百度心脏出血漏洞导致部分用户账户可被控制(百度钱包资金可被操作)

漏洞概要关注数(24) 关注此漏洞

缺陷编号：wooyun-2015-0112623

漏洞标题：百度心脏出血漏洞导致部分用户账户可被控制(百度钱包资金可被操作)

漏洞作者：杀器王子

提交时间：2015-05-07 14:03

修复时间：2015-06-21 16:58

公开时间：2015-06-21 16:58

漏洞类型：系统/服务补丁不及时

危害等级：高

自评Rank：20

漏洞状态：厂商已经确认

漏洞来源： http://www.wooyun.org，如有疑问或需要帮助请联系 [email protected]

Tags标签：无

4人收藏收藏
分享漏洞：

漏洞详情

披露状态：

2015-05-07：细节已通知厂商并且等待厂商处理中
2015-05-07：厂商已经确认，细节仅向厂商公开
2015-05-17：细节向核心白帽子及相关领域专家公开
2015-05-27：细节向普通白帽子公开
2015-06-06：细节向实习白帽子公开
2015-06-21：细节向公众公开

简要描述：

杀器在手，天下我有。

详细说明：

心脏滴了个血呀。
这个ip/域名
180.149.133.161 stat.zhidahao.baidu.com
泄露了用户的BDUSS cookie，可登陆用户账户。

