分析任务

分析类型 虚拟机标签 开始时间 结束时间 持续时间
URL win7-sp1-x64-hpdapp01-2 2018-03-19 09:12:30 2018-03-19 09:15:04 154 秒

魔盾分数

10.0

危险的

URL详细信息

URL
URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/

登录查看威胁特征

运行截图


访问主机纪录 (可点击查询WPING实时安全评级)

直接 IP 安全评级 地理位置
14.17.102.100 中国
14.17.102.101 中国
222.187.254.89 中国
27.148.139.192 中国
61.160.212.178 中国

域名解析 (可点击查询WPING实时安全评级)

域名 安全评级 响应
jihgama.yuanqi7.cn 未知 A 61.160.212.178
js.users.51.la A 112.90.153.42
A 112.90.153.41
A 14.17.102.107
A 42.236.74.213
A 14.17.102.106
A 42.236.74.246
A 222.187.254.89
A 42.236.74.247
ia.51.la A 14.17.102.101
A 14.17.102.100
www.microsoft.com CNAME e13678.ca.s.tl88.net
CNAME www.microsoft.com-c-3.edgekey.net.globalredir.akadns.net
A 27.148.139.192
CNAME www.microsoft.com-c-3.edgekey.net

摘要

登录查看详细行为信息

WHOIS 信息

Name: None
Country: None
State: None
City: None
ZIP Code: None
Address: None

Orginization: None
Domain Name(s):
    yuanqi7.cn
Creation Date:
    None
Updated Date:
    None
Expiration Date:
    None
Email(s):
    whoigent@west263.com

Registrar(s):
    北京蓝海基业科技有限公司
Name Server(s):
    ns1.dns.com
    ns2.dns.com
Referral URL(s):
    None
没有防病毒引擎扫描信息!

进程树


iexplore.exe, PID: 2100, 上一级进程 PID: 1976
iexplore.exe, PID: 2256, 上一级进程 PID: 2100
iexplore.exe, PID: 2852, 上一级进程 PID: 2100
iexplore.exe, PID: 1252, 上一级进程 PID: 2100
iexplore.exe, PID: 336, 上一级进程 PID: 2100
iexplore.exe, PID: 3616, 上一级进程 PID: 2100

访问主机纪录 (可点击查询WPING实时安全评级)

直接 IP 安全评级 地理位置
14.17.102.100 中国
14.17.102.101 中国
222.187.254.89 中国
27.148.139.192 中国
61.160.212.178 中国

TCP

源地址 源端口 目标地址 目标端口
192.168.122.202 49231 14.17.102.100 ia.51.la 80
192.168.122.202 49242 14.17.102.100 ia.51.la 80
192.168.122.202 49249 14.17.102.100 ia.51.la 80
192.168.122.202 49257 14.17.102.100 ia.51.la 80
14.17.102.100 80 192.168.122.202 49271
192.168.122.202 49281 14.17.102.100 ia.51.la 80
14.17.102.100 80 192.168.122.202 49282
14.17.102.100 80 192.168.122.202 49286
192.168.122.202 49290 14.17.102.100 ia.51.la 80
14.17.102.100 80 192.168.122.202 49296
14.17.102.100 80 192.168.122.202 49300
192.168.122.202 49192 14.17.102.101 ia.51.la 80
192.168.122.202 49304 14.17.102.101 ia.51.la 80
192.168.122.202 49307 14.17.102.101 ia.51.la 80
192.168.122.202 49310 14.17.102.101 ia.51.la 80
192.168.122.202 49188 222.187.254.89 js.users.51.la 80
192.168.122.202 49215 222.187.254.89 js.users.51.la 80
192.168.122.202 49228 222.187.254.89 js.users.51.la 80
192.168.122.202 49270 222.187.254.89 js.users.51.la 80
192.168.122.202 49218 27.148.139.192 www.microsoft.com 80
192.168.122.202 49160 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49161 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49162 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49163 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49164 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49165 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49166 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49167 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49169 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49170 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49171 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49172 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49173 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49174 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49177 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49178 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49179 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49181 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49187 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49189 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49190 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49191 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49193 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49194 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49195 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49196 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49202 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49207 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49208 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49212 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49213 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49214 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49224 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49225 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49226 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49227 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49229 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49230 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49233 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49234 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49236 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49237 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49238 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49239 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49244 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49245 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49246 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49247 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49250 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49251 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49252 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49253 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49254 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49255 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49258 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49259 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49260 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49262 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49263 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49269 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49272 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49273 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49276 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49277 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49278 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49279 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49280 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49284 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49291 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49298 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49302 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49303 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49305 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49308 61.160.212.178 jihgama.yuanqi7.cn 99

UDP

源地址 源端口 目标地址 目标端口
192.168.122.202 50040 192.168.122.1 53
192.168.122.202 51833 192.168.122.1 53
192.168.122.202 52817 192.168.122.1 53
192.168.122.202 56021 192.168.122.1 53
192.168.122.202 56039 192.168.122.1 53
192.168.122.202 56379 192.168.122.1 53
192.168.122.202 58072 192.168.122.1 53
192.168.122.202 62411 192.168.122.1 53
192.168.122.202 65450 192.168.122.1 53

域名解析 (可点击查询WPING实时安全评级)

域名 安全评级 响应
jihgama.yuanqi7.cn 未知 A 61.160.212.178
js.users.51.la A 112.90.153.42
A 112.90.153.41
A 14.17.102.107
A 42.236.74.213
A 14.17.102.106
A 42.236.74.246
A 222.187.254.89
A 42.236.74.247
ia.51.la A 14.17.102.101
A 14.17.102.100
www.microsoft.com CNAME e13678.ca.s.tl88.net
CNAME www.microsoft.com-c-3.edgekey.net.globalredir.akadns.net
A 27.148.139.192
CNAME www.microsoft.com-c-3.edgekey.net

TCP

源地址 源端口 目标地址 目标端口
192.168.122.202 49231 14.17.102.100 ia.51.la 80
192.168.122.202 49242 14.17.102.100 ia.51.la 80
192.168.122.202 49249 14.17.102.100 ia.51.la 80
192.168.122.202 49257 14.17.102.100 ia.51.la 80
14.17.102.100 80 192.168.122.202 49271
192.168.122.202 49281 14.17.102.100 ia.51.la 80
14.17.102.100 80 192.168.122.202 49282
14.17.102.100 80 192.168.122.202 49286
192.168.122.202 49290 14.17.102.100 ia.51.la 80
14.17.102.100 80 192.168.122.202 49296
14.17.102.100 80 192.168.122.202 49300
192.168.122.202 49192 14.17.102.101 ia.51.la 80
192.168.122.202 49304 14.17.102.101 ia.51.la 80
192.168.122.202 49307 14.17.102.101 ia.51.la 80
192.168.122.202 49310 14.17.102.101 ia.51.la 80
192.168.122.202 49188 222.187.254.89 js.users.51.la 80
192.168.122.202 49215 222.187.254.89 js.users.51.la 80
192.168.122.202 49228 222.187.254.89 js.users.51.la 80
192.168.122.202 49270 222.187.254.89 js.users.51.la 80
192.168.122.202 49218 27.148.139.192 www.microsoft.com 80
192.168.122.202 49160 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49161 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49162 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49163 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49164 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49165 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49166 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49167 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49169 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49170 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49171 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49172 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49173 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49174 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49177 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49178 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49179 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49181 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49187 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49189 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49190 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49191 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49193 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49194 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49195 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49196 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49202 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49207 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49208 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49212 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49213 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49214 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49224 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49225 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49226 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49227 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49229 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49230 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49233 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49234 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49236 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49237 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49238 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49239 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49244 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49245 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49246 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49247 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49250 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49251 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49252 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49253 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49254 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49255 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49258 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49259 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49260 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49262 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49263 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49269 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49272 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49273 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49276 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49277 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49278 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49279 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49280 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49284 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49291 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49298 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49302 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49303 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49305 61.160.212.178 jihgama.yuanqi7.cn 99
192.168.122.202 49308 61.160.212.178 jihgama.yuanqi7.cn 99

UDP

源地址 源端口 目标地址 目标端口
192.168.122.202 50040 192.168.122.1 53
192.168.122.202 51833 192.168.122.1 53
192.168.122.202 52817 192.168.122.1 53
192.168.122.202 56021 192.168.122.1 53
192.168.122.202 56039 192.168.122.1 53
192.168.122.202 56379 192.168.122.1 53
192.168.122.202 58072 192.168.122.1 53
192.168.122.202 62411 192.168.122.1 53
192.168.122.202 65450 192.168.122.1 53

HTTP 请求

URI HTTP数据
URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/
GET / HTTP/1.1
Accept: */*
Referer: http://www.google.com/url?sa=t&rct=j&q=&esrc=s&source=web&cd=20&ved=0CCEQfjUlBwYVJheklIUVpUSXdjYW1l&url=http%3A%2F%2Fjihgama.yuanqi7.cn%3A99%2F&ei=aERKaUt0QnZkb1Zy&usg=AFQjd3J5QXdkd3FEQklI
Accept-Language: zh-cn
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/css/common_v2.css
GET /style/css/common_v2.css HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/css/index_v20b9e0b9e.css?201669059
GET /style/css/index_v20b9e0b9e.css?201669059 HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/css/common_v20b9e0b9e.css?201669059
GET /style/css/common_v20b9e0b9e.css?201669059 HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/js/jquery.bannerd41dd41d.js?
GET /style/js/jquery.bannerd41dd41d.js? HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/css/index_v2.css
GET /style/css/index_v2.css HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/js/switchd41dd41d.js?
GET /style/js/switchd41dd41d.js? HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/css/img/top_bg.png
GET /style/css/img/top_bg.png HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/css/img/logo.png
GET /style/css/img/logo.png HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/images/img/tc03.png
GET /style/images/img/tc03.png HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/img/g01.jpg
GET /style/img/g01.jpg HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/img/jg.jpg
GET /style/img/jg.jpg HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/img/g07.jpg
GET /style/img/g07.jpg HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/img/wg02.jpg
GET /style/img/wg02.jpg HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/img/wg03.jpg
GET /style/img/wg03.jpg HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/images/img/btn_left07.png
GET /style/images/img/btn_left07.png HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/images/img/btn_right09.png
GET /style/images/img/btn_right09.png HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/images/favicon.ico
GET /images/favicon.ico HTTP/1.1
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/
GET / HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
If-Modified-Since: Sun, 18 Mar 2018 04:19:25 GMT
If-None-Match: "66ed9c4c70bed31:69a"
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/images/img/576b8fc8358f1.jpg
GET /style/images/img/576b8fc8358f1.jpg HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive

URL专业沙箱检测 -> http://js.users.51.la/19375525.js
GET /19375525.js HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: js.users.51.la
Connection: Keep-Alive

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/css/img/side-game-bg.png
GET /style/css/img/side-game-bg.png HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/css/img/h-announce-tit.gif
GET /style/css/img/h-announce-tit.gif HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/img/gicon-nmw.jpg
GET /style/img/gicon-nmw.jpg HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive

URL专业沙箱检测 -> http://ia.51.la/go1?id=19375525&rt=1521463942673&rl=800*600&lang=zh-cn&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=&ing=1&ekc=&sid=1521463942673&tt=%25E9%259B%2586%25E7%25BB%2593%25E6%258D%2595%25E9%25B1%25BC%25E6%25B8%25B8%25E6%2588%258F%25E5%25AE%2598%25E6%2596%25B9%25E6%25AD%25A3%25E7%2589%2588%25E4%25B8%258B%25E8%25BD%25BD&kw=&cu=http%253A%252F%252Fjihgama.yuanqi7.cn%253A99%252F%2523&pu=http%253A%252F%252Fjihgama.yuanqi7.cn%253A99%252F
GET /go1?id=19375525&rt=1521463942673&rl=800*600&lang=zh-cn&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=&ing=1&ekc=&sid=1521463942673&tt=%25E9%259B%2586%25E7%25BB%2593%25E6%258D%2595%25E9%25B1%25BC%25E6%25B8%25B8%25E6%2588%258F%25E5%25AE%2598%25E6%2596%25B9%25E6%25AD%25A3%25E7%2589%2588%25E4%25B8%258B%25E8%25BD%25BD&kw=&cu=http%253A%252F%252Fjihgama.yuanqi7.cn%253A99%252F%2523&pu=http%253A%252F%252Fjihgama.yuanqi7.cn%253A99%252F HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: ia.51.la
Connection: Keep-Alive

