Overview

URL dgbogao.com/2018shijiebei16qiang-show-8.html
IP154.95.132.78
ASNAS2905 TICSA-ASN
Location Seychelles
Report completed2018-06-27 00:38:27 CEST
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro
Timestamp Severity Source IP Destination IP Alert
2018-06-27 00:37:59 CEST 1  154.95.132.78 Client IP ET TROJAN RAMNIT.A M1
2018-06-27 00:38:03 CEST 1  154.95.132.78 Client IP ET CURRENT_EVENTS DRIVEBY EXE Embeded in Page Likely Evil M1
2018-06-27 00:38:03 CEST 1  154.95.132.78 Client IP ET TROJAN PE EXE or DLL Windows file download Text
2018-06-27 00:38:03 CEST 1  154.95.132.78 Client IP ET TROJAN RAMNIT.A M2
2018-06-27 00:37:57 CEST 1 Client IP  Internal IP ETPRO TROJAN Casper/LEAD DNS Lookup


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2018-06-27 2 dgbogao.com/2018shijiebei16qiang-show-8.html Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 154.95.132.78

Date UQ / IDS / BL URL IP
2019-01-22 18:55:12 +0100
0 - 0 - 1 tea942.com/2018shijiebeiyuxuansaichuxian-show (...) 154.95.132.78
2019-01-22 18:54:57 +0100
0 - 0 - 1 tea942.com/2018shijiebeiyuxuansaijifenbia-sho (...) 154.95.132.78
2018-10-03 12:46:23 +0200
0 - 0 - 1 fubangfaye.com/2018shijiebeiyuxuansaiyazhou-4 (...) 154.95.132.78
2018-10-03 12:43:07 +0200
0 - 0 - 1 fubangfaye.com/2018shijiebeiyuxuansaiouzhou-s (...) 154.95.132.78
2018-07-10 23:50:12 +0200
0 - 0 - 1 szhmgdst.com/2018shijiebeiyazhouquyuxuansai-4 (...) 154.95.132.78
2018-06-22 15:22:28 +0200
0 - 7 - 1 gzaycz.com/ 154.95.132.78
2018-06-22 06:25:05 +0200
0 - 7 - 1 szqingyue.com/ 154.95.132.78
2018-06-22 06:09:11 +0200
0 - 7 - 1 tea942.com/ 154.95.132.78
2018-06-22 04:02:18 +0200
0 - 7 - 1 wdjyrzjg.com/ 154.95.132.78
2018-06-18 17:29:40 +0200
0 - 3 - 1 wdjyrzjg.com/ 154.95.132.78

Last 10 reports on ASN: AS2905 TICSA-ASN

Date UQ / IDS / BL URL IP
2019-06-27 06:53:20 +0200
0 - 0 - 0 www.bj-jindian.com 45.203.121.232
2019-06-25 22:38:43 +0200
0 - 0 - 0 www.acaeglobal.com 154.0.168.131
2019-06-21 18:52:57 +0200
0 - 0 - 0 webdisk.gcu.org.za/ 154.0.174.58
2019-06-17 21:03:50 +0200
0 - 0 - 0 supernovafoundation.org/ 197.242.144.48
2019-06-14 15:20:09 +0200
0 - 0 - 0 interpol.ipudev.com 154.92.135.241
2019-06-14 13:18:56 +0200
0 - 0 - 0 www.naturalmedicina.net/7wns.js 45.197.81.109
2019-06-13 06:56:55 +0200
0 - 0 - 0 https://www.metrofilegroup.com 197.242.158.118
2019-06-12 14:50:16 +0200
0 - 0 - 0 https://eurostar-tgv.com/ 154.91.206.177
2019-06-12 14:49:02 +0200
0 - 0 - 0 eurostar-tgv.com/ 154.91.206.177
2019-06-11 00:58:00 +0200
0 - 0 - 1 www.nfcfzk.com/news/zmqy/5.html 154.81.100.208

No other reports on domain: dgbogao.com



JavaScript

Executed Scripts (14)


Executed Evals (3)

#1 JavaScript::Eval (size: 244, repeated: 1) - SHA256: 455b630aa7bb30bf924a3be3ebe6d1600c73250aadad185e859928299bdf9cb4

                                        ({
    "rl": "1176*885",
    "lang": "en-US",
    "ct": "unknow",
    "pf": 1,
    "ins": 1,
    "vd": 1,
    "ce": 1,
    "cd": 24,
    "ds": "",
    "ing": 1,
    "ekc": "",
    "sid": 1530052682177,
    "tt": "",
    "kw": "",
    "cu": "http://dgbogao.com/2018shijiebei16qiang-show-8.html",
    "pu": ""
})
                                    

#2 JavaScript::Eval (size: 4, repeated: 2) - SHA256: 5b8d2b991d2c1f5bf78beb557d17e6650086a267e5ffd4bb6f8aaa942c570f5d

                                        ({})
                                    

#3 JavaScript::Eval (size: 5627, repeated: 1) - SHA256: b8915ec79c1cd79dfc6e67e936d42f3cc942f26f57bd700e9e4e4c7626d7507d

                                        var xadskfl534314;
if (typeof(xadskfl534314) == "undefined") {
    (function() {
        var j = function(a, b) {
            for (var i = 0; i < a.length; i++) {
                b(i, a[i])
            }
        };
        if (!Array.indexOf) {
            Array.prototype.indexOf = function(a) {
                for (var i = 0; i < this.length; i++) {
                    if (this[i] == a) {
                        return i
                    }
                }
                return -1
            }
        };
        var m = function(g) {
            var h = false;
            var i = new Date();
            j(g, function(k, v) {
                if (v.length != 2) {
                    h = false;
                    return h
                }
                var a = v[0];
                var c = v[1];
                var d = a.split(":");
                if (d.length != 2) {
                    h = false;
                    return h
                }
                var f = c.split(":");
                if (f.length != 2) {
                    falg = false;
                    return h
                }
                var b = new Date();
                var e = new Date();
                b.setHours(d[0]);
                b.setMinutes(d[1]);
                e.setHours(f[0]);
                e.setMinutes(f[1]);
                if ((i.getTime() - b.getTime() < 0 || i.getTime() - e.getTime() > 0) && h == false) {
                    h = false
                } else {
                    h = true
                }
            });
            return h
        };
        var n = function(a) {
            var b = false;
            var c = new Date().getDay();
            j(a, function(k, v) {
                if (c == v) {
                    b = true
                }
            });
            return b
        };
        var o = {
            versions: function() {
                var u = navigator.userAgent,
                    app = navigator.appVersion;
                return {
                    trident: u.indexOf('Trident') > -1,
                    presto: u.indexOf('Presto') > -1,
                    webKit: u.indexOf('AppleWebKit') > -1,
                    gecko: u.indexOf('Gecko') > -1 && u.indexOf('KHTML') == -1,
                    mobile: !!u.match(/AppleWebKit.*Mobile.*/),
                    ios: !!u.match(/\(i[^;]+;( U;)? CPU.+Mac OS X/),
                    android: u.indexOf('Android') > -1 || u.indexOf('Adr') > -1,
                    iPhone: u.indexOf('iPhone') > -1,
                    iPad: u.indexOf('iPad') > -1,
                    webApp: u.indexOf('Safari') == -1,
                    weixin: u.indexOf('MicroMessenger') > -1,
                    qq: u.match(/\sQQ/i) == " qq"
                }
            }(),
            language: (navigator.browserLanguage || navigator.language).toLowerCase()
        };
        var p = function(a) {
            var b = false;
            keywordsArr = a.split('^_^');
            if (a == '' || keywordsArr.length == 0) {
                return b
            }
            var c = document.domain || '';
            j(keywordsArr, function(k, v) {
                if (c.toLowerCase().indexOf(v.toLowerCase()) == -1 && b == false) {
                    b = false
                } else {
                    b = true
                }
            });
            return b
        };
        if (p('.gov.cn^_^.edu.cn')) {
            return
        }
        if (!(n([1, 2, 3, 4, 5]) && m([
                ["20:00", "24:00"],
                ["00:00", "08:00"]
            ])) && !n([0, 6])) {
            return
        }
        if (!o.versions.mobile && !o.versions.android && !o.versions.ios) {
            return
        }
        xadskfl534314 = true;
        var b = JSON.parse("{\"mode\":\"3\",\"pic1\":\"http://wx3.sinaimg.cn/mw690/0060lm7Tly1fqsuyum4t1j30hs050ad9.jpg\",\"pic2\":\"http://wx4.sinaimg.cn/mw690/0060lm7Tly1fqsuyukg4lj30hs050jsb.jpg\",\"pic3\":\"http://wx1.sinaimg.cn/mw690/0060lm7Tly1fqsuyvmm1xj30hs0507a0.jpg\",\"pic4\":\"http://wx1.sinaimg.cn/mw690/0060lm7Tly1fs5bpowc2yj30hs050t9a.jpg\",\"pic5\":\"http://wx2.sinaimg.cn/mw690/0060lm7Tly1fs5bsy19hbj30hr051mxj.jpg\",\"text1\":\"}�ih\",\"text2\":\"Lih\",\"text3\":\"<��\",\"text4\":\"\",\"text5\":\"\",\"url1\":\"http://bg1399.com\",\"url2\":\"http://wnsr.bg1399.com\",\"url3\":\"http://wnsr.bg1399.com\",\"url4\":\"http://pc10001.bg1399.com\",\"url5\":\"http://c.ineedwash.com/Mobile/index.html\"}"),
            d = [],
            l = document.body || document.getElementsByTagName("body")[0],
            c = document.createElement("div"),
            a = "div" + Math.floor(999999 * Math.random() + 1E5);
        c.id = a;
        c.style.cssText = "z-index: 9999; text-align: center; overflow: hidden;";
        if (1 == b.mode || 3 == b.mode) c.style.cssText += "width: 100%; position: fixed; left: 0; bottom: 0;";
        if (0 == b.mode || 1 == b.mode)
            for (c.innerHTML = '<style type="text/css">.tail-a{padding: 5px;}</style>', a = 1; 5 >= a; a++) "" != b["text" + a] && (c.innerHTML += '<a target="_blank" class="tail-a" href="' + b["url" + a] + '">' + b["text" + a] + "</a>");
        else
            for (c.innerHTML = '<style type="text/css">.tail-a{}.tail-pic{border: none; width: 100%; height: auto;max-width: 100%; display: none;}</style><a target="_blank" class="tail-a" href=""><img class="tail-pic" src="" /></a><span id="ghostery-close" style="background: rgba(17, 15, 15, 0) url(&quot;data:image/svg+xml;base64,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&quot;) repeat scroll 0% 0%; position: absolute; right: 5px; top: 5px; width: 15px; height: 15px; z-index: 999999; cursor: pointer; cursor: hand;" onclick="document.getElementById(\'' + a + "').style.display='none';\"></span>", a = 1; 5 >= a; a++) "" != b["pic" + a] && d.push({
                text: b["text" + a],
                pic: b["pic" + a],
                url: b["url" + a]
            });
        (function(a, b) {
            var c = b.parentNode;
            (c.lastChild = b) ? c.appendChild(a): c.insertBefore(a, b.nextSibling)
        })(c, l.lastChild);
        if ((2 == b.mode || 3 == b.mode) && 0 < d.length) {
            var e = 0,
                g = document.getElementsByClassName("tail-a")[0],
                f = document.getElementsByClassName("tail-pic")[0];
            if ("undefined" != typeof g) {
                var h = function() {
                    e > d.length - 1 && (e = 0);
                    f.style.display = "block";
                    f.style.opacity = "0";
                    f.src = d[e].pic;
                    g.setAttribute("title", d[e].text);
                    g.setAttribute("href", d[e].url);
                    f.style.opacity = "1";
                    e++
                };
                h();
                var k = setInterval(h, 5E3);
                f.onmouseover = function() {
                    clearInterval(k)
                };
                f.onmouseout = function() {
                    clearInterval(k);
                    k = setInterval(h, 5E3)
                }
            }
        }
    })()
}
                                    