[email protected][...r....+..H...9........w.3....f.....\".!.9.8.........5.............................3.2.....E.D...../...A.................................I...........4.2...................................................#.......y_id%253D155757227137793570%2526tn%253Dbaifubaoapp-wallet HTTP/1.1..Host: stat.zhidahao.baidu.com..Connection: keep-alive..Referer: https://www.baifubao.com/group/0/charge/0/start/0?activity_id=155757227137793570&tn=baifubaoapp-wallet..X-Requested-With: com.baidu.searchbox..User-Agent: Mozilla/5.0 (Linux; U; Android 4.2.1; zh-cn; Lenovo K900 Build/JOP40D) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Mobile Safari/534.30 light/1.0 baiduboxapp/6.5 (Baidu; P1 4.2.1)..Accept-Encoding: gzip,deflate..Accept-Language: zh-CN, en-US..Accept-Charset: utf-8, iso-8859-1, utf-16, *;q=0.7..Cookie: BDUSS=p5M2wyallLMU5tbnViYm0wZlhRSHF1Y2ZJcHZZQ0ZOU3c3TUFxLWoweVpkMDFWQVFBQUFBJCQAAAAAAAAAAAEAAABG6nJMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAJnqJVWZ6iVVUV; BAIDUID=94E2CA1FD6A768E41DC026FC6F5997D7:FG=1; BAIDUCUID=_Ov480uOv8_EuvfH0OBga_8yvu0xi28oluvnulaA2i8Ku28F_u2I8_aL2t_Oa2t1A; BAIDULOC=12941612_4872117_63_131_1430975836689; WISE_HIS_PM=1; BDLIGHTID=3784585.....+I..$0`.!..d..e..`....H..LL..'..bR.N...S...S...8..q.....T.#zAXAI593J; H_BDCLCKID_SF=tRk8oK0hfIvbfP0k-4QEbRLV-fPX5-RLf56RB-OF5lOTJh0R3-O8jPAy5NQJJhvlMNcnMbLhannNfCJa26bke6oWeH-fJ6ksKD600t5tKRA_HRjYbb__-P4DenjeBbJZ5m7mXp0bQnb8MnRR5TLMDbv00M_tWh53Me6v5lIafCOkbCD6ej-bDjvM-xQ0KJQaKC8X3JjV5PK_Hn7zeP68LntpbtbmhU-eQInB_bRbb-tBqt3mW-4-XpKJ24Qv3xFtfR7ZVJO-KKC5hIKljMK; BDUSS=g1Y2NvM2NrOWFCQVF-N2ZrbnNyc1h0TX5oNHBEQjBzeE1jSE5EWWFsaUxoSEpWQVFBQUFBJCQAAAAAAAAAAAEAAAB3PcthAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIv3SlWL90pVaD; BDLIGHTID=3784585|1......>...3n....''-,.;............53D0%2526tpl%253D2%2526extData%253D%25257B%252522wallet%252522%25253A%252522type%25253A1%25253Bdianying%252522%25252C%252522dianying%252522%25253A1%25257D%2526reqData%253D%25257B%252522cf%252522%25253A%252522lightapp%252522%25257D HTTP/1.1..Host: stat.zhidahao.baidu.com..Connection: keep-alive..Referer: https://zhifu.baidu.com/proxy/req/newcashier?customerId=3&deviceType=2&orderCreateTime=1430977063&orderId=1952592&service=cashier&payAmount=5320&originalAmount=8400&notifyUrl=http%3A%2F%2Ftitanic.dianying.baidu.com%2Fapi%2FlbsCallback%2FpayCallback&title=%E5%A4%8D%E4%BB%87%E8%80%85%E8%81%94%E7%9B%9F2%EF%BC%9A%E5%A5%A5%E5%88%9B%E7%BA%AA%E5%85%83&mobile=15217321840&itemInfo=%5B%7B%22id%22%3A9445%2C%22name%22%3A%22%E5%A4%8D%E4%BB%87%E8%80%85%E8%81%94%E7%9B%9F2%EF%BC%9A%E5%A5%A5%E5%88%9B%E7%BA%AA%E5%85%83%22%2C%22price%22%3A4200%2C%22number%22%3A2%7D%5D&signType=1&sign=4f89ff32d3a971bc13a55f75cf7022b4&passuid=1457212772&sdk=0&returnUrl=http%3A%2F%2Fm.dianying.baidu.com%2Fticket%2Fpayback%3FmOrderId%3D3070993%26c%3D257%26sfrom%3Dwise_film_info_app&failUrl=http%3A%2F%2Fm.dianying.baidu.com%2Fticket%2Fconfirm%3ForderId%3D3070993%26sfrom%3Dwise_film_info_app%26from%3Dwebapp%26sub_channel%3Dlight_null%257Csearchbox%257Clight_null%257Clight_null%26c%3D257%26cc%3D%26crt%3Dm%26lng%3D12620342.00%26lat%3D2610474.00%26kehuduan%3D&defaultResPage=0&tpl=2&extData=%7B%22wallet%22%3A%22type%3A1%3Bdianying%22%2C%22dianying%22%3A1%7D&reqData=%7B%22cf%22%3A%22lightapp%22%7D..Accept: */*..User-Agent: Mozilla/5.0 (Linux; U; Android 4.4.4; zh-cn; vivo X5S L Build/KTU84P) AppleWebKit/534.24 (KHTML, like Gecko) Version/4.0 Mobile