Overview

URL zglhsj5688.com/html/zhengcefalvfuchizhengce201502252342213.html
IP104.223.149.173
ASNAS46573 Global Frag Networks
Location United States
Report completed2018-10-18 11:47:26 CEST
StatusLoading report..
urlQuery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro
Timestamp Severity Source IP Destination IP Alert
2018-10-18 11:46:54 CEST 1  104.223.149.173 Client IP ET CURRENT_EVENTS DRIVEBY EXE Embeded in Page Likely Evil M1
2018-10-18 11:46:54 CEST 1  104.223.149.173 Client IP ET TROJAN PE EXE or DLL Windows file download Text
2018-10-18 11:46:55 CEST 1  104.223.149.173 Client IP ET TROJAN RAMNIT.A M1
2018-10-18 11:46:54 CEST 1  104.223.149.173 Client IP ET TROJAN RAMNIT.A M2


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 104.223.149.173

Date UQ / IDS / BL URL IP
2018-10-27 08:32:48 +0200
0 - 0 - 2 zglhsj5688.com/html/chuangyezixunchuangyexinw (...) 104.223.149.173
2018-10-22 10:54:05 +0200
0 - 4 - 0 zglhsj5688.com/html/daxueshengchuanyedaxueshe (...) 104.223.149.173
2018-10-13 09:05:59 +0200
0 - 0 - 2 zglhsj5688.com/gongjugerensuodeshuishuilubiao.html 104.223.149.173
2018-10-13 08:56:01 +0200
0 - 0 - 11 zglhsj5688.com/html/chuangyezhinanzhaoxiangmu (...) 104.223.149.173
2018-10-13 06:46:12 +0200
0 - 0 - 3 xinyingyinshua.com/html/xinwendongtaixuexiaox (...) 104.223.149.173
2018-10-13 06:41:26 +0200
0 - 0 - 2 zglhsj5688.com/html/chuangyelianmeng201104261 (...) 104.223.149.173
2018-10-13 06:07:29 +0200
0 - 4 - 2 zglhsj5688.com/html/chuangyezixunchuangyexinw (...) 104.223.149.173
2018-10-13 06:02:31 +0200
0 - 0 - 1 zglhsj5688.com/html/gongjuhangyedaima.html 104.223.149.173
2018-10-13 05:52:14 +0200
0 - 0 - 2 zglhsj5688.com/html/chuangyezhinanzhaoxiangmu (...) 104.223.149.173
2018-10-13 05:20:18 +0200
0 - 0 - 2 zglhsj5688.com/html/chuangyeguancha2016050815 (...) 104.223.149.173

Last 10 reports on ASN: AS46573 Global Frag Networks

Date UQ / IDS / BL URL IP
2018-11-14 12:44:58 +0100
0 - 4 - 2 chinashoucheng.com/html/142015_11_131_14_6184 (...) 104.223.149.70
2018-11-14 12:44:57 +0100
0 - 4 - 2 chinashoucheng.com/html/142013_6_141_14_5437_ (...) 104.223.149.70
2018-11-14 12:44:56 +0100
0 - 4 - 2 chinashoucheng.com/html/142014_11_21_14_5895_ (...) 104.223.149.70
2018-11-14 12:44:47 +0100
0 - 4 - 2 chinashoucheng.com/html/142015_7_301_14_6064_ (...) 104.223.149.70
2018-11-14 12:35:04 +0100
0 - 4 - 2 cqhctrading.com/html/jsbsgrswrzbdindex.html 104.223.149.130
2018-11-14 11:54:22 +0100
0 - 4 - 2 guangrongit.com/html/.dyfwdyzx..dyfc.html 104.223.149.140
2018-11-14 11:54:21 +0100
0 - 4 - 2 guangrongit.com/html/.ztjj.gtszlqzlx.html 104.223.149.140
2018-11-14 11:13:29 +0100
0 - 4 - 2 ledaowine.com.cn/html/jydsfcx....cyjytskcinde (...) 107.179.69.214
2018-11-14 04:29:23 +0100
0 - 4 - 2 0731dzr.com/html/pgos3021.html 104.223.149.157
2018-11-14 04:08:40 +0100
0 - 4 - 2 sxbaotian.com/html/mtbd..jlhzhzxm.html 104.223.149.90