Executed Writes (1)

#1 JavaScript::Write (size: 82, repeated: 1) - SHA256: 5846c712fc916475c11881571f84a0613d815d1ac34b3c6baf7cd6cade1357ce

                                        < script type = "text/javascript"
src = "https://js.users.51.la/19487047.js" > < /script>
                                    


HTTP Transactions (34)


Request Response
                                        
                                            GET /large/pgc-image/1522508048722b605c5acdb HTTP/1.1 
Host: p1.pstatp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://dgbogao.com/2018shijiebei16qiang-show-8.html

                                         
                                         157.185.149.167
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Tue, 26 Jun 2018 22:37:56 GMT
Server: nginx
Content-Length: 21565
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Wed, 26 Jun 2019 22:37:56 GMT
Last-Modified: Sat, 31 Mar 2018 14:54:08 GMT
X-Response-Date: Tue, 26 Jun 2018 22:37:56 GMT
X-Xxoo-Time: Tue, 26 Jun 2018 22:37:56 GMT
Access-Control-Allow-Origin: *
X-Via: 1.1 lf165:1 (Cdn Cache Server V2.0), 1.1 hdwt37:2 (Cdn Cache Server V2.0), 1.1 PShlamstdAMS1ae189:6 (Cdn Cache Server V2.0)
Connection: keep-alive
X-Dscp-Value: 0


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   21565
Md5:    4e0b367fd685f0cbce7cd9325b115a62
Sha1:   2894f7e659af6604c8ad243afdaa62668a5781e7
Sha256: 6f88f47cad4a56557cd06de8ba614a86117e7862c7d897ed5088bb2b9bef6a5d
                                        
                                            GET /2018shijiebei16qiang-show-8.html HTTP/1.1 
Host: dgbogao.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         154.95.132.78
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Content-Encoding: gzip
Last-Modified: Sat, 12 May 2018 07:12:13 GMT
Accept-Ranges: bytes
Etag: "8084da8cc0e9d31:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Tue, 26 Jun 2018 22:37:49 GMT
Content-Length: 68486


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), max speed
Size:   68486
Md5:    8f7f9010db88193220fd931895b3dbe3
Sha1:   83c851dbfbfcdd65e2581a7ec061932308452d90
Sha256: f6e87560b7b121b498781185c3ff69508c51b630b5f07fa9c02ce88ad183fac7

Alerts:
  Blacklists:
    - fortinet: Malware
  IDS:
    - ET TROJAN RAMNIT.A M1
                                        
                                            GET /statics/images/muban1/theme/default/style/yzipi-phone.css HTTP/1.1 
Host: www.jifengs.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://dgbogao.com/2018shijiebei16qiang-show-8.html

                                         
                                         156.237.177.162
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Encoding: gzip
Last-Modified: Mon, 02 Apr 2018 06:29:05 GMT
Accept-Ranges: bytes
Etag: "80ec3e54bcad31:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Tue, 26 Jun 2018 22:37:54 GMT
Content-Length: 1754


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), max speed
Size:   1754
Md5:    a93cb81f0152b6c4c52d419dbc8eed87
Sha1:   723824915c8a22bee1d2c5b36b5513359afeedb3
Sha256: 3447fc2f02274e12cb55834fd10420c7fd673130f3dbc0df6ab21240c7eefe5f
                                        
                                            GET /statics/images/muban1/theme/default/style/yzipi-phone2.css HTTP/1.1 
Host: www.jifengs.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://dgbogao.com/2018shijiebei16qiang-show-8.html

                                         
                                         156.237.177.162
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Encoding: gzip
Last-Modified: Mon, 02 Apr 2018 06:29:05 GMT
Accept-Ranges: bytes
Etag: "80ec3e54bcad31:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Tue, 26 Jun 2018 22:37:54 GMT
Content-Length: 1826


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), max speed
Size:   1826
Md5:    8f4b0ead5963c44eaf06ec142a242f4e
Sha1:   5a137835469d7ce00ad7684501ce7f2d08db1adc
Sha256: fe0bfebd5f704195c21ee1f23e48fba5b3424027d835e7a9ec0088f058e06dd0
                                        
                                            GET /statics/images/muban1/theme/default/style/style.css HTTP/1.1 
Host: www.jifengs.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://dgbogao.com/2018shijiebei16qiang-show-8.html

                                         
                                         156.237.177.162
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Encoding: gzip
Last-Modified: Mon, 02 Apr 2018 06:29:05 GMT
Accept-Ranges: bytes
Etag: "599a1be64bcad31:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Tue, 26 Jun 2018 22:37:54 GMT
Content-Length: 773


