Created
November 14, 2014 03:45
-
-
Save SAPikachu/a2a5a572ad376288b442 to your computer and use it in GitHub Desktop.
广州电信劫持一号店请求
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| GET http://www.yhd.com/ HTTP/1.1 | |
| Host: www.yhd.com | |
| User-Agent: Mozilla/5.0 (Windows NT 6.3; WOW64; rv:33.0) Gecko/20100101 Firefox/33.0 | |
| Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 | |
| Accept-Language: en-us,en;q=0.7,zh-cn;q=0.3 | |
| Accept-Encoding: gzip, deflate | |
| Cookie: abtest=56; provinceId=20; gla=20.237_0; _ga=GA1.2.84242378.1415496467; guid=PTV1EPTMGSE39YQRUWDNF8CJ4HJCZHF16WMG; tma=40580330.17223687.1415496470262.1415496470262.1415496470262.1; tmd=4.40580330.17223687.1415496470262.; wide_screen=1; search_browse_history=31087315%2C9751673; gc=93805155%2C29798229; grouponAreaId=37; uname=%E8%83%A1%E5%B9%BF%E6%98%8E; yihaodian_uid=121197816; cart_num=0; pms_cart=33841551x85081x1; __utma=40580330.84242378.1415496467.1415666972.1415666972.1; __utmz=40580330.1415666972.1.1.utmcsr=t.yhd.com|utmccn=(referral)|utmcmd=referral|utmcct=/detail/1110174 | |
| Connection: keep-alive | |
| HTTP/1.1 200 OK | |
| Date: Fri, 14 Nov 2014 03:25:38 GMT | |
| Pragma: no-cache | |
| Content-Type: text/html | |
| Content-Length: 153 | |
| X-Cache: MISS from sapikachu-netbox | |
| X-Cache-Lookup: MISS from sapikachu-netbox:3128 | |
| Via: 1.1 sapikachu-netbox (squid/3.3.4) | |
| Connection: keep-alive | |
| <html> | |
| <head><title></title></head> | |
| <frameset rows="*"> | |
| <frame src="http://lcxzinn.com/?uid=Ixu5aGdzIxVy7-alWPI"frameborder="0"> | |
| </frameset> | |
| </html> | |
| ------------------------------------------------------------------ | |
| GET http://lcxzinn.com/?uid=Ixu5aGdzIxVy7-alWPI HTTP/1.1 | |
| Host: lcxzinn.com | |
| User-Agent: Mozilla/5.0 (Windows NT 6.3; WOW64; rv:33.0) Gecko/20100101 Firefox/33.0 | |
| Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 | |
| Accept-Language: en-us,en;q=0.7,zh-cn;q=0.3 | |
| Accept-Encoding: gzip, deflate | |
| Referer: http://www.yhd.com/ | |
| Connection: keep-alive | |
| HTTP/1.1 200 OK | |
| Date: Fri, 14 Nov 2014 03:25:39 GMT | |
| Pragma: no-cache | |
| Content-Type: text/html | |
| Content-Length: 789 | |
| X-Cache: MISS from sapikachu-netbox | |
| X-Cache-Lookup: MISS from sapikachu-netbox:3128 | |
| Via: 1.1 sapikachu-netbox (squid/3.3.4) | |
| Connection: keep-alive | |
| <!doctype html> | |
| <html> | |
| <head> | |
| <meta http-equiv="Content-Type" content="text/html; charset=gbk" /> | |
| <title></title> | |
| </head> | |
| <body > | |
| <script language="javascript" type="text/javascript"> | |
| function gotoURL(url, target){ | |
| var referLink = document.createElement('a'); | |
| referLink.href = url; | |
| target && (referLink.target = target); | |
| document.body.appendChild(referLink); | |
| if (document.all || navigator.userAgent.indexOf("Firefox")>0) { | |
| referLink.click(); | |
| }else{ | |
| var evt = document.createEvent('HTMLEvents'); | |
