Overview

URL www.ns.gov.cn/Item/45328.aspx
IP117.36.152.3
ASNAS4134 Chinanet
Location China
Report completed2017-08-13 06:23:59 CEST
StatusLoading report..
urlQuery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2017-08-13 2 js.users.51.la/5687349.js Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

No other reports on IP: 117.36.152.3


Last 10 reports on ASN: AS4134 Chinanet

Date UQ / IDS / BL URL IP
2017-10-24 10:43:55 +0200
0 - 0 - 1 sxzj.lqt8.cn/ 122.9.28.224
2017-10-24 10:12:17 +0200
0 - 0 - 1 sapi.97myj.com/dkieu.php? 115.231.76.6
2017-10-24 09:54:59 +0200
0 - 3 - 10 www.qyqrencai.com/ 220.177.198.246
2017-10-24 09:54:01 +0200
0 - 0 - 1 down413802.xiazaidown.com/ 59.47.232.75
2017-10-24 09:51:07 +0200
0 - 0 - 1 down413811.xiazaidown.com/ 221.229.204.145
2017-10-24 09:50:53 +0200
0 - 0 - 1 cl.qpzqxz.com/ 150.138.169.68
2017-10-24 09:45:34 +0200
0 - 0 - 8 www.jnzhuoli.com/ 222.173.37.6
2017-10-24 09:44:15 +0200
0 - 4 - 2 www.cndeplo.com/ 202.75.219.117
2017-10-24 09:43:00 +0200
0 - 10 - 9 ywywd.com/ 218.95.37.200
2017-10-24 09:40:56 +0200
0 - 4 - 9 www.hbyfyxh.com/ 58.53.128.247

No other reports on domain: .



JavaScript

Executed Scripts (12)


Executed Evals (0)


Executed Writes (6)

#1 JavaScript::Write (size: 318, repeated: 1) - SHA256: c2ab0415a23941ab19f9de9d41a6e7bbbceeeae31ce1c4096bd19fe7fe4940d2

                                        < a href = "http://www.51.la/?5687349"
title = "51.La &#x7F51;&#x7AD9;&#x6D41;&#x91CF;&#x7EDF;&#x8BA1;&#x7CFB;&#x7EDF; VIP &#x7528;&#x6237;"
target = "_blank" > < img alt = "51.La &#x7F51;&#x7AD9;&#x6D41;&#x91CF;&#x7EDF;&#x8BA1;&#x7CFB;&#x7EDF; VIP &#x7528;&#x6237;"
src = "//icon.users.51.la/icon_7.gif"
style = "border:none" / > < /a>
                                    

#2 JavaScript::Write (size: 325, repeated: 1) - SHA256: 90783d0d03b90e765a9d5280343733d027020ec9f9106c7b601d976d29576984

                                        < a href = http: //www.cnzz.com/stat/website.php?web_id=3627276 target=_blank>�ߡ</a><a href=http://www.cnzz.com/stat/website.php?web_id=3627276 target=_blank> |  ��IP[153] | ��PV[583] | (�IP[399] |  (�PV[1560] | <a href=http://www.cnzz.com/stat/website.php?web_id=3627276&method=online target=_blank>SM(�[6]</a>
                                    

#3 JavaScript::Write (size: 127, repeated: 1) - SHA256: 062788720edafa268cda51c1011e45dc5d4f622fb79847c49d7f5ff360d01f9c

                                        < script src = 'http://c.cnzz.com/core.php?web_id=3627276&show=line&online=1&t=z'
charset = 'utf-8'
type = 'text/javascript' > < /script>
                                    

#4 JavaScript::Write (size: 146, repeated: 1) - SHA256: b7c7186a52f1c6b48172d8d3ce3ee8f2beeb8b635429594aa225bcecef07045c

                                        < script src = 'http://online.cnzz.com/online/online_v3.php?id=3627276&h=hzs24.cnzz.com&on=1&s=line'
charset = 'utf-8'
type = 'text/javascript' > < /script>
                                    

#5 JavaScript::Write (size: 146, repeated: 1) - SHA256: a1399503393e4f468679edce3ac558e23f43751d554efddfc0d8920550f32026

                                        < span id = '_ideConac' > < /span><script src='http:/ / dcs.conac.cn / js / 27 / 396 / 2542 / 60114506 / CA273962542601145060001.js ' type='
text / javascript '></script>
                                    