Safari/534.24 T5/2.0 light/1.0 baiduboxapp/6.5 (Baidu; P1 4.4.4)..Accept-Encoding: gzip,deflate..Accept-Language: zh-CN, en-US..Accept-Charset: utf-8, iso-8859-1, utf-16, *;q=0.7..Cookie: BAIDUID=BFA948BF451D64D19D678AB6E0B9B948:FG=1; BAIDUCUID=0aHuuli3SugKPviZ0iHbaguHv8glOSut08v6fgi6Ba8Pu2t1_avHt_aov8_Ga2tWA; BDUSS=lmSzh6NXMtfkFIYTRlUGhvdWRoRlVoYzJzdFE1TUZmclo3LX5iVzNIfnZOMWRWQVFBQUFBJCQAAAAAAAAAAAEAAABkTdtWAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAO-qL1Xvqi9VaV; BAIDULOC=12620342_2610474_68_257_1430976419896; WISE_HIS_PM=1; BDLIGHTID=2387396; BAIDUMOVIELOC=12620342_2610474_1000_257_1430977059090.....|...5.@.)qH....c.......7DBC80DEE88163AB66B5DFB33OGKAOPQTFD/1.....y!y..l..}....H........612677_1000_138_1430910073444.......V..D.3Q~.j..F8A.Y...........9_1430900160087.....|...W=......k....:a.........................t%25252Ccsrc%252540app_mainbox_txt%25252Cta%252540zbios_2_4.2_6_6.2%2526lid%253D14222423388174270890%2526order%253D1%2526vit%253Dosres%2526fm%253Dalop%2526tj%253Dwise_aladdin_car_1_0_10_l12%2526sec%253D804%2526di%253Dd1461b8878b92ba1%2526bdenc%253D1%2526nsrc%253DIlPT2AEptyoA_yixCFOxXnANedT62v3IJROD_yEK3z3xpUjte4viZQRAYDL6MnqMZpPPgTGclbkPgzLsR7Qz7aZ_%5B%5D0%5B%5D; dcad10=; dc_search10=; CIGDCID=133-735019-3170756-52b1866c1e0e6; CIGDCTP=0; CIGDCTS=0; CIGDCAD=; CIGDCSE=; CIGDCSCD=1429838116; PHPStat_FT_10000001=1531559626142; PHPStat_RT_10000001=1531559626142; PHPStat_MSRC_10000001=%3A%3Amarket_type_free_search%3A%3A%3A%3Abaidu%3A%3Aioqv6putrlqt0mbnul4tsvgkgwlpv6xswboqyhbav48dfgry%2539iepjnybsuqmnfjy%252b0jf%252fsigbc%257amwsbbrnkoow%253d%253d%3A%3A%3A%3A%3A%3Am.baidu.com%3A%3A%3A%3Apmf_from_free_search; PHPStat_MSRC_TYPE_10000001=pmf_from_free_search; pgv_pvi=9017807872; BDUSS=TFxcE1RUHhBZzdpTXJZbXYtY28zU1VGbXhNQ3VCbXhYS3VUTVF3UXduamJiV1ZWQVFBQUFBJCQAAAAAAAAAAAEAAABGPlhk0fjFo8LwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANvgPVXb4D1VY; BAIDU_WISE_UID=wapp_1430119113729_963; BAIDUID=F01B1C9C1F906E72107BBC14B431F5AA:FG=1; BAIDUCUID=g82ailulvigTa2aU_u2Ligurv8l58vaC08Hw8gaKvaiSOv8ggu-Si_aL2t_ua2fHA; WISE_HIS_PM=1; BAIDULOC=11994677_3613348_500_369_1531807895648..x-forwarded-for. 10.200.134.197..x-up-bear-type. GPRS/EDGE..Referer. http://tieba.baidu.com/f?from=1000468c&bd_page_type=1&ssid=0&uid=0&ref=www_utouchbdbox&pu=sz%401320_480%2Ccuid%40g82ailulvigTa2aU_u2Ligurv8l58vaC08Hw8gaKvaiSOv8ggu-Si_aL2t_ua2fHA%2Ccua%40_avLC_aE-i4qywoUfpw1zyaBXi4ra2iLA%2Ccut%405ymy6fJ0eMjeP-YNyaXrizubL8g4IQu85t3-PqqHB%2Cosname%40baiduboxapp%2Cctv%402%2Ccfrom%401000813a%2Ccen%40cuid_cua_cut%2Ccsrc%40app_mainbox_txt%2Cta%40utouchbdbox_2_4.2_6_6.4&lid=10989391720526757209&baiduid=F01B1C9C1F906E72107BBC14B431F5AA&kw=%D1%F8%D1%F2&fr=ala0&mo_device=1&vit=aladdin&pn=0&....0D%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20default%3A%0D%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20p(v.toJSONString())%3B%0D%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%7D%0D%0A%20%20%20%20%20%20%20%20%20%20%20%20%7D%0D%0A%20%20%20%20%20%20%20%20%7D%0D%0A%0D%0A%20%20%20%20%20%20%20%20%20%20%2F%2F%20Join%20all%20of%20the%20fragments%20together%20and%20return.%0D%0A%0D%0A%20%20%20%20%20%20%20%20a.push('%7D')%3B%0D%0A%20%20%20%20%20%20%20%20return%20a.join('')%3B%0D%0A%20%20%20%20%7D] refer[http://020.howjia.com/shownews-57199.html] ua[Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like.........q......Py......................cookiekiPF......x-forwarded-for6.F......hostcache-controlconnectionEBAD0.................j......................L........U...............................9.........0.....M_...................................................................................................................................................../