Last 10 reports on domain: zglhsj5688.com

Date UQ / IDS / BL URL IP
2018-10-27 08:32:48 +0200
0 - 0 - 2 zglhsj5688.com/html/chuangyezixunchuangyexinw (...) 104.223.149.173
2018-10-22 10:54:05 +0200
0 - 4 - 0 zglhsj5688.com/html/daxueshengchuanyedaxueshe (...) 104.223.149.173
2018-10-13 09:05:59 +0200
0 - 0 - 2 zglhsj5688.com/gongjugerensuodeshuishuilubiao.html 104.223.149.173
2018-10-13 08:56:01 +0200
0 - 0 - 11 zglhsj5688.com/html/chuangyezhinanzhaoxiangmu (...) 104.223.149.173
2018-10-13 06:41:26 +0200
0 - 0 - 2 zglhsj5688.com/html/chuangyelianmeng201104261 (...) 104.223.149.173
2018-10-13 06:07:29 +0200
0 - 4 - 2 zglhsj5688.com/html/chuangyezixunchuangyexinw (...) 104.223.149.173
2018-10-13 06:02:31 +0200
0 - 0 - 1 zglhsj5688.com/html/gongjuhangyedaima.html 104.223.149.173
2018-10-13 05:52:14 +0200
0 - 0 - 2 zglhsj5688.com/html/chuangyezhinanzhaoxiangmu (...) 104.223.149.173
2018-10-13 05:20:18 +0200
0 - 0 - 2 zglhsj5688.com/html/chuangyeguancha2016050815 (...) 104.223.149.173
2018-10-13 04:48:36 +0200
0 - 0 - 2 zglhsj5688.com/html/wscy201605231553912.html 104.223.149.173


JavaScript

Executed Scripts (1)


Executed Evals (0)


Executed Writes (1)

#1 JavaScript::Write (size: 87, repeated: 1) - SHA256: a72b285b9287c1181927cd290a6f6c08d519ebc6754bc9f04fce904ca106945e

                                        < script src = 'https://s95.b9823852351323h.com/by/dz.js'
type = 'text/javascript' > < /script>
                                    


HTTP Transactions (26)


Request Response
                                        
                                            GET /images/zhengcefalvfuchizhengceimageszjcsscss.css HTTP/1.1 
Host: zglhsj5688.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://zglhsj5688.com/html/zhengcefalvfuchizhengce201502252342213.html

                                         
                                         104.223.149.173
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Length: 2095
Last-Modified: Mon, 28 Nov 2016 04:00:41 GMT
Accept-Ranges: bytes
Etag: "a62ebdfc2b49d21:106e0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 18 Oct 2018 09:46:56 GMT


--- Additional Info ---
Magic:  ISO-8859 text, with CRLF line terminators
Size:   2095
Md5:    c79609eee14464b4fc74cfc2525be56b
Sha1:   926b4d168179ff1e10781d393f97e3e8c975dae8
Sha256: 2d8a8c2088d8c5770e02a0f9c12e1427bc5cb1aa7044e8ef5d48cd5f8bf5156c
                                        
                                            GET /images/line_01.gif HTTP/1.1 
Host: zglhsj5688.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://zglhsj5688.com/html/zhengcefalvfuchizhengce201502252342213.html

                                         
                                         104.223.149.173
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 18 Oct 2018 09:46:56 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075
                                        
                                            GET /yesads.js HTTP/1.1 
Host: zglhsj5688.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://zglhsj5688.com/html/zhengcefalvfuchizhengce201502252342213.html

                                         
                                         104.223.149.173
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 106
Last-Modified: Thu, 13 Apr 2017 15:53:12 GMT
Accept-Ranges: bytes
Etag: "a0910e6eb4d21:106e0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 18 Oct 2018 09:46:56 GMT