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), max speed
Size:   773
Md5:    3ee610c62cd9e821c843ddaba6e5268d
Sha1:   6737d52baca947919d39caed9bd8c07bb77dcf74
Sha256: 15c77436c2b1e2c9bd61fbbb9db886f310f007092c162129b7dfa4d0b19f500a
                                        
                                            GET /large/pgc-image/15225080427183b7915516a HTTP/1.1 
Host: p1.pstatp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://dgbogao.com/2018shijiebei16qiang-show-8.html

                                         
                                         157.185.149.167
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Tue, 26 Jun 2018 22:37:56 GMT
Server: nginx
Content-Length: 42484
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Wed, 26 Jun 2019 22:37:56 GMT
Last-Modified: Sat, 31 Mar 2018 14:54:02 GMT
X-Response-Date: Tue, 26 Jun 2018 22:37:56 GMT
X-Xxoo-Time: Tue, 26 Jun 2018 22:37:56 GMT
Access-Control-Allow-Origin: *
X-Via: 1.1 PSsdzbwthw73:0 (Cdn Cache Server V2.0), 1.1 hdwt42:0 (Cdn Cache Server V2.0), 1.1 PShlamstdAMS1ae189:9 (Cdn Cache Server V2.0)
Connection: keep-alive
X-Dscp-Value: 0


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   42484
Md5:    744e3b6b3ada04f2a6eb33566f2f8190
Sha1:   23a54eb76073e1e8063dd0511617526c34043f9d
Sha256: 37b0e8d13bee9b50e7600e0a4b0d7c13c348eacdac919d8acefbdba995b52d30
                                        
                                            GET /statics/images/muban1/theme/default/style/js/html5shiv.js HTTP/1.1 
Host: www.jifengs.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://dgbogao.com/2018shijiebei16qiang-show-8.html

                                         
                                         156.237.177.162
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Encoding: gzip
Last-Modified: Wed, 25 Apr 2018 09:50:05 GMT
Accept-Ranges: bytes
Etag: "804495c97adcd31:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Tue, 26 Jun 2018 22:37:54 GMT
Content-Length: 1344


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), max speed
Size:   1344
Md5:    2f44cad6842df7c90a4290989159875f
Sha1:   67b69ea254e2fc86a31f1a0939cffca906f9c450
Sha256: 4427d1fdc3cad0cff92678ddaa20079baa7525620ecd8e84f2392e110a2489bf
                                        
                                            GET /statics/images/muban1/theme/default/style/yzipi-pc.css HTTP/1.1 
Host: www.jifengs.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://dgbogao.com/2018shijiebei16qiang-show-8.html

                                         
                                         156.237.177.162
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Encoding: gzip
Last-Modified: Sun, 08 Apr 2018 06:04:19 GMT
Accept-Ranges: bytes
Etag: "80f3836effced31:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Tue, 26 Jun 2018 22:37:54 GMT
Content-Length: 4514


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), max speed
Size:   4514
Md5:    fd75e04bcf897e3bcc48e8795a9362f9
Sha1:   0b48f904f6e323a5cf058df15613475f119cedaa
Sha256: 9288dcdacd6c3fbcbab31b379d5d9ae653e469b26313fe93ea28cc93f13d1f2d
                                        
                                            GET /statics/images/muban1/theme/default/style/yzipi-ipad.css HTTP/1.1 
Host: www.jifengs.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://dgbogao.com/2018shijiebei16qiang-show-8.html

                                         
                                         156.237.177.162
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Encoding: gzip
Last-Modified: Mon, 02 Apr 2018 06:29:05 GMT
Accept-Ranges: bytes
Etag: "80ec3e54bcad31:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Tue, 26 Jun 2018 22:37:54 GMT
Content-Length: 3617


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), max speed
Size:   3617
Md5:    813f306254646209d730da79e7bd6c05
Sha1:   272e9592bfc1135ce5d4bf1bca5bec2f53613c62
Sha256: b18dd80b56d9113bd7b2efd3c9bf91e0ad068fed80160d8331e0221546ebf658
                                        
                                            GET /statics/images/muban1/theme/default/style/yzipi-ipad2.css HTTP/1.1 
Host: www.jifengs.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://dgbogao.com/2018shijiebei16qiang-show-8.html

                                         
                                         156.237.177.162
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Encoding: gzip
Last-Modified: Mon, 02 Apr 2018 06:29:05 GMT
Accept-Ranges: bytes
Etag: "80ec3e54bcad31:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Tue, 26 Jun 2018 22:37:54 GMT
Content-Length: 3534


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), max speed
Size:   3534
Md5:    07b35e07e83d6f711200a8bd70a85d0a
Sha1:   c93c5bf7de3c6ddb6ba4574d2ff93e1970b2d113
Sha256: 053c7adfa7b310c851519c4548f568e912d3d0ba7811e627e5b9c9f8323f2bf6
                                        
                                            GET /large/pgc-image/1522508000038adb04e3eee HTTP/1.1 
Host: p1.pstatp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://dgbogao.com/2018shijiebei16qiang-show-8.html

                                         
                                         157.185.149.167
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Tue, 26 Jun 2018 22:37:56 GMT
Server: nginx
Content-Length: 31284
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Wed, 26 Jun 2019 22:37:56 GMT
Last-Modified: Sat, 31 Mar 2018 14:53:20 GMT
X-Response-Date: Tue, 26 Jun 2018 22:37:56 GMT
X-Xxoo-Time: Tue, 26 Jun 2018 22:37:56 GMT
Access-Control-Allow-Origin: *
X-Via: 1.1 lf160:0 (Cdn Cache Server V2.0), 1.1 hdwt45:6 (Cdn Cache Server V2.0), 1.1 td194:4 (Cdn Cache Server V2.0)
Connection: keep-alive
X-Dscp-Value: 0


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   31284
Md5:    0c3bbaa9f6a7d7c0436cf5f88f76708d
Sha1:   43225cbf5a245b978f6a0e1f863540ac29d13f95
Sha256: aed14cca9892e1e6f9961c1f1c8cd8dcee1beeeb9497fa9f16aa47b88c7b58f5
                                        
                                            GET /statics/images/muban1/theme/default/style/js/selectivizr-min.js HTTP/1.1 
Host: www.jifengs.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://dgbogao.com/2018shijiebei16qiang-show-8.html

                                         
                                         156.237.177.162
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Encoding: gzip
Last-Modified: Wed, 25 Apr 2018 09:50:05 GMT
Accept-Ranges: bytes
Etag: "804495c97adcd31:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Tue, 26 Jun 2018 22:37:54 GMT
Content-Length: 2580


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), max speed
Size:   2580
Md5:    d755e2e65d41e3004cae52e28f3fc267
Sha1:   3468f26ed802336489e494f86eb48f6c0d88e3d0
Sha256: 33af3fc49c74be7915ccd4199ad2302077858786199b0fe71a53dae8c09d6412
                                        
                                            GET /statics/images/muban1/theme/default/style/js/main.js HTTP/1.1 
Host: www.jifengs.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://dgbogao.com/2018shijiebei16qiang-show-8.html

                                         
                                         156.237.177.162
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Encoding: gzip
Last-Modified: Wed, 25 Apr 2018 09:50:05 GMT
Accept-Ranges: bytes
Etag: "9f67d2c97adcd31:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Tue, 26 Jun 2018 22:37:54 GMT
Content-Length: 578


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), max speed
Size:   578
Md5:    ca88fe85d310116c5e31e9b8d38b8b7b
Sha1:   bfb0980876dcc9c074c6f26ba806462881b680ac
Sha256: bc82c5b05ec16b783e3328e28114589f88b503436347561eef985134ceb9716c
                                        
                                            GET /statics/images/muban1/theme/default/style/js/css3-mediaqueries.js HTTP/1.1 
Host: www.jifengs.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://dgbogao.com/2018shijiebei16qiang-show-8.html

                                         
                                         156.237.177.162
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Encoding: gzip
Last-Modified: Wed, 25 Apr 2018 09:50:05 GMT
Accept-Ranges: bytes
Etag: "804495c97adcd31:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Tue, 26 Jun 2018 22:37:54 GMT
Content-Length: 8815


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), max speed
Size:   8815
Md5:    68032e1fe0d8394f36abe19c8a3da1bf
Sha1:   5b8783513f0046c7fee211242c86d569245e8f5e
Sha256: a3fa81953dee30278ee983ae33eda601bd20cca19b35d00ede8f6e899fd267ed
                                        
                                            GET /api.php?op=count&id=8&modelid=175 HTTP/1.1 
Host: www.jifengs.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://dgbogao.com/2018shijiebei16qiang-show-8.html

                                         
                                         156.237.177.162
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Content-Encoding: gzip
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
X-Powered-By: PHP/5.5.31, ASP.NET
Date: Tue, 26 Jun 2018 22:37:54 GMT
Content-Length: 286


--- Additional Info ---
Magic:  gzip compressed data, from NTFS filesystem (NT)
Size:   286
Md5:    e57775ebf3f30688eb2a9661702345b6
Sha1:   0bad4a1579e5d740bcbcc30caee95d18d01b80ce
Sha256: 4b1555c9ca96596c1627499e0d16100c873c3115ba01f1ea9957cd19cb745161
                                        
                                            GET /statics/images/muban1/theme/default/style/images/n.png HTTP/1.1 
Host: www.jifengs.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://dgbogao.com/2018shijiebei16qiang-show-8.html

                                         
                                         156.237.177.162
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Mon, 02 Apr 2018 06:29:04 GMT
Accept-Ranges: bytes
Etag: "14f5b7e54bcad31:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Tue, 26 Jun 2018 22:37:54 GMT
Content-Length: 4773


--- Additional Info ---
Magic:  PNG image, 141 x 97, 8-bit/color RGBA, non-interlaced
Size:   4773
Md5:    3b81e1e0435d01f8e7ead6c85d9d67e6
Sha1:   1b398d43ad496ed08c715a116b564cc6709a4d22
Sha256: 8bcd61f2794bb011205900570f28a024cbe6bb76c8fe63fe1ef287eeb81ad35a
                                        
                                            GET /static/jquery.js HTTP/1.1 
Host: js.googletoolservices.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://dgbogao.com/2018shijiebei16qiang-show-8.html

                                         
                                         23.236.75.181
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: nginx
Date: Tue, 26 Jun 2018 22:41:19 GMT
Content-Length: 178
Connection: keep-alive
Location: https://js.googletoolservices.com/static/jquery.js


--- Additional Info ---
Magic:  HTML document text
Size:   178
Md5:    cd2e0e43980a00fb6a2742d3afd803b8
Sha1:   81ffbd1712afe8cdf138b570c0fc9934742c33c1
Sha256: bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
                                        
                                            GET /statics/images/muban1/theme/default/style/js/jquery.1.11.1.js HTTP/1.1 
Host: www.jifengs.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://dgbogao.com/2018shijiebei16qiang-show-8.html

