恶意软件分析 & URL链接扫描免费在线病毒分析平台

分析任务

分析类型	虚拟机标签	开始时间	结束时间	持续时间
URL	win7-sp1-x64-shaapp01-1	2020-04-08 12:52:22	2020-04-08 12:54:24	122 秒

魔盾分数

0.325

正常的

URL详细信息

URL
URL专业沙箱检测 -> http://202.108.22.5/

登录查看威胁特征

运行截图

访问主机纪录 (可点击查询WPING实时安全评级)

无主机纪录.

域名解析 (可点击查询WPING实时安全评级)

域名	安全评级	响应
ss.bdimg.com	CNAME superpagev4.jomodns.com A 180.163.198.49
www.baidu.com	CNAME www.a.shifen.com A 180.101.49.11 A 180.101.49.12
s1.bdstatic.com	A 180.163.198.40 CNAME wwwbaidu.jomodns.com
ss1.bdstatic.com	A 180.163.198.32 CNAME sslbdstatic.jomodns.com
m.baidu.com	CNAME wap.n.shifen.com A 180.101.49.19 A 180.101.49.20
dj1.baidu.com	A 180.101.212.39 CNAME static.n.shifen.com
nsclick.baidu.com
eclick.baidu.com	A 220.181.107.131 CNAME eclick.e.shifen.com

摘要

登录查看详细行为信息

URL分析
防病毒引擎

WHOIS 信息

Name: None
Country: None
State: None
City: None
ZIP Code: None
Address: None

Orginization: None
Domain Name(s):
    None
Creation Date:
    None
Updated Date:
    None
Expiration Date:
    None
Email(s):
    None

Registrar(s):
    None
Name Server(s):
    None
Referral URL(s):
    None

没有防病毒引擎扫描信息!

下载PCAP包

访问主机纪录 (可点击查询WPING实时安全评级)

无主机纪录.

TCP

源地址	源端口	目标地址	目标端口
192.168.122.201	49172	180.101.212.39 dj1.baidu.com	80
192.168.122.201	49173	180.101.212.39 dj1.baidu.com	80
192.168.122.201	49163	180.101.49.11 www.baidu.com	80
192.168.122.201	49164	180.101.49.11 www.baidu.com	80
192.168.122.201	49175	180.101.49.11 www.baidu.com	80
192.168.122.201	49170	180.101.49.20 m.baidu.com	80
192.168.122.201	49171	180.163.198.32 ss1.bdstatic.com	443
192.168.122.201	49167	180.163.198.40 s1.bdstatic.com	80
192.168.122.201	49168	180.163.198.40 s1.bdstatic.com	80
192.168.122.201	49160	180.163.198.49 ss.bdimg.com	80
192.168.122.201	49161	180.163.198.49 ss.bdimg.com	80
192.168.122.201	49162	180.163.198.49 ss.bdimg.com	80
192.168.122.201	49165	180.163.198.49 ss.bdimg.com	80
192.168.122.201	49166	180.163.198.49 ss.bdimg.com	80
192.168.122.201	49169	180.163.198.49 ss.bdimg.com	80
192.168.122.201	49177	180.163.198.49 ss.bdimg.com	80
192.168.122.201	49178	180.163.198.49 ss.bdimg.com	80
192.168.122.201	49159	202.108.22.5	80
192.168.122.201	49174	202.108.22.5	80
192.168.122.201	49176	202.108.22.5	80
192.168.122.201	49179	220.181.107.131 eclick.baidu.com	80

UDP

源地址	源端口	目标地址	目标端口
192.168.122.201	49157	192.168.122.1	53
192.168.122.201	50112	192.168.122.1	53
192.168.122.201	51384	192.168.122.1	53
192.168.122.201	51896	192.168.122.1	53
192.168.122.201	58646	192.168.122.1	53
192.168.122.201	59968	192.168.122.1	53
192.168.122.201	62882	192.168.122.1	53
192.168.122.201	63974	192.168.122.1	53

域名解析 (可点击查询WPING实时安全评级)

域名	安全评级	响应
ss.bdimg.com	CNAME superpagev4.jomodns.com A 180.163.198.49
www.baidu.com	CNAME www.a.shifen.com A 180.101.49.11 A 180.101.49.12
s1.bdstatic.com	A 180.163.198.40 CNAME wwwbaidu.jomodns.com
ss1.bdstatic.com	A 180.163.198.32 CNAME sslbdstatic.jomodns.com
m.baidu.com	CNAME wap.n.shifen.com A 180.101.49.19 A 180.101.49.20
dj1.baidu.com	A 180.101.212.39 CNAME static.n.shifen.com
nsclick.baidu.com
eclick.baidu.com	A 220.181.107.131 CNAME eclick.e.shifen.com

