2016-10-25 22:50:26.808695 IP 192.168.1.102.60855 > 222.163.80.69.80: Flags [P.], seq 0:313, ack 1, win 256, length 313: HTTP: GET /skycndownernew/accat83_420742.exe HTTP/1.1 E..ad.@……..f..PE…P=..0s%..P….,..GET /skycndownernew/accat83_420742.exe HTTP/1.1 Accept: application/x-shockwave-flash, image/gif, image/jpeg, image/pjpeg, */* Accept-Language: en-us User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0) Accept-Encoding: gzip, deflate Host: down10.zol.com.cn Connection: Keep-Alive 2016-10-25 22:50:38.567607 IP 192.168.1.102.60857 > 222.73.144.174.80: Flags [.], ack 3917, win 260, length 0 E..(-.@……..f.I…..P|.&…..P…^……… — E..(7.@……..fx.m….P….c…P…~……… 2016-10-25 22:50:41.309783 IP 192.168.1.102.60858 > 120.26.109.229.80: Flags [P.], seq 0:208, ack 1, win 256, length 208: HTTP: POST /api/getdown HTTP/1.1 E…7.@……..fx.m….P….c…P…….POST /api/getdown HTTP/1.1 Host: api.baizhu.cc Content-Length: 16 Connection:close Accept-Language: zh-cn Cache-Conbtrol:no-cache Content-Type:application/x-www-form-urlencoded &appid=1&sid=360 — E..(“.@…A3…fh.l….P”….1[.P…3……… 2016-10-25 […]