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/images/img/btn_left07.png
GET /style/images/img/btn_left07.png HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521463942673%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201521465742673%7D; __51cke__=; __51laig__=1

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/css/img/sprite_home.png
GET /style/css/img/sprite_home.png HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521463942673%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201521465742673%7D; __51cke__=; __51laig__=1

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/images/img/tc03.png
GET /style/images/img/tc03.png HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521463942673%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201521465742673%7D; __51cke__=; __51laig__=1

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/images/img/btn_right09.png
GET /style/images/img/btn_right09.png HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521463942673%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201521465742673%7D; __51cke__=; __51laig__=1

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/img/g05.jpg
GET /style/img/g05.jpg HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521463942673%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201521465742673%7D; __51cke__=; __51laig__=1

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/images/img/575664e1aa564.jpg
GET /style/images/img/575664e1aa564.jpg HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521463942673%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201521465742673%7D; __51cke__=; __51laig__=1

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/images/favicon.ico
GET /images/favicon.ico HTTP/1.1
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521463942673%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201521465742673%7D; __51cke__=; __51laig__=1

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/
GET / HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
If-Modified-Since: Sun, 18 Mar 2018 04:19:25 GMT
If-None-Match: "66ed9c4c70bed31:69a"
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521463942673%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201521465742673%7D; __51cke__=; __51laig__=1

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/img/g02.jpg
GET /style/img/g02.jpg HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521463942673%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201521465742673%7D; __51cke__=; __51laig__=1

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/img/g03.jpg
GET /style/img/g03.jpg HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521463942673%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201521465742673%7D; __51cke__=; __51laig__=1

URL专业沙箱检测 -> http://js.users.51.la/19375525.js
GET /19375525.js HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
If-Modified-Since: Thu, 15 Mar 2018 15:59:40 GMT
If-None-Match: "ee9573a076bcd31:70da"
Host: js.users.51.la
Connection: Keep-Alive

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/img/wg01.jpg
GET /style/img/wg01.jpg HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521463942673%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201521465742673%7D; __51cke__=; __51laig__=1

URL专业沙箱检测 -> http://www.microsoft.com/
GET / HTTP/1.1
Host: www.microsoft.com
Connection: Close

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/img/gicon-ddz.jpg
GET /style/img/gicon-ddz.jpg HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521475956047%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201521477756047%7D; __51cke__=; __51laig__=2

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/img/gicon-llk.jpg
GET /style/img/gicon-llk.jpg HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521475956047%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201521477756047%7D; __51cke__=; __51laig__=2

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/img/gicon-wzq.jpg
GET /style/img/gicon-wzq.jpg HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521475956047%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201521477756047%7D; __51cke__=; __51laig__=2

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/img/gicon-jq1.jpg
GET /style/img/gicon-jq1.jpg HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521475956047%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201521477756047%7D; __51cke__=; __51laig__=2

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/img/gicon-3d1.jpg
GET /style/img/gicon-3d1.jpg HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521475956047%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201521477756047%7D; __51cke__=; __51laig__=2

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/css/img/gdown-lnk.png
GET /style/css/img/gdown-lnk.png HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521475956047%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201521477756047%7D; __51cke__=; __51laig__=2

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/img/gicon-13.jpg
GET /style/img/gicon-13.jpg HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521475956047%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201521477756047%7D; __51cke__=; __51laig__=2

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/css/img/ico.gif
GET /style/css/img/ico.gif HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521475956047%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201521477756047%7D; __51cke__=; __51laig__=2

URL专业沙箱检测 -> http://ia.51.la/go1?id=19375525&rt=1521497272955&rl=800*600&lang=zh-cn&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=&ing=3&ekc=&sid=1521497272955&tt=%25E9%259B%2586%25E7%25BB%2593%25E6%258D%2595%25E9%25B1%25BC%25E6%25B8%25B8%25E6%2588%258F%25E5%25AE%2598%25E6%2596%25B9%25E6%25AD%25A3%25E7%2589%2588%25E4%25B8%258B%25E8%25BD%25BD&kw=&cu=http%253A%252F%252Fjihgama.yuanqi7.cn%253A99%252F%2523&pu=http%253A%252F%252Fjihgama.yuanqi7.cn%253A99%252F
GET /go1?id=19375525&rt=1521497272955&rl=800*600&lang=zh-cn&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=&ing=3&ekc=&sid=1521497272955&tt=%25E9%259B%2586%25E7%25BB%2593%25E6%258D%2595%25E9%25B1%25BC%25E6%25B8%25B8%25E6%2588%258F%25E5%25AE%2598%25E6%2596%25B9%25E6%25AD%25A3%25E7%2589%2588%25E4%25B8%258B%25E8%25BD%25BD&kw=&cu=http%253A%252F%252Fjihgama.yuanqi7.cn%253A99%252F%2523&pu=http%253A%252F%252Fjihgama.yuanqi7.cn%253A99%252F HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: ia.51.la
Connection: Keep-Alive

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/images/img/btn_left07.png
GET /style/images/img/btn_left07.png HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521497272955%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201521499072955%7D; __51cke__=; __51laig__=3

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/images/img/btn_right09.png
GET /style/images/img/btn_right09.png HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521497272955%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201521499072955%7D; __51cke__=; __51laig__=3

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/css/img/top_bg.png
GET /style/css/img/top_bg.png HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Range: bytes=154304-
Unless-Modified-Since: Fri, 23 Feb 2018 05:56:02 GMT
If-Range: "6ba86efc6aacd31:69a"
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521497272955%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201521499072955%7D; __51cke__=; __51laig__=3

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/img/g04.jpg
GET /style/img/g04.jpg HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521497272955%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201521499072955%7D; __51cke__=; __51laig__=3

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/css/img/h-baohu-tit.gif
GET /style/css/img/h-baohu-tit.gif HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521497272955%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201521499072955%7D; __51cke__=; __51laig__=3

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/img/gicon-fish.jpg
GET /style/img/gicon-fish.jpg HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521497272955%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201521499072955%7D; __51cke__=; __51laig__=3

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/img/gicon-nn.jpg
GET /style/img/gicon-nn.jpg HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521497272955%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201521499072955%7D; __51cke__=; __51laig__=3

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/img/g06.jpg
GET /style/img/g06.jpg HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521497272955%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201521499072955%7D; __51cke__=; __51laig__=3

URL专业沙箱检测 -> http://ia.51.la/go1?id=19375525&rt=1521463349155&rl=800*600&lang=zh-cn&ct=unknow&pf=1&ins=0&vd=2&ce=1&cd=24&ds=&ing=4&ekc=&sid=1521497272955&tt=%25E9%259B%2586%25E7%25BB%2593%25E6%258D%2595%25E9%25B1%25BC%25E6%25B8%25B8%25E6%2588%258F%25E5%25AE%2598%25E6%2596%25B9%25E6%25AD%25A3%25E7%2589%2588%25E4%25B8%258B%25E8%25BD%25BD&kw=&cu=http%253A%252F%252Fjihgama.yuanqi7.cn%253A99%252F%2523&pu=http%253A%252F%252Fjihgama.yuanqi7.cn%253A99%252F
GET /go1?id=19375525&rt=1521463349155&rl=800*600&lang=zh-cn&ct=unknow&pf=1&ins=0&vd=2&ce=1&cd=24&ds=&ing=4&ekc=&sid=1521497272955&tt=%25E9%259B%2586%25E7%25BB%2593%25E6%258D%2595%25E9%25B1%25BC%25E6%25B8%25B8%25E6%2588%258F%25E5%25AE%2598%25E6%2596%25B9%25E6%25AD%25A3%25E7%2589%2588%25E4%25B8%258B%25E8%25BD%25BD&kw=&cu=http%253A%252F%252Fjihgama.yuanqi7.cn%253A99%252F%2523&pu=http%253A%252F%252Fjihgama.yuanqi7.cn%253A99%252F HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: ia.51.la
Connection: Keep-Alive

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/js/switchd41dd41d.js?
GET /style/js/switchd41dd41d.js? HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
If-Modified-Since: Fri, 23 Feb 2018 05:56:04 GMT
If-None-Match: "4d4755fd6aacd31:69a"
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521497272955%2C%20%22vd%22%3A%202%2C%20%22expires%22%3A%201521465149155%7D; __51cke__=; __51laig__=4

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/css/common_v2.css
GET /style/css/common_v2.css HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
If-Modified-Since: Fri, 23 Feb 2018 05:56:02 GMT
If-None-Match: "e727dfc6aacd31:69a"
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521497272955%2C%20%22vd%22%3A%202%2C%20%22expires%22%3A%201521465149155%7D; __51cke__=; __51laig__=4

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/css/index_v2.css
GET /style/css/index_v2.css HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
If-Modified-Since: Fri, 23 Feb 2018 05:56:03 GMT
If-None-Match: "18fc2afd6aacd31:69a"
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521497272955%2C%20%22vd%22%3A%202%2C%20%22expires%22%3A%201521465149155%7D; __51cke__=; __51laig__=4

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/css/common_v20b9e0b9e.css?201669059
GET /style/css/common_v20b9e0b9e.css?201669059 HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
If-Modified-Since: Fri, 23 Feb 2018 05:56:01 GMT
If-None-Match: "7e3aadfb6aacd31:69a"
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521497272955%2C%20%22vd%22%3A%202%2C%20%22expires%22%3A%201521465149155%7D; __51cke__=; __51laig__=4

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/css/index_v20b9e0b9e.css?201669059
GET /style/css/index_v20b9e0b9e.css?201669059 HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
If-Modified-Since: Fri, 23 Feb 2018 05:56:01 GMT
If-None-Match: "5ff1c8fb6aacd31:69a"
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521497272955%2C%20%22vd%22%3A%202%2C%20%22expires%22%3A%201521465149155%7D; __51cke__=; __51laig__=4

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/js/jquery.bannerd41dd41d.js?
GET /style/js/jquery.bannerd41dd41d.js? HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
If-Modified-Since: Fri, 23 Feb 2018 05:56:03 GMT
If-None-Match: "33142fd6aacd31:69a"
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521497272955%2C%20%22vd%22%3A%202%2C%20%22expires%22%3A%201521465149155%7D; __51cke__=; __51laig__=4

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/img/gicon-xq1.jpg
GET /style/img/gicon-xq1.jpg HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521497272955%2C%20%22vd%22%3A%203%2C%20%22expires%22%3A%201521473109448%7D; __51cke__=; __51laig__=5

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/img/gicon-tq1.jpg
GET /style/img/gicon-tq1.jpg HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521497272955%2C%20%22vd%22%3A%203%2C%20%22expires%22%3A%201521473109448%7D; __51cke__=; __51laig__=5

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/css/img/g-hot-ico.gif
GET /style/css/img/g-hot-ico.gif HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521497272955%2C%20%22vd%22%3A%203%2C%20%22expires%22%3A%201521473109448%7D; __51cke__=; __51laig__=5

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/img/wg04.jpg
GET /style/img/wg04.jpg HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521497272955%2C%20%22vd%22%3A%203%2C%20%22expires%22%3A%201521473109448%7D; __51cke__=; __51laig__=5

URL专业沙箱检测 -> http://ia.51.la/go1?id=19375525&rt=1521471309448&rl=800*600&lang=zh-cn&ct=unknow&pf=1&ins=0&vd=3&ce=1&cd=24&ds=&ing=5&ekc=&sid=1521497272955&tt=%25E9%259B%2586%25E7%25BB%2593%25E6%258D%2595%25E9%25B1%25BC%25E6%25B8%25B8%25E6%2588%258F%25E5%25AE%2598%25E6%2596%25B9%25E6%25AD%25A3%25E7%2589%2588%25E4%25B8%258B%25E8%25BD%25BD&kw=&cu=http%253A%252F%252Fjihgama.yuanqi7.cn%253A99%252F%2523&pu=http%253A%252F%252Fjihgama.yuanqi7.cn%253A99%252F
GET /go1?id=19375525&rt=1521471309448&rl=800*600&lang=zh-cn&ct=unknow&pf=1&ins=0&vd=3&ce=1&cd=24&ds=&ing=5&ekc=&sid=1521497272955&tt=%25E9%259B%2586%25E7%25BB%2593%25E6%258D%2595%25E9%25B1%25BC%25E6%25B8%25B8%25E6%2588%258F%25E5%25AE%2598%25E6%2596%25B9%25E6%25AD%25A3%25E7%2589%2588%25E4%25B8%258B%25E8%25BD%25BD&kw=&cu=http%253A%252F%252Fjihgama.yuanqi7.cn%253A99%252F%2523&pu=http%253A%252F%252Fjihgama.yuanqi7.cn%253A99%252F HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: ia.51.la
Connection: Keep-Alive

