
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Last-Modified: Sat, 09 Jul 2016 18:34:23 GMT
Accept-Ranges: bytes
Etag: "21c4898310dad11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:23 GMT
Content-Length: 3231


--- Additional Info ---
Magic:  GIF image data, version 89a, 35 x 69
Size:   3231
Md5:    f6fab8535d62023c6a70b459b283d524
Sha1:   5de3e698ac35be3dcd984a428a4e5418265231d0
Sha256: 05c9ae8018004cc25c7a226b2cdef64898bbdf7050625f45a4c9046f68d9c838
                                        
                                            GET /gg/images/logo4.jpg HTTP/1.1 
Host: 9a77.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://9a77.com/gg/css/nivo-slider.css

                                         
                                         208.66.74.108
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Sat, 29 Oct 2016 12:20:43 GMT
Accept-Ranges: bytes
Etag: "805f58dede31d21:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:22 GMT
Content-Length: 27325


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   27325
Md5:    de9a96ddfc2a1409c6b8cec919c9dffe
Sha1:   0a59fe9124c1b96f8ec357de50b1c7a738202ebe
Sha256: 11b5036e86bc5b90ca79e73347469959755dd4843e9c8640ee332ba51eaa397d
                                        
                                            GET /gg/images/2.jpg HTTP/1.1 
Host: www.9a77.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.9a77.com/gg/amjs-db.htm

                                         
                                         208.66.74.108
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Mon, 04 Sep 2017 05:59:04 GMT
Accept-Ranges: bytes
Etag: "0c488e94225d31:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:22 GMT
Content-Length: 68751


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   68751
Md5:    44aff490a442c70ea9a62e9c2ccc442a
Sha1:   bc434fcbc0a80e9ed7ff685e0b1ddd1c4a44e91e
Sha256: 368cbe2dbf4c59ce6452627714b5ec61b9adb1a23379995c618bd0f63e561cf9
                                        
                                            GET /Index/Public/tuku/pic/tk/24.jpg HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Tuku/tuijian
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Sat, 09 Jul 2016 18:37:56 GMT
Accept-Ranges: bytes
Etag: "8dfbcd211dad11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:23 GMT
Content-Length: 6055


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   6055
Md5:    5a7e3d85f58552af1a5546788380ce5a
Sha1:   2b5251aba04eb186fb97d85ba2da2ac402576534
Sha256: 083cefa1c33a4a30f5a0dea4388bf748baceea0e36b697f0abc816076eeec952
                                        
                                            GET /Index/Public/tuku/pic/tk/31.jpg HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Tuku/pic
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Sat, 09 Jul 2016 18:35:20 GMT
Accept-Ranges: bytes
Etag: "869bc7a510dad11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:23 GMT
Content-Length: 13721


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   13721
Md5:    f79d56064fb985da2b472a892ab98c13
Sha1:   3cb6ffe754af00fd9a6047153d2ab62862fe2db7
Sha256: 4b7cdcc6c6e7f870ef81fa6cb4e886a74762d62661a6abc925f5368eb45925fe
                                        
                                            GET /Index/Public/tuku/pic/tk/2.jpg HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Tuku/pic
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Sat, 09 Jul 2016 18:35:31 GMT
Accept-Ranges: bytes
Etag: "7bd7eac10dad11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:23 GMT
Content-Length: 6176


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   6176
Md5:    5690c8d420d53989adb4b2dd99593dfe
Sha1:   fc80523c45f8c592af233d3a1c757a426755e89b
Sha256: 0b80587dca4c2186944093541c743c52018314f70781fe7d733ff4394d3493fd
                                        
                                            GET /Index/Public/tuku/pic/tk/3.jpg HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Tuku/pic
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Sat, 09 Jul 2016 18:35:37 GMT
Accept-Ranges: bytes
Etag: "4c8cfcaf10dad11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:24 GMT
Content-Length: 5136


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   5136
Md5:    b020d55ce059dc4a72dc5c48f021784d
Sha1:   1ed28715766631c68bb63a0469f3a7b47d09055f
Sha256: d9f8b9ddffeeedecc92c343e3e84dab365dd8c009fc822586f07158e4aef5800
                                        
                                            GET /Index/Public/tuku/pic/tk/4.jpg HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Tuku/pic
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Sat, 09 Jul 2016 18:35:43 GMT
Accept-Ranges: bytes
Etag: "8bcb91b310dad11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:24 GMT
Content-Length: 4681


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   4681
Md5:    7022b51fd352d603477a5ac671d151a6
Sha1:   82d181bb424797421369d09bb2965ee221670851
Sha256: 9958548f99b4f3344ba490aaca27a030f3d068b7d4b1ea1eb8ac5dabc319abb1
                                        
                                            GET /chajian/bmjg.js?_=1531537530927 HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
X-Requested-With: XMLHttpRequest
Referer: http://627988.com/Home/kaijiang
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0; Hm_lvt_3e8a1c225433cbd34d03129ae387499a=1531537531; Hm_lpvt_3e8a1c225433cbd34d03129ae387499a=1531537531

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Last-Modified: Thu, 12 Jul 2018 13:34:29 GMT
Accept-Ranges: bytes
Etag: "9e4722fe519d41:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:24 GMT
Content-Length: 77