home/hummer/nginx/html/s.gif.VI)\\@......j..................GSOY.j..............\"543ccc13-2b\"QpYD-MKGoogKK3gOTH47P; H_BDCLCKID_S................+.......+................................k.......................................j.......................................................................................................................................................................................m.......m.......................l.......m......................................HTTP/1.1 200 OK..Server: nginx/1.7.6..Date: Tue, 28 Apr 2015 06:18:41 GMT..Content-Type: image/gif..Content-Length: 43..Last-Modified: Tue, 14 Oct 2014 07:09:07 GMT..Connection: keep-alive..ETag: \"543ccc13-2b\"..Accept-Ranges: bytes....1463_12657_13074_1286Hl..............................................................09......................................d@E......9......0k.......m......stat_log: 2015-04-28 14:18:41: ip[14.152.68.117] uri[ts=tb&t=diyEv&sid=i90xanag8a1&app_id=3689649&name=screen_size&value=1280*720] refer[http://qing.boolaw.com/lawer/5e04f6232_3253.html?bd_source_light=3689649] ua[Mozilla/5.0 (Linux; U; Android 4.3; zh-CN; HM 1SC Build/JLS36C) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/10.3.2.559 U3/0.8.0 Mobile Safari/534.30] cookie[BAIDUID=46B34EA4652375879425A4E832726D27:FG=1; BDUSS=nFUMnlyY0hjVml3SVRvazRObThiRy1EdWlGd1k4NHhtRHpQRUdiSWo1eEhYdEJVQVFBQUFBJCQAAAAAAAAAAAEAAAAoNvY11NrIy7zk0tHKx7XfMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEfRqFRH0ahUT; plus_lsv=a724012c16338104; PLUS=1; BDSFRCVID=0XIsJeC62lzjrnolhgPDeDYq125CDDnTH6aGMPlabW32BoK5cM95EG0PtvlQpYD-LV3FogKKWmOTH7bP; H_BDCLCKID_SF=JJ4OoI8-tKv5jtbN-J32q4D_MfOtetJyaR0jhpTbWJ5TMCo1246Kh44jMMJT0PQRy6CDoD5n3pb_ShPC-fJY0-A_-RteJfjyWbT22CIa3l02V-bChhQ2Wf3DXbDe0tRMW23UWl7mWI3DVKcnK4-Xj53LDM5; BDLIGHTID=0|1;] statics_ext[]  ....'$C....................... ..............]BBY..n........x-requested-with.................k.......k.......k.......k......Ti.......i......Wi......[i......Pi.......i......Ri..............................................................................W.[..................... (Baidu;.................:[...............Z.....1440AAC523A9E6D5F13:FG=1; BAIDUCUID=_i2r8_PDHi0WuH8jluvQagu72f_lOHiAlaB6808xvai4u28h_avNf_agv8gha2t1A; BDLIGHTID=1563095; BAIDU_WISE_UID=wapp_1430201810898_765] statics_ext[] .2DACACF4F03F5; BDLIGHTID=1550576; PLUS=1; html_rand=1429683228] statics_ext[]  .s_ext[]  ............................................................................................................... ................................r..............2y...............................t......@x......................0................r..............................................................................................px......................@x...............................j..............................................................................+.................<T....................'