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/css/img/ft_logo0624.png
GET /style/css/img/ft_logo0624.png HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521497272955%2C%20%22vd%22%3A%203%2C%20%22expires%22%3A%201521473109448%7D; __51cke__=; __51laig__=5

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/css/img/ar_right.gif
GET /style/css/img/ar_right.gif HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521497272955%2C%20%22vd%22%3A%203%2C%20%22expires%22%3A%201521473109448%7D; __51cke__=; __51laig__=5

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/images/img/btn_right09.png
GET /style/images/img/btn_right09.png HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521497272955%2C%20%22vd%22%3A%203%2C%20%22expires%22%3A%201521473109448%7D; __51cke__=; __51laig__=5

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/images/img/tc03.png
GET /style/images/img/tc03.png HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521497272955%2C%20%22vd%22%3A%203%2C%20%22expires%22%3A%201521473109448%7D; __51cke__=; __51laig__=5

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/images/img/btn_left07.png
GET /style/images/img/btn_left07.png HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521497272955%2C%20%22vd%22%3A%203%2C%20%22expires%22%3A%201521473109448%7D; __51cke__=; __51laig__=5

URL专业沙箱检测 -> http://ia.51.la/go1?id=19375525&rt=1521497698289&rl=800*600&lang=zh-cn&ct=unknow&pf=1&ins=0&vd=4&ce=1&cd=24&ds=&ing=6&ekc=&sid=1521497272955&tt=%25E9%259B%2586%25E7%25BB%2593%25E6%258D%2595%25E9%25B1%25BC%25E6%25B8%25B8%25E6%2588%258F%25E5%25AE%2598%25E6%2596%25B9%25E6%25AD%25A3%25E7%2589%2588%25E4%25B8%258B%25E8%25BD%25BD&kw=&cu=http%253A%252F%252Fjihgama.yuanqi7.cn%253A99%252F%2523&pu=http%253A%252F%252Fjihgama.yuanqi7.cn%253A99%252F
GET /go1?id=19375525&rt=1521497698289&rl=800*600&lang=zh-cn&ct=unknow&pf=1&ins=0&vd=4&ce=1&cd=24&ds=&ing=6&ekc=&sid=1521497272955&tt=%25E9%259B%2586%25E7%25BB%2593%25E6%258D%2595%25E9%25B1%25BC%25E6%25B8%25B8%25E6%2588%258F%25E5%25AE%2598%25E6%2596%25B9%25E6%25AD%25A3%25E7%2589%2588%25E4%25B8%258B%25E8%25BD%25BD&kw=&cu=http%253A%252F%252Fjihgama.yuanqi7.cn%253A99%252F%2523&pu=http%253A%252F%252Fjihgama.yuanqi7.cn%253A99%252F HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: ia.51.la
Connection: Keep-Alive

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/images/img/tc03.png
GET /style/images/img/tc03.png HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521497272955%2C%20%22vd%22%3A%204%2C%20%22expires%22%3A%201521499498289%7D; __51cke__=; __51laig__=6

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/images/img/btn_right09.png
GET /style/images/img/btn_right09.png HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521497272955%2C%20%22vd%22%3A%204%2C%20%22expires%22%3A%201521499498289%7D; __51cke__=; __51laig__=6

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/images/img/btn_left07.png
GET /style/images/img/btn_left07.png HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521497272955%2C%20%22vd%22%3A%204%2C%20%22expires%22%3A%201521499498289%7D; __51cke__=; __51laig__=6

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/css/img/top_bg.png
GET /style/css/img/top_bg.png HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
If-Modified-Since: Fri, 23 Feb 2018 05:56:02 GMT
If-None-Match: "6ba86efc6aacd31:69a"
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521497272955%2C%20%22vd%22%3A%205%2C%20%22expires%22%3A%201521482331423%7D; __51cke__=; __51laig__=7

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/css/img/logo.png
GET /style/css/img/logo.png HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
If-Modified-Since: Fri, 23 Feb 2018 05:56:02 GMT
If-None-Match: "93074fc6aacd31:69a"
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521497272955%2C%20%22vd%22%3A%205%2C%20%22expires%22%3A%201521482331423%7D; __51cke__=; __51laig__=7

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/images/img/tc03.png
GET /style/images/img/tc03.png HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521497272955%2C%20%22vd%22%3A%205%2C%20%22expires%22%3A%201521482331423%7D; __51cke__=; __51laig__=7

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/img/gicon-nmw.jpg
GET /style/img/gicon-nmw.jpg HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
If-Modified-Since: Fri, 23 Feb 2018 05:56:05 GMT
If-None-Match: "503738fe6aacd31:69a"
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521497272955%2C%20%22vd%22%3A%205%2C%20%22expires%22%3A%201521482331423%7D; __51cke__=; __51laig__=7

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/images/img/btn_left07.png
GET /style/images/img/btn_left07.png HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521513134903%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201521514934903%7D; __51cke__=; __51laig__=8

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/images/img/btn_right09.png
GET /style/images/img/btn_right09.png HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521513134903%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201521514934903%7D; __51cke__=; __51laig__=8

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/images/img/tc03.png
GET /style/images/img/tc03.png HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521513134903%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201521514934903%7D; __51cke__=; __51laig__=8

URL专业沙箱检测 -> http://ia.51.la/go1?id=19375525&rt=1521476366749&rl=800*600&lang=zh-cn&ct=unknow&pf=1&ins=0&vd=2&ce=1&cd=24&ds=&ing=9&ekc=&sid=1521513134903&tt=%25E9%259B%2586%25E7%25BB%2593%25E6%258D%2595%25E9%25B1%25BC%25E6%25B8%25B8%25E6%2588%258F%25E5%25AE%2598%25E6%2596%25B9%25E6%25AD%25A3%25E7%2589%2588%25E4%25B8%258B%25E8%25BD%25BD&kw=&cu=http%253A%252F%252Fjihgama.yuanqi7.cn%253A99%252F%2523&pu=http%253A%252F%252Fjihgama.yuanqi7.cn%253A99%252F
GET /go1?id=19375525&rt=1521476366749&rl=800*600&lang=zh-cn&ct=unknow&pf=1&ins=0&vd=2&ce=1&cd=24&ds=&ing=9&ekc=&sid=1521513134903&tt=%25E9%259B%2586%25E7%25BB%2593%25E6%258D%2595%25E9%25B1%25BC%25E6%25B8%25B8%25E6%2588%258F%25E5%25AE%2598%25E6%2596%25B9%25E6%25AD%25A3%25E7%2589%2588%25E4%25B8%258B%25E8%25BD%25BD&kw=&cu=http%253A%252F%252Fjihgama.yuanqi7.cn%253A99%252F%2523&pu=http%253A%252F%252Fjihgama.yuanqi7.cn%253A99%252F HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: ia.51.la
Connection: Keep-Alive

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/images/img/tc03.png
GET /style/images/img/tc03.png HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521513134903%2C%20%22vd%22%3A%203%2C%20%22expires%22%3A%201521481231110%7D; __51cke__=; __51laig__=10

URL专业沙箱检测 -> http://ia.51.la/go1?id=19375525&rt=1521503974095&rl=800*600&lang=zh-cn&ct=unknow&pf=1&ins=0&vd=5&ce=1&cd=24&ds=&ing=12&ekc=&sid=1521513134903&tt=%25E9%259B%2586%25E7%25BB%2593%25E6%258D%2595%25E9%25B1%25BC%25E6%25B8%25B8%25E6%2588%258F%25E5%25AE%2598%25E6%2596%25B9%25E6%25AD%25A3%25E7%2589%2588%25E4%25B8%258B%25E8%25BD%25BD&kw=&cu=http%253A%252F%252Fjihgama.yuanqi7.cn%253A99%252F%2523&pu=http%253A%252F%252Fjihgama.yuanqi7.cn%253A99%252F
GET /go1?id=19375525&rt=1521503974095&rl=800*600&lang=zh-cn&ct=unknow&pf=1&ins=0&vd=5&ce=1&cd=24&ds=&ing=12&ekc=&sid=1521513134903&tt=%25E9%259B%2586%25E7%25BB%2593%25E6%258D%2595%25E9%25B1%25BC%25E6%25B8%25B8%25E6%2588%258F%25E5%25AE%2598%25E6%2596%25B9%25E6%25AD%25A3%25E7%2589%2588%25E4%25B8%258B%25E8%25BD%25BD&kw=&cu=http%253A%252F%252Fjihgama.yuanqi7.cn%253A99%252F%2523&pu=http%253A%252F%252Fjihgama.yuanqi7.cn%253A99%252F HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: ia.51.la
Connection: Keep-Alive

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/images/img/tc03.png
GET /style/images/img/tc03.png HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521513134903%2C%20%22vd%22%3A%205%2C%20%22expires%22%3A%201521505774095%7D; __51cke__=; __51laig__=12

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/images/img/tc03.png
GET /style/images/img/tc03.png HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521513134903%2C%20%22vd%22%3A%207%2C%20%22expires%22%3A%201521492224547%7D; __51cke__=; __51laig__=14

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/images/img/btn_right09.png
GET /style/images/img/btn_right09.png HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521513134903%2C%20%22vd%22%3A%207%2C%20%22expires%22%3A%201521492224547%7D; __51cke__=; __51laig__=14

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/images/img/btn_left07.png
GET /style/images/img/btn_left07.png HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521513134903%2C%20%22vd%22%3A%208%2C%20%22expires%22%3A%201521464607763%7D; __51cke__=; __51laig__=15

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/images/img/tc03.png
GET /style/images/img/tc03.png HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521513134903%2C%20%22vd%22%3A%208%2C%20%22expires%22%3A%201521464607763%7D; __51cke__=; __51laig__=15

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/images/img/btn_right09.png
GET /style/images/img/btn_right09.png HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521513134903%2C%20%22vd%22%3A%208%2C%20%22expires%22%3A%201521464607763%7D; __51cke__=; __51laig__=15

URL专业沙箱检测 -> http://ia.51.la/go1?id=19375525&rt=1521470216395&rl=800*600&lang=zh-cn&ct=unknow&pf=1&ins=0&vd=9&ce=1&cd=24&ds=&ing=16&ekc=&sid=1521513134903&tt=%25E9%259B%2586%25E7%25BB%2593%25E6%258D%2595%25E9%25B1%25BC%25E6%25B8%25B8%25E6%2588%258F%25E5%25AE%2598%25E6%2596%25B9%25E6%25AD%25A3%25E7%2589%2588%25E4%25B8%258B%25E8%25BD%25BD&kw=&cu=http%253A%252F%252Fjihgama.yuanqi7.cn%253A99%252F%2523&pu=http%253A%252F%252Fjihgama.yuanqi7.cn%253A99%252F
GET /go1?id=19375525&rt=1521470216395&rl=800*600&lang=zh-cn&ct=unknow&pf=1&ins=0&vd=9&ce=1&cd=24&ds=&ing=16&ekc=&sid=1521513134903&tt=%25E9%259B%2586%25E7%25BB%2593%25E6%258D%2595%25E9%25B1%25BC%25E6%25B8%25B8%25E6%2588%258F%25E5%25AE%2598%25E6%2596%25B9%25E6%25AD%25A3%25E7%2589%2588%25E4%25B8%258B%25E8%25BD%25BD&kw=&cu=http%253A%252F%252Fjihgama.yuanqi7.cn%253A99%252F%2523&pu=http%253A%252F%252Fjihgama.yuanqi7.cn%253A99%252F HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: ia.51.la
Connection: Keep-Alive

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/images/img/tc03.png
GET /style/images/img/tc03.png HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521513134903%2C%20%22vd%22%3A%209%2C%20%22expires%22%3A%201521472016395%7D; __51cke__=; __51laig__=16