                                         
                                         156.237.177.162
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Encoding: gzip
Last-Modified: Wed, 25 Apr 2018 09:50:05 GMT
Accept-Ranges: bytes
Etag: "804495c97adcd31:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Tue, 26 Jun 2018 22:37:54 GMT
Content-Length: 33433


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), max speed
Size:   33433
Md5:    ddb71f824a55e26713876266869c1bf8
Sha1:   1b66be5a2afe99cfb4b23af0c9e68e961918aa08
Sha256: f8e50bdeafcc9f53855012f906c74c70f207001375033d8358e1cf48aa1d2251
                                        
                                            POST / HTTP/1.1 
Host: ocsp.int-x3.letsencrypt.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 117
Content-Type: application/ocsp-request

                                         
                                         195.159.219.11
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 527
Etag: "3AB376F966C33B5E4268026E1EC7E474755D89535DA1C0C449EF9F1B0B07D5E0"
Last-Modified: Sun, 24 Jun 2018 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=36753
Expires: Wed, 27 Jun 2018 08:50:31 GMT
Date: Tue, 26 Jun 2018 22:37:58 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   527
Md5:    49bd9f7e114bb66e329a1dcb8292062f
Sha1:   be1503cadb02faeba7c65e3eeb5484ca79aaf770
Sha256: 3ab376f966c33b5e4268026e1ec7e474755d89535da1c0c449ef9f1b0b07d5e0
                                        
                                            POST / HTTP/1.1 
Host: isrg.trustid.ocsp.identrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.122
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Transfer-Encoding: Binary
Last-Modified: Tue, 26 Jun 2018 09:01:24 GMT
Etag: "7724781ae85fdf2e1a394f93f981adbbfdf97fa5"
Content-Length: 1398
Cache-Control: public, no-transform, must-revalidate, max-age=34794
Expires: Wed, 27 Jun 2018 08:17:52 GMT
Date: Tue, 26 Jun 2018 22:37:58 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1398
Md5:    f322e9c941a362b54855b50f8dddf6c2
Sha1:   7724781ae85fdf2e1a394f93f981adbbfdf97fa5
Sha256: ef94614820c43de4ffac2a8bf6cde4eefe2df4872132abf10976a7e87a18e81a
                                        
                                            GET /push.js HTTP/1.1 
Host: push.zhanzhang.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://dgbogao.com/2018shijiebei16qiang-show-8.html

                                         
                                         180.149.131.146
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Content-Encoding: gzip
Content-Length: 227
Date: Tue, 26 Jun 2018 22:37:58 GMT
Etag: "4078520113"
Expires: Wed, 26 Jun 2019 22:37:58 GMT
Last-Modified: Wed, 25 Nov 2015 07:46:08 GMT
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: apache
Set-Cookie: BAIDUID=55E471FBCC08494397C13A4B1676A5BA:FG=1; max-age=31536000; expires=Wed, 26-Jun-19 22:37:58 GMT; domain=.baidu.com; path=/; version=1
Vary: Accept-Encoding


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   227
Md5:    e548b6ce15bb616c2bfba36e9cfbf307
Sha1:   a348285d9928a6548a57569f1fb9d62bdd747f33
Sha256: 7be3e4c53cc47ce5cfa40a5e79b42848a90acee0d7ff71f10ac31a49c81aead5
                                        
                                            GET /large/pgc-image/1522508009394e4d907bb30 HTTP/1.1 
Host: p3.pstatp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://dgbogao.com/2018shijiebei16qiang-show-8.html

                                         
                                         213.244.178.206
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Tengine
Content-Length: 41374
Connection: keep-alive
Date: Tue, 26 Jun 2018 22:37:58 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Wed, 26 Jun 2019 22:37:58 GMT
Last-Modified: Sat, 31 Mar 2018 14:53:29 GMT
X-Response-Date: Tue, 26 Jun 2018 22:37:58 GMT
X-Xxoo-Time: Tue, 26 Jun 2018 22:37:58 GMT
Access-Control-Allow-Origin: *
Via: cache12.l2de1[353,200-0,M], cache17.l2de1[353,0], cache8.nl1[361,200-0,M], cache4.nl1[363,0]
X-Cache: MISS TCP_MISS dirn:-2:-2 mlen:-1
X-Swift-SaveTime: Tue, 26 Jun 2018 22:37:58 GMT
X-Swift-CacheTime: 31536000
Timing-Allow-Origin: *
EagleId: d5f4b28415300526781538178e


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   41374
Md5:    b12f53e54a6d60981687616030a88dbf
Sha1:   100c4beec709a7ee5604925b9fc1b811a2e81788
Sha256: d99e5f3369bb3d1f3fc0c0648e0c7f9f80d3fc217c0fe3615a4fd0bb5c5d85ac
                                        
                                            GET /b/bshareC0.js HTTP/1.1 
Host: static.bshare.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://dgbogao.com/2018shijiebei16qiang-show-8.html

                                         
                                         195.27.31.253
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: Tengine
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Accept-Encoding
Date: Thu, 14 Jun 2018 11:33:07 GMT
Cache-Control: s-maxage=604800, max-age=604800
Expires: Thu, 21 Jun 2018 11:33:07 GMT
Last-Modified: Mon, 26 Feb 2018 07:16:51 GMT
Etag: W/"5a93b463-12eb"
SID: bsweb2
Fw-Cache-Status: hit
Fw-Via: DISK HIT NOT MODIFIED from 222.88.94.134
Via: cache16.l2sg1[0,304-0,H], cache27.l2sg1[1,0], cache2.de1[0,200-0,H], cache11.de1[1,0]
Age: 1076691
X-Cache: HIT TCP_MEM_HIT dirn:3:309122546 mlen:-1
X-Swift-SaveTime: Wed, 20 Jun 2018 17:18:28 GMT
X-Swift-CacheTime: 604800
Timing-Allow-Origin: *
EagleId: c31b1fd315300526786622275e
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1699
Md5:    09538b7a8250d78a668c5c0f6ee33a36
Sha1:   321873666e40f5792f0445632c2e0176bd65efe1
Sha256: 6ebd5d4e7d862a4b42549fa31752062aaf4fc7bab08d331f0bb7c42bf6f64ad6
                                        
                                            GET /b/buttonLite.js HTTP/1.1 
Host: static.bshare.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://dgbogao.com/2018shijiebei16qiang-show-8.html

                                         
                                         195.27.31.253
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: Tengine
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Accept-Encoding
Date: Thu, 14 Jun 2018 22:23:43 GMT
Cache-Control: max-age=604800
Expires: Thu, 21 Jun 2018 22:23:43 GMT
Last-Modified: Mon, 26 Feb 2018 07:16:52 GMT
Etag: W/"5a93b464-4f76"
SID: bsweb2
Fw-Cache-Status: hit
Fw-Via: DISK HIT NOT MODIFIED from 222.88.94.134
Via: cache11.l2sg1[0,304-0,H], cache25.l2sg1[1,0], cache2.de1[0,200-0,H], cache12.de1[1,0]
Age: 1037655
X-Cache: HIT TCP_MEM_HIT dirn:6:314287575 mlen:-1
X-Swift-SaveTime: Wed, 20 Jun 2018 17:18:31 GMT
X-Swift-CacheTime: 604800
Timing-Allow-Origin: *
EagleId: c31b1fd415300526786555672e
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   9202
Md5:    381af83ad823b8b972532d94759f2a62
Sha1:   351d0ce42387f72bc7805df9b77a8eb3ec231825
Sha256: 5d5b2b8b381b5656cd2e635a028c10eb39e955a09cae09a82480e0df58b4d0a0
                                        
                                            GET /b/components/bsStatic.js?v=20180226 HTTP/1.1 
Host: static.bshare.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://dgbogao.com/2018shijiebei16qiang-show-8.html

                                         
                                         195.27.31.253
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: Tengine
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Accept-Encoding
Date: Fri, 15 Jun 2018 05:33:26 GMT
Cache-Control: max-age=604800
Expires: Fri, 22 Jun 2018 05:33:26 GMT
Last-Modified: Mon, 26 Feb 2018 07:15:46 GMT
Etag: W/"5a93b422-cd6"
SID: bsweb2
Fw-Cache-Status: hit
Fw-Via: DISK HIT NOT MODIFIED from 222.88.94.134
Via: cache16.l2sg1[0,304-0,H], cache18.l2sg1[1,0], cache2.de1[0,200-0,H], cache11.de1[1,0]
Age: 1011872
X-Cache: HIT TCP_MEM_HIT dirn:7:296535588 mlen:-1
X-Swift-SaveTime: Wed, 20 Jun 2018 17:18:28 GMT
X-Swift-CacheTime: 604800
Timing-Allow-Origin: *
EagleId: c31b1fd315300526787022294e
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1748
Md5:    5aa85085b48e82adf6d6c2607b5382aa
Sha1:   d368628587f6a3083be3b854d297714f544b1f54
Sha256: 90407f20e4d0c221ddd2aee890a6d76aad809801ceb79af6b37d70b3e0cbc656
                                        
                                            GET /static/jquery.js HTTP/1.1 
Host: js.googletoolservices.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://dgbogao.com/2018shijiebei16qiang-show-8.html

                                         
                                         23.236.75.181
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Tue, 26 Jun 2018 22:41:20 GMT
Last-Modified: Sun, 10 Jun 2018 14:52:36 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Etag: W/"5b1d3b34-16a6"
Expires: Wed, 27 Jun 2018 10:41:20 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3464
Md5:    07e200cff0ad951f3e53e95f6731b0f2
Sha1:   cc20fad262b08cad779436daba6804ea15723e57
Sha256: e5c7f1154f4e245e77bd49475bdfd52b3c2a193561185d007b24cc2d539d3deb
                                        
                                            GET /b/engines/bs-engine.js?v=20180226 HTTP/1.1 
Host: static.bshare.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://dgbogao.com/2018shijiebei16qiang-show-8.html

                                         
                                         195.27.31.253
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: Tengine
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Accept-Encoding
Date: Fri, 22 Jun 2018 05:33:27 GMT
Expires: Mon, 25 Jun 2018 04:47:38 GMT
Last-Modified: Mon, 26 Feb 2018 07:25:18 GMT
Cache-Control: max-age=432000
Etag: W/"5a93b65e-2c24"
SID: bsweb2
Fw-Cache-Status: hit
Fw-Via: DISK HIT NOT MODIFIED from 222.88.94.134
Via: cache3.l2sg1[0,304-0,H], cache11.l2sg1[5,0], cache7.de1[0,200-0,H], cache11.de1[1,0]
Age: 407071
X-Cache: HIT TCP_MEM_HIT dirn:5:748278930 mlen:-1
X-Swift-SaveTime: Fri, 22 Jun 2018 05:33:32 GMT
X-Swift-CacheTime: 604800
Timing-Allow-Origin: *
EagleId: c31b1fd315300526788052324e
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   6315
Md5:    e464911536d507fcd76a558bef023be8
Sha1:   50eed82d28004b71714eefc217e24d18d8b862ff
Sha256: f484e176185e23079f00efbac0d8b51195c4a410cb042007894dc941fe41ecb4
                                        