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   77
Md5:    8657daa0f65cb0ce1e4d577df54706fd
Sha1:   5608dcc53a576c5092d15922a02a48f0d70daa37
Sha256: 687713a892934fc2c976124400085c9fca5d8124a7290b30011d9dfe8d9bd4df
                                        
                                            GET /charts/chart.swf HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0; Hm_lvt_3e8a1c225433cbd34d03129ae387499a=1531537531; Hm_lpvt_3e8a1c225433cbd34d03129ae387499a=1531537531

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: application/x-shockwave-flash
                                        
Last-Modified: Fri, 17 Jul 2015 08:59:24 GMT
Accept-Ranges: bytes
Etag: "0be8ce06ec0d01:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:20 GMT
Content-Length: 377437


--- Additional Info ---
Magic:  Macromedia Flash data (compressed), version 9
Size:   377437
Md5:    7f70a4ac75eec1b5c631dbd76f959154
Sha1:   f71f5f7eb6e12b5ba06b23a1a7cd7acaf224d8df
Sha256: 40e1356b84ba2bd9dab03ec236bb9c1dcfc9aca1a770182234f8111ec59b03fc

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /Index/Public/tuku/pic/tk/5.jpg HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Tuku/pic
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Sat, 09 Jul 2016 18:35:55 GMT
Accept-Ranges: bytes
Etag: "f8ea9bba10dad11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:24 GMT
Content-Length: 11313


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   11313
Md5:    d173fff2e7de79181fb1ae8ec4adad29
Sha1:   03eb3ad820bf92a8f62139d856566e5cb233006c
Sha256: 0c7eebc0871b402340199000b84f581f88455ab6d73f1f5b117760369d723c8d
                                        
                                            GET /Index/Public/tuku/pic/tk/6.jpg HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Tuku/pic
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Sat, 09 Jul 2016 18:36:01 GMT
Accept-Ranges: bytes
Etag: "902c3abe10dad11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:24 GMT
Content-Length: 8703


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   8703
Md5:    4064a6e7c6ebf980d37820b1f0bca6b8
Sha1:   52e0f93287a7dd6e1c55ea8b6cb0f4b7ff292a15
Sha256: 3789b3ecd24359418e11b09e741cf6a4208f8481b9998576d2d96a1058c944c7
                                        
                                            GET /Index/Public/tuku/pic/tk/7.jpg HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Tuku/pic
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Sat, 09 Jul 2016 18:36:09 GMT
Accept-Ranges: bytes
Etag: "4b1bb1c210dad11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:24 GMT
Content-Length: 11163


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   11163
Md5:    9cc4b4b4df71e28a36f9d13b655e37f8
Sha1:   7171a4306ae17c7af1a5c18610cf88c96c170424
Sha256: ae475adc644a4c22209886867300eb2a7407ff6e0c3456b36441757a20d0ab66
                                        
                                            GET /Index/Public/tuku/pic/tk/9.jpg HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Tuku/pic
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Sat, 09 Jul 2016 18:36:29 GMT
Accept-Ranges: bytes
Etag: "2895c6ce10dad11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:24 GMT
Content-Length: 6320


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   6320
Md5:    b317bbb3572f60898e390238337a2e65
Sha1:   3872d4aeb11ab042f407b12295321924fae8476e
Sha256: 412e8956b233b62a9d59ad47a8a482078bb2f9223fd38f02c36848c3c2a10e37
                                        
                                            GET /Index/Public/tuku/pic/tk/10.jpg HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Tuku/pic
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Sat, 09 Jul 2016 18:36:34 GMT
Accept-Ranges: bytes
Etag: "929ae0d110dad11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:24 GMT
Content-Length: 8216


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   8216
Md5:    0507dcf49a945fe5d43cfd91fa64de90
Sha1:   cd95ea56089b3dac5190bc106f38ddbb6676fe22
Sha256: 71a39ff479392a45af918f76ba0a61a68930ba3653b1f753e9b4c30091d6d148
                                        
                                            GET /Index/Public/tuku/pic/tk/13.jpg HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Tuku/pic
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Sat, 09 Jul 2016 18:36:50 GMT
Accept-Ranges: bytes
Etag: "9e5a3db10dad11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:25 GMT
Content-Length: 8171


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   8171
Md5:    55e287f3bf93618ca83c46cecd692c67
Sha1:   f65d467b6ecc043f81a0d205fa08c3c926e6d1cf
Sha256: b7fd597b7e82eb4513e1b03555f689956a4c16173d6b19d5e5fe59ca5da22d77
                                        
                                            GET /Index/Public/tuku/pic/tk/8.jpg HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Tuku/pic
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Sat, 09 Jul 2016 18:36:23 GMT
Accept-Ranges: bytes
Etag: "28783cb10dad11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:25 GMT
Content-Length: 6871


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   6871
Md5:    0e65baa6760d6677ce42c72bce8c9340
Sha1:   959b4821c380cbf11e8be34c66de872a90268dd3
Sha256: 1f2a12a834b8675f301caf2d879ae64a7ae944cd207644bee08aedb2158d8e90
                                        