URL专业沙箱检测 -> http://ia.51.la/go1?id=19375525&rt=1521475657611&rl=800*600&lang=zh-cn&ct=unknow&pf=1&ins=0&vd=10&ce=1&cd=24&ds=&ing=17&ekc=&sid=1521513134903&tt=%25E9%259B%2586%25E7%25BB%2593%25E6%258D%2595%25E9%25B1%25BC%25E6%25B8%25B8%25E6%2588%258F%25E5%25AE%2598%25E6%2596%25B9%25E6%25AD%25A3%25E7%2589%2588%25E4%25B8%258B%25E8%25BD%25BD&kw=&cu=http%253A%252F%252Fjihgama.yuanqi7.cn%253A99%252F%2523&pu=http%253A%252F%252Fjihgama.yuanqi7.cn%253A99%252F
GET /go1?id=19375525&rt=1521475657611&rl=800*600&lang=zh-cn&ct=unknow&pf=1&ins=0&vd=10&ce=1&cd=24&ds=&ing=17&ekc=&sid=1521513134903&tt=%25E9%259B%2586%25E7%25BB%2593%25E6%258D%2595%25E9%25B1%25BC%25E6%25B8%25B8%25E6%2588%258F%25E5%25AE%2598%25E6%2596%25B9%25E6%25AD%25A3%25E7%2589%2588%25E4%25B8%258B%25E8%25BD%25BD&kw=&cu=http%253A%252F%252Fjihgama.yuanqi7.cn%253A99%252F%2523&pu=http%253A%252F%252Fjihgama.yuanqi7.cn%253A99%252F HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: ia.51.la
Connection: Keep-Alive

URL专业沙箱检测 -> http://jihgama.yuanqi7.cn:99/style/images/img/tc03.png
GET /style/images/img/tc03.png HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: jihgama.yuanqi7.cn:99
Connection: Keep-Alive
Cookie: __tins__19375525=%7B%22sid%22%3A%201521513134903%2C%20%22vd%22%3A%2010%2C%20%22expires%22%3A%201521477457611%7D; __51cke__=; __51laig__=17

URL专业沙箱检测 -> http://ia.51.la/go1?id=19375525&rt=1521481199778&rl=800*600&lang=zh-cn&ct=unknow&pf=1&ins=0&vd=11&ce=1&cd=24&ds=&ing=18&ekc=&sid=1521513134903&tt=%25E9%259B%2586%25E7%25BB%2593%25E6%258D%2595%25E9%25B1%25BC%25E6%25B8%25B8%25E6%2588%258F%25E5%25AE%2598%25E6%2596%25B9%25E6%25AD%25A3%25E7%2589%2588%25E4%25B8%258B%25E8%25BD%25BD&kw=&cu=http%253A%252F%252Fjihgama.yuanqi7.cn%253A99%252F%2523&pu=http%253A%252F%252Fjihgama.yuanqi7.cn%253A99%252F
GET /go1?id=19375525&rt=1521481199778&rl=800*600&lang=zh-cn&ct=unknow&pf=1&ins=0&vd=11&ce=1&cd=24&ds=&ing=18&ekc=&sid=1521513134903&tt=%25E9%259B%2586%25E7%25BB%2593%25E6%258D%2595%25E9%25B1%25BC%25E6%25B8%25B8%25E6%2588%258F%25E5%25AE%2598%25E6%2596%25B9%25E6%25AD%25A3%25E7%2589%2588%25E4%25B8%258B%25E8%25BD%25BD&kw=&cu=http%253A%252F%252Fjihgama.yuanqi7.cn%253A99%252F%2523&pu=http%253A%252F%252Fjihgama.yuanqi7.cn%253A99%252F HTTP/1.1
Accept: */*
Referer: http://jihgama.yuanqi7.cn:99/
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: ia.51.la
Connection: Keep-Alive

SMTP 流量

无SMTP流量.

IRC 流量

无IRC请求.

ICMP 流量

无ICMP流量.

CIF 报告

无 CIF 结果

网络警报

Timestamp Source IP Source Port Destination IP Destination Port Protocol SID Signature Category
2018-03-19 09:13:27.751151+0800 27.148.139.192 80 192.168.122.202 49218 TCP 2012692 ET POLICY Microsoft user-agent automated process response to automated request A Network Trojan was detected
2018-03-19 09:14:03.200619+0800 192.168.122.202 49271 14.17.102.100 80 TCP 2260001 SURICATA Applayer Wrong direction first Data Generic Protocol Command Decode
2018-03-19 09:14:16.696424+0800 192.168.122.202 49282 14.17.102.100 80 TCP 2260001 SURICATA Applayer Wrong direction first Data Generic Protocol Command Decode
2018-03-19 09:14:22.498271+0800 192.168.122.202 49286 14.17.102.100 80 TCP 2260001 SURICATA Applayer Wrong direction first Data Generic Protocol Command Decode
2018-03-19 09:14:30.655479+0800 192.168.122.202 49296 14.17.102.100 80 TCP 2260001 SURICATA Applayer Wrong direction first Data Generic Protocol Command Decode
2018-03-19 09:14:34.926156+0800 192.168.122.202 49300 14.17.102.100 80 TCP 2260001 SURICATA Applayer Wrong direction first Data Generic Protocol Command Decode