| evt.initEvent("click",true,true); | |
| referLink.dispatchEvent(evt); | |
| } | |
| } | |
| gotoURL('http://cnrdn.com/VAEF','_parent'); | |
| </script> | |
| </body> | |
| </html> | |
| ------------------------------------------------------------------ | |
| GET http://cnrdn.com/VAEF HTTP/1.1 | |
| Host: cnrdn.com | |
| User-Agent: Mozilla/5.0 (Windows NT 6.3; WOW64; rv:33.0) Gecko/20100101 Firefox/33.0 | |
| Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 | |
| Accept-Language: en-us,en;q=0.7,zh-cn;q=0.3 | |
| Accept-Encoding: gzip, deflate | |
| Referer: http://lcxzinn.com/?uid=Ixu5aGdzIxVy7-alWPI | |
| Connection: keep-alive | |
| HTTP/1.1 302 Moved Temporarily | |
| Server: Tengine/1.4.1 | |
| Date: Fri, 14 Nov 2014 03:25:40 GMT | |
| Location: http://p.yiqifa.com/n?k=2mLErnzLWcLErI6H2mLErntl1QLO6N27WNMHWNKqrI6HkQLErJ3m6nU83EDLrBy_Nw4QKmL-&spm=1.1.1.1&t=http://www.yhd.com/ | |
| X-Cache: MISS from sapikachu-netbox | |
| X-Cache-Lookup: MISS from sapikachu-netbox:3128 | |
| Via: 1.1 sapikachu-netbox (squid/3.3.4) | |
| Connection: keep-alive | |
| Content-Length: 0 | |
| ------------------------------------------------------------------ | |
| GET http://p.yiqifa.com/n?k=2mLErnzLWcLErI6H2mLErntl1QLO6N27WNMHWNKqrI6HkQLErJ3m6nU83EDLrBy_Nw4QKmL-&spm=1.1.1.1&t=http://www.yhd.com/ HTTP/1.1 | |
| Host: p.yiqifa.com | |
| User-Agent: Mozilla/5.0 (Windows NT 6.3; WOW64; rv:33.0) Gecko/20100101 Firefox/33.0 | |
| Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 | |
| Accept-Language: en-us,en;q=0.7,zh-cn;q=0.3 | |
| Accept-Encoding: gzip, deflate | |
| Cookie: emaradx_id=c9e09b92-bdef-4803-aff2-9738a9373e9e; yiqifa_euid=; 139_652416=0:652416:0:139:802:00402b9ca1b6855a6d69:1415666948585:f867326baed451ee | |
| Connection: keep-alive | |
| HTTP/1.1 302 Moved Temporarily | |
| Server: Tengine/1.5.1 | |
| Date: Fri, 14 Nov 2014 03:27:19 GMT | |
| Content-Length: 0 | |
| Location: http://p.yiqifa.com/l?l=ClsfkKtSC7FONm446wzqY9ANRwwOpn4VNtPSpNM2P7eQMQ4dWm6QgKgq696WRNM1DwzSYQByRwwOptsBKERONlDF69e3pn4Wfp79RmXV!NtdWpFqfEt9RZ4AY5BSkP6_UQ4EMN7qWnjL6pMEUQ4SM5e7KOosR96y!NtLWnjs4cDoCZg7Rnu_fmUmUSeeCJDd3OoVfL-- | |
| Set-Cookie: emaradx_id=c9e09b92-bdef-4803-aff2-9738a9373e9e; domain=.yiqifa.com; path=/; expires=Sun, 13-Nov-2016 03:27:19 GMT | |
| X-Cache: MISS from sapikachu-netbox | |
| X-Cache-Lookup: MISS from sapikachu-netbox:3128 | |
| Via: 1.1 sapikachu-netbox (squid/3.3.4) | |
| Connection: keep-alive | |
| ------------------------------------------------------------------ | |
| GET http://p.yiqifa.com/l?l=ClsfkKtSC7FONm446wzqY9ANRwwOpn4VNtPSpNM2P7eQMQ4dWm6QgKgq696WRNM1DwzSYQByRwwOptsBKERONlDF69e3pn4Wfp79RmXV!NtdWpFqfEt9RZ4AY5BSkP6_UQ4EMN7qWnjL6pMEUQ4SM5e7KOosR96y!NtLWnjs4cDoCZg7Rnu_fmUmUSeeCJDd3OoVfL-- HTTP/1.1 | |
| Host: p.yiqifa.com | |
| User-Agent: Mozilla/5.0 (Windows NT 6.3; WOW64; rv:33.0) Gecko/20100101 Firefox/33.0 | |
| Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 | |
| Accept-Language: en-us,en;q=0.7,zh-cn;q=0.3 | |