                                            GET /vbsxml/xml_1_7_25_line.xml?XMLCallDate=1531537537713 HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0; Hm_lvt_3e8a1c225433cbd34d03129ae387499a=1531537531; Hm_lpvt_3e8a1c225433cbd34d03129ae387499a=1531537531

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: text/xml
                                        
Last-Modified: Fri, 13 Jul 2018 20:02:40 GMT
Accept-Ranges: bytes
Etag: "561ae873e41ad41:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:25 GMT
Content-Length: 16737


--- Additional Info ---
Magic:  XML document text
Size:   16737
Md5:    2354f81f8e2dad22778e6db22d4b725f
Sha1:   903e96305d941276ce419b3fafdef78445cecc27
Sha256: 8079a656f4a1ae9ae836e0cedd749ec154e92103582c701dbd00d6877ab81825

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /Index/Public/tuku/pic/tk/14.jpg HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Tuku/pic
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Sat, 09 Jul 2016 18:36:56 GMT
Accept-Ranges: bytes
Etag: "588ac2de10dad11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:25 GMT
Content-Length: 11268


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   11268
Md5:    5ab8950aac87b7f2dbace6bb7777c38f
Sha1:   ff9e3566b30cc5feae9925769cdd44a81de860ff
Sha256: c8ce6d38cae727b17ddaccbf63f61114a91304e209a4e1b49f84a618ac410b09
                                        
                                            GET /Index/Public/tuku/pic/tk/30.jpg HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Tuku/tuijian
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Sat, 09 Jul 2016 18:38:27 GMT
Accept-Ranges: bytes
Etag: "32b4a1511dad11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:25 GMT
Content-Length: 11505


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   11505
Md5:    2f505a28e1db4d43953d558e838b81b6
Sha1:   bd8b27984205683b46b36fe5ea7e2e1326db0721
Sha256: 2c9d1b95e31a378cb0ce11dddb126027587b99f005bc0bb4a82cd451f8367c6e
                                        
                                            GET /Index/Public/tuku/pic/tk/15.jpg HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Tuku/pic
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Sat, 09 Jul 2016 18:37:01 GMT
Accept-Ranges: bytes
Etag: "869af5e110dad11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:25 GMT
Content-Length: 4683


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   4683
Md5:    b6e013004d246bc329c3570ed4689c00
Sha1:   746ee211f76a38578a463f5cf3a0e4049b1a30d3
Sha256: 284c863740663c95f4c4322670914b71bbfaca6459c5d56f2c3e894866ebb464
                                        
                                            GET /Index/Public/tuku/pic/tk/1.jpg HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Tuku/pic
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Sat, 09 Jul 2016 18:35:26 GMT
Accept-Ranges: bytes
Etag: "202b33a910dad11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:25 GMT
Content-Length: 10665


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   10665
Md5:    e170b400d2c4412219478955cf4dc250
Sha1:   92331b5362567f1bf0abc22f6b080e85147fa18f
Sha256: 96a63a6d19ff6ff0ff096c457c9579cbe642b48be1027578e58b0a6088a9ec5c
                                        
                                            GET /chajian/bmjg.js?_=1531537530928 HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
X-Requested-With: XMLHttpRequest
Referer: http://627988.com/Home/kaijiang
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0; Hm_lvt_3e8a1c225433cbd34d03129ae387499a=1531537531; Hm_lpvt_3e8a1c225433cbd34d03129ae387499a=1531537531

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Last-Modified: Thu, 12 Jul 2018 13:34:29 GMT
Accept-Ranges: bytes
Etag: "9e4722fe519d41:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:25 GMT
Content-Length: 77


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   77
Md5:    8657daa0f65cb0ce1e4d577df54706fd
Sha1:   5608dcc53a576c5092d15922a02a48f0d70daa37
Sha256: 687713a892934fc2c976124400085c9fca5d8124a7290b30011d9dfe8d9bd4df
                                        
                                            GET /Index/Public/tuku/pic/tk/16.jpg HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Tuku/pic
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Sat, 09 Jul 2016 18:37:07 GMT
Accept-Ranges: bytes
Etag: "a22c9de510dad11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:25 GMT
Content-Length: 6577


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   6577
Md5:    ca0b96cea07e7fcf3e1d14ddf4882ae3
Sha1:   ab9ddefc8461131c15572786ea04e0e51d538640
Sha256: c4a2f306f8e5d39fb6d2eac73bc93bd6ad250ccd746d0e9528e98a04c328ff7f
                                        
                                            GET /Index/Public/tuku/pic/tk/17.jpg HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Tuku/pic
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Sat, 09 Jul 2016 18:37:14 GMT
Accept-Ranges: bytes
Etag: "bffbdce910dad11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:25 GMT
Content-Length: 8785


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   8785
Md5:    729ae6f54d1d8060981577442534f031
Sha1:   7638369cbfb92b382d05e67979b01f373a55ca0a
Sha256: 9ab17aed1aeb126ac0e062512aec10c14e83cbc8ab2159930125a9d74ca1fc97
                                        
                                            GET /Index/Public/tuku/pic/tk/18.jpg HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Tuku/pic
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Sat, 09 Jul 2016 18:37:20 GMT
Accept-Ranges: bytes
Etag: "a116f6ec10dad11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:25 GMT
Content-Length: 12731