TLS

No TLS

Suricata HTTP

No Suricata HTTP

未发现网络提取文件
文件名 wg01[1].jpg
相关文件
C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IDL4J1KW\wg01[1].jpg
文件大小 25413 字节
文件类型 JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 260x200, frames 3
MD5 722b69526e94fac77883d705673ca93c
SHA1 188862ceac4f240d4b8e713804f999761cc386ba
SHA256 42cffc45dee79a11fcda5d63eef778671527a506eeacbb00b2bc442ecbe48769
CRC32 8DF5D15F
Ssdeep 384:ye3WXqfrCO2xGgaoS6Jnj8MLAvQXJZk6qSM4uDV+MdQFuxAfiWBFSyjmWzxFNx8:9hcGge6Jj8MT5WwSV+MnSBfRv8
下载提交魔盾安全分析
文件名 g06[1].jpg
相关文件
C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HEL4YQ7U\g06[1].jpg
文件大小 88411 字节
文件类型 JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=450, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=800], baseline, precision 8, 260x180, frames 3
MD5 6e0cb7fcd54558a4e0f4ae0e3a97c707
SHA1 c8d7a8d4863987b312d2e895c5e8ada0feee1aac
SHA256 9644e801280a1659446d240494d0b52400c9004ccce300f3fe69a9ceb00c8aab
CRC32 B81DC7C5
Ssdeep 1536:E65Pxs65PxA3B+HRNZargb7xNuLw0coWaTgEv8mTpKu6FGZGLJ7l:NVxlVxr9arfHB0m/6FSGl7l
下载提交魔盾安全分析
文件名 g07[1].jpg
相关文件
C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EHDRIWWS\g07[1].jpg
文件大小 74624 字节
文件类型 JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC (Windows), datetime=2017:07:13 17:26:25], baseline, precision 8, 260x180, frames 3
MD5 caeff980dd67363acad846c230471599
SHA1 a01913d291ad1417f997bc15a787711e6dafdb0e
SHA256 877ff58b78a13add0688080c9348b2a38756cfe23655943f04d65767c91ce41c
CRC32 337C9E5B
Ssdeep 1536:FrhOvKwCTOPrhOvKwCTOKM4tMHb4KQK9Tu4fjCKbw/8LHTE0hbcvkyf1Mcy2GmbM:p4CFKz4CFKX4tMWWTpfjCKs8jg0tcsyM
下载提交魔盾安全分析
文件名 g04[1].jpg
相关文件
C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IDL4J1KW\g04[1].jpg
文件大小 104783 字节
文件类型 JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2016:08:03 11:37:49], progressive, precision 8, 260x180, frames 3
MD5 98a70175ae067d1d96e1c14d9118db58
SHA1 ddcf562ce81f080c7edc204ef9918e8cae321545
SHA256 401b8159fd671d51a851cd682feef6d5cea81c28adfb0883def824748040a76c
CRC32 061045E2
Ssdeep 1536:svFFgDH6vFFgDH+vmRjX2AtQ47KR4OfGXB7JUeqi7yruc66munl39FrDw5lUDA:svFFA6vFFALRjXNBy4RjUPv66BnVrdU
下载提交魔盾安全分析
文件名 {D01DAEA1-2B12-11E8-BCEA-5254005E164C}.dat
相关文件
C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{D01DAEA1-2B12-11E8-BCEA-5254005E164C}.dat
文件大小 5632 字节
文件类型 Composite Document File V2 Document, Cannot read section info
MD5 15896acccbf495070b7c91984fa92de2
SHA1 ed908eaac4a0c0436145a09d2d00219a46d8f5e5
SHA256 5e51717dd294f9b76699271cf16b545d5b4f95924189f8d5a81bf5e6473604bd
CRC32 4B9DDEB7
Ssdeep 24:rIFA11GV8tWs2kfUChzllhNlZowabNlZoAWsG83:rqA1Gj5YhJlTowatoAWw3
下载提交魔盾安全分析
文件名 gicon-tq1[1].jpg
相关文件
C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CB4GP22D\gicon-tq1[1].jpg
文件大小 7580 字节
文件类型 JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 156x111, frames 3
MD5 2f8d76a72b3467ca57c1aa00e4dc94d0
SHA1 8e9827531bc4e871a274335a655943a6d7511772
SHA256 d647d350ad11aa7d13e31ddca294cb30a199ffa6732783f1798528eb2c3b42d2
CRC32 6A9430C8
Ssdeep 192:cjxlGUZUOVrbCZsM5SkTcpS7UznPZE/dWv:otZrXCZt5Ypi+K/K
下载提交魔盾安全分析
文件名 {C6108041-2B12-11E8-BCEA-5254005E164C}.dat
相关文件
C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{C6108041-2B12-11E8-BCEA-5254005E164C}.dat
文件大小 5632 字节
文件类型 Composite Document File V2 Document, Cannot read section info
MD5 cfd02c2a6b84de25d674b1900d451063
SHA1 fa899be84e293454244f420c9e6e867ada3c14e4
SHA256 f80d26db25c1aa6996b33cdc1b89030e83e582858786b31a824505de657f0c01
CRC32 68E8BCE6
Ssdeep 24:rITAzUGV8tWs2kfUChzll6NlZowabNlZoAWsG83:rM7Gj5YhJl0owatoAWw3
下载提交魔盾安全分析
文件名 jquery.bannerd41dd41d[1].js
相关文件
C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IDL4J1KW\jquery.bannerd41dd41d[1].js
C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IDL4J1KW\index_v20b9e0b9e[1].css
C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IDL4J1KW\common_v20b9e0b9e[1].css
C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HEL4YQ7U\switchd41dd41d[1].js
文件大小 1569 字节
文件类型 HTML document, UTF-8 Unicode (with BOM) text, with CRLF, CR line terminators
MD5 1c94d34c67e803ab7b23024eb1ff62e3
SHA1 a2961ea507c5170865295bc022b02ef9ecec88bb
SHA256 086d4c37ea3ed04f84c8c784b210e529750bed59f1802ad4502f2f5fe5899c50
CRC32 629A89F1
Ssdeep 48:/x+YZ60bG+c0GFdVYb8D3NODl5eHQ5hDEcVEeZd/3aF6CNNr7ve8fwWInU6:/0YhbzYekcl58Q5hQcBZdiFrN0znU6
Yara
  • Rule to detect the no presence of any attachment
  • Rule to detect the no presence of any image
  • Rule to detect the presence of an or several urls
下载提交魔盾安全分析
文件名 {BFC29C01-2B12-11E8-BCEA-5254005E164C}.dat
相关文件
C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{BFC29C01-2B12-11E8-BCEA-5254005E164C}.dat
文件大小 5632 字节
文件类型 Composite Document File V2 Document, Cannot read section info
MD5 b919c37d09b271f18386aaee53f96f68
SHA1 bcf3212d24f7152dc7e3f0c3af8e9c0a504f1921
SHA256 ebdf0e787e025c549bfe5ae08b48a5e7912ff5e1eacba673eb0942b4e2fcf18b
CRC32 2FECE60E
Ssdeep 24:rI5AQuGV8tWs2kfUChzllhNlZowabNlZoAWsG83:r6CGj5YhJlTowatoAWw3
下载提交魔盾安全分析
文件名 gicon-nmw[1].jpg
相关文件
C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HEL4YQ7U\gicon-nmw[1].jpg
文件大小 36334 字节
文件类型 JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=450, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=800], baseline, precision 8, 156x111, frames 3
MD5 c4ccde71afdcf0de4a435e6d9ebb9241
SHA1 dd1158b5247d962ea4519488767846f4d4aaaead
SHA256 724238003668a6062af8049a358eae411d10b7a7378b8726c7d14398b12e97bf
CRC32 8BBBFC66
Ssdeep 768:N2eFuSzP12eFuSnME9W6u8DPyXoOc+Z4tH/O/PJ24:N2g2Mblu+PyXag4tO
下载提交魔盾安全分析
文件名 index.dat
相关文件
C:\Users\test\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012018032020180321\index.dat
文件大小 32768 字节
文件类型 Internet Explorer cache file version Ver 5.2
MD5 3e0ab3d6b7234eba6f78bc65192eaf00
SHA1 55feb3b925d92d7548d67355a0bb51719e5facd8
SHA256 821e87cc9f08c02c0cdd3fe4912906835d67b4939904cda4d4bc1a6d08d3e286
CRC32 9DABCAED
Ssdeep 12:qjmVHUS73ocNZ/FiBUw3omZ/Fi/UDU34lQq/llTLiBU:qj+ZmDblZ
下载提交魔盾安全分析
文件名 gicon-wzq[1].jpg
相关文件
C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EHDRIWWS\gicon-wzq[1].jpg
文件大小 51806 字节
文件类型 JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC (Windows), datetime=2017:07:13 17:31:19], baseline, precision 8, 156x111, frames 3
MD5 97444d4cb6b7c0867b354520da7198e9
SHA1 698688fef65f5ec7b8951372a06379add26420c6
SHA256 219546e4472a1802e31ded15e565d5c8665a2d5250fd5e743b5c8353837fcb0f
CRC32 5880DB6D
Ssdeep 768:NWuJij0DHdPVuJij0DHwHYyd22tX8zUOdR47FwEo7l06AEV9aCweDnjgj8q:LgIHygIHwHZMoGRoF+lp3Lo8q
下载提交魔盾安全分析
文件名 RecoveryStore.{9B1B2FC3-2B12-11E8-BCEA-5254005E164C}.dat
相关文件
C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{9B1B2FC3-2B12-11E8-BCEA-5254005E164C}.dat
文件大小 9216 字节
文件类型 Composite Document File V2 Document, Cannot read section info
MD5 503092557c096189f7c5555d08017356
SHA1 0ec53f85870870e0159096390a0e0606e6ecd750
SHA256 18be641140823d72cd3dc8537cdd6302b61eeaff4cef378c1a94afbca6c5132d
CRC32 9FB80F79
Ssdeep 48:r4ZGpF9TGpF13rzDOLxpJekuiQUojbPojWJ8oBFWtXmt:c09qxOLxpJekuiQUWZCQWtWt
下载提交魔盾安全分析
文件名 {A462CC02-2B12-11E8-BCEA-5254005E164C}.dat
相关文件
C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{A462CC02-2B12-11E8-BCEA-5254005E164C}.dat
文件大小 5632 字节
文件类型 Composite Document File V2 Document, Cannot read section info
MD5 6065be1d3b49b06d9a437beea280e93b
SHA1 fecb3e3c0875b786555b136904dc8dba4be1b03a
SHA256 97c690b8bc384b3ea3a8bcd16fd3a1a2838d549f9ea055a297897f2eed664dc8
CRC32 D1D7038E
Ssdeep 24:rI/A9xGV8tWs2kfUChzllhNlZowabNlZoAWsG83:rIAxGj5YhJlTowatoAWw3
下载提交魔盾安全分析
文件名 {DCDACA60-2B12-11E8-BCEA-5254005E164C}.dat
相关文件
C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{DCDACA60-2B12-11E8-BCEA-5254005E164C}.dat
文件大小 5632 字节
文件类型 Composite Document File V2 Document, Cannot read section info
MD5 c2f540de8635e50dc1a74e46d1eb1cfe
SHA1 b2fad16da61b14a89c1dc6c233e2ddf393d3afed
SHA256 b60b7c57ae9b4851d0967bdab03456a9e8f989699e82e7ec14fda61c7d7ce01c
CRC32 7FD4A86C
Ssdeep 24:rIoiAqGV8tWs2kfUChzll6NlZowabNlZoAWsG83:r8xGj5YhJl0owatoAWw3
下载提交魔盾安全分析
文件名 gicon-13[1].jpg
相关文件
C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HEL4YQ7U\gicon-13[1].jpg
C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HEL4YQ7U\gicon-fish[1].jpg
文件大小 10571 字节
文件类型 JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 156x111, frames 3
MD5 b4befb785729a6db6a3d29843d26b213
SHA1 c224b89d4f2611f8cc89f4640a5252be6b22ca27
SHA256 c0e6175ce5362df7e4abadb45fea154d5f721ba4934ebd96f25ebb4b25b2617b
CRC32 B94012DE
Ssdeep 192:vtMT8pOXo2h4GHJ4D+lx0jI5wHTW0hAdvswgJwoJvqRDLef8+cA7ceyAaG7m:vtMwpOXo2h1x0jPHnhAQJIeQEL77m
下载提交魔盾安全分析
文件名 {B1FD47A2-2B12-11E8-BCEA-5254005E164C}.dat
相关文件
C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{B1FD47A2-2B12-11E8-BCEA-5254005E164C}.dat
文件大小 5632 字节
文件类型 Composite Document File V2 Document, Cannot read section info
MD5 0489b73ba4e1b83402417f51808d9f81
SHA1 2aff8e062556c0df0907fcefd1cb2d9e5652c4de
SHA256 4c42017b56229e34d7bdc488a1afb50c40093487e3400c3ed667fdc93570577e
CRC32 3D401C82
Ssdeep 24:rIbbAWGV8tWs2kfUChzllhNlZowabNlZoAWsG83:rYZGj5YhJlTowatoAWw3
下载提交魔盾安全分析
文件名 h-baohu-tit[1].gif
相关文件
C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IDL4J1KW\h-baohu-tit[1].gif
文件大小 4630 字节
文件类型 GIF image data, version 89a, 245 x 70
MD5 cdb8ca97e7919a9f4c2ba1964dfbd4cb
SHA1 c0ec751cbd6ff2a25b969586b3636df46e0e92cf
SHA256 22ff78424c1157bcbb75c72d69db15b1f45e2c09d92b0756fcf9c87d018e39b4
CRC32 B1803EA1
Ssdeep 96:VC8iVdLBLue2GxYqcWbRvp+MAYpN/wA/4rNK5OprvmQ9:o8ivBLuGYqcWRvxmAAroEdvmu
下载提交魔盾安全分析
文件名 side-game-bg[1].png
相关文件
C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HEL4YQ7U\side-game-bg[1].png
文件大小 107951 字节
文件类型 PNG image data, 245 x 447, 8-bit/color RGBA, non-interlaced
MD5 2a255d1d7a4286a4bc2c60843c7d19bd
SHA1 d386a90f636fd79760effb4666742d0de3b0976b
SHA256 2f37a9f0c800b0c3105968fd3eea19e757229f1ce1a7a9cfd48f6f6ac6f659e9
CRC32 809E2DDE
Ssdeep 3072:SwnOYbx+DCAy0RP8eL1GfX00fWLUqilTLRLThMv7zsF:SwOHAK8eIRfkqp9B+74F
下载提交魔盾安全分析
文件名 {BFC29C00-2B12-11E8-BCEA-5254005E164C}.dat
相关文件
C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{BFC29C00-2B12-11E8-BCEA-5254005E164C}.dat
文件大小 5632 字节
文件类型 Composite Document File V2 Document, Cannot read section info
MD5 320c3d3a183aa8efc15b5dd2b1b8fd4d
SHA1 ff6c670908299c0684f9e33321c0bb850559b4df
SHA256 351c203def1c266dc141185fc8ba3b95ea26e93c63537f45995d11194342c9fd
CRC32 503B1AC9
Ssdeep 24:rI6AI1GV8tWs2kfUChzllhNlZowabNlZoAWsG83:rpl1Gj5YhJlTowatoAWw3
下载提交魔盾安全分析
文件名 {D01DAEA0-2B12-11E8-BCEA-5254005E164C}.dat
相关文件
C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{D01DAEA0-2B12-11E8-BCEA-5254005E164C}.dat
文件大小 5632 字节
文件类型 Composite Document File V2 Document, Cannot read section info
MD5 89e0c42a0cdb721527e1a748feec9fb2
SHA1 aba0aefbe7e21d72814bf8981682e9dd904beef8
SHA256 7f244aadcb913f399247a73ec4dfc9c55caee6dbd839da2a5ac3f21b23c42982
CRC32 9BE49F60
Ssdeep 24:rIFAQ1GV8tWs2kfUChzll6NlZowabNlZoAWsG83:rKDGj5YhJl0owatoAWw3
下载提交魔盾安全分析
文件名 {DCDACA62-2B12-11E8-BCEA-5254005E164C}.dat
相关文件
C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{DCDACA62-2B12-11E8-BCEA-5254005E164C}.dat
文件大小 4608 字节
文件类型 Composite Document File V2 Document, Cannot read section info
MD5 741b579ed28eb41a026434b42d613841
SHA1 461c710229f7904b81e487bb30c1fe9e0d2ba830