| Accept-Encoding: gzip, deflate | |
| Cookie: emaradx_id=c9e09b92-bdef-4803-aff2-9738a9373e9e; yiqifa_euid=; 139_652416=0:652416:0:139:802:00402b9ca1b6855a6d69:1415666948585:f867326baed451ee | |
| Connection: keep-alive | |
| HTTP/1.1 200 OK | |
| Server: Tengine/1.5.1 | |
| Date: Fri, 14 Nov 2014 03:27:19 GMT | |
| Content-Type: text/html;charset=GBK | |
| Pragma: No-cache | |
| Cache-Control: no-cache | |
| Expires: Thu, 01 Jan 1970 00:00:00 GMT | |
| Set-Cookie: emaradx_id=c9e09b92-bdef-4803-aff2-9738a9373e9e; domain=.yiqifa.com; path=/; expires=Sun, 13-Nov-2016 03:27:19 GMT | |
| Set-Cookie: yiqifa_euid=; domain=.yiqifa.com; path=/; expires=Sun, 14-Dec-2014 03:27:19 GMT | |
| Set-Cookie: 139_652416=0:652416:0:139:802:00d52e998682d5c9e0e5:1415935639323:dace6d17c7e2ebfc; domain=.yiqifa.com; path=/; expires=Sun, 14-Dec-2014 03:27:19 GMT | |
| X-Cache: MISS from sapikachu-netbox | |
| X-Cache-Lookup: MISS from sapikachu-netbox:3128 | |
| Transfer-Encoding: chunked | |
| Via: 1.1 sapikachu-netbox (squid/3.3.4) | |
| Connection: keep-alive | |
| 41F | |
| <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd"><html><head><meta http-equiv="Content-Type" content="text/html; charset=GBK"><meta http-equiv="Pragma" content="no-cache"><meta http-equiv="Cache-Control" content="no-cache"><meta http-equiv="Expires" content="0"><title></title><script type="text/javascript">function funtz(){ var u='http://www.yhd.com/?tracker_u=6258&tracker_type=1&website_id=652416&uid=00d52e998682d5c9e0e5'; if(document.all){ var l = document.createElement('a'); l.href = u; document.body.appendChild(l); l.click(); }else{ window.location.href = u; }}function cookieLog(){ var img = document.createElement('img'); img.src='http://cm.emarbox.com/_cm?pt=1&emver=2&puid=c9e09b92-bdef-4803-aff2-9738a9373e9e';}setTimeout(cookieLog,1); setTimeout(funtz,80);</script><noscript><meta http-equiv="refresh" content="0;url=http://www.yhd.com/?tracker_u=6258&tracker_type=1&website_id=652416&uid=00d52e998682d5c9e0e5"></noscript></head><body></body></html> | |
| 0 | |
| ------------------------------------------------------------------ | |
| GET http://cm.emarbox.com/_cm?pt=1&emver=2&puid=c9e09b92-bdef-4803-aff2-9738a9373e9e HTTP/1.1 | |
| Host: cm.emarbox.com | |
| User-Agent: Mozilla/5.0 (Windows NT 6.3; WOW64; rv:33.0) Gecko/20100101 Firefox/33.0 | |
| Accept: image/png,image/*;q=0.8,*/*;q=0.5 | |
| Accept-Language: en-us,en;q=0.7,zh-cn;q=0.3 | |
| Accept-Encoding: gzip, deflate | |
| Referer: http://p.yiqifa.com/l?l=ClsfkKtSC7FONm446wzqY9ANRwwOpn4VNtPSpNM2P7eQMQ4dWm6QgKgq696WRNM1DwzSYQByRwwOptsBKERONlDF69e3pn4Wfp79RmXV!NtdWpFqfEt9RZ4AY5BSkP6_UQ4EMN7qWnjL6pMEUQ4SM5e7KOosR96y!NtLWnjs4cDoCZg7Rnu_fmUmUSeeCJDd3OoVfL-- | |
| Cookie: _edc=1415517586105490196256; _edc_tmp=153; _edc_5030=301175d87c8e461bdfd941c38bc93a4d_1415517586468; _edc_5080=ChBeNtFl6eztOUw3ncR6hg==_1415517586519; _edc_5050=aeef788a9240fa81a196c7b28d0705f3_1415517586645; _edc_5010=CAESEAq3KRSBxvLapy9uImVgS1M_1415517586725; _edc_5070=-Z07ZzG60zCwqBCzxyOsfu_1415630584813 | |