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   12731
Md5:    449ba2450ad58919a0c667f307c2465b
Sha1:   4a77c58ee2411764994a303c828d82eead94b4a9
Sha256: b0c979ca916dae6f48272e9b1b07daeffdbe6708a30d21228507180730629a86
                                        
                                            GET /gg/images/warp_3.jpg HTTP/1.1 
Host: www.9a77.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.9a77.com/gg/amjs-db.htm

                                         
                                         208.66.74.108
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Sat, 29 Oct 2016 12:22:30 GMT
Accept-Ranges: bytes
Etag: "0471f1edf31d21:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:25 GMT
Content-Length: 55139


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   55139
Md5:    055956e07bcaa1d102c23f3c589b5bef
Sha1:   896a2b636aeec7c839472c637ae7482fe5fcafa4
Sha256: 580c7913c99cf43650fd0edcfd979fbed0b9862645421cd947c8a46bd9410324
                                        
                                            GET /Index/Public/tuku/pic/tk/32.jpg HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Tuku/pic
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Sat, 09 Jul 2016 18:38:43 GMT
Accept-Ranges: bytes
Etag: "a422e61e11dad11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:25 GMT
Content-Length: 5442


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   5442
Md5:    7dac44dede391d8c8a274f91eab4d7e8
Sha1:   0cd6f426d9b6e6154a8c6f8b74fe74330389b8bb
Sha256: 08841df0a17f8dd94096088d224a846a6edcf94e4ecfb602483a0920065468a3
                                        
                                            GET /Index/Public/tuku/pic/tk/34.jpg HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Tuku/pic
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Sat, 09 Jul 2016 18:38:56 GMT
Accept-Ranges: bytes
Etag: "fd03f2611dad11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:25 GMT
Content-Length: 4601


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   4601
Md5:    a5ffe15773b8be5e05ab7bf2d3176940
Sha1:   9c3af3ea86492bd78368f8defbc5392c2651030c
Sha256: e73f9c6a21bd1f483d58d859a32ec4ef1f83e401cea185e511bff475dfae5545
                                        
                                            GET /Index/Public/tuku/pic/tk/11.jpg HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Tuku/pic
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Sat, 09 Jul 2016 18:36:40 GMT
Accept-Ranges: bytes
Etag: "33ce48d510dad11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:25 GMT
Content-Length: 11817


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   11817
Md5:    4e1028f36749d8cac859195c6644bd48
Sha1:   13135045b973b1618ae9265090fa26e09056f47e
Sha256: a7ac3cef294a7e613c126f22d69d2a6cf784dbed34c39be062c04362cc6d0b34
                                        
                                            GET /Index/Public/tuku/pic/tk/12.jpg HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Tuku/pic
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Sat, 09 Jul 2016 18:36:45 GMT
Accept-Ranges: bytes
Etag: "6d364ed810dad11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:25 GMT
Content-Length: 12936


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   12936
Md5:    2bc48a284bcaac9879ad6885b54fd298
Sha1:   adb5bcfd8f4555da29659dccfd7a7340b7104545
Sha256: da66226861be5951d65db3fea58d75f0bac37ca132419f5049bbae21f9cda550
                                        
                                            GET /Index/Public/tuku/pic/shqm_right_pic.gif HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Tuku/pic
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Last-Modified: Sat, 09 Jul 2016 18:34:11 GMT
Accept-Ranges: bytes
Etag: "79c7d37c10dad11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:25 GMT
Content-Length: 3241


--- Additional Info ---
Magic:  GIF image data, version 89a, 35 x 69
Size:   3241
Md5:    7154f044a08aaf7a0f8418b0c31c76b5
Sha1:   76c72972e1820c55edeb5e04b54ab2bb0264b159
Sha256: 1611274fc95714ebfe08d31caa7f58c7f98ee6e8e15eb606581a64a4c9430cab
                                        
                                            GET /Index/Public/tuku/pic/tk/36.jpg HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Tuku/pic
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Sat, 09 Jul 2016 18:35:12 GMT
Accept-Ranges: bytes
Etag: "1d6619a110dad11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:26 GMT
Content-Length: 4472


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   4472
Md5:    79234b2bc53b062d1e9ad5ff717c1d90
Sha1:   6d27ac752bf0826d08ad60b13a5b14ec5b4e22d2
Sha256: 513a2697a06df9d485d73c86316a499e7b9db0f1fe6eb2210c3a41115b1a5124
                                        
                                            GET /gg/images/1.jpg HTTP/1.1 
Host: www.9a77.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.9a77.com/gg/amjs-db.htm

                                         
                                         208.66.74.108
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Mon, 04 Sep 2017 05:59:04 GMT
Accept-Ranges: bytes
Etag: "0c488e94225d31:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:24 GMT
Content-Length: 82587


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   82587
Md5:    af9f7127e7c13c72586701efa171b4a1
Sha1:   884b06028334820c56cff0fbf897c124e3108b87
Sha256: 28d1fbe8d0a9fa2cd9685ab6196b6a56b9deef8086f383941b563e27e681e4c9
                                        
                                            GET /Upload/image/20161224/20161224185301_18742.jpg HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Pic/pic
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Sat, 24 Dec 2016 10:53:01 GMT
Accept-Ranges: bytes
Etag: "54797de5d35dd21:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:26 GMT
Content-Length: 73513