TCP

源地址	源端口	目标地址	目标端口
192.168.122.201	49172	180.101.212.39 dj1.baidu.com	80
192.168.122.201	49173	180.101.212.39 dj1.baidu.com	80
192.168.122.201	49163	180.101.49.11 www.baidu.com	80
192.168.122.201	49164	180.101.49.11 www.baidu.com	80
192.168.122.201	49175	180.101.49.11 www.baidu.com	80
192.168.122.201	49170	180.101.49.20 m.baidu.com	80
192.168.122.201	49171	180.163.198.32 ss1.bdstatic.com	443
192.168.122.201	49167	180.163.198.40 s1.bdstatic.com	80
192.168.122.201	49168	180.163.198.40 s1.bdstatic.com	80
192.168.122.201	49160	180.163.198.49 ss.bdimg.com	80
192.168.122.201	49161	180.163.198.49 ss.bdimg.com	80
192.168.122.201	49162	180.163.198.49 ss.bdimg.com	80
192.168.122.201	49165	180.163.198.49 ss.bdimg.com	80
192.168.122.201	49166	180.163.198.49 ss.bdimg.com	80
192.168.122.201	49169	180.163.198.49 ss.bdimg.com	80
192.168.122.201	49177	180.163.198.49 ss.bdimg.com	80
192.168.122.201	49178	180.163.198.49 ss.bdimg.com	80
192.168.122.201	49159	202.108.22.5	80
192.168.122.201	49174	202.108.22.5	80
192.168.122.201	49176	202.108.22.5	80
192.168.122.201	49179	220.181.107.131 eclick.baidu.com	80

UDP

源地址	源端口	目标地址	目标端口
192.168.122.201	49157	192.168.122.1	53
192.168.122.201	50112	192.168.122.1	53
192.168.122.201	51384	192.168.122.1	53
192.168.122.201	51896	192.168.122.1	53
192.168.122.201	58646	192.168.122.1	53
192.168.122.201	59968	192.168.122.1	53
192.168.122.201	62882	192.168.122.1	53
192.168.122.201	63974	192.168.122.1	53

HTTP 请求

SMTP 流量

无SMTP流量.

IRC 流量

无IRC请求.

ICMP 流量

无ICMP流量.

CIF 报告

无 CIF 结果

网络警报

无警报

TLS

Timestamp	Source IP	Source Port	Destination IP	Destination Port	Version	Issuer	Subject	Fingerprint
2020-04-08 12:52:42.232377+0800	192.168.122.201	49171	180.163.198.32	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=beijing, L=beijing, OU=service operation department, O=Beijing Baidu Netcom Science Technology Co., Ltd, CN=baidu.com	d1:f6:32:3d:b6:f2:ec:81:e7:02:36:90:f4:9b:2d:91:e0:c3:99:3a

Suricata HTTP

No Suricata HTTP

未发现网络提取文件

抱歉! 没有任何文件投放。

HTML 总结报告 (需15-60分钟同步)	下载

Processing ( 13.451 seconds )

9.598 Suricata
3.616 NetworkAnalysis
0.214 Static
0.016 AnalysisInfo
0.004 BehaviorAnalysis
0.003 Memory

Signatures ( 1.931 seconds )

1.79 md_url_bl
0.052 md_domain_bl
0.015 antiav_detectreg
0.009 anomaly_persistence_autorun
0.007 antiav_detectfile
0.006 infostealer_ftp
0.005 geodo_banking_trojan
0.003 tinba_behavior
0.003 antianalysis_detectreg
0.003 disables_browser_warn
0.003 infostealer_bitcoin
0.003 infostealer_im
0.003 ransomware_extensions
0.003 ransomware_files
0.002 rat_nanocore
0.002 cerber_behavior
0.002 antivm_vbox_files
0.002 browser_security
0.002 infostealer_mail
0.002 md_bad_drop
0.002 network_torgateway
0.001 betabot_behavior
0.001 ursnif_behavior
0.001 kibex_behavior
0.001 shifu_behavior
0.001 antivm_parallels_keys
0.001 banker_zeus_mutex
0.001 bot_drive
0.001 bot_drive2
0.001 browser_addon
0.001 maldun_malicious_drop_executable_file_to_temp_folder
0.001 ie_martian_children
0.001 maldun_network_blacklist

Reporting ( 0.362 seconds )

0.362 ReportHTMLSummary


Task ID	535002
Mongo ID	5e8d5912bb7d5768392b9f28
Cuckoo release	1.4-Maldun

URI	HTTP数据
URL专业沙箱检测 -> http://202.108.22.5/	GET / HTTP/1.1 Accept: / Accept-Language: zh-cn User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E) Accept-Encoding: gzip, deflate Host: 202.108.22.5 Connection: Keep-Alive
URL专业沙箱检测 -> http://ss.bdimg.com/static/superman/font/iconfont-a37745d6f3.eot?	GET /static/superman/font/iconfont-a37745d6f3.eot? HTTP/1.1 Accept: / Referer: http://202.108.22.5/ Accept-Language: zh-CN User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E) Accept-Encoding: gzip, deflate Host: ss.bdimg.com Connection: Keep-Alive
URL专业沙箱检测 -> http://ss.bdimg.com/static/superman/js/sbase-0948aa26f1.js	GET /static/superman/js/sbase-0948aa26f1.js HTTP/1.1 Accept: / Referer: http://202.108.22.5/ Accept-Language: zh-CN User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E) Accept-Encoding: gzip, deflate Host: ss.bdimg.com Connection: Keep-Alive
URL专业沙箱检测 -> http://ss.bdimg.com/static/superman/js/lib/jquery-1-edb203c114.10.2.js	GET /static/superman/js/lib/jquery-1-edb203c114.10.2.js HTTP/1.1 Accept: / Referer: http://202.108.22.5/ Accept-Language: zh-CN User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E) Accept-Encoding: gzip, deflate Host: ss.bdimg.com Connection: Keep-Alive
URL专业沙箱检测 -> http://www.baidu.com/img/baidu_jgylogo3.gif	GET /img/baidu_jgylogo3.gif HTTP/1.1 Accept: / Referer: http://202.108.22.5/ Accept-Language: zh-CN User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E) Accept-Encoding: gzip, deflate Host: www.baidu.com Connection: Keep-Alive
URL专业沙箱检测 -> http://www.baidu.com/img/dong_d7ee3105570f1673ecf33f5bf2f58c35.gif	GET /img/dong_d7ee3105570f1673ecf33f5bf2f58c35.gif HTTP/1.1 Accept: / Referer: http://202.108.22.5/ Accept-Language: zh-CN User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E) Accept-Encoding: gzip, deflate Host: www.baidu.com Connection: Keep-Alive
URL专业沙箱检测 -> http://ss.bdimg.com/static/superman/img/icons-441e82fb11.png	GET /static/superman/img/icons-441e82fb11.png HTTP/1.1 Accept: / Referer: http://202.108.22.5/ Accept-Language: zh-CN User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E) Accept-Encoding: gzip, deflate Host: ss.bdimg.com Connection: Keep-Alive
URL专业沙箱检测 -> http://ss.bdimg.com/static/superman/img/qrcode/zbios_old-09b6296ee6.png	GET /static/superman/img/qrcode/zbios_old-09b6296ee6.png HTTP/1.1 Accept: / Referer: http://202.108.22.5/ Accept-Language: zh-CN User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E) Accept-Encoding: gzip, deflate Host: ss.bdimg.com Connection: Keep-Alive
URL专业沙箱检测 -> http://ss.bdimg.com/static/superman/js/polyfill-ie8-30f98ab294.js	GET /static/superman/js/polyfill-ie8-30f98ab294.js HTTP/1.1 Accept: / Referer: http://202.108.22.5/ Accept-Language: zh-CN User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E) Accept-Encoding: gzip, deflate Host: ss.bdimg.com Connection: Keep-Alive
URL专业沙箱检测 -> http://www.baidu.com/img/baidu_resultlogo@2.png	GET /img/baidu_resultlogo@2.png HTTP/1.1 Accept: / Referer: http://202.108.22.5/ Accept-Language: zh-CN User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E) Accept-Encoding: gzip, deflate Host: www.baidu.com Connection: Keep-Alive
URL专业沙箱检测 -> http://s1.bdstatic.com/r/www/cache/static/global/js/all_async_search_f2dbc0a.js	GET /r/www/cache/static/global/js/all_async_search_f2dbc0a.js HTTP/1.1 Accept: / Referer: http://202.108.22.5/ Accept-Language: zh-CN User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E) Accept-Encoding: gzip, deflate Host: s1.bdstatic.com Connection: Keep-Alive