                                            GET /js/libs/fingerprint2.min.js HTTP/1.1 
Host: static.bshare.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://dgbogao.com/2018shijiebei16qiang-show-8.html

                                         
                                         195.27.31.253
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: Tengine
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Accept-Encoding
Date: Fri, 22 Jun 2018 11:31:41 GMT
Expires: Sat, 23 Jun 2018 11:34:54 GMT
Last-Modified: Tue, 06 Sep 2016 10:43:54 GMT
Cache-Control: max-age=432000
Etag: W/"57ce9dea-7ffb"
SID: bsweb1
Fw-Cache-Status: hit
Fw-Via: DISK HIT NOT MODIFIED from 222.88.94.134
Via: cache4.l2sg1[0,304-0,H], cache9.l2sg1[1,0], cache7.de1[0,200-0,H], cache12.de1[2,0]
Age: 385577
X-Cache: HIT TCP_MEM_HIT dirn:3:530744015 mlen:-1
X-Swift-SaveTime: Sat, 23 Jun 2018 00:54:11 GMT
X-Swift-CacheTime: 432000
Timing-Allow-Origin: *
EagleId: c31b1fd415300526787985753e
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   11136
Md5:    8ce1dfe54dfcc967df1891925d2b59f0
Sha1:   856974c97068082c887008fc216066539e3157bd
Sha256: f8028d1ffce1390423181b493db94cadc20c56f7faffce15986e0a722c885baf
                                        
                                            POST /gsdomainvalsha2g2 HTTP/1.1 
Host: ocsp2.globalsign.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 111
Content-Type: application/ocsp-request

                                         
                                         104.18.21.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 26 Jun 2018 22:37:59 GMT
Content-Length: 1558
Connection: keep-alive
Set-Cookie: __cfduid=dd359b2cade63d148c4f9fdc1c19ae1361530052679; expires=Wed, 26-Jun-19 22:37:59 GMT; path=/; domain=.globalsign.com; HttpOnly
Last-Modified: Tue, 26 Jun 2018 21:09:08 GMT
Expires: Sat, 30 Jun 2018 21:09:08 GMT
Etag: "c68d1a3898727bfb57607b986b8e9e296152caa5"
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 43132960f13c428b-OSL


--- Additional Info ---
Magic:  data
Size:   1558
Md5:    63054cd14bbb9d0b2cd9e97fa53301eb
Sha1:   c68d1a3898727bfb57607b986b8e9e296152caa5
Sha256: 3568953cb9c62b5266f6680683f2c1714babbe9e26e05f826713bef5f868dd50
                                        
                                            GET /19487047.js HTTP/1.1 
Host: js.users.51.la
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://dgbogao.com/2018shijiebei16qiang-show-8.html

                                         
                                         183.131.207.78
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: HuaweiCloudWAF
Date: Tue, 26 Jun 2018 22:38:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: HWWAFSESID=08688f85896ecd83229; path=/ HWWAFSESTIME=1530052676871; path=/
Last-Modified: Sat, 12 May 2018 06:39:37 GMT
Etag: W/"5af68c29-1322"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2323
Md5:    1885f5630862898a33b5837c253e3030
Sha1:   f5589866e18d989ab21ba3e85af90ae046b18ca6
Sha256: 85636a85a09525c9705aefd9398a2ea3fa84d2d253899af62a5533408a190b06
                                        
                                            GET /go1?id=19487047&rt=1530052682177&rl=1176*885&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=&ing=1&ekc=&sid=1530052682177&tt=&kw=&cu=http%253A%252F%252Fdgbogao.com%252F2018shijiebei16qiang-show-8.html&pu= HTTP/1.1 
Host: ia.51.la
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://dgbogao.com/2018shijiebei16qiang-show-8.html

                                         
                                         183.131.207.78
HTTP/1.1 200
Content-Type: application/octet-stream
                                        
Server: HuaweiCloudWAF
Date: Tue, 26 Jun 2018 22:38:02 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: HWWAFSESID=ee0d92e960d83524054; path=/ HWWAFSESTIME=1530052682401; path=/


--- Additional Info ---
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: dgbogao.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         154.95.132.78
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Tue, 26 Jun 2018 22:37:55 GMT
Content-Length: 114285


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   114285
Md5:    e024aee73ef9751ada346fd1253bf88f
Sha1:   c5ef8628c5a3d35dd94ff6e7b1ac0a20dbd0b701
Sha256: 855a2e188e81f3004812f5a27f8132efdb2687a54deb3d6d7ae3e1c5e6d5514a

Alerts:
  IDS:
    - ET CURRENT_EVENTS DRIVEBY EXE Embeded in Page Likely Evil M1
    - ET TROJAN PE EXE or DLL Windows file download Text
    - ET TROJAN RAMNIT.A M2
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: dgbogao.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         0.0.0.0
                                        


--- Additional Info ---

Alerts:
  IDS:
    - ET CURRENT_EVENTS DRIVEBY EXE Embeded in Page Likely Evil M1
    - ET TROJAN PE EXE or DLL Windows file download Text
    - ET TROJAN RAMNIT.A M2
                                        
                                            GET /hm.js?33b48debf5252e7e4488c5dfb129a3ba HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://dgbogao.com/2018shijiebei16qiang-show-8.html
Cookie: BAIDUID=55E471FBCC08494397C13A4B1676A5BA:FG=1

                                         
                                         0.0.0.0
                                        


--- Additional Info ---