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   73513
Md5:    149801c3c5792b78c21e33f347501a6c
Sha1:   22098e60efebe68e63d1f86dae795c897791c2de
Sha256: cbd61ef53fd4e0a1061e97a899b979829e61fd04e20e7fed4fa6f3aef792b306
                                        
                                            GET /Upload/image/20161224/20161224190006_34930.jpg HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Pic/pic
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Sat, 24 Dec 2016 11:00:06 GMT
Accept-Ranges: bytes
Etag: "1e8fd7e2d45dd21:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:26 GMT
Content-Length: 83906


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   83906
Md5:    f19dddd3a94b04b8ccbb4ae447a945f9
Sha1:   21860d168003fbb9bb50689462c4661affdee0b9
Sha256: 68a227f103007e0e2a266d64063c2ba89ef2639ed095d2901d867253f4192483
                                        
                                            GET /Upload/image/20161114/20161114135112_85704.jpg HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Pic/pic
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Mon, 14 Nov 2016 05:51:12 GMT
Accept-Ranges: bytes
Etag: "ded7301b3b3ed21:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:26 GMT
Content-Length: 99156


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   99156
Md5:    d6e58f515e9accbb29dc9a35ab2a4737
Sha1:   7b1c5ac9f117d74a6d254925341e4b4aa68f0277
Sha256: 98073006df3c231f4abf294024d1e4aa0fc9ff6171b8d52a0ddf9709657bdaba
                                        
                                            GET /chajian/bmjg.js?_=1531537530929 HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
X-Requested-With: XMLHttpRequest
Referer: http://627988.com/Home/kaijiang
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0; Hm_lvt_3e8a1c225433cbd34d03129ae387499a=1531537531; Hm_lpvt_3e8a1c225433cbd34d03129ae387499a=1531537531

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Last-Modified: Thu, 12 Jul 2018 13:34:29 GMT
Accept-Ranges: bytes
Etag: "9e4722fe519d41:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:26 GMT
Content-Length: 77


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   77
Md5:    8657daa0f65cb0ce1e4d577df54706fd
Sha1:   5608dcc53a576c5092d15922a02a48f0d70daa37
Sha256: 687713a892934fc2c976124400085c9fca5d8124a7290b30011d9dfe8d9bd4df
                                        
                                            GET /Upload/image/20161114/20161114135414_39435.jpg HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Pic/pic
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Mon, 14 Nov 2016 05:54:14 GMT
Accept-Ranges: bytes
Etag: "d2e362873b3ed21:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:26 GMT
Content-Length: 112229


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   112229
Md5:    dfe37e609c654820e04260dc9d6c24fa
Sha1:   dc6f6a9242a1f71164a499df57f1be78f9c17cf5
Sha256: efddc969e67f7974731f741b5cec32d0733ef3ddba69190ccc103c011f9f8ac5
                                        
                                            GET /Index/Public/tuku/pic/tk/33.jpg HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Tuku/pic
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Sat, 09 Jul 2016 18:38:50 GMT
Accept-Ranges: bytes
Etag: "78f22311dad11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:26 GMT
Content-Length: 10895


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   10895
Md5:    acaa557295c811e3c45d4a51ea38c4e3
Sha1:   155588b0a25bab049fdeacea9e4f53df23095682
Sha256: d452f65b49f872d393cabd593837516afa4822bb47bbcdf63d47878556c7c86a
                                        
                                            GET /Upload/image/20161114/20161114133918_86129.jpg HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Pic/pic
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Mon, 14 Nov 2016 05:39:18 GMT
Accept-Ranges: bytes
Etag: "231cae71393ed21:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:27 GMT
Content-Length: 98289


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   98289
Md5:    a8a4f92d0a4aec6f80ba6528265d5204
Sha1:   4ca5bccc58b894e05013caf8494eb1c0e910940b
Sha256: 52257d55898090315c826b96c5f5c92fc2d81b30e00e38f9ed8035aaf527cf84
                                        
                                            GET /Upload/image/20161114/20161114134723_73226.jpg HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Pic/pic
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Mon, 14 Nov 2016 05:47:23 GMT
Accept-Ranges: bytes
Etag: "2b583923a3ed21:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:26 GMT
Content-Length: 114980


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   114980
Md5:    7ba74b758327565fab70e3d139c02fa4
Sha1:   ad4a5a0185c6a09b1314c64ff79709c440fe8f8c
Sha256: 7b25ac43c6439f5ff3133de39ca5afa9514a5df5d3054bcbbbd0608273d9ea45
                                        
                                            GET /Index/Public/tuku/pic/tk/19.jpg HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Tuku/pic
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Sat, 09 Jul 2016 18:37:25 GMT
Accept-Ranges: bytes
Etag: "63715ef010dad11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:27 GMT
Content-Length: 10410


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   10410
Md5:    544c554dee63030458045f6f412f2182
Sha1:   05d48a185758605515ac84d6690d67d7f1cb1eb9
Sha256: b7b6a6a963045ede5b8147461e183fdb2e64ecb20db7332d883c49c1e67e2f76
                                        
                                            GET /Upload/image/20161114/20161114134321_52541.jpg HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Pic/pic
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Mon, 14 Nov 2016 05:43:21 GMT
Accept-Ranges: bytes
Etag: "5e73123a3ed21:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:27 GMT
Content-Length: 132776


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   132776
Md5:    d46a779055c90fe9dca01fee659c1345
Sha1:   52436a3538d46baec378cdc9b6f44e76b8c4db00
Sha256: 7ea62f7819ad445c4f01b7a4a4fca89ad7469a053b4dca04da7befb858133778
                                        
                                            GET /Upload/image/20161111/20161111132919_96484.jpg HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Pic/pic
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Fri, 11 Nov 2016 05:29:19 GMT
Accept-Ranges: bytes
Etag: "15df5c8ddc3bd21:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:28 GMT
Content-Length: 54955


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   54955
Md5:    bd830a2d863e5617d96759e8c2da506a
Sha1:   8d0aa38ff565b0a09dffcac1b8218f9b22e558d4
Sha256: 8a342873733b525dd137226afe31fbd8cbfcfd2caa70e2a256a525a9455f0b60
                                        
                                            GET /chajian/bmjg.js?_=1531537530930 HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
X-Requested-With: XMLHttpRequest
Referer: http://627988.com/Home/kaijiang
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0; Hm_lvt_3e8a1c225433cbd34d03129ae387499a=1531537531; Hm_lpvt_3e8a1c225433cbd34d03129ae387499a=1531537531

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Last-Modified: Thu, 12 Jul 2018 13:34:29 GMT
Accept-Ranges: bytes
Etag: "9e4722fe519d41:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:28 GMT
Content-Length: 77


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   77
Md5:    8657daa0f65cb0ce1e4d577df54706fd
Sha1:   5608dcc53a576c5092d15922a02a48f0d70daa37
Sha256: 687713a892934fc2c976124400085c9fca5d8124a7290b30011d9dfe8d9bd4df
                                        
                                            GET /Upload/image/20161111/20161111133251_31708.jpg HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Pic/pic
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Fri, 11 Nov 2016 05:32:51 GMT
Accept-Ranges: bytes
Etag: "60a6b0bdd3bd21:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:28 GMT
Content-Length: 86315


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   86315
Md5:    9b374e8827c58a896f91adf69f1f5523
Sha1:   3b3ebb5f2b0ce2c3577ee10b297c15fe5261ade0
Sha256: 4ee606e52dd4fc89c267ce6134ef41f1a115f6dd810123f1d82af1b9512a93dd
                                        
                                            GET /Upload/image/20161111/20161111130730_44030.jpg HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Pic/pic
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Fri, 11 Nov 2016 05:07:30 GMT
Accept-Ranges: bytes
Etag: "834781d93bd21:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:28 GMT
Content-Length: 74850


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   74850
Md5:    c8762de0c2fdd1f8ddf6f36c94467af6
Sha1:   1ec7d63fe9bd7757121b926ddd08031911802df8
Sha256: e5d463d94b85c7374db55505a3008d37af103eb739b4a943ea3619aaa68cab63
                                        
                                            GET /Upload/image/20161111/20161111133603_34364.jpg HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Pic/pic
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Fri, 11 Nov 2016 05:36:03 GMT
Accept-Ranges: bytes
Etag: "a44f7edd3bd21:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:28 GMT
Content-Length: 130449


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   130449
Md5:    063dfc3904ce90033d41a314274d565f
Sha1:   955774850865af5f1e8c3989309600625a29c226
Sha256: 53dcde344f40ee6a9464ca216ec06777a9b655eff94891ffc49dd27ef05663f9
                                        
                                            GET /Upload/image/20161111/20161111130356_20305.jpg HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Pic/pic
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Fri, 11 Nov 2016 05:03:56 GMT
Accept-Ranges: bytes
Etag: "38bc9c1d93bd21:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:28 GMT
Content-Length: 118497


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   118497
Md5:    80483908daa8545a531768e8a31e4676
Sha1:   6ec031a3b4a5368c2fc1561b1a32d75566bf56b4
Sha256: cc07e64615857cf56a3b5600b11fa9b78d0989b83a1c2e8330171c5ac6dcb1a7
                                        
                                            GET /Index/Public/css/images/tj.gif HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Tuku/tuijian
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0; Hm_lvt_3e8a1c225433cbd34d03129ae387499a=1531537531; Hm_lpvt_3e8a1c225433cbd34d03129ae387499a=1531537531

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Last-Modified: Sat, 09 Jul 2016 17:54:12 GMT
Accept-Ranges: bytes
Etag: "39b26fe6adad11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:30 GMT
Content-Length: 2229


--- Additional Info ---
Magic:  GIF image data, version 89a, 71 x 52
Size:   2229
Md5:    38c31a92afdc457b50ab15dfa5a850be
Sha1:   62bdfbd7d285eea29dfbf41cf03039e795f43a27
Sha256: e750e4d3490b59b3553cfc593dd99d81fdc725f7c74af21b329282273338066a
                                        
                                            GET /Upload/image/20161111/20161111130034_34351.jpg HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Pic/pic
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Fri, 11 Nov 2016 05:00:34 GMT
Accept-Ranges: bytes
Etag: "f9ec088d83bd21:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:28 GMT
Content-Length: 107373


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   107373
Md5:    40416aa0d02e71e3cf1a209e595a5294
Sha1:   7b2673d925bf4479858c84e97f7a6f402e157081
Sha256: ef7b815afa5619d80a7efb8159fe926c59d2a0b8631387359b96589c287d64e0
                                        
                                            GET /Upload/image/20161111/20161111132412_38407.jpg HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Pic/pic
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Fri, 11 Nov 2016 05:24:12 GMT
Accept-Ranges: bytes
Etag: "1b37d6db3bd21:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:28 GMT
Content-Length: 67592


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   67592
Md5:    1c1d4235a7d67d40c8f4e37933d178b8
Sha1:   94c1861d7a3849b2c8ebc49f87077edbe9e25891
Sha256: d92dbe57325d7ce8453773cd7164e8224050f3f546b047c4e3b7741a83028e43
                                        
                                            GET /Upload/image/20161111/20161111131044_22864.jpg HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Pic/pic
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Fri, 11 Nov 2016 05:10:44 GMT
Accept-Ranges: bytes
Etag: "8d847ef4d93bd21:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:30 GMT
Content-Length: 111701


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   111701
Md5:    1ac901ada7bf9d9767403c5b5401b70f
Sha1:   8c3bdae267471b73bf4d58a522ad5eb837afad41
Sha256: d5c385348811aaba8ebba69ac0b50b5a803592d82030c9bcfe307995094fda6e
                                        
                                            GET /chajian/bmjg.js?_=1531537530931 HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
X-Requested-With: XMLHttpRequest
Referer: http://627988.com/Home/kaijiang
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0; Hm_lvt_3e8a1c225433cbd34d03129ae387499a=1531537531; Hm_lpvt_3e8a1c225433cbd34d03129ae387499a=1531537531

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Last-Modified: Thu, 12 Jul 2018 13:34:29 GMT
Accept-Ranges: bytes
Etag: "9e4722fe519d41:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:31 GMT
Content-Length: 77


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   77
Md5:    8657daa0f65cb0ce1e4d577df54706fd
Sha1:   5608dcc53a576c5092d15922a02a48f0d70daa37
Sha256: 687713a892934fc2c976124400085c9fca5d8124a7290b30011d9dfe8d9bd4df
                                        
                                            GET /Index/Public/tuku/pic/tk/25.jpg HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Tuku/tuijian
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Sat, 09 Jul 2016 18:38:01 GMT
Accept-Ranges: bytes
Etag: "a41c9511dad11:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:31 GMT
Content-Length: 11942


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   11942
Md5:    fd6e09c5b772fee0b213f3ddcebae833
Sha1:   b95fc509e2c6bb5d0438f24050ed583ec2372690
Sha256: 3a8946758252105eebad37827f46d96b93b42cd1fc42288ec086537b7e56ae06
                                        
                                            GET /gg/images/4.jpg HTTP/1.1 
Host: www.9a77.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.9a77.com/gg/amjs-db.htm

                                         
                                         208.66.74.108
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Mon, 04 Sep 2017 05:59:05 GMT
Accept-Ranges: bytes
Etag: "805a21ea4225d31:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:31 GMT
Content-Length: 73323


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   73323
Md5:    66733ea754f72e50e70aff7f7950f5f5
Sha1:   3f2affbf2053a1eeac046b4044d3942b5a07ae5a
Sha256: 8d2258778608133994499439c3207b0e88367cd055706067eef7f9ccdfdfcf1e
                                        
                                            GET /gg/images/logo3.jpg HTTP/1.1 
Host: 9a77.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://9a77.com/gg/css/nivo-slider.css

                                         
                                         208.66.74.108
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Sat, 29 Oct 2016 12:20:36 GMT
Accept-Ranges: bytes
Etag: "0422cdade31d21:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:31 GMT
Content-Length: 25868


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   25868
Md5:    b9e99df99f8f6205080bda1441683e9f
Sha1:   420a19e9f7ae2449f7aa6d5957852d9e0af56a30
Sha256: 64ad67e725aed2fc50024faa2ea022e5491c25532d978c77dd9c4589bad90c90
                                        
                                            GET /Upload/image/20161111/20161111125704_70515.jpg HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Pic/pic
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Fri, 11 Nov 2016 04:57:04 GMT
Accept-Ranges: bytes
Etag: "4af3b2bd83bd21:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:30 GMT
Content-Length: 111764


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   111764
Md5:    68e593e34449f3da568db000118b4428
Sha1:   b7096ef0656c148a6ca9a4efe0f3cadde162c043
Sha256: 743fddc95283c9e8ef4dcb069e87305b006f61f578e97f65291342bcf522b88d
                                        
                                            GET /ls/js/pic_scroll.js HTTP/1.1 
Host: js.sccdys.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Tuku/tuijian

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /chajian/bmjg.js?_=1531537530932 HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
X-Requested-With: XMLHttpRequest
Referer: http://627988.com/Home/kaijiang
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0; Hm_lvt_3e8a1c225433cbd34d03129ae387499a=1531537531; Hm_lpvt_3e8a1c225433cbd34d03129ae387499a=1531537531

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /ls/js/pic_scroll.js HTTP/1.1 
Host: js.sccdys.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Tuku/tuijian

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /ls/js/pic_scroll.js HTTP/1.1 
Host: js.sccdys.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Tuku/pic

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /ls/js/pic_scroll.js HTTP/1.1 
Host: js.sccdys.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/Tuku/pic

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /embed.js HTTP/1.1 
Host: static.duoshuo.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /cgi-bin/qm/qr?k=A2ZWslg1Gh43sKHhyBpQSQuvAg4SUu5t HTTP/1.1 
Host: qm.qq.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://627988.com/

                                         
                                         203.205.151.26
HTTP/1.1 200 OK
Content-Type: text/html;charset=utf-8
                                        
Date: Sat, 14 Jul 2018 03:05:33 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Server: tws
Content-Encoding: gzip
Vary: Accept-Encoding


--- Additional Info ---
                                        
                                            GET /chajian/bmjg.js?_=1531537530932 HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
X-Requested-With: XMLHttpRequest
Referer: http://627988.com/Home/kaijiang
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0; Hm_lvt_3e8a1c225433cbd34d03129ae387499a=1531537531; Hm_lpvt_3e8a1c225433cbd34d03129ae387499a=1531537531

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Last-Modified: Thu, 12 Jul 2018 13:34:29 GMT
Accept-Ranges: bytes
Etag: "9e4722fe519d41:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:39 GMT
Content-Length: 77


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   77
Md5:    8657daa0f65cb0ce1e4d577df54706fd
Sha1:   5608dcc53a576c5092d15922a02a48f0d70daa37
Sha256: 687713a892934fc2c976124400085c9fca5d8124a7290b30011d9dfe8d9bd4df
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0; Hm_lvt_3e8a1c225433cbd34d03129ae387499a=1531537531; Hm_lpvt_3e8a1c225433cbd34d03129ae387499a=1531537531

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Server: Microsoft-IIS/7.5
X-Powered-By: PHP/5.3.28, ASP.NET
Date: Sat, 14 Jul 2018 03:05:39 GMT
Content-Length: 0


--- Additional Info ---
                                        
                                            GET /chajian/bmjg.js?_=1531537530933 HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
X-Requested-With: XMLHttpRequest
Referer: http://627988.com/Home/kaijiang
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0; Hm_lvt_3e8a1c225433cbd34d03129ae387499a=1531537531; Hm_lpvt_3e8a1c225433cbd34d03129ae387499a=1531537531

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Last-Modified: Thu, 12 Jul 2018 13:34:29 GMT
Accept-Ranges: bytes
Etag: "9e4722fe519d41:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:42 GMT
Content-Length: 77


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   77
Md5:    8657daa0f65cb0ce1e4d577df54706fd
Sha1:   5608dcc53a576c5092d15922a02a48f0d70daa37
Sha256: 687713a892934fc2c976124400085c9fca5d8124a7290b30011d9dfe8d9bd4df
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0; Hm_lvt_3e8a1c225433cbd34d03129ae387499a=1531537531; Hm_lpvt_3e8a1c225433cbd34d03129ae387499a=1531537531

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Server: Microsoft-IIS/7.5
X-Powered-By: PHP/5.3.28, ASP.NET
Date: Sat, 14 Jul 2018 03:05:43 GMT
Content-Length: 0


--- Additional Info ---
                                        
                                            GET /chajian/bmjg.js?_=1531537530934 HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
X-Requested-With: XMLHttpRequest
Referer: http://627988.com/Home/kaijiang
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0; Hm_lvt_3e8a1c225433cbd34d03129ae387499a=1531537531; Hm_lpvt_3e8a1c225433cbd34d03129ae387499a=1531537531

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Last-Modified: Thu, 12 Jul 2018 13:34:29 GMT
Accept-Ranges: bytes
Etag: "9e4722fe519d41:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:43 GMT
Content-Length: 77


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   77
Md5:    8657daa0f65cb0ce1e4d577df54706fd
Sha1:   5608dcc53a576c5092d15922a02a48f0d70daa37
Sha256: 687713a892934fc2c976124400085c9fca5d8124a7290b30011d9dfe8d9bd4df
                                        
                                            GET /chajian/bmjg.js?_=1531537530935 HTTP/1.1 
Host: 627988.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
X-Requested-With: XMLHttpRequest
Referer: http://627988.com/Home/kaijiang
Cookie: BJYSESSION=r1noevflgbeobqcsijf7c57qq0; Hm_lvt_3e8a1c225433cbd34d03129ae387499a=1531537531; Hm_lpvt_3e8a1c225433cbd34d03129ae387499a=1531537531

                                         
                                         208.66.74.107
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Last-Modified: Thu, 12 Jul 2018 13:34:29 GMT
Accept-Ranges: bytes
Etag: "9e4722fe519d41:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 14 Jul 2018 03:05:44 GMT
Content-Length: 77


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   77
Md5:    8657daa0f65cb0ce1e4d577df54706fd
Sha1:   5608dcc53a576c5092d15922a02a48f0d70daa37
Sha256: 687713a892934fc2c976124400085c9fca5d8124a7290b30011d9dfe8d9bd4df