SHA256 1b3bef41247aa7f609cbb1d3da90c176c33a30eab2d077bedd694979cbaf72ce
CRC32 DF83C1EC
Ssdeep 12:rlfFnwrEgmfR16FnIrEgmf51qjNlYfOo3+/Nlb9oTykyGOlcJ:rMGNGcNljowNlZo
下载提交魔盾安全分析
文件名 {A462CC03-2B12-11E8-BCEA-5254005E164C}.dat
相关文件
C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{A462CC03-2B12-11E8-BCEA-5254005E164C}.dat
文件大小 5632 字节
文件类型 Composite Document File V2 Document, Cannot read section info
MD5 f6e9921164c17f2dcbb3a7a7b7eb4c7e
SHA1 a779ba2f4310a1f2ed88e0ac4c36a6dc2999210e
SHA256 d72d5acf59c905d39f0fc35e237f1f801f7a8f2593e684371f36d44139dabe9c
CRC32 B5622802
Ssdeep 24:rI3A4GV8tWs2kfUChzllhNlZokabNlZoAWsG83:r4rGj5YhJlTokatoAWw3
下载提交魔盾安全分析
文件名 g05[1].jpg
相关文件
C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EHDRIWWS\g05[1].jpg
文件大小 70497 字节
文件类型 JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC (Windows), datetime=2017:07:13 17:25:39], baseline, precision 8, 260x180, frames 3
MD5 4abbd82905adfe4c1a82ade8a4fb7cbf
SHA1 14be206f704591ed44077d68581136c3e9e6a5ec
SHA256 8f409ee0af157aa9c509bd2bc00e630f816e97e6ecb893e17e5743203595e75a
CRC32 9841F568
Ssdeep 1536:U3JTH9g3JTH9YUH1PfIINRpY1NqccDHWq:cJuJpZfI87Yqccb7
下载提交魔盾安全分析
文件名 logo[1].png
相关文件
C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CB4GP22D\logo[1].png
文件大小 25445 字节
文件类型 PNG image data, 349 x 70, 8-bit/color RGB, non-interlaced
MD5 938423501a42d926d3333b456d17c4bf
SHA1 fe77f80a1a965a8672c8159b61f7b7a88c6d5da4
SHA256 f0e1b7941cf5151fe6fb1e637a564dd26c3e865142df597cf0098c60375514e6
CRC32 EFDCB3B1
Ssdeep 768:J9LNJEm7DEdWbhWIZI0ky/XIxPbN5AvGKS:J9hJEE1FWIKLxvAvGKS
下载提交魔盾安全分析
文件名 {B1FD47A3-2B12-11E8-BCEA-5254005E164C}.dat
相关文件
C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{B1FD47A3-2B12-11E8-BCEA-5254005E164C}.dat
文件大小 5632 字节
文件类型 Composite Document File V2 Document, Cannot read section info
MD5 d58aa03b3d5c95de5064ae794e27e8e1
SHA1 6c49d0cdc7b439ed5c795ee44b194bc879c53363
SHA256 dfcdcc205ea13d2ab27748888e6249d60badaf973d53cd6cbeab00b7ee332a29
CRC32 51616DED
Ssdeep 24:rIOAdGV8tWs2kfUChzll6NlZowabNlZoAWsG83:rJuGj5YhJl0owatoAWw3
下载提交魔盾安全分析
文件名 h-announce-tit[1].gif
相关文件
C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HEL4YQ7U\h-announce-tit[1].gif
文件大小 3595 字节
文件类型 GIF image data, version 89a, 245 x 70
MD5 66cf6464f7b3f79b4a80a9e9fdc0362f
SHA1 9ecc405a5e4ee6319c2ec53e08789451f672a1cd
SHA256 65634ce9195113699b6325e9d2ef7dc7f6da450aa6742a7638d513f6a68ff994
CRC32 26A71E7F
Ssdeep 96:3Wljz5A82U1tfBAWUD9XNOs0lZswzW3YFxyWY9:3WljtRJnUD/OBZsLqsWY9
下载提交魔盾安全分析
文件名 wg02[1].jpg
相关文件
C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EHDRIWWS\wg02[1].jpg
文件大小 17143 字节
文件类型 JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 260x200, frames 3
MD5 2fbb41c053d59ed0b75f4ae791237839
SHA1 9d10e95b49345fcc27e230012e16953744461a01
SHA256 f33a1221729c63faeec4ea5c78c6e8c9cfccfc2fbec5bc4240982d9fd91893d3
CRC32 B12E6413
Ssdeep 384:gTeekqMDVtI6RIpwqssmNlwA9acTI+/1t5K5/xQ:g2DEs0a1UQ
下载提交魔盾安全分析
文件名 {D01DAEA3-2B12-11E8-BCEA-5254005E164C}.dat
相关文件
C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{D01DAEA3-2B12-11E8-BCEA-5254005E164C}.dat
文件大小 5632 字节
文件类型 Composite Document File V2 Document, Cannot read section info
MD5 7eba6c3a5805365ac88cac2c81d15a68
SHA1 adcd2d82e7df39f475bc081e5a5202f544a1953b
SHA256 a9c924811bf03d5da099ff06e37b6942fd4a1dd2ad6dc7fce6b260e157845933
CRC32 27E82CA4
Ssdeep 24:rIwAKGV8tWs2kfUChzllhNlZowabNlZoAWsG83:rPJGj5YhJlTowatoAWw3
下载提交魔盾安全分析
文件名 gicon-3d1[1].jpg
相关文件
C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EHDRIWWS\gicon-3d1[1].jpg
C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EHDRIWWS\gicon-jq1[1].jpg
C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EHDRIWWS\gicon-llk[1].jpg
C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CB4GP22D\gicon-xq1[1].jpg
文件大小 8353 字节
文件类型 JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 156x111, frames 3
MD5 2997db960270b7ef14dad3abe94f5933
SHA1 5c4d9b8170fe741c4aab356d4935a3602252caf1
SHA256 19d67a953102ea6799c78a745214b4dc2b88f89ba7a399a5195dedb4b7fb1294
CRC32 1F1A16F5
Ssdeep 192:FlVktrpMs/3vOzohQMLYkZCrXPycvHtL+y7hBn7JD:F7otMs/3MeQsYkqPyclL+GhR7J
下载提交魔盾安全分析
文件名 {D65D4AA1-2B12-11E8-BCEA-5254005E164C}.dat
相关文件
C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{D65D4AA1-2B12-11E8-BCEA-5254005E164C}.dat
文件大小 5632 字节
文件类型 Composite Document File V2 Document, Cannot read section info
MD5 1fddc75593872f73d46eb1db421b9f67
SHA1 9a3ceb2b6aea84fc529c026d3a3cbe2eaa08f2be
SHA256 c14d03a63310dd6031aaf470b601a27c4ec212bbf1e5f982394b15866f8cbe98
CRC32 5DB874CA
Ssdeep 24:rIPA2GV8tWs2kfUChzllhNlZokabNlZoAWsG83:rExGj5YhJlTokatoAWw3
下载提交魔盾安全分析
文件名 wg04[1].jpg
相关文件
C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CB4GP22D\wg04[1].jpg
文件大小 16513 字节
文件类型 JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 260x200, frames 3
MD5 0e76883bc9b48ce7c526bcb050be98f5
SHA1 14f169e9488329453baebf4770b5a5a6ff75cc45
SHA256 45e45edad5cf79e98d4d8dbef4f4188de8b637792c4b27a67b2be5e7bdd286fd
CRC32 DCC7CD15
Ssdeep 384:W7Gu5jE9/eyOAep0/KzIdQJ7BeLIrzaokYCQQdSuD82R4T:W7Gu5jExeZ0/VQJ7BeEBkYCdS+4T
下载提交魔盾安全分析
文件名 576b8fc8358f1[1].jpg
相关文件
C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HEL4YQ7U\576b8fc8358f1[1].jpg
文件大小 180255 字节
文件类型 JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x260, frames 3
MD5 b3738c34ec17bb1a7e0e35b3b87b1f26
SHA1 13180fd6115d5547d396fd82d9eb1b0fd17bad61
SHA256 aaecd68102885fe74dfac71f18dfb0dc98c806817b6854b4be13bd6620db6ebb
CRC32 DB186888
Ssdeep 3072:6vKI+5t8rbXDOEOSRrMgryVzWtdGIt0q9PuSH5zKhvPzOi:6vK58rbXDXzZuGxiYPuEQnH
下载提交魔盾安全分析
文件名 g-hot-ico[1].gif
相关文件
C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CB4GP22D\g-hot-ico[1].gif
文件大小 4631 字节
文件类型 GIF image data, version 89a, 1120 x 39
MD5 95cb3ba8cd68ed16e12c14418a69996f
SHA1 e4914c67a01957aaa9b2c6c169ef86880d5253dc
SHA256 ae5903f4dac0d134ebff081e5d616540d74840a7a9805410c0915cfb816ed4e0
CRC32 60FBA0CF
Ssdeep 96:TT/42IsKtahnFY0aPRCeOPVVB5kHjvnPsSTLrlKS:T/6iFYVzSVKHj/hnRZ
下载提交魔盾安全分析
文件名 ft_logo0624[1].png
相关文件
C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CB4GP22D\ft_logo0624[1].png
文件大小 20422 字节
文件类型 PNG image data, 512 x 62, 8-bit/color RGBA, non-interlaced
MD5 14b5bbf20e2e3da04042bb227de1c959
SHA1 6f414bc4b687b16e4f12eaafbc30edc2861057b4
SHA256 ef1244988edb5fbf3b4c1cc71e1f5072182e87f26ffb3ad07c1255de721e13dc
CRC32 1079C126
Ssdeep 384:Eu50wzHKiXbGwQUxe1DRbRInZ/SLdJj4Gw66jf4Jm4ZZY+9BW2ZZc:DUirzoZqCdJHz6j4JmJ2I20
下载提交魔盾安全分析
文件名 {C6108040-2B12-11E8-BCEA-5254005E164C}.dat
相关文件
C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{C6108040-2B12-11E8-BCEA-5254005E164C}.dat
文件大小 5632 字节
文件类型 Composite Document File V2 Document, Cannot read section info
MD5 01a982e7dca4750d10b662f4688365b8
SHA1 3a0d999d535d1c3cfa22f1a6d9301af4b9194b01
SHA256 6e5588524c16b6350b87c9887d33097da5faf05d0a7aa2c87da084a685a18d38
CRC32 581A3BAC
Ssdeep 24:rICAjGV8tWs2kfUChzllhNlZowabNlZoAWsG83:rt4Gj5YhJlTowatoAWw3
下载提交魔盾安全分析
文件名 gicon-nn[1].jpg
相关文件
C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HEL4YQ7U\gicon-nn[1].jpg
文件大小 41815 字节
文件类型 JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=450, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=800], baseline, precision 8, 156x111, frames 3
MD5 f6dbec73e5f4ab0d76d0169e1b5842d5
SHA1 c2257305cb0175b8273cda71e624c42653a496aa
SHA256 c8402add9f91e613506430d7ae5a75b35745c576e91bee5d5df04b184efd32e5
CRC32 41203E83
Ssdeep 768:oC5WzS9bLdPBC5WzS9bLSjrEQtgA9d646dhLzxTRaKbU:oCszS1CszS0cA9d67hRTRa
下载提交魔盾安全分析
文件名 g02[1].jpg
相关文件
C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IDL4J1KW\g02[1].jpg
文件大小 82844 字节
文件类型 JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC (Windows), datetime=2017:06:26 18:08:07], baseline, precision 8, 260x180, frames 3
MD5 c087b1d2f85701faea0e23592c1d9aad
SHA1 93225f2732eacd9df203f088e51bdee2ed14d0a9
SHA256 2e160275da027b20e5f0f0404a7c9fc76636cdd0447525e71c3e1f58e530cf96
CRC32 A0F6F224
Ssdeep 1536:EbUOl2CbUOl2kWxMf0nmgdsxSzGoaWG2pwyoUcXAklDGke1IUDYq/D7rn7EqkI:EbBcCbBc5xMcnNmYzrNp6U3k9GkYzDYo
下载提交魔盾安全分析
文件名 ico[1].gif
相关文件
C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HEL4YQ7U\ico[1].gif
文件大小 3380 字节
文件类型 GIF image data, version 89a, 46 x 92
MD5 28f1fdefb9b85155fc891992e00960d9
SHA1 2042172bab6cb96a4a6204041e888791c199cc79
SHA256 e9364f1074c1709d5549b4c82ad1ae9f42ccd81c3f5c8f0fa07dbf312b1a3e6d
CRC32 C9672DBA
Ssdeep 96:2YzWY+3fw7ki0B9U2M/DK7w+5SmhsxNrQHG:2YzTw9bBKJ+AN3
下载提交魔盾安全分析
文件名 jg[1].jpg
相关文件
C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EHDRIWWS\jg[1].jpg
文件大小 9494 字节
文件类型 JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 210x61, frames 3
MD5 3d53ac8149df9809413feaf3cb491bbb
SHA1 3bff7ca6c21c8d55dd9fcf9e021773a789ac56db
SHA256 c8e584b014189589dc1944ca68c70c9938d3b280a63693cdbe6b7dbd28ba2ae2
CRC32 4AED1DF1
Ssdeep 192:+2HJ887VZ/u+yukUOCPFNcd5ANOWvGaX9o/wCQb3oeUBwCePvzBd0yxUYldpa42:+2HJ8AkU9PFNc/0O9tubaBfePvzsyuYs
下载提交魔盾安全分析
文件名 index.dat
相关文件
C:\Users\test\AppData\Roaming\Microsoft\Windows\IECompatCache\index.dat
文件大小 65536 字节
文件类型 Internet Explorer cache file version Ver 5.2
MD5 191d3d20f356bf520a7d1ed07b1bc08b
SHA1 bdba37ad96d8801e8d2c9e30e68afaf3822b0e4a
SHA256 d2eae7eeb07f08972ec78e59eaf73b6cfa48e92121748f61a394a28e33e36788
CRC32 BFF870C9
Ssdeep 384:wEEG/+oBMgfh3+EIOTcxi8kB+JuE1uPFykblh2F/0mjv3Bw2LI/u1sVdvM2zLOY4:wEEG/+xo
下载提交魔盾安全分析
文件名 wg03[1].jpg
相关文件
C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CB4GP22D\wg03[1].jpg
文件大小 17833 字节
文件类型 JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 260x200, frames 3
MD5 f2faab671b21d21982200019edbb86d5
SHA1 30857db0b80f5de77a454941a458f287b1bc5a79
SHA256 d2b55b01ec08ded3abdfd26f9775df5d0df4e06a4677456044eeeab26bc80aa8
CRC32 F80DEA86
Ssdeep 384:8vmapYArOgLN+M4cvne9YDhbv6emIEjEsaBkL0Eah1:Ha20OgLw6n0ubhmIEQFkozh1
下载提交魔盾安全分析
文件名 {DCDACA61-2B12-11E8-BCEA-5254005E164C}.dat
相关文件
C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{DCDACA61-2B12-11E8-BCEA-5254005E164C}.dat
文件大小 5632 字节
文件类型 Composite Document File V2 Document, Cannot read section info
MD5 0d140db819bd241edf0bb7a8cbf7305b
SHA1 44d662cfe0efe27d3e01297fd9d29ca95e3965e4
SHA256 291eca6afca8c7d48d62f94a182782cfbf826f10983017bad70372bf512bf88e
CRC32 E0F93C18
Ssdeep 24:rIIA8GV8tWs2kfUChzll6NlZowabNlZoAWsG83:rb/Gj5YhJl0owatoAWw3
下载提交魔盾安全分析
文件名 gicon-ddz[1].jpg
相关文件
C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EHDRIWWS\gicon-ddz[1].jpg
文件大小 36574 字节
文件类型 JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=450, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=800], baseline, precision 8, 156x111, frames 3
MD5 03940102f804a31cded7741f05567f03
SHA1 49eca012e02a04f516ddca90c7631b1e8f44078b
SHA256 dc0b89bdebfeb25064476cfa764f35662a6905c04a756a0f8e5c82d794bd5d24
CRC32 CC25F703
Ssdeep 768:pKplVKzcrPQKplVKzc31fXuPADh0zQ54z8xHoIW7kX6:pKp/Kzc0Kp/Kzc3Rh08FoIW/
下载提交魔盾安全分析
文件名 common_v2[1].css
相关文件
C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IDL4J1KW\common_v2[1].css
文件大小 41405 字节
文件类型 UTF-8 Unicode (with BOM) text, with very long lines, with CRLF, CR line terminators
MD5 f04eeadb95398498aaa31021f8089390
SHA1 a22309afa68aae944bc7ebf4354f51ad7f6b98cc
SHA256 6340cf9391c79f6194d0ae50d3724ce5add629a41f461e7d6427d1f6341646c1
CRC32 8D1B03B8