&?U.....................................x...............x......f........x...............x......................................................................................................................................................................................................................................................................................................................................................................0..0....[i......C........j..............3j......-.......Vk......................................................................................................................................................................................................................................................................................................................%.......`.......................stat_log: 2015-04-28 14:18:40: ip[218.205.237.42] uri[ts=5fg&t=comboapi&sid=jjpb2y2xxjr&app_id=3552199&dur=6525&mods=smartBar%257Capp%257Cpush%257Csocialshare] refer[http://tieba.baidu.com/f?from=1000468c&bd_page_type=1&ssid=0&uid=0&ref=www_utouchbdbox&pu=sz%401320_480%2Ccuid%40g82ailulvigTa2aU_u2Ligurv8l58vaC08Hw8gaKvaiSOv8ggu-Si_aL2t_ua2fHA%2Ccua%40_avLC_aE-i4qywoUfpw1zyaBXi4ra2iLA%2Ccut%405ymy6fJ0eMjeP-YNyaXrizubL8g4IQu85t3-PqqHB%2Cosname%40baiduboxapp%2Cctv%402%2Ccfrom%401000813a%2Ccen%40cuid_cua_cut%2Ccsrc%40app_mainbox_txt%2Cta%40utouchbdbox_2_4.2_6_6.4&lid=10989391720526757209&baiduid=F01B1C9C1F906E72107BBC14B431F5AA&kw=%D1%F8%D1%F2&fr=ala0&mo_device=1&vit=aladdin&pn=0&] ua[Mozilla/5.0 (Linux; U; Android 4.2.2; zh-cn; Lenovo S898t Build/JDQ39) AppleWebKit/534.24 (KHTML, like Gecko) Version/4.0 Mobile Safari/534.24 T5/2.0 baiduboxapp/6.4 (Baidu; P1 4.2.2)] cookie[SUV=1387586070993279; BIDUPSID=55F40F2E03F41774EA2A768962DC6B57; pgv_pvid=9854442954; CIGDCJZMP=1428229969; dm10=15%7C1428230200%7C0%7C%7C%7C%7C%7C1422017794%7C1422017794%7C1428140740%7C1428229969%7C133-735019-3170756-52b1866c1e0e6%7C0%7C%7C; dm_rff10=m.baidu.com%252Fs%253Ftn%253Dzbios%2526pu%253Dsz%2525401320_480%25252Ccuid%252540g82ailulvigTa2aU_u2Ligurv8l58vaC08Hw8gaKvaiSOv8ggu-Si_aL2t_ua2fHA%25252Ccua%252540_avLC_aE-i4qywoUfpw1zyaBXi4sa2iLA%25252Ccut%2525405ymy6fJ0eMjeP-YNyaXrizubL8g4IQu85t3-PqqHB%25252Cosname%252540baiduboxapp%25252Cctv%2525402%25252Ccfrom%2525401000813a%25252Ccen%252540cuid_cua_cut%25252Ccsrc%252540app_mainbox_txt%2526bd_page_type%253D1%2526word%253DLmNKNJ7HDDa%25252B%252539dRk%25257Au1DuEOhtFRC%25255Ab8gmQQ88C5i2%252539QYl1lAJsvm0S7mEKHx%25252Bt%25257AcQRbNjnvnQmElv%25252BvC%25252FjJCbA%25253D%25253D%2526cki%253D1%2526from%253D1000468c%2526pkgname%253Dcom.baidu.searchbox%2526network%253D1_0%2526sa%253Dkh_2%2526ss%253D01%5B%5Dm.baidu.com%252Ffrom%253D1000468c%252Fbd_page_type%253D1%252Fssid%253D0%252Fuid%253D0%252Fbaiduid%253DBD6384064F38B5EEB520C89803EEB103%252Fw%253D0_10_%2525E5%2525A5%252594%2525E5%2525A5%252594%252Ft%253Dzbios%252Fl%253D1%252Ftc%253Fref%253Dwww_zbios%2526pu%253Dsz%2525401320_480%25252Ccuid%252540g82ailulvigTa2aU_u2Ligurv8l58vaC08Hw8gaKvaiSOv8ggu-Si_aL2t_ua2fHA%25252Ccua%252540_avLC_aE-i4qywoUfpw1zyaBXi4sa2iLA%25252Ccut%2525405ymy6fJ0eMjeP-YNyaXrizubL8g4IQu85t3-PqqHB%25252Cosname%252540baiduboxapp%25252Cctv%2525402%25252Ccfrom%2525401000813a%25252Ccen%252540cuid_cua_cut%25252Ccsrc%252540app_mainbox_txt%25252Cta%252540zbios_2_4.2_6_6.2%2526lid%253D14222423388174270890%2526order%253D1%2526vit%253Dosres%2526fm%253Dalop%2526tj%253Dwise_aladdin_car_1_0_10_l12%2526sec%253D804%2526di%253Dd1461b8878b92ba1%2526bdenc%253D1%2526nsrc%253DIlPT2AEptyoA_yixCFOxXnANedT62v3IJROD_yEK3z3xpUjte4viZQRAYDL6MnqMZpPPgTGclbkPgzLsR7Qz7aZ_%5B%