URL专业沙箱检测 -> http://s1.bdstatic.com/r/www/cache/static/plugins/every_cookie_4644b13.js	GET /r/www/cache/static/plugins/every_cookie_4644b13.js HTTP/1.1 Accept: / Referer: http://202.108.22.5/ Accept-Language: zh-CN User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E) Accept-Encoding: gzip, deflate Host: s1.bdstatic.com Connection: Keep-Alive
URL专业沙箱检测 -> http://s1.bdstatic.com/r/www/cache/static/home/js/nu_instant_search_efc6d98.js	GET /r/www/cache/static/home/js/nu_instant_search_efc6d98.js HTTP/1.1 Accept: / Referer: http://202.108.22.5/ Accept-Language: zh-CN User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E) Accept-Encoding: gzip, deflate Host: s1.bdstatic.com Connection: Keep-Alive
URL专业沙箱检测 -> http://ss.bdimg.com/static/superman/js/min_super-42c1ac872c.js	GET /static/superman/js/min_super-42c1ac872c.js HTTP/1.1 Accept: / Referer: http://202.108.22.5/ Accept-Language: zh-CN User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E) Accept-Encoding: gzip, deflate Host: ss.bdimg.com Connection: Keep-Alive
URL专业沙箱检测 -> http://m.baidu.com/se/static/font/cicon.eot?t=1561460962188	GET /se/static/font/cicon.eot?t=1561460962188 HTTP/1.1 Accept: / Referer: http://202.108.22.5/ Accept-Language: zh-CN User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E) Accept-Encoding: gzip, deflate Host: m.baidu.com Connection: Keep-Alive Cookie: BAIDUID=C9870E027EF6194B0501003DA5640C4C:FG=1
URL专业沙箱检测 -> http://s1.bdstatic.com/r/www/cache/static/amd_modules/@baidu/search-sug_913fe0a.js	GET /r/www/cache/static/amd_modules/@baidu/search-sug_913fe0a.js HTTP/1.1 Accept: / Referer: http://202.108.22.5/ Accept-Language: zh-CN User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E) Accept-Encoding: gzip, deflate Host: s1.bdstatic.com Connection: Keep-Alive
URL专业沙箱检测 -> http://s1.bdstatic.com/r/www/cache/static/plugins/hotWord_cc828cc.js	GET /r/www/cache/static/plugins/hotWord_cc828cc.js HTTP/1.1 Accept: / Referer: http://202.108.22.5/ Accept-Language: zh-CN User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E) Accept-Encoding: gzip, deflate Host: s1.bdstatic.com Connection: Keep-Alive
URL专业沙箱检测 -> http://dj1.baidu.com/v.gif?logactid=1234567890&showTab=10000&opType=showpv&mod=superman%3Alib&submod=index&superver=supernewplus&glogid=3981030954&type=2011&pid=315&isLogin=0&version=PCHome&terminal=PC&qid=3981031151&sid=30975_1421_31123_21084_31186_30824_26350_31163&super_frm=&from_login=&from_reg=&query=&curcard=2&curcardtab=&_r=0.9670807750563213	GET /v.gif?logactid=1234567890&showTab=10000&opType=showpv&mod=superman%3Alib&submod=index&superver=supernewplus&glogid=3981030954&type=2011&pid=315&isLogin=0&version=PCHome&terminal=PC&qid=3981031151&sid=30975_1421_31123_21084_31186_30824_26350_31163&super_frm=&from_login=&from_reg=&query=&curcard=2&curcardtab=&_r=0.9670807750563213 HTTP/1.1 Accept: / Referer: http://202.108.22.5/ Accept-Language: zh-CN User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E) Accept-Encoding: gzip, deflate Host: dj1.baidu.com Connection: Keep-Alive Cookie: BAIDUID=C9870E027EF6194B0501003DA5640C4C:FG=1
URL专业沙箱检测 -> http://nsclick.baidu.com/v.gif?pid=201&pj=www&fm=behs&qid=&tab=indexHot&path=http%3A%2F%2F202.108.22.5%2F&wd=&rsv_sid=30975_1421_31123_21084_31186_30824_26350_31163&rsv_did=a34cd11fe12ab6f794d32fd80280813e&t=1586321549470	GET /v.gif?pid=201&pj=www&fm=behs&qid=&tab=indexHot&path=http%3A%2F%2F202.108.22.5%2F&wd=&rsv_sid=30975_1421_31123_21084_31186_30824_26350_31163&rsv_did=a34cd11fe12ab6f794d32fd80280813e&t=1586321549470 HTTP/1.1 Accept: / Referer: http://202.108.22.5/ Accept-Language: zh-CN User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E) Accept-Encoding: gzip, deflate Host: nsclick.baidu.com Connection: Keep-Alive Cookie: BAIDUID=C9870E027EF6194B0501003DA5640C4C:FG=1
URL专业沙箱检测 -> http://ss.bdimg.com/static/superman/js/super_load-7ff1c70fa7.js	GET /static/superman/js/super_load-7ff1c70fa7.js HTTP/1.1 Accept: / Referer: http://202.108.22.5/ Accept-Language: zh-CN User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E) Accept-Encoding: gzip, deflate Host: ss.bdimg.com Connection: Keep-Alive
URL专业沙箱检测 -> http://www.baidu.com/cache/fpid/lib_1_0.js?_=1586321548971	GET /cache/fpid/lib_1_0.js?_=1586321548971 HTTP/1.1 Accept: / Referer: http://202.108.22.5/ Accept-Language: zh-CN User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E) Accept-Encoding: gzip, deflate Host: www.baidu.com Connection: Keep-Alive Cookie: BAIDUID=C9870E027EF6194B0501003DA5640C4C:FG=1
URL专业沙箱检测 -> http://ss.bdimg.com/static/superman/css/nsguide-a66438b784.css	GET /static/superman/css/nsguide-a66438b784.css HTTP/1.1 Accept: / Referer: http://202.108.22.5/ Accept-Language: zh-CN User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E) Accept-Encoding: gzip, deflate Host: ss.bdimg.com Connection: Keep-Alive
URL专业沙箱检测 -> http://202.108.22.5/favicon.ico	GET /favicon.ico HTTP/1.1 Accept: / Accept-Encoding: gzip, deflate User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E) Host: 202.108.22.5 Connection: Keep-Alive Cookie: BD_HOME=1; BD_UPN=1123314351
URL专业沙箱检测 -> http://202.108.22.5/content-search.xml	GET /content-search.xml HTTP/1.1 Accept: / Accept-Encoding: gzip, deflate User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E) Host: 202.108.22.5 Connection: Keep-Alive Cookie: BD_UPN=1123314351
URL专业沙箱检测 -> http://ss.bdimg.com/static/superman/css/super_ext-76fd36cbf7.css	GET /static/superman/css/super_ext-76fd36cbf7.css HTTP/1.1 Accept: / Referer: http://202.108.22.5/ Accept-Language: zh-CN User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E) Accept-Encoding: gzip, deflate Host: ss.bdimg.com Connection: Keep-Alive
URL专业沙箱检测 -> http://ss.bdimg.com/static/superui/js/ubase_5a7b0933.js	GET /static/superui/js/ubase_5a7b0933.js HTTP/1.1 Accept: / Referer: http://202.108.22.5/ Accept-Language: zh-CN User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E) Accept-Encoding: gzip, deflate Host: ss.bdimg.com Connection: Keep-Alive
URL专业沙箱检测 -> http://ss.bdimg.com/static/superui/css/ubase_9376fdcf.css	GET /static/superui/css/ubase_9376fdcf.css HTTP/1.1 Accept: / Referer: http://202.108.22.5/ Accept-Language: zh-CN User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E) Accept-Encoding: gzip, deflate Host: ss.bdimg.com Connection: Keep-Alive
URL专业沙箱检测 -> http://eclick.baidu.com/ps_fp.htm?pid=superman&fp=A60275B9B21A14EFB83B072CF75EAFD8&im=0&wf=0&br=1&qid=3981031151&bi=null	GET /ps_fp.htm?pid=superman&fp=A60275B9B21A14EFB83B072CF75EAFD8&im=0&wf=0&br=1&qid=3981031151&bi=null HTTP/1.1 Accept: / Referer: http://202.108.22.5/ Accept-Language: zh-CN User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E) Accept-Encoding: gzip, deflate Host: eclick.baidu.com Connection: Keep-Alive Cookie: BAIDUID=C9870E027EF6194B0501003DA5640C4C:FG=1