Ssdeep 384:7XYYmCAMpptg//NVZESwAyOKx7ShzUJrshf9uRRl0X4FlqPeAYnfXqyFxBkgudAt:7XtmCAEptsmrGKxCR+
下载提交魔盾安全分析
文件名 index_v2[1].css
相关文件
C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HEL4YQ7U\index_v2[1].css
文件大小 23869 字节
文件类型 UTF-8 Unicode (with BOM) text, with very long lines, with CRLF, CR line terminators
MD5 273e504ea87aed838e8c8538fe1fcf3d
SHA1 bd145f199f51e653ce7a432be8702298a6e732a7
SHA256 7bfb9d1348dd52800bf4de1321aeb7521afe97ff5f9003d15abf52a5989a68d6
CRC32 0AD8B3C0
Ssdeep 384:rW48BG25dFkuhPB8hgHnesrazaEDEzXgA6FRulq:2HfMenFlq
下载提交魔盾安全分析
文件名 index.dat
相关文件
C:\Users\test\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat
文件大小 262144 字节
文件类型 Internet Explorer cache file version Ver 5.2
MD5 fbe6ba880d1f6cadfd771536120f2c73
SHA1 34b1a30160c6c7675a5c69b62d98661ab7a494bb
SHA256 a2cdabb3fc43f2e94ca47fac764eea7819768bdf094690a6369be41fc4a5fd01
CRC32 E94B92FD
Ssdeep 768:pFFwZHojCtOlWNw3nsiMsieuugxdKOri:rFwZIjCtkWm3siMbeuugxdKoi
下载提交魔盾安全分析
文件名 ar_right[1].gif
相关文件
C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IDL4J1KW\ar_right[1].gif
文件大小 1518 字节
文件类型 GIF image data, version 89a, 23 x 22
MD5 29c2be9eaca62cefd0bdc5d4130c2320
SHA1 459d39050da851b5c670c78ad759e22b78c27ae1
SHA256 3a8ad22ebdf5e8f2d043e1b2e1f6f0fe59654c7b5e495ee877975120212e77dc
CRC32 E4BE3E0D
Ssdeep 24:Tal1hiyWwjx82lY2T37VhCBKeC5yJ3Vu5CsK0C2GY8gQn5vM7fsmRfKdy:UuNn2vjcBJ3yz/L8gcyRRfKdy
下载提交魔盾安全分析
文件名 {D01DAEA2-2B12-11E8-BCEA-5254005E164C}.dat
相关文件
C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{D01DAEA2-2B12-11E8-BCEA-5254005E164C}.dat
文件大小 5632 字节
文件类型 Composite Document File V2 Document, Cannot read section info
MD5 0454bfb4afc3509e38011c52d149c329
SHA1 63047ea0e6b8a2bf210d55e620e31561a0514b49
SHA256 b8a159bdfaeb616beb2282d74d2502146a4a918e9d8167a003e9329278c25398
CRC32 6CE263AE
Ssdeep 24:rI2AlGV8tWs2kfUChzllhNlZowabNlZoAWsG83:rlqGj5YhJlTowatoAWw3
下载提交魔盾安全分析
文件名 index.dat
相关文件
C:\Users\test\AppData\Local\Microsoft\Feeds Cache\index.dat
文件大小 32768 字节
文件类型 Internet Explorer cache file version Ver 5.2
MD5 0aee387ca0a52dcdd8f8a29ea76edb42
SHA1 5df81547dcadb2a7b8bc689da8e1383ba1a84cb9
SHA256 c31bc37e102b70a472837d530ec80bdaea28b0fefda3e9aa8c8cda98c4200c4e
CRC32 B451CA0B
Ssdeep 12:qjtSaFpbZli3zIoYDPO7em4GZj03W/cKYDPOCG5A30WUsOXQDG9YRm4GZ5:qj4avEIoYTCebGZ7ZYTlEJ0oQQ4bGZ
魔盾安全分析结果 2.0分析时间:2016-11-06 20:10:20查看分析报告
下载提交魔盾安全分析
文件名 575664e1aa564[1].jpg
相关文件
C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IDL4J1KW\575664e1aa564[1].jpg
文件大小 164899 字节
文件类型 JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x260, frames 3
MD5 ef21b20bd16353799581c9fe0ab63bdd
SHA1 877e172215e532728cd18fa7dd172f92956596e3
SHA256 23989af1d60d490807425f3e6ed0d25a2fbe7a52acc93d9eb03d3bc793cc1a7f
CRC32 3D0BBAB5
Ssdeep 3072:nZS0qlEhE/XDrh1I02COID2iCBxD02NSrI+B5r0Q22PlPOUrKTqZ:c0qlE2brh0LptNSVJbGTqZ
下载提交魔盾安全分析
文件名 index.dat
相关文件
C:\Users\test\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012018032020180321\index.dat
文件大小 32768 字节
文件类型 Internet Explorer cache file version Ver 5.2
MD5 6069316c06c289e260a89b9b695272e7
SHA1 9b4043b46bfcca52e1b6c56c208b48afb5121dc8
SHA256 36f481db286fc9e0b91ba3500bc56e28b83d441fe24902e258e83e1caf4c581c
CRC32 494C1C8F
Ssdeep 12:qjR31ll/US73Up4fXiBUw33EMi/UDU3sOYuiBU:qjRF/1R/QD0p
下载提交魔盾安全分析
文件名 g01[1].jpg
相关文件
C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EHDRIWWS\g01[1].jpg
文件大小 22801 字节
文件类型 JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 260x180, frames 3
MD5 2d095e9ee8c0554f24d3bb413a44e562
SHA1 7553e38d0696360e2d05112cb29a7d78d9c2e236
SHA256 4af46e70801f37eeefd2f8bc2002ef57feabd03b0d7d6cd28a49c8a1aec154e1
CRC32 0B1CAD78
Ssdeep 384:4himlSR4Hxh65+gPgTQanAgwOvLLTmT5W7n5msulZfcMQFl/jkDN1AKezB:4YmCyha+gP5lULuT5Gssul9wkphuB
下载提交魔盾安全分析
文件名 {9B1B2FC4-2B12-11E8-BCEA-5254005E164C}.dat
相关文件
C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{9B1B2FC4-2B12-11E8-BCEA-5254005E164C}.dat
文件大小 5120 字节
文件类型 Composite Document File V2 Document, Cannot read section info
MD5 b2b317395fb4e407d5a4c91acf05282d
SHA1 6c9c382311550504e3e1b5930c6da07cb78f5c55
SHA256 15233ad1c0ce577d6e29ad32502f952b8a2dee6e54de48f0be132326557b5e5e
CRC32 C388E3C1
Ssdeep 24:rINqAGRpgOhEllSyNlk8oWWNlk8oW8YYGC:reqAGPgOhMlSAoWMoW8rGC
下载提交魔盾安全分析
文件名 gdown-lnk[1].png
相关文件
C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EHDRIWWS\gdown-lnk[1].png
文件大小 71372 字节
文件类型 PNG image data, 400 x 150, 8-bit/color RGBA, non-interlaced
MD5 bb752c2f35239b29ac2c0e198ad8f5f7
SHA1 d32c3c6764912956863ee9d690c085fccaf20d3b
SHA256 7d863e25e9d944601c929e2f46635be5468a9a86d89b72e8498df0aed9da9ae9
CRC32 031A17FE
Ssdeep 1536:xDDv7H6rxk9E2G5ZVCDIF2oy1dkQXqlduhfpIhrmLi5XFnmoG7A4JuAM:VT7oW965ZQDG9yl8cXIV5zmhuAM
下载提交魔盾安全分析
文件名 {A462CC01-2B12-11E8-BCEA-5254005E164C}.dat
相关文件
C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{A462CC01-2B12-11E8-BCEA-5254005E164C}.dat
文件大小 5632 字节
文件类型 Composite Document File V2 Document, Cannot read section info
MD5 16fe541d2f0246c754b0e3db039ef787
SHA1 766669fd1ca4c744687fecd0d6e2578c40cba5b4
SHA256 df7b3b750c172e187f79e23ece3a5d335642471a722715b7718f5a395ac6c5b5
CRC32 DB1E5C58
Ssdeep 24:rI2OGV8qWs2kfUChNEllB/NlZoYaTNlZoAWsGa3:rtOGw5YhNMlBRoYa1oAWG3
下载提交魔盾安全分析
文件名 19375525[1].js
相关文件
C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HEL4YQ7U\19375525[1].js
文件大小 5193 字节
文件类型 HTML document, ASCII text, with very long lines, with no line terminators
MD5 0dce81b81664d15af44992ddb7128410
SHA1 9f85c9546d26c98c8b9ca24754d1ea8dff2fb830
SHA256 e35e5a171773eef26979906cd7e295ae6ea51092baf010ffb1933c310dd69d8a
CRC32 65184BE5
Ssdeep 96:0yHmPg4EY5Qc1dnqW7aUWp36QXiWgQ95qEIopwm3B5fXOiDgCQgeKrmpj:zmPZEY+cRpeUS36QXiWL5jfpwQXOiDgT
Yara
  • Rule to detect the no presence of any attachment
  • Rule to detect the no presence of any image
  • Rule to detect the presence of an or several urls
下载提交魔盾安全分析显示文本
(function(){var config = {itv: 1800000,url1:'//ia.51.la/go1?id=19375525',ekc:''};document.write('<a href="https://www.51.la/?comId=19375525" title="51.La \u7f51\u7ad9\u6d41\u91cf\u7edf\u8ba1\u7cfb\u7edf" target="_blank"><span style="display:inline-block;background-color:#EF5350;color:#fff;padding:2px 5px;font-family:arial;font-size:12px;font-weight:bold;">51La</span></a>');!function(e){function t(r){if(n[r])return n[r].exports;var o=n[r]={exports:{},id:r,loaded:!1};return e[r].call(o.exports,o,o.exports,t),o.loaded=!0,o.exports}var n={};return t.m=e,t.c=n,t.p="",t(0)}([function(e,t,n){"use strict";function r(){var e=void 0,t=/id=(\d+)/.exec(config.url1)[1]||"";try{e=u.get("__tins__"+t)}catch(t){e=!1}var n=e&&i.isN(e.sid)&&i.isN(e.expires)&&g-e.sid<18e5?0:1,r=n?1:e.vd+1,o=n?g:e.sid,c=g+18e5;return u.set("__tins__"+t,s.stringify({sid:o,vd:r,expires:c}),null,"/"),[n,n?o:u.get("__tins__"+t).sid,r]}function o(){var e=s.parse(s.stringify(i.extend({},y,v))),t=i.obj2url(e),n=config.url1+"&rt="+g+"&"+t,r=new Image(1,1);r.src=n}var i=n(4),c=n(5),u=n(7).store,s=n(6),a=window,f=a.location,l=a.screen,p=a.navigator,g=i.now(),d=!0,m=r(),v={ekc:config.ekc,sid:m[1],tt:c.getMeta.tt,kw:c.getMeta.kw,cu:f.href,pu:c.getRef()},y={rl:l.width+"*"+l.height,lang:p.language||p.browserLanguage,ct:function(){var e=p.connection||p.mozConnection||p.webkitConnection||p.oConnection,t=i.hasIt(p.userAgent,"mobile")&&e?e.type:"unknow";return t}(),pf:function(){var e=d?1:0;return d=0,e}(),ins:m[0],vd:m[2],ce:p.cookieEnabled?1:0,cd:l.colorDepth||l.pixelDepth,ds:c.getMeta.ds};o.version="2.2.1.2",n(10)(y),o()},,,,function(e,t){"use strict";function n(e,t){return void 0!==e&&e.indexOf(t)!==-1}function r(e){return function(t){return Object.prototype.toString.call(t)==="[object "+e+"]"}}function o(){for(var e=0,t={};e<arguments.length;e++){var n=arguments[e];for(var r in n)t[r]=n[r]}return t}function i(e){return e.replace(/&/g,"~_~")}function c(e){var t="";for(var n in e)""!==t&&(t+="&"),t+=n+"="+a(a(i(String(e[n]))));return t}function u(e){return e.replac <truncated>
文件名 {B873A340-2B12-11E8-BCEA-5254005E164C}.dat
相关文件
C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{B873A340-2B12-11E8-BCEA-5254005E164C}.dat
文件大小 5632 字节
文件类型 Composite Document File V2 Document, Cannot read section info
MD5 d84801e511ab866fc7a60f678607e3eb
SHA1 5ce94e3620c3bbe8cbd9fa91b8048d63b4752ac3
SHA256 38657a2377c1b357c439b5af8e90d77a24a9c9b13510e9d22a526db1c366e64f
CRC32 A32CE3D1
Ssdeep 24:rIvEAzGV8tWs2kfUChzllhNlZokabNlZoAWsG83:rbIGj5YhJlTokatoAWw3
下载提交魔盾安全分析
文件名 g03[1].jpg
相关文件
C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IDL4J1KW\g03[1].jpg
文件大小 56010 字节
文件类型 JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=450, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=800], baseline, precision 8, 260x180, frames 3
MD5 69387690ffc0682799078f4358a27d2a
SHA1 570bf4406b421b2261b2bcbdf2c38fc720662abf
SHA256 ead325afbd91c119c435b3cf3bcd72919a471cfc2e0f2c232ee7685769ef3906
CRC32 E10A822D
Ssdeep 768:LuPU5r/BPNyuPU5r/2gySk+FIR7NLG0gk6PIyErr3UBnbpLALvL932auQsY:Luc5D7yuc5D2n6N0PLTobxADZ2/m
下载提交魔盾安全分析
文件名 index.dat
相关文件
C:\Users\test\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012018032020180321\index.dat
文件大小 32768 字节
文件类型 Internet Explorer cache file version Ver 5.2
MD5 3d38c6c76a10809681fd7a5b53fed87e
SHA1 f7ee5c1a7a2fc8c7d63763a93db78a69621ee75c
SHA256 69b3a6edf6fded6307619e6536f6c13ee82a50f6d26563f13d07cb8d671876fe
CRC32 78BD1812
Ssdeep 12:qjmVHUS732dDMiBUw3kcr/i/UDU3+v76D4iBU:qj+QeeDdTt
下载提交魔盾安全分析
文件名 {B1FD47A0-2B12-11E8-BCEA-5254005E164C}.dat
相关文件
C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{B1FD47A0-2B12-11E8-BCEA-5254005E164C}.dat
文件大小 5632 字节
文件类型 Composite Document File V2 Document, Cannot read section info
MD5 f2c5953d92b4c4e8bff2acaf8915e223
SHA1 b02e1382caa15f3b41422832d95890144a82439e
SHA256 fc96eb52cdbf89daff48788d054220cf82c594abd54fc8d60b718e557e5568b5
CRC32 C5B8370F
Ssdeep 24:rIzmA1GV8tWs2kfUChzllhNlZowabNlZoAWsG83:rymSGj5YhJlTowatoAWw3
下载提交魔盾安全分析
文件名 top_bg[1].png
相关文件
C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CB4GP22D\top_bg[1].png
文件大小 156423 字节
文件类型 PNG image data, 2028 x 73, 8-bit/color RGB, non-interlaced
MD5 5434cd2e5e74767d8ba3723104effc86
SHA1 8e694f9a44d6411f0ea47ddf1f53c787bf89b2fb
SHA256 91445525744f94f3394d8187eabcde6bbc3f357d4ad06463c141aea3a22aaed2
CRC32 FCEA6774
Ssdeep 3072:QV7CBzMl+gF0T+W/4z7LfrjcemeYs1VhKAudGYLq4lnLUSRT:QV7qw0CWu7fcjfmVQASB/RT
下载提交魔盾安全分析
文件名 sprite_home[1].png
相关文件
C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EHDRIWWS\sprite_home[1].png
文件大小 195374 字节
文件类型 PNG image data, 390 x 800, 8-bit/color RGBA, non-interlaced
MD5 cc22ff8fe247270490ee2c65db64a3c9
SHA1 33b38bc79aaa9b02c14c2aaa145c2341a1723d55
SHA256 d15aeef95fa809447f883d7984aaf1fd0f31ca689711a66d96b500f3c8060023
CRC32 CC654301
Ssdeep 3072:uJqyEBDNNxeftSqLSF2PplgMvTIIAd50Yl3HcPsOPDPW7zuIXtwG96So+WMeA:uIb2EqLAmvvTIIAd5xHs0nXh6yeA
下载提交魔盾安全分析
文件名 index.dat
相关文件
C:\Users\test\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012018031920180320\index.dat
文件大小 32768 字节
文件类型 Internet Explorer cache file version Ver 5.2
MD5 3983be84ad229ae662407c48ddef283d
SHA1 c7494a561e9c67c716c4403d15df34dd44f053c3
SHA256 6c847f72760ecffa62634d527ff42eb6d54c627fe786a3c823a87e4e6a0a0a81
CRC32 57F05382
Ssdeep 12:qjRc3pkaniBUw3dMMd/ci/UDU3kDIOciBU:qjRzWXUMi/clDaX
下载提交魔盾安全分析
HTML 总结报告
(需15-60分钟同步)
下载

Processing ( 59.691 seconds )

  • 22.477 BehaviorAnalysis
  • 20.754 NetworkAnalysis
  • 12.497 Suricata
  • 2.227 Dropped
  • 1.1 VirusTotal
  • 0.35 AnalysisInfo
  • 0.246 Static
  • 0.037 Debug
  • 0.003 Memory

Signatures ( 13.899 seconds )

  • 5.592 md_url_bl
  • 1.506 md_bad_drop
  • 1.256 stealth_timeout
  • 1.043 api_spamming
  • 0.593 antivm_generic_scsi
  • 0.327 antivm_generic_services
  • 0.306 mimics_filetime
  • 0.271 antiav_detectreg
  • 0.221 stealth_file
  • 0.216 antivm_generic_disk
  • 0.167 bootkit
  • 0.16 virus
  • 0.13 stealth_network
  • 0.12 vawtrak_behavior
  • 0.1 dridex_behavior
  • 0.099 infostealer_ftp
  • 0.097 antidbg_windows
  • 0.093 hancitor_behavior
  • 0.077 clickfraud_cookies
  • 0.068 infostealer_browser_password
  • 0.067 andromeda_behavior
  • 0.057 antianalysis_detectreg
  • 0.057 infostealer_im
  • 0.048 antiemu_wine_func
  • 0.046 injection_createremotethread
  • 0.043 betabot_behavior
  • 0.043 kovter_behavior
  • 0.038 ipc_namedpipe
  • 0.035 antivm_vmware_events
  • 0.035 cryptowall_behavior
  • 0.033 injection_runpe
  • 0.032 infostealer_mail
  • 0.03 stack_pivot
  • 0.03 Locky_behavior
  • 0.029 antiav_avast_libs
  • 0.027 heapspray_js
  • 0.027 antivm_vbox_libs
  • 0.024 antiav_detectfile
  • 0.024 md_domain_bl
  • 0.023 internet_dropper
  • 0.022 antisandbox_sunbelt_libs
  • 0.02 dead_connect
  • 0.019 network_anomaly
  • 0.019 antivm_vbox_window
  • 0.019 injection_explorer
  • 0.019 persistence_autorun
  • 0.019 geodo_banking_trojan
  • 0.018 infostealer_browser
  • 0.018 virtualcheck_js
  • 0.017 hawkeye_behavior
  • 0.017 antisandbox_sboxie_libs
  • 0.017 infostealer_bitcoin
  • 0.016 antiav_bitdefender_libs
  • 0.015 kibex_behavior
  • 0.014 antivm_xen_keys
  • 0.014 ransomware_extensions
  • 0.013 upatre_behavior
  • 0.013 rat_luminosity
  • 0.013 antisandbox_script_timer
  • 0.013 antivm_parallels_keys
  • 0.013 darkcomet_regkeys
  • 0.012 ransomware_message
  • 0.012 exec_crash
  • 0.011 h1n1_behavior
  • 0.011 ransomware_files
  • 0.01 sets_autoconfig_url
  • 0.01 securityxploded_modules
  • 0.01 antivm_vbox_files
  • 0.009 kelihos_behavior
  • 0.009 ispy_behavior
  • 0.009 antivm_generic_diskreg
  • 0.008 modifies_desktop_wallpaper
  • 0.008 kazybot_behavior
  • 0.008 java_js
  • 0.008 silverlight_js
  • 0.008 recon_fingerprint
  • 0.007 persistence_bootexecute
  • 0.007 antivm_vmware_libs
  • 0.007 creates_largekey
  • 0.007 shifu_behavior
  • 0.006 banker_prinimalka
  • 0.006 js_phish
  • 0.005 rat_nanocore
  • 0.005 gootkit_behavior
  • 0.005 dyre_behavior
  • 0.005 disables_wfp
  • 0.005 cerber_behavior
  • 0.005 antisandbox_productid
  • 0.005 antivm_hyperv_keys
  • 0.005 antivm_vbox_keys
  • 0.005 antivm_vmware_keys
  • 0.005 disables_browser_warn
  • 0.004 tinba_behavior
  • 0.004 disables_spdy
  • 0.004 browser_scanbox
  • 0.004 js_suspicious_redirect
  • 0.004 antidbg_devices
  • 0.004 antivm_xen_keys
  • 0.004 antivm_vbox_acpi
  • 0.004 antivm_vpc_keys
  • 0.004 bypass_firewall
  • 0.004 network_torgateway
  • 0.004 packer_armadillo_regkey
  • 0.003 sundown_js
  • 0.003 network_tor
  • 0.003 antisandbox_sleep
  • 0.003 chimera_behavior
  • 0.003 process_needed
  • 0.003 browser_security
  • 0.003 rat_pcclient
  • 0.002 cve_2015_2419_js
  • 0.002 ransomware_dmalocker
  • 0.002 webmail_phish
  • 0.002 angler_js
  • 0.002 cve_2016-0189
  • 0.002 Neutrino_js
  • 0.002 generic_phish
  • 0.002 network_bind
  • 0.002 cve_2016_7200
  • 0.002 nuclear_js
  • 0.002 cve_2014_6332
  • 0.002 secure_login_phish
  • 0.002 rig_js
  • 0.002 antivm_generic_bios
  • 0.002 antivm_generic_cpu
  • 0.002 antivm_generic_system
  • 0.002 antivm_vmware_files
  • 0.002 codelux_behavior
  • 0.002 recon_programs
  • 0.001 antisandbox_mouse_hook
  • 0.001 ursnif_behavior
  • 0.001 infostealer_keylog
  • 0.001 pony_behavior
  • 0.001 antianalysis_detectfile
  • 0.001 banker_cridex
  • 0.001 banker_zeus_mutex
  • 0.001 banker_zeus_url
  • 0.001 bot_drive
  • 0.001 bot_drive2
  • 0.001 browser_addon
  • 0.001 disables_system_restore
  • 0.001 disables_windows_defender
  • 0.001 ie_martian_children
  • 0.001 maldun_blacklist
  • 0.001 modify_security_center_warnings
  • 0.001 modify_uac_prompt
  • 0.001 network_tor_service
  • 0.001 office_security
  • 0.001 ransomware_radamant
  • 0.001 rat_spynet
  • 0.001 sniffer_winpcap
  • 0.001 stealth_hiddenreg
  • 0.001 stealth_hide_notifications
  • 0.001 targeted_flame

Reporting ( 0.669 seconds )

  • 0.669 ReportHTMLSummary
Task ID 139048
Mongo ID 5aaf0fc82e06336c551ea387
Cuckoo release 1.4-Maldun