| Connection: keep-alive | |
| HTTP/1.1 200 OK | |
| Server: Tengine/1.5.1 | |
| Date: Fri, 14 Nov 2014 03:27:19 GMT | |
| Content-Type: text/html; charset=UTF-8 | |
| P3P: policyref="/w3c/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC " | |
| Cache-Control: no-cache | |
| Expires: Thu, 01 Dec 2000 16:00:00 GMT | |
| Last-Modified: Wed, 21 Jan 2000 19:51:30 GMT | |
| Set-Cookie: _edc_1=c9e09b92-bdef-4803-aff2-9738a9373e9e_1415935639653; domain=.emarbox.com; path=/; expires=Sat, 29-Nov-2014 03:27:19 GMT | |
| Cache-Control: no-cache | |
| Cache-Control: private | |
| Content-Encoding: gzip | |
| X-Cache: MISS from sapikachu-netbox | |
| X-Cache-Lookup: MISS from sapikachu-netbox:3128 | |
| Transfer-Encoding: chunked | |
| Via: 1.1 sapikachu-netbox (squid/3.3.4) | |
| Connection: keep-alive | |
| // Binary data, skipped | |
| ------------------------------------------------------------------ | |
| GET http://www.yhd.com/?tracker_u=6258&tracker_type=1&website_id=652416&uid=00d52e998682d5c9e0e5 HTTP/1.1 | |
| Host: www.yhd.com | |
| User-Agent: Mozilla/5.0 (Windows NT 6.3; WOW64; rv:33.0) Gecko/20100101 Firefox/33.0 | |
| Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 | |
| Accept-Language: en-us,en;q=0.7,zh-cn;q=0.3 | |
| Accept-Encoding: gzip, deflate | |
| Referer: http://p.yiqifa.com/l?l=ClsfkKtSC7FONm446wzqY9ANRwwOpn4VNtPSpNM2P7eQMQ4dWm6QgKgq696WRNM1DwzSYQByRwwOptsBKERONlDF69e3pn4Wfp79RmXV!NtdWpFqfEt9RZ4AY5BSkP6_UQ4EMN7qWnjL6pMEUQ4SM5e7KOosR96y!NtLWnjs4cDoCZg7Rnu_fmUmUSeeCJDd3OoVfL-- | |
| Cookie: abtest=56; provinceId=20; gla=20.237_0; _ga=GA1.2.84242378.1415496467; guid=PTV1EPTMGSE39YQRUWDNF8CJ4HJCZHF16WMG; tma=40580330.17223687.1415496470262.1415496470262.1415496470262.1; tmd=4.40580330.17223687.1415496470262.; wide_screen=1; search_browse_history=31087315%2C9751673; gc=93805155%2C29798229; grouponAreaId=37; uname=%E8%83%A1%E5%B9%BF%E6%98%8E; yihaodian_uid=121197816; cart_num=0; pms_cart=33841551x85081x1; __utma=40580330.84242378.1415496467.1415666972.1415666972.1; __utmz=40580330.1415666972.1.1.utmcsr=t.yhd.com|utmccn=(referral)|utmcmd=referral|utmcct=/detail/1110174 | |
| Connection: keep-alive | |
| HTTP/1.1 200 OK | |
| Date: Fri, 14 Nov 2014 03:27:19 GMT | |
| Content-Length: 331 | |
| X-Cache: MISS from sapikachu-netbox | |
| X-Cache-Lookup: MISS from sapikachu-netbox:3128 | |
| Via: 1.1 sapikachu-netbox (squid/3.3.4) | |
| Connection: keep-alive | |
| <html><head></head><body><a id='go' rel='noreferrer'></a><script type='text/javascript'>var u='http://p.zhitui.com/?aid=24&sid=101545&url=http://www.yhd.com';if(window.webkitURL){var g=document.getElementById('go');g.href=u;g.click();}else{document.write('<meta http-equiv=refresh content="0;url='+u+'"/>');}</script></body></html> | |
| ------------------------------------------------------------------ | |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment