Overview

URL pntzr.663435363.cn/hlhvf
IP107.160.145.79
ASNAS40676 Psychz Networks
Location United States
Report completed2019-01-12 08:12:37 CET
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2019-01-12 2 js.users.51.la/19440951.js Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 6 reports on IP: 107.160.145.79

Date UQ / IDS / BL URL IP
2018-12-29 11:50:02 +0100
0 - 1 - 1 n7zjt.710822850.cn/t7d7j 107.160.145.79
2018-12-23 04:07:26 +0100
0 - 1 - 1 v9xfl.663435363.cn/ddt5n 107.160.145.79
2018-12-23 02:47:27 +0100
0 - 1 - 1 lbxl7.585541514.cn/y62wq 107.160.145.79
2018-12-17 03:56:36 +0100
0 - 0 - 1 b195d.663435363.cn/ 107.160.145.79
2018-10-18 07:06:06 +0200
0 - 1 - 0 585541514.cn/zxrjsszmy 107.160.145.79
2018-10-18 06:21:49 +0200
0 - 1 - 0 585541514.cn/zxrjsszmy/tags-30-0.html 107.160.145.79

Last 10 reports on ASN: AS40676 Psychz Networks

Date UQ / IDS / BL URL IP
2019-01-17 22:28:43 +0100
0 - 0 - 2 copy95.com/goods-8199.html 104.149.227.150
2019-01-17 22:27:02 +0100
0 - 1 - 1 www.ninnki2016.top/goods-8199.html 104.149.50.137
2019-01-17 22:05:40 +0100
0 - 0 - 10 hongxiangjixie.com/ 104.216.55.39
2019-01-17 19:13:13 +0100
0 - 0 - 1 www.hhcsb.com/msg.html 43.224.154.251
2019-01-17 16:53:41 +0100
0 - 0 - 1 qhjrn.com/ 23.238.249.252
2019-01-17 16:37:09 +0100
0 - 0 - 4 gov.cn.mphev.cn/363/viewspace-744.html 104.217.87.69
2019-01-17 16:27:46 +0100
0 - 0 - 1 qddks.com/ 23.238.249.246
2019-01-17 16:21:58 +0100
0 - 0 - 1 pyzwn.com/ 23.238.249.233
2019-01-17 15:31:39 +0100
0 - 0 - 1 shhaipai.com/ 23.238.219.57
2019-01-17 15:24:37 +0100
0 - 0 - 1 pingguo97.com/ 23.238.249.203

No other reports on domain: 663435363.cn



JavaScript

Executed Scripts (6)


Executed Evals (2)

#1 JavaScript::Eval (size: 224, repeated: 1) - SHA256: 9f4c8ff8ce372ad2be10d9f7357b67d4ec8935c19f7b9de2c71ae06d79c374c8

                                        ({
    "rl": "1176*885",
    "lang": "en-US",
    "ct": "unknow",
    "pf": 1,
    "ins": 1,
    "vd": 1,
    "ce": 1,
    "cd": 24,
    "ds": "",
    "ing": 1,
    "ekc": "",
    "sid": 1547277127354,
    "tt": "",
    "kw": "",
    "cu": "http://pntzr.663435363.cn/hlhvf",
    "pu": ""
})
                                    

#2 JavaScript::Eval (size: 4, repeated: 2) - SHA256: 5b8d2b991d2c1f5bf78beb557d17e6650086a267e5ffd4bb6f8aaa942c570f5d

                                        ({})
                                    

Executed Writes (4)

#1 JavaScript::Write (size: 27, repeated: 1) - SHA256: dedff6ad4d9d556b3e1e89a1c33ee8097a9ebda034dabf980f2e0747a931ab6d

                                        < div style = 'display:none' >
                                    

#2 JavaScript::Write (size: 129, repeated: 1) - SHA256: 46be62efbab104a292a0c2f92ae616b0e37890a9fd9542104d1d00a4deaa68e9

                                        < div style = 'display:none' > < script language = 'javascript'
type = 'text/javascript'
src = '//js.users.51.la/19231743.js' > < /script></div >
                                    

#3 JavaScript::Write (size: 103, repeated: 1) - SHA256: 250b8e1b9a1915c74f730a73e252844e7f0e09b10fff4a58136911c09d45caf0

                                        < script language = "javascript"
type = "text/javascript"
src = "https://js.users.51.la/19440951.js" > < /script>
                                    

#4 JavaScript::Write (size: 8, repeated: 1) - SHA256: 5b63e5b2097fc6906601e85e381d998a7db971aca73c9213dc2b107ccab734d4

                                        < script >
                                    


HTTP Transactions (26)


Request Response
                                        
                                            GET /hlhvf HTTP/1.1 
Host: pntzr.663435363.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         107.160.145.79
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Date: Sat, 12 Jan 2019 07:12:20 GMT
Content-Encoding: gzip
Content-Length: 9087
Server: Microsoft-IIS/6.0


--- Additional Info ---
Magic:  gzip compressed data, from NTFS filesystem (NT)
Size:   9087
Md5:    de74f3e1ea4dad903933654fc142458f
Sha1:   9d3f5c7448370e7077753490b7eac78ba62ac2f0
Sha256: 5298e804a5bc7d818d7796c2f7454bb2d6c32242c4a860b74d1396f3080119d2
                                        
                                            GET /tj.js HTTP/1.1 
Host: pntzr.663435363.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pntzr.663435363.cn/hlhvf

                                         
                                         107.160.145.79
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Sat, 12 Jan 2019 07:12:20 GMT
Content-Length: 366
Server: Microsoft-IIS/6.0


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   366
Md5:    4f9e056521997639973f9a89fa5597ed
Sha1:   861b5937a3424dc02b0a89c913a14a733640abbe
Sha256: de92efdca97ae52e673ccc3694255d4ee20d09e5129302abf5d0a64bfba38549
                                        
                                            GET /images/home.css HTTP/1.1 
Host: pntzr.663435363.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pntzr.663435363.cn/hlhvf

                                         
                                         107.160.145.79
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 12 Jan 2019 07:12:20 GMT
Content-Length: 18379
Server: Microsoft-IIS/6.0


--- Additional Info ---
Magic:  ISO-8859 text, with very long lines, with CRLF line terminators
Size:   18379
Md5:    c717753b86f7270467eb4be183002c65
Sha1:   cd7042be43bff309de3bad05494890c5da57375f
Sha256: d4b41f6b68ce877f0d4b0966f03fdc64b5e7bbcf480c0843e68e4e205f509723
                                        
                                            GET /common.js HTTP/1.1 
Host: pntzr.663435363.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pntzr.663435363.cn/hlhvf

                                         
                                         107.160.145.79
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Sat, 12 Jan 2019 07:12:20 GMT
Content-Length: 9579
Server: Microsoft-IIS/6.0


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   9579
Md5:    4d08292489559c9857df6576ddfe4626
Sha1:   e5e018c3b65604ab1321a75447329964ad1d36b9
Sha256: 9342a7052e93872d33ff07658840ba5da71e4c6276544a0fce8e77543e8341fa
                                        
                                            POST /gsdomainvalsha2g2 HTTP/1.1 
Host: ocsp2.globalsign.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 111
Content-Type: application/ocsp-request

                                         
                                         104.18.21.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 12 Jan 2019 07:12:06 GMT
Content-Length: 1558
Connection: keep-alive
Set-Cookie: __cfduid=da4cbe9d5ab53f40c02e066c287861a9b1547277126; expires=Sun, 12-Jan-20 07:12:06 GMT; path=/; domain=.globalsign.com; HttpOnly
Last-Modified: Sat, 12 Jan 2019 04:42:45 GMT
Expires: Wed, 16 Jan 2019 04:42:45 GMT
Etag: "84ed96526db39500664617057c433e7b02c22fbb"
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 497dd01b7234429d-OSL


--- Additional Info ---
Magic:  data
Size:   1558
Md5:    e40bbc124f469533490378117e4a4267
Sha1:   84ed96526db39500664617057c433e7b02c22fbb
Sha256: ace53d5c3afd0b81728ccee6115fdc424876c04054734705c10614c096f04b5e
                                        
                                            GET /19440951.js HTTP/1.1 
Host: js.users.51.la
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pntzr.663435363.cn/hlhvf

                                         
                                         220.243.212.50
HTTP/1.1 200 OK
Content-Type: application/javascript;charset=UTF-8
                                        
Date: Sat, 12 Jan 2019 07:12:07 GMT
Content-Length: 4898
Connection: keep-alive
Server: nginx/1.14.0
id-2: 32AAAQAAEAABAAAQAAEAABAAAQAAEAABCSUmDs64MIVF1jP0YxcHHeZDSP0Hl3zy
Etag: "00c5aa5fdb880555863db10a1ab7e7f1"
x-id: 19440951
version-id: G00111654213890CFFFF900B0081B739
Last-Modified: Thu Aug 16 17:31:41 CST 2018
request-id: 000001683EE02E67900B501F24DDC9EF
x-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc
Content-Disposition: inline;filename=f.txt
Age: 34021
X-Via: 1.1 ld146:7 (Cdn Cache Server V2.0)[260 200 2], 1.1 lsh187:8 (Cdn Cache Server V2.0)[0 200 0]


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   4898
Md5:    00c5aa5fdb880555863db10a1ab7e7f1
Sha1:   14ab1f8469a1ac6e13b31186e78d7c3bd020f1ca
Sha256: 30b7147d3b3581a21e60d1e138502a80cae3940d9279912990cdfe77e80df56b

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /pics/27307_251.jpg HTTP/1.1 
Host: pntzr.663435363.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pntzr.663435363.cn/hlhvf
Cookie: __tins__19440951=%7B%22sid%22%3A%201547277127354%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201547278927354%7D; __51cke__=; __51laig__=1

                                         
                                         107.160.145.79
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 12 Jan 2019 07:12:22 GMT
Content-Length: 95454
Server: Microsoft-IIS/6.0


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   95454
Md5:    4640c2be43b6753ac84a15a102f2d17a
Sha1:   1158660c39339da732a6414cd375eae7f71833ef
Sha256: f8305128aaaf903ebf23c971c58a64209cc030708cf13e51e096f28143efb0e1
                                        
                                            GET /pics/24709_1.jpg HTTP/1.1 
Host: pntzr.663435363.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pntzr.663435363.cn/hlhvf
Cookie: __tins__19440951=%7B%22sid%22%3A%201547277127354%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201547278927354%7D; __51cke__=; __51laig__=1

                                         
                                         107.160.145.79
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 12 Jan 2019 07:12:22 GMT
Content-Length: 28526
Server: Microsoft-IIS/6.0


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   28526
Md5:    1076675277c4db719bbe918a4e678dc3
Sha1:   baaf40b5e73e859e1217e39c58f3ac8f81ac4428
Sha256: 23aa13ac6ac453b34c4fd82f9a5173d41c6c5e58aa5ac5c699f941bc36c0d7ba
                                        
                                            GET /pics/80315_191.jpg HTTP/1.1 
Host: pntzr.663435363.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pntzr.663435363.cn/hlhvf
Cookie: __tins__19440951=%7B%22sid%22%3A%201547277127354%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201547278927354%7D; __51cke__=; __51laig__=1

                                         
                                         107.160.145.79
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 12 Jan 2019 07:12:22 GMT
Content-Length: 30480
Server: Microsoft-IIS/6.0


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   30480
Md5:    3cad1830132169a87c0f95f59759d9c7
Sha1:   1b5e0a383b486557b775062f33914f49c5dd7b52
Sha256: bfc4b093e62631518f6ef0a7cd7034991586fd433a299d62cc2a0bf793b0111e
                                        
                                            GET /images/logo.png HTTP/1.1 
Host: pntzr.663435363.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pntzr.663435363.cn/images/home.css
Cookie: __tins__19440951=%7B%22sid%22%3A%201547277127354%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201547278927354%7D; __51cke__=; __51laig__=1

                                         
                                         107.160.145.79
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 12 Jan 2019 07:12:22 GMT
Content-Length: 0
Server: Microsoft-IIS/6.0


--- Additional Info ---
                                        
                                            GET /pics/62931_39.jpg HTTP/1.1 
Host: pntzr.663435363.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pntzr.663435363.cn/hlhvf
Cookie: __tins__19440951=%7B%22sid%22%3A%201547277127354%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201547278927354%7D; __51cke__=; __51laig__=1

                                         
                                         107.160.145.79
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 12 Jan 2019 07:12:22 GMT
Content-Length: 70500
Server: Microsoft-IIS/6.0


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   70500
Md5:    dd14f97e1114510c0de412bafb54182a
Sha1:   e979f4b0e307d280338bedc7ce1d6c66f02aabf8
Sha256: 00708f49f73d6fe6f3cf0817eff721ecd3e0d5680103e0a0ea86ff13eeeb0422
                                        
                                            GET /images/users.png HTTP/1.1 
Host: pntzr.663435363.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pntzr.663435363.cn/images/home.css
Cookie: __tins__19440951=%7B%22sid%22%3A%201547277127354%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201547278927354%7D; __51cke__=; __51laig__=1

                                         
                                         107.160.145.79
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 12 Jan 2019 07:12:23 GMT
Content-Length: 0
Server: Microsoft-IIS/6.0


--- Additional Info ---
                                        
                                            GET /pics/9573_204.jpg HTTP/1.1 
Host: pntzr.663435363.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pntzr.663435363.cn/hlhvf
Cookie: __tins__19440951=%7B%22sid%22%3A%201547277127354%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201547278927354%7D; __51cke__=; __51laig__=1

                                         
                                         107.160.145.79
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 12 Jan 2019 07:12:22 GMT
Content-Length: 11782
Server: Microsoft-IIS/6.0


--- Additional Info ---
Magic:  JPEG image data
Size:   11782
Md5:    edbe45e0b3dd3abd81ca810e1924b64a
Sha1:   f0d929594217258cc861b2c1c3f6c219e556084a
Sha256: 5523bf0a62d31733c81391bc4e08e552b74059a3a41983cb1c62172596019776
                                        
                                            GET /images/cloud.png HTTP/1.1 
Host: pntzr.663435363.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pntzr.663435363.cn/images/home.css
Cookie: __tins__19440951=%7B%22sid%22%3A%201547277127354%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201547278927354%7D; __51cke__=; __51laig__=1

                                         
                                         107.160.145.79
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 12 Jan 2019 07:12:23 GMT
Content-Length: 0
Server: Microsoft-IIS/6.0


--- Additional Info ---
                                        
                                            GET /go1?id=19440951&rt=1547277127354&rl=1176*885&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=&ing=1&ekc=&sid=1547277127354&tt=&kw=&cu=http%253A%252F%252Fpntzr.663435363.cn%252Fhlhvf&pu= HTTP/1.1 
Host: ia.51.la
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pntzr.663435363.cn/hlhvf

                                         
                                         183.131.207.78
HTTP/1.1 200
Content-Type: application/octet-stream
                                        
Server: HuaweiCloudWAF
Date: Sat, 12 Jan 2019 07:12:08 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: HWWAFSESID=583161e97fa794f09e43; path=/ HWWAFSESTIME=1547277125324; path=/


--- Additional Info ---
                                        
                                            GET /images/shuping.png HTTP/1.1 
Host: pntzr.663435363.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pntzr.663435363.cn/images/home.css
Cookie: __tins__19440951=%7B%22sid%22%3A%201547277127354%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201547278927354%7D; __51cke__=; __51laig__=1

                                         
                                         107.160.145.79
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 12 Jan 2019 07:12:23 GMT
Content-Length: 0
Server: Microsoft-IIS/6.0


--- Additional Info ---
                                        
                                            GET /images/shudan.png HTTP/1.1 
Host: pntzr.663435363.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pntzr.663435363.cn/images/home.css
Cookie: __tins__19440951=%7B%22sid%22%3A%201547277127354%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201547278927354%7D; __51cke__=; __51laig__=1

                                         
                                         107.160.145.79
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 12 Jan 2019 07:12:23 GMT
Content-Length: 0
Server: Microsoft-IIS/6.0


--- Additional Info ---
                                        
                                            GET /images/dot.png HTTP/1.1 
Host: pntzr.663435363.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pntzr.663435363.cn/images/home.css
Cookie: __tins__19440951=%7B%22sid%22%3A%201547277127354%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201547278927354%7D; __51cke__=; __51laig__=1

                                         
                                         107.160.145.79
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 12 Jan 2019 07:12:23 GMT
Content-Length: 0
Server: Microsoft-IIS/6.0


--- Additional Info ---
                                        
                                            GET /push.js HTTP/1.1 
Host: push.zhanzhang.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pntzr.663435363.cn/hlhvf