#6 JavaScript::Write (size: 31, repeated: 1) - SHA256: c846128af4b8dceb7f6f7f8a73fa7da0fd78c4696acc99b88e3e84bfada74c76

                                        < span id = '_span_jiucuo' > < /span>
                                    


HTTP Transactions (27)


Request Response
                                        
                                            GET /Item/45328.aspx HTTP/1.1 
Host: www.ns.gov.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         117.36.152.3
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Cache-Control: private
Date: Sun, 13 Aug 2017 04:23:26 GMT
Content-Length: 1008
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Set-Cookie: safedog-flow-item=; expires=Dec, 13-Aug-2017 16:00:26 GMT; domain=ns.gov.cn; path=/


--- Additional Info ---
Magic:  UTF-8 Unicode HTML document text, with CRLF line terminators
Size:   1008
Md5:    dfe06dec8e1f5600b43d796e23b222af
Sha1:   8bbbcba34498352282f3c391dd1a295a79f012c3
Sha256: 65a12c95c39fa6784015d7938c9857e37e4fae9a4f2e9d30fa189dcb354dc13e
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.ns.gov.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: safedog-flow-item=

                                         
                                         117.36.152.3
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Date: Sun, 13 Aug 2017 04:23:26 GMT
Content-Length: 1150
Content-Location: http://www.ns.gov.cn/favicon.ico
Last-Modified: Wed, 28 Nov 2012 09:58:00 GMT
Accept-Ranges: bytes
Etag: "ccd5d9d94ecdcd1:cbc9"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon
Size:   1150
Md5:    08fcefc3d1d8ae110b7a40ad9753848c
Sha1:   309c863bd4105dd0a922c593dbbb6e92d298b4dd
Sha256: c3fc9a9d6c5cf8b08424af2f106d8a2a46a45b3296c56cac90769135e30bfb56
                                        
                                            GET /skin/Gov/ningshan/public.css HTTP/1.1 
Host: www.ns.gov.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.ns.gov.cn/Government/PublicInfoShow.aspx?ID=4360
Cookie: safedog-flow-item=

                                         
                                         117.36.152.3
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 13 Aug 2017 04:23:27 GMT
Content-Length: 5141
Content-Location: http://www.ns.gov.cn/skin/Gov/ningshan/public.css
Last-Modified: Mon, 22 Dec 2014 07:50:33 GMT
Accept-Ranges: bytes
Etag: "e43250f7bb1dd01:cbc9"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET


--- Additional Info ---
Magic:  UTF-8 Unicode (with BOM) C program text, with CRLF line terminators
Size:   5141
Md5:    04fa24cec67db23e94625f76b132bd1b
Sha1:   0f780ba8087110bf296bd84fc7d787562aed121d
Sha256: c62da47eef7fe1edcbc2d861e7160e2703a267df26234b7aedbaeb2c771a18e0
                                        
                                            GET /Government/PublicInfoShow.aspx?ID=4360 HTTP/1.1 
Host: www.ns.gov.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.ns.gov.cn/Item/45328.aspx
Cookie: safedog-flow-item=

                                         
                                         117.36.152.3
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Cache-Control: private
Date: Sun, 13 Aug 2017 04:23:26 GMT
Content-Length: 17696
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727


--- Additional Info ---
Magic:  UTF-8 Unicode HTML document text, with very long lines, with CRLF line terminators
Size:   17696
Md5:    68f7a9e62b0d0e1e7a9a538583e699a4
Sha1:   c2a4e0f576e0c3747902f2ab1421f5a8830aebb7
Sha256: 426decfb7b6afd116bbcfa8d0182bb4cbb80c62267da2e7e8297fb5fa8ef03ab
                                        
                                            GET /Skin/Gov/eApp.css HTTP/1.1 
Host: www.ns.gov.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.ns.gov.cn/Government/PublicInfoShow.aspx?ID=4360
Cookie: safedog-flow-item=

                                         
                                         117.36.152.3
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 13 Aug 2017 04:23:27 GMT
Content-Length: 12350
Content-Location: http://www.ns.gov.cn/Skin/Gov/eApp.css
Last-Modified: Mon, 08 Jul 2013 13:37:47 GMT
Accept-Ranges: bytes
Etag: "22648955e07bce1:cbc9"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET


--- Additional Info ---
Magic:  UTF-8 Unicode (with BOM) text, with CRLF line terminators
Size:   12350
Md5:    3636c96aec76972ff55f351c7d714adc
Sha1:   5d4c4cce3f9b13b6ada80e6cad48e9ebc6496fb1
Sha256: 58a44f0118bc2a037c8528fce398f760d6fa19ef161a634d91eb815277954bc2
                                        
                                            GET /skin/Gov/ningshan/js/jquery.pack.js HTTP/1.1 
Host: www.ns.gov.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.ns.gov.cn/Government/PublicInfoShow.aspx?ID=4360
Cookie: safedog-flow-item=

                                         
                                         117.36.152.3
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Sun, 13 Aug 2017 04:23:27 GMT
Content-Length: 71854
Content-Location: http://www.ns.gov.cn/skin/Gov/ningshan/js/jquery.pack.js
Last-Modified: Tue, 06 Sep 2011 01:37:19 GMT
Accept-Ranges: bytes
Etag: "a8bf7384356ccc1:cbc9"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET


--- Additional Info ---
Magic:  UTF-8 Unicode (with BOM) English text, with very long lines, with CRLF line terminators
Size:   71854
Md5:    f898cfefafd67d3b9ccb259d8a13b1ce
Sha1:   2b5c9a5a7f617c52a9f3a5091f3b60b5952e11dc
Sha256: c6a84a45ea3215606f7a9aa8eaed34120bb895cbf72b6e27793ac7415c446833
                                        
                                            GET /images/shared/download_buttons/get_flash_player.gif HTTP/1.1 
Host: www.adobe.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.ns.gov.cn/Government/PublicInfoShow.aspx?ID=4360

                                         
                                         104.123.130.115
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Content-Length: 1720
Server: Apache
Last-Modified: Tue, 29 Nov 2016 07:30:56 GMT
Etag: "6b8-5426b91a50c00"
Accept-Ranges: bytes
X-Adobe-Loc: uw2
Cache-Control: max-age=461
Expires: Sun, 13 Aug 2017 04:31:09 GMT
Date: Sun, 13 Aug 2017 04:23:28 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 112 x 33
Size:   1720
Md5:    feb21ee4b711858c4e3485f844cc9772
Sha1:   1678ec04014ec245f6daf72589f24bc55c42cbe1
Sha256: b26af9f56cff4a8ea0a3c06eaa442962ac51317bec73931122df1d9c95f6388b
                                        
                                            GET /skin/Gov/ningshan/js/jquery.tab.js HTTP/1.1 
Host: www.ns.gov.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.ns.gov.cn/Government/PublicInfoShow.aspx?ID=4360
Cookie: safedog-flow-item=

                                         
                                         117.36.152.3
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Sun, 13 Aug 2017 04:23:30 GMT
Content-Length: 3560
Content-Location: http://www.ns.gov.cn/skin/Gov/ningshan/js/jquery.tab.js
Last-Modified: Fri, 27 May 2011 03:13:14 GMT
Accept-Ranges: bytes
Etag: "3c694441c1ccc1:cbc9"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET


--- Additional Info ---
Magic:  UTF-8 Unicode C++ program text, with CRLF line terminators
Size:   3560
Md5:    1a879f25b6e98d977273cba309e4245a
Sha1:   424231e94b9b817fb2c6de8b5f0e9fcc9101d511
Sha256: dacf37a281b9aa13d77bd2db822aec3a79c30a08d22a00f319950456a60f4606
                                        
                                            GET /skin/Gov/ningshan/images/body_bg.jpg HTTP/1.1 
Host: www.ns.gov.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.ns.gov.cn/skin/Gov/ningshan/public.css
Cookie: safedog-flow-item=

                                         
                                         117.36.152.3
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sun, 13 Aug 2017 04:23:30 GMT
Content-Length: 400
Content-Location: http://www.ns.gov.cn/skin/Gov/ningshan/images/body_bg.jpg
Last-Modified: Mon, 26 Dec 2011 01:07:15 GMT
Accept-Ranges: bytes
Etag: "94d6e5b46ac3cc1:cbc9"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   400
Md5:    4d816a7a4514747619868629f72de94d
Sha1:   a25861f505d3ac0e455c318e1144ad1c6da7c655
Sha256: 18279ae54d0b08ab87ff6680b359201315c2e57ec265c9e17725d1188b8afdfb
                                        
                                            GET /exposure/jiucuo.js HTTP/1.1 
Host: pucha.kaipuyun.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.ns.gov.cn/Government/PublicInfoShow.aspx?ID=4360

                                         
                                         121.43.68.40
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Sun, 13 Aug 2017 04:23:29 GMT
Last-Modified: Thu, 08 Dec 2016 06:29:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Expires: Fri, 18 Aug 2017 04:23:29 GMT
Cache-Control: max-age=432000
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   687
Md5:    5fc016d3ae6f596785089320900bfcc5
Sha1:   17c9a2add4e9da9751c2768f28582859ce0ec277
Sha256: 1541b464613159c2bb2a3652e1a647e9507ebb735a6380267afe1748f05b8e9f
                                        
                                            GET /stat.php?id=3627276&web_id=3627276&online=1&show=line HTTP/1.1 
Host: s24.cnzz.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.ns.gov.cn/Government/PublicInfoShow.aspx?ID=4360

                                         
                                         58.215.145.188
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: Tengine
Content-Length: 10989
Connection: keep-alive
Date: Sun, 13 Aug 2017 03:55:38 GMT
Last-Modified: Sun, 13 Aug 2017 03:55:38 GMT
Cache-Control: max-age=5400,s-maxage=5400
Via: cache12.l2et15[0,200-0,H], cache2.l2et15[1,0], kunlun4.cn190[11,200-0,M], kunlun10.cn190[11,0]
Age: 1671
X-Cache: MISS TCP_MISS dirn:2:455876493
X-Swift-SaveTime: Sun, 13 Aug 2017 04:23:29 GMT
X-Swift-CacheTime: 3729
Timing-Allow-Origin: *
EagleId: 3ad7910a15025982090231689e


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   10989
Md5:    4416ff04fe681d556ecb91673b075535
Sha1:   a9985723f33c199a33a40d72d85ddab0cd12efb6
Sha256: 62b7f9097d68cdbc6d187754ba96f32ef25653fba7aee36b13388dd772e58b13
                                        
                                            GET /5687349.js HTTP/1.1 
Host: js.users.51.la
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.ns.gov.cn/Government/PublicInfoShow.aspx?ID=4360

                                         
                                         42.236.74.213
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Encoding: gzip
Last-Modified: Tue, 07 Mar 2017 06:05:13 GMT
Accept-Ranges: bytes
Etag: "655a27c9897d21:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
Date: Sun, 13 Aug 2017 04:23:44 GMT
Content-Length: 1033


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), max speed
Size:   1033
Md5:    2fefabe8d6cd5e44f41496a6cbb168eb
Sha1:   7d67632ac33f0b08b5b46835f778308758bec715
Sha256: 91111d22f131624b97abc180a86bafe8c466146aed6f07623a54d232f40d2d0b

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /skin/Gov/ningshan/images/nav_bg_xxgk.png HTTP/1.1 
Host: www.ns.gov.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.ns.gov.cn/skin/Gov/ningshan/public.css
Cookie: safedog-flow-item=

                                         
                                         117.36.152.3
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sun, 13 Aug 2017 04:23:31 GMT
Content-Length: 337
Content-Location: http://www.ns.gov.cn/skin/Gov/ningshan/images/nav_bg_xxgk.png
Last-Modified: Mon, 08 Jul 2013 08:32:50 GMT
Accept-Ranges: bytes
Etag: "a2c1acbbb57bce1:cbc9"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET


--- Additional Info ---
Magic:  PNG image, 980 x 32, 8-bit colormap, non-interlaced
Size:   337
Md5:    d7fd0f35c3619dc37b45e0be88b105a1
Sha1:   4d4d525863aaea1bfb4c24e9b0a4acfa5b592859
Sha256: c4bd691dcfa8d95da6f1d5d34c2c0f3aa6465060343c9b8c484853c2246fdaa8
                                        
                                            GET /img/ghs.png HTTP/1.1 
Host: www.beian.gov.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.ns.gov.cn/Government/PublicInfoShow.aspx?ID=4360

                                         
                                         211.88.112.61
HTTP/1.1 200 OK
Content-Type: image/png;charset=UTF-8
                                        
Set-Cookie: JSESSIONID=CF807D32602156E6C230E7F47BE6B8DA; Path=/; HttpOnly BIGipServerPOOL-WebAGPT=202576044.37407.0000; path=/
Accept-Ranges: bytes
Etag: W/"19256-1500375172000"
Last-Modified: Tue, 18 Jul 2017 10:52:52 GMT
Content-Length: 19256
Date: Sun, 13 Aug 2017 04:23:24 GMT
Server: beian-server