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   106
Md5:    17a8754edf85068082f8b1ac1519d80e
Sha1:   33a9c0cccfe3d299c1ebb6d77fc4e0097b35f5a9
Sha256: 85965e1cee169e6ea1129285cafdd3c90f4e7b046207290c9ad9bc51bc58afdf
                                        
                                            GET /images/imageszjlogo2.gif HTTP/1.1 
Host: zglhsj5688.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://zglhsj5688.com/html/zhengcefalvfuchizhengce201502252342213.html

                                         
                                         104.223.149.173
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Content-Length: 4258
Last-Modified: Mon, 28 Nov 2016 03:57:16 GMT
Accept-Ranges: bytes
Etag: "bce92a822b49d21:106e0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 18 Oct 2018 09:46:56 GMT


--- Additional Info ---
Magic:  GIF image data, version 89a, 189 x 58
Size:   4258
Md5:    fc0daed3ced354bee3fc51531a7b830c
Sha1:   9e6d3b5c84c470378aa72890f9333de3c9f6f536
Sha256: f529317073f2925bc3b9ff8dc60ec91879dbb2ab4eb4e56c7c181dc8a45ddb82
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.16
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Fri, 12 Oct 2018 14:28:29 GMT
Etag: DB56C3E4EE92E6A85E7FC372EA8A08855BEF05BB
X-OCSP-Responder-ID: rmdccaocsp14
Content-Length: 471
Cache-Control: public, no-transform, must-revalidate, max-age=102694
Expires: Fri, 19 Oct 2018 14:18:28 GMT
Date: Thu, 18 Oct 2018 09:46:54 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   471
Md5:    e89d212667d5383dddf86d20de4e8b92
Sha1:   db56c3e4ee92e6a85e7fc372ea8a08855bef05bb
Sha256: 15056a816eea0c22fe16ccbf42e0dc5573a3b810cfdbb361d52da1c5f8c52091
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.16
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Thu, 11 Oct 2018 21:27:34 GMT
Etag: BA2A0C5A3629F380D127C893536222262AFA5472
X-OCSP-Responder-ID: rmdccaocsp21
Content-Length: 727
Cache-Control: public, no-transform, must-revalidate, max-age=41464
Expires: Thu, 18 Oct 2018 21:17:58 GMT
Date: Thu, 18 Oct 2018 09:46:54 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   727
Md5:    7fd8169768dbdf6a611cdb5e79665e87
Sha1:   ba2a0c5a3629f380d127c893536222262afa5472
Sha256: 6c3e146f02f7f8f3fb86c95aab3329381d0f56163ddff934c721accda8a18628
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Thu, 11 Oct 2018 21:27:34 GMT
Etag: E8581583C2803974EDDB983E5584CDB37B4F9E14
X-OCSP-Responder-ID: rmdccaocsp26
Content-Length: 471
Cache-Control: public, no-transform, must-revalidate, max-age=41401
Expires: Thu, 18 Oct 2018 21:16:55 GMT
Date: Thu, 18 Oct 2018 09:46:54 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   471
Md5:    5e712a8f20f0ae131a32a41f82c55b67
Sha1:   e8581583c2803974eddb983e5584cdb37b4f9e14
Sha256: 65e0f33f70b334d388d92507b68dacbf8b7390892e3cb264962501c2836b9e79
                                        
                                            GET /html/zhengcefalvfuchizhengce201502252342213.html HTTP/1.1 
Host: zglhsj5688.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         104.223.149.173
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Content-Length: 152227
Last-Modified: Sun, 05 Aug 2018 05:15:08 GMT
Accept-Ranges: bytes
Etag: "4ec810477b2cd41:106e0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 18 Oct 2018 09:46:56 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   152227
Md5:    e65e874724bf2da0fdf82ef741644ffd
Sha1:   32f687e14295e39bcf308136137b07bd7f8ce323
Sha256: da1f682cd56832b34eb9421fcf6fe707e8b889526b1ed98d322453d5a074a39f

Alerts:
  IDS:
    - ET CURRENT_EVENTS DRIVEBY EXE Embeded in Page Likely Evil M1
    - ET TROJAN PE EXE or DLL Windows file download Text
    - ET TROJAN RAMNIT.A M1
    - ET TROJAN RAMNIT.A M2
                                        
                                            GET /by/dz.js HTTP/1.1 
Host: s95.b9823852351323h.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://zglhsj5688.com/html/zhengcefalvfuchizhengce201502252342213.html

                                         
                                         45.65.46.3
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Server: Apache
Date: Thu, 18 Oct 2018 11:42:13 GMT
Content-Length: 599
Connection: keep-alive
Keep-Alive: timeout=60


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   599
Md5:    811ff6db9f189c83229c2297dedc9a29
Sha1:   0e2dbb939291b43a440aa87a4a72c722971bc7d5
Sha256: 65218f5948001a7695b911ea0f326f72fa311de7b372735bbcaff65c4cbb0e8e
                                        
                                            GET /images/line_01.gif HTTP/1.1 
Host: zglhsj5688.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://zglhsj5688.com/html/zhengcefalvfuchizhengce201502252342213.html

                                         
                                         104.223.149.173
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 18 Oct 2018 09:46:57 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075
                                        
                                            GET /images/imageszjbbs.gif HTTP/1.1 
Host: zglhsj5688.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://zglhsj5688.com/html/zhengcefalvfuchizhengce201502252342213.html

                                         
                                         104.223.149.173
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Content-Length: 3106
Last-Modified: Mon, 28 Nov 2016 03:57:54 GMT
Accept-Ranges: bytes
Etag: "0cd9c982b49d21:106e0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 18 Oct 2018 09:46:57 GMT


--- Additional Info ---
Magic:  GIF image data, version 89a, 124 x 33
Size:   3106
Md5:    a8c2ad46782edd16c337a696d3a58c0f
Sha1:   dfe873ac8e0eac5aafcab10d0584ab34bdaa5c45
Sha256: 4c3a6fae00768932c0f8302e27d53ec4121bf4dd50997c4a641c688d2845567f
                                        
                                            GET /images/imageszjsns.gif HTTP/1.1 
Host: zglhsj5688.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://zglhsj5688.com/html/zhengcefalvfuchizhengce201502252342213.html

                                         
                                         104.223.149.173
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Content-Length: 3098
Last-Modified: Mon, 28 Nov 2016 03:57:29 GMT
Accept-Ranges: bytes
Etag: "426c2892b49d21:106e0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 18 Oct 2018 09:46:57 GMT


--- Additional Info ---
Magic:  GIF image data, version 89a, 124 x 33
Size:   3098
Md5:    d5f0e0ac2a2bbd93dd57da8991b57f4d
Sha1:   063839fe9a4f0edc39d7d54d19dcbadac94410bd
Sha256: dcceb35ce12c33be2375272e8184a4403aeb22b0f382eb8c2d6bc9999091f43b
                                        
                                            GET /images/imageszjmid.gif HTTP/1.1 
Host: zglhsj5688.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://zglhsj5688.com/html/zhengcefalvfuchizhengce201502252342213.html

                                         
                                         104.223.149.173
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Content-Length: 1183
Last-Modified: Mon, 28 Nov 2016 03:57:29 GMT
Accept-Ranges: bytes
Etag: "b23efb892b49d21:106e0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 18 Oct 2018 09:46:57 GMT


--- Additional Info ---
Magic:  GIF image data, version 89a, 25 x 350
Size:   1183
Md5:    8d2bdcddcb0074447c7199ced8a764f6
Sha1:   f8abf0d689e03eabfe85cc0a2abb788048c6a7a2
Sha256: a3004fc8ad2015b5cd6df8e7cb5a48fea1026f241385f8a5c46ba2363f8f2e81
                                        
                                            GET /images/v.t.qq.comshareimagessb24.png HTTP/1.1 
Host: zglhsj5688.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://zglhsj5688.com/html/zhengcefalvfuchizhengce201502252342213.html

                                         
                                         104.223.149.173
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Content-Length: 4883
Last-Modified: Mon, 28 Nov 2016 03:57:18 GMT
Accept-Ranges: bytes
Etag: "40ee73832b49d21:106e0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 18 Oct 2018 09:46:57 GMT


--- Additional Info ---
Magic:  PNG image, 126 x 24, 8-bit/color RGBA, non-interlaced
Size:   4883
Md5:    3f617d0c0578167de85cefc61084fd5f
Sha1:   58c630c3995c5936b0c5e1362ea524a3d9bd975c
Sha256: b86daa50c8d494aea0c06feb776299a8e1b02555aef6b0e6ad0eba0e369c54d1
                                        
                                            GET /images/Files_0320140225.gif HTTP/1.1 
Host: zglhsj5688.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://zglhsj5688.com/html/zhengcefalvfuchizhengce201502252342213.html

                                         
                                         104.223.149.173
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Content-Length: 7655
Last-Modified: Mon, 28 Nov 2016 03:57:37 GMT
Accept-Ranges: bytes
Etag: "96a4b18e2b49d21:106e0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 18 Oct 2018 09:46:57 GMT


--- Additional Info ---
Magic:  GIF image data, version 89a, 90 x 130
Size:   7655
Md5:    188081d575e4cea819c0926611892693
Sha1:   64c2a4b284d37f8eadad71b47eae0f4cc5755bb4
Sha256: 01f33efcea5a26e6a7799fa53d8262b656c8b0ef457b83a7943110be8ad57ba9
                                        
                                            GET /images/Files_0320121117_002.gif HTTP/1.1 
Host: zglhsj5688.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://zglhsj5688.com/html/zhengcefalvfuchizhengce201502252342213.html

                                         
                                         104.223.149.173
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Content-Length: 13493
Last-Modified: Mon, 28 Nov 2016 03:57:39 GMT
Accept-Ranges: bytes
Etag: "2021d28f2b49d21:106e0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 18 Oct 2018 09:46:57 GMT


--- Additional Info ---
Magic:  GIF image data, version 89a, 90 x 130
Size:   13493
Md5:    ed26ade3b7b9ea11841cf65cab2f2423
Sha1:   1be1e6a15e319e00a284ab99882ee2d0c01dcdc7
Sha256: 6314943283d35033e032c9cfc6cd015a22ad48ceebd08a912413503a932d65ad
                                        
                                            GET /images/Files_1cfzx20070824-01.jpg HTTP/1.1 
Host: zglhsj5688.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://zglhsj5688.com/html/zhengcefalvfuchizhengce201502252342213.html

                                         
                                         104.223.149.173
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 18542
Last-Modified: Mon, 28 Nov 2016 03:57:31 GMT
Accept-Ranges: bytes
Etag: "e48f718b2b49d21:106e0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 18 Oct 2018 09:46:57 GMT


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   18542
Md5:    2aac39fdfc5883f81cc3fa128e0190db
Sha1:   f7dd6bf44f7f67450e8ae654a6d051ff810e9097
Sha256: e39e05344a4dff5937005f0fe8a2eecb5d15c649eef0a157921545ddb45f826e
                                        
                                            GET /images/Files_0320130523_001.gif HTTP/1.1 
Host: zglhsj5688.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://zglhsj5688.com/html/zhengcefalvfuchizhengce201502252342213.html

                                         
                                         104.223.149.173
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Content-Length: 9678
Last-Modified: Mon, 28 Nov 2016 03:57:38 GMT
Accept-Ranges: bytes
Etag: "7615248f2b49d21:106e0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 18 Oct 2018 09:46:57 GMT


--- Additional Info ---
Magic:  GIF image data, version 89a, 90 x 130
Size:   9678
Md5:    5a6d9558451970b22edf43e56e5664f1
Sha1:   9793bd04817f693cf8633bcbe4343dad96155a65
Sha256: edbe5699dcd8596699bfd70d726b4c6c6e0824ffaed2739d1843185b83312828
                                        
                                            GET /images/Files_1cfzx20070824-1.jpg HTTP/1.1 
Host: zglhsj5688.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://zglhsj5688.com/html/zhengcefalvfuchizhengce201502252342213.html

                                         
                                         104.223.149.173
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 14981
Last-Modified: Mon, 28 Nov 2016 03:57:32 GMT
Accept-Ranges: bytes
Etag: "fc9c08c2b49d21:106e0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 18 Oct 2018 09:46:57 GMT


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   14981
Md5:    a27d8f12755238b4d85ebbefe289707f
Sha1:   51140ddde350f529bfd5ca87f45084306c6b2aa7
Sha256: edd96c8c86c20782d2ee7868965408cd08b40107bc371dcd28ff520f3f88ff31
                                        
                                            GET /images/Files_1cfzx20070823-01.jpg HTTP/1.1 
Host: zglhsj5688.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://zglhsj5688.com/html/zhengcefalvfuchizhengce201502252342213.html

                                         
                                         104.223.149.173
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 19972
Last-Modified: Mon, 28 Nov 2016 03:57:34 GMT
Accept-Ranges: bytes
Etag: "4056fd8c2b49d21:106e0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 18 Oct 2018 09:46:57 GMT


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   19972
Md5:    b9d136d5709e2ab37782077767beb0aa
Sha1:   32cab147f059fca0f085af6e1e9565a2bcced488
Sha256: d4497a39e3fb809a355a14fd9ea5236c898a250d272ea660060dd7396d0f1c80
                                        
                                            GET /images/img_newad_000.gif HTTP/1.1 
Host: zglhsj5688.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://zglhsj5688.com/html/zhengcefalvfuchizhengce201502252342213.html

                                         
                                         104.223.149.173
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Content-Length: 2833
Last-Modified: Sun, 27 Nov 2016 00:48:03 GMT
Accept-Ranges: bytes
Etag: "d44dcde84748d21:106e0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 18 Oct 2018 09:46:58 GMT


--- Additional Info ---
Magic:  GIF image data, version 89a, 44 x 45
Size:   2833
Md5:    4491f19b7eb57b799e86102ce829eebc
Sha1:   72382366e0da7b2f2804a41e49ac3033b6b7ce36
Sha256: f10b8ac5c16ae155492e7c8192498686cb96b1c1c6da18bdafcdb8a6b593f837
                                        
                                            GET /images/zj/r_title_bg1.gif HTTP/1.1 
Host: zglhsj5688.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://zglhsj5688.com/html/zhengcefalvfuchizhengce201502252342213.html

                                         
                                         104.223.149.173
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 18 Oct 2018 09:46:58 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075
                                        
                                            GET /images/Files_1cfzx20070824-001.jpg HTTP/1.1 
Host: zglhsj5688.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://zglhsj5688.com/html/zhengcefalvfuchizhengce201502252342213.html

                                         
                                         104.223.149.173
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 24148
Last-Modified: Mon, 28 Nov 2016 03:57:30 GMT
Accept-Ranges: bytes
Etag: "7220e08a2b49d21:106e0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 18 Oct 2018 09:46:57 GMT


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   24148
Md5:    858e90c0e62ced270779e7c5f2dd93dc
Sha1:   43574c5256099a6282a1ddd342e3d5d154b8c82b
Sha256: b0f88f4b4152eb823bebff900131fc81cb943abed3a101a2eb0df2be4b2eec9d
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: zglhsj5688.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         104.223.149.173
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 18 Oct 2018 09:46:58 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: zglhsj5688.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         104.223.149.173
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 18 Oct 2018 09:47:01 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075
                                        
                                            GET /images/zj/line_01.gif HTTP/1.1 
Host: zglhsj5688.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://zglhsj5688.com/html/zhengcefalvfuchizhengce201502252342213.html

                                         
                                         104.223.149.173
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 18 Oct 2018 09:46:58 GMT


--- Additional Info ---