                                         
                                         111.206.37.189
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Content-Encoding: gzip
Content-Length: 227
Date: Sat, 12 Jan 2019 07:12:08 GMT
Etag: "4078520090"
Expires: Sun, 12 Jan 2020 07:12:08 GMT
Last-Modified: Wed, 25 Nov 2015 07:46:13 GMT
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: apache
Set-Cookie: BAIDUID=549FBC98894477065C6B8FD6377A9574:FG=1; max-age=31536000; expires=Sun, 12-Jan-20 07:12:08 GMT; domain=.baidu.com; path=/; version=1
Vary: Accept-Encoding


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   227
Md5:    e548b6ce15bb616c2bfba36e9cfbf307
Sha1:   a348285d9928a6548a57569f1fb9d62bdd747f33
Sha256: 7be3e4c53cc47ce5cfa40a5e79b42848a90acee0d7ff71f10ac31a49c81aead5
                                        
                                            GET /images/zxupdate.png HTTP/1.1 
Host: pntzr.663435363.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pntzr.663435363.cn/images/home.css
Cookie: __tins__19440951=%7B%22sid%22%3A%201547277127354%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201547278927354%7D; __51cke__=; __51laig__=1

                                         
                                         107.160.145.79
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 12 Jan 2019 07:12:23 GMT
Content-Length: 0
Server: Microsoft-IIS/6.0


--- Additional Info ---
                                        
                                            GET /images/zt.png HTTP/1.1 
Host: pntzr.663435363.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pntzr.663435363.cn/images/home.css
Cookie: __tins__19440951=%7B%22sid%22%3A%201547277127354%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201547278927354%7D; __51cke__=; __51laig__=1

                                         
                                         107.160.145.79
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 12 Jan 2019 07:12:23 GMT
Content-Length: 0
Server: Microsoft-IIS/6.0


--- Additional Info ---
                                        
                                            GET /s.gif?l=http://pntzr.663435363.cn/hlhvf HTTP/1.1 
Host: api.share.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pntzr.663435363.cn/hlhvf
Cookie: BAIDUID=549FBC98894477065C6B8FD6377A9574:FG=1

                                         
                                         111.206.37.189
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: no-cache, no-store, must-revalidate
Content-Length: 0
Date: Sat, 12 Jan 2019 07:12:09 GMT
Expires: 0
Pragma: no-cache
Server: apache


--- Additional Info ---
                                        
                                            GET /pics/51277_13.jpg HTTP/1.1 
Host: pntzr.663435363.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pntzr.663435363.cn/hlhvf
Cookie: __tins__19440951=%7B%22sid%22%3A%201547277127354%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201547278927354%7D; __51cke__=; __51laig__=1

                                         
                                         107.160.145.79
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 12 Jan 2019 07:12:22 GMT
Content-Length: 43780
Server: Microsoft-IIS/6.0


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   43780
Md5:    27b664d2cc664bb5b4d85553fc25270f
Sha1:   4df231b6822593c0d38d4b44fd4a583f1308b0a0
Sha256: 412c3a24d69a449d9b0038233aa71654f5d0cc82282f24c1d7d7dea2bebd5d88
                                        
                                            GET /images/bars.png HTTP/1.1 
Host: pntzr.663435363.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pntzr.663435363.cn/images/home.css
Cookie: __tins__19440951=%7B%22sid%22%3A%201547277127354%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201547278927354%7D; __51cke__=; __51laig__=1

                                         
                                         107.160.145.79
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 12 Jan 2019 07:12:25 GMT
Content-Length: 0
Server: Microsoft-IIS/6.0


--- Additional Info ---
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: pntzr.663435363.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __tins__19440951=%7B%22sid%22%3A%201547277127354%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201547278927354%7D; __51cke__=; __51laig__=1

                                         
                                         107.160.145.79
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Date: Sat, 12 Jan 2019 07:12:25 GMT
Content-Length: 0
Server: Microsoft-IIS/6.0


--- Additional Info ---
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: pntzr.663435363.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __tins__19440951=%7B%22sid%22%3A%201547277127354%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201547278927354%7D; __51cke__=; __51laig__=1

                                         
                                         107.160.145.79
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Date: Sat, 12 Jan 2019 07:12:28 GMT
Content-Length: 0
Server: Microsoft-IIS/6.0


--- Additional Info ---