--- Additional Info ---
Magic:  PNG image, 20 x 20, 8-bit/color RGBA, non-interlaced
Size:   19256
Md5:    d0289dc0a46fc5b15b3363ffa78cf6c7
Sha1:   29c400bc3b89f6085766dac4e0330ded5cb73d52
Sha256: a20583c81805fe64f7fa210851ce29754af9d25fd6aa5a3225a9557529602513
                                        
                                            GET /Skin/Gov/images/DataClosebg.gif HTTP/1.1 
Host: www.ns.gov.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.ns.gov.cn/Skin/Gov/eApp.css
Cookie: safedog-flow-item=

                                         
                                         117.36.152.3
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Sun, 13 Aug 2017 04:23:32 GMT
Content-Length: 490
Content-Location: http://www.ns.gov.cn/Skin/Gov/images/DataClosebg.gif
Last-Modified: Tue, 06 Sep 2011 01:37:28 GMT
Accept-Ranges: bytes
Etag: "f841c989356ccc1:cbc9"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET


--- Additional Info ---
Magic:  GIF image data, version 89a, 176 x 19
Size:   490
Md5:    5e873c6339d5053689bf1d2c9b52c7c3
Sha1:   c21e3df59d6aa941acfffcb34977db7a9e5f210b
Sha256: c524858ed83aba6e92f613b445f7df7a5690e79e30612e355693a030e9108afa
                                        
                                            GET /skin/Gov/ningshan/images/bar_bg.png HTTP/1.1 
Host: www.ns.gov.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.ns.gov.cn/skin/Gov/ningshan/public.css
Cookie: safedog-flow-item=

                                         
                                         117.36.152.3
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sun, 13 Aug 2017 04:23:32 GMT
Content-Length: 253
Content-Location: http://www.ns.gov.cn/skin/Gov/ningshan/images/bar_bg.png
Last-Modified: Tue, 06 Dec 2011 06:32:42 GMT
Accept-Ranges: bytes
Etag: "40df4edbe0b3cc1:cbc9"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET


--- Additional Info ---
Magic:  PNG image, 1 x 33, 8-bit colormap, non-interlaced
Size:   253
Md5:    dfe7beea81b4dfbaad56b83e0684799d
Sha1:   3da247e8f50165490d01b7a470324f5f26ea541c
Sha256: 65cbc8c41694ecc779880805bc1c8eaf7249344d24fc1225ea8605db63617858
                                        
                                            GET /skin/Gov/ningshan/images/footer_bg.png HTTP/1.1 
Host: www.ns.gov.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.ns.gov.cn/skin/Gov/ningshan/public.css
Cookie: safedog-flow-item=

                                         
                                         117.36.152.3
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sun, 13 Aug 2017 04:23:32 GMT
Content-Length: 327
Content-Location: http://www.ns.gov.cn/skin/Gov/ningshan/images/footer_bg.png
Last-Modified: Tue, 06 Dec 2011 06:28:05 GMT
Accept-Ranges: bytes
Etag: "70448a36e0b3cc1:cbc9"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET


--- Additional Info ---
Magic:  PNG image, 1 x 120, 8-bit colormap, non-interlaced
Size:   327
Md5:    ed9cdc14ea1196f8e320eebda6e72cfb
Sha1:   f256d4e06c30165d965174914ea8d983fdbe259b
Sha256: 651b55bedff3dc67fbdf5c97d718752085d25cc648e44955876792ffbf86d0b5
                                        
                                            GET /skin/Gov/ningshan/images/dtop_nsxxgk.jpg HTTP/1.1 
Host: www.ns.gov.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.ns.gov.cn/Government/PublicInfoShow.aspx?ID=4360
Cookie: safedog-flow-item=

                                         
                                         117.36.152.3
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sun, 13 Aug 2017 04:23:31 GMT
Content-Length: 44877
Content-Location: http://www.ns.gov.cn/skin/Gov/ningshan/images/dtop_nsxxgk.jpg
Last-Modified: Mon, 08 Jul 2013 07:56:51 GMT
Accept-Ranges: bytes
Etag: "2e707eb4b07bce1:cbc9"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   44877
Md5:    da7669c23ad2140b3043f2d33cb1d012
Sha1:   d3d16c6bbdb7bddb7eee3b6996cfc879e9929752
Sha256: 958654698dd54b2b549f03b11948e47235331c788d87ee965c0ff65f3a4ec1c2
                                        
                                            GET /core.php?web_id=3627276&show=line&online=1&t=z HTTP/1.1 
Host: c.cnzz.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.ns.gov.cn/Government/PublicInfoShow.aspx?ID=4360

                                         
                                         58.215.145.188
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: Tengine
Content-Length: 767
Connection: keep-alive
Date: Sun, 13 Aug 2017 04:09:25 GMT
Last-Modified: Sun, 13 Aug 2017 04:09:25 GMT
Expires: Sun, 13 Aug 2017 04:24:25 GMT
Via: cache8.l2et15[0,200-0,H], cache14.l2et15[0,0], kunlun6.cn190[10,200-0,M], kunlun10.cn190[10,0]
Age: 847
X-Cache: MISS TCP_MISS dirn:5:35398211
X-Swift-SaveTime: Sun, 13 Aug 2017 04:23:32 GMT
X-Swift-CacheTime: 53
Timing-Allow-Origin: *
EagleId: 3ad7910a15025982120724761e


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   767
Md5:    2ccfae9cb822bb64136920a4a9b3848a
Sha1:   ebbf003574e0fc0d69f5e06fe45030c1d449cf78
Sha256: a971b1dcc8f073373599833f5b8e73210fbd6a617a1c16f9823100557755cf61
                                        
                                            GET /get/flashplayer/update/current/xml/version_en_win_pl.xml HTTP/1.1 
Host: fpdownload2.macromedia.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         195.159.219.18
HTTP/1.1 200 OK
Content-Type: text/xml
                                        
Server: Apache
Last-Modified: Tue, 08 Aug 2017 08:33:41 GMT
Etag: "60c-55639d2111c20"
Accept-Ranges: bytes
Content-Length: 1548
Date: Sun, 13 Aug 2017 04:23:32 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  XML document text\012 XML document text
Size:   1548
Md5:    11bdb5b3d02154ce4ac35345c8e41314
Sha1:   0133c7cdcd9afa9960ab75c8cc3afd8521cc51c3
Sha256: 85b85ca5a3b05180175f2eee1fb2dd7a735b8a310f12cbb701329a147ca8442a
                                        
                                            GET /stat.htm?id=3627276&r=http%3A%2F%2Fwww.ns.gov.cn%2FItem%2F45328.aspx&lg=en-us&ntime=none&cnzz_eid=214642801-1502596538-http%3A%2F%2Fwww.ns.gov.cn%2F&showp=1176x885&t=%E5%85%B3%E4%BA%8E%E5%AE%9E%E6%96%BD%E5%B7%A5%E5%95%86%E7%99%BB%E8%AE%B0%E5%85%A8%E7%A8%8B%E7%94%B5%E5%AD%90%E5%8C%96%E7%9A%84%E5%85%AC%E5%91%8A-%E5%AE%81%E9%99%95%E5%8E%BF%E5%A7%94%E5%8E%BF%E6%94%BF%E5%BA%9C%E9%97%A8%E6%88%B7%E7%BD%91%E7%AB%99&umuuid=15dd9d528814e-0891f5eb6386558-6c242d76-fe178-15dd9d52884ef&h=1&rnd=1035889994 HTTP/1.1 
Host: hzs24.cnzz.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.ns.gov.cn/Government/PublicInfoShow.aspx?ID=4360

                                         
                                         140.205.61.61
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Server: Tengine
Date: Sun, 13 Aug 2017 04:23:32 GMT
Transfer-Encoding: chunked
Connection: close
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   22
Md5:    8bd3e739a9ba80a435f0214811da0c2a
Sha1:   bfc17d1e04e56542eb8037f08ed142efd252ea82
Sha256: a2dd5774b01bbfc29140279e02fea087df42a4c257dce8858226737a2e521986
                                        
                                            GET /online/online_v3.php?id=3627276&h=hzs24.cnzz.com&on=1&s=line HTTP/1.1 
Host: online.cnzz.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.ns.gov.cn/Government/PublicInfoShow.aspx?ID=4360

                                         
                                         58.215.145.188
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: Tengine
Content-Length: 813
Connection: keep-alive
Date: Sun, 13 Aug 2017 04:09:25 GMT
Last-Modified: Sun, 13 Aug 2017 04:09:25 GMT
Expires: Sun, 13 Aug 2017 04:24:25 GMT
Via: cache5.l2et15[0,200-0,H], cache3.l2et15[0,0], kunlun10.cn190[12,200-0,M], kunlun8.cn190[13,0]
Age: 847
X-Cache: MISS TCP_MISS dirn:6:176735706
X-Swift-SaveTime: Sun, 13 Aug 2017 04:23:32 GMT
X-Swift-CacheTime: 53
Timing-Allow-Origin: *
EagleId: 3ad7910815025982127951789e


--- Additional Info ---
Magic:  UTF-8 Unicode text, with very long lines, with CRLF line terminators
Size:   813
Md5:    6e2ec6f68f09a2da11bb51314de9ecc8
Sha1:   bc1a57099e0d502b9665182a8119a5e9c46630e6
Sha256: 3a55d5266cc4d51a20c9c991a32d1e3332e8974579444214f2604bbe4e58d785
                                        
                                            GET /exposure/images/jiucuo.png?v=6109230012 HTTP/1.1 
Host: 121.43.68.40
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.ns.gov.cn/Government/PublicInfoShow.aspx?ID=4360

                                         
                                         121.43.68.40
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Sun, 13 Aug 2017 04:23:33 GMT
Content-Length: 3998
Last-Modified: Thu, 21 Jul 2016 10:19:36 GMT
Connection: keep-alive
Etag: "5790a1b8-f9e"
Expires: Fri, 18 Aug 2017 04:23:33 GMT
Cache-Control: max-age=432000
X-XSS-Protection: 1; mode=block
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 110 x 55, 8-bit/color RGBA, non-interlaced
Size:   3998
Md5:    6af04ac7045904d6a385cf81d4c60abd
Sha1:   b4821847b400bdd819f1d1bbe7e54f5c0fc96a46
Sha256: 1ffad2e5b839a2d2c6546c3e5fab9e497049b0e21a14c073e35ec6129da7fce6
                                        
                                            GET /icon_7.gif HTTP/1.1 
Host: icon.users.51.la
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.ns.gov.cn/Government/PublicInfoShow.aspx?ID=4360

                                         
                                         42.236.73.3
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: max-age=86400
Content-Length: 922
Last-Modified: Fri, 26 May 2006 14:27:28 GMT
Accept-Ranges: bytes
Etag: "088d583d080c61:870"
Server: Microsoft-IIS/6.0
Date: Sun, 13 Aug 2017 04:23:33 GMT
Connection: close


--- Additional Info ---
Magic:  GIF image data, version 89a, 48 x 12
Size:   922
Md5:    9de534651b271bbcd7764a598a4ce1ec
Sha1:   33d66fa265ed9c90bee2c9edd1f964e2bdad90f3
Sha256: 70603bab574f068e6aa01f126ca4a067c4000d3ed9102cce5ed4c0be3c6fddc2
                                        
                                            GET /go.asp?svid=3&id=5687349&tpages=1&ttimes=1&tzone=2&tcolor=24&sSize=1176,885&referrer=http%3A//www.ns.gov.cn/Item/45328.aspx&vpage=http%3A//www.ns.gov.cn/Government/PublicInfoShow.aspx%3FID%3D4360&vvtime=1502598212938 HTTP/1.1 
Host: web.users.51.la
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.ns.gov.cn/Government/PublicInfoShow.aspx?ID=4360

                                         
                                         42.236.74.235
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Date: Sun, 13 Aug 2017 04:21:24 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Content-Length: 0
Expires: Sat, 12 Aug 2017 11:41:24 GMT
Cache-Control: private


--- Additional Info ---
                                        
                                            GET /Common/GetHits.aspx?id=45328 HTTP/1.1 
Host: www.ns.gov.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.ns.gov.cn/Item/45328.aspx
Cookie: safedog-flow-item=

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /js/27/396/2542/60114506/CA273962542601145060001.js HTTP/1.1 
Host: dcs.conac.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.ns.gov.cn/Government/PublicInfoShow.aspx?ID=4360

                                         
                                         0.0.0.0
                                        


--- Additional Info ---