5D0%5B%5D; dcad10=; dc_search10=; CIGDCID=133-735019-3170756-52b1866c1e0e6; CIGDCTP=0; CIGDCTS=0; CIGDCAD=; CIGDCSE=; CIGDCSCD=1429838116; PHPStat_FT_10000001=1531559626142; PHPStat_RT_10000001=1531559626142; PHPStat_MSRC_10000001=%3A%3Amarket_type_free_search%3A%3A%3A%3Abaidu%3A%3Aioqv6putrlqt0mbnul4tsvgkgwlpv6xswboqyhbav48dfgry%2539iepjnybsuqmnfjy%252b0jf%252fsigbc%257amwsbbrnkoow%253d%253d%3A%3A%3A%3A%3A%3Am.baidu.com%3A%3A%3A%3Apmf_from_free_search; PHPStat_MSRC_TYPE_10000001=pmf_from_free_search; pgv_pvi=9017807872; BDUSS=TFxcE1RUHhBZzdpTXJZbXYtY28zU1VGbXhNQ3VCbXhYS3VUTVF3UXduamJiV1ZWQVFBQUFBJCQAAAAAAAAAAAEAAABGPlhk0fjFo8LwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANvgPVXb4D1VY; BAIDU_WISE_UID=wapp_1430119113729_963; BAIDUID=F01B1C9C1F906E72107BBC14B431F5AA:FG=1; BAIDUCUID=g82ailulvigTa2aU_u2Ligurv8l58vaC08Hw8gaKvaiSOv8ggu-Si_aL2t_ua2fHA; WISE_HIS_PM=1; BAIDULOC=11994677_3613348_500_369_1531807895648] statics_ext[]  .3439_13203_13602_13161_13256_11623_13085_8498_10632] statics_ext[] ..0 (Linux; U; Android 4.3; zh-cn; Lenovo A788t Build/S104) AppleWebKit/534.24 (KHTML, like Gecko) Version/4.0 Mobile Safari/534.24 T5/2.0 baiduboxapp/6.3.1 (Baidu; P1 4.3)] cookie[BAIDUID=9hostconnectionrefererx-requested-withuser-agentaccept-encodingt.........................p.......................accept-languageaccept-charsetcookie.....................................................D........................................y.........0.....M_...................................................................................................................................................../home/hummer/nginx/html/s.gif...)\\@.....................C...ccc1........ .......\"543ccc13-2b\"y%22%3A%22%................+.......................+.......+.......................................................C....................................................................................................................................................................................... ...............................................................................................HTTP/1.1 200 OK..Server: nginx/1.7.6..Date: Tue, 28 Apr 2015 06:18:40 GMT..Content-Type: image/gif..Content-Length: 43..Last-Modified: Tue, 14 Oct 2014 07:09:07 GMT..Connection: keep-alive..ETag: \"543ccc13-2b\"..Accept-Ranges: bytes.........................P...............................................................`y......................................d@E......y......8...............stat_log: 2015-04-28 14:18:40: ip[122.227.250.235] uri[ts=1df&t=\[email protected][...r....+..H...9........w.3....f.....\".!.9.8.........5.............................3.2.....E.D...../...A.................................I...........4.2...................................................#.......d/JLS36C) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 OppoBrowser/3.3.0 Mobile Safari/534.30..Referer: https://bank.pingan.com.cn/ibp/WAPEBank/h5/www/index.html?cid=..Accept-Encoding: gzip,deflate..Accept-Language: zh-CN,zh;q=0.8..Cookie: BAIDUID=5A4635BBC5B67B9F6D744D79535E2D7F:FG=1; PLUS=1; BDSFRCVID=H5DsJeCCxG3TngOlBjbeW1BlQTCm5dQvyBoM3J; H_BDCLCKID_SF=tJFHoI-KJIvEKR6NMJOh-t6H-UnLqMkt3T7Z0lOnMp05SbrTXPvIM4D83NQG2pon0KDt0UjKMloo8DO_e4bK-TrXeH_fJM5; BAIDU_WISE_UID=DC85C8019834B214BD6FAF17B9F85927; html_rand=1429427105.....rc3......F.(l0f.:...........Safari/534.24 T5/2.0 light/1.0 baiduboxapp/6.5 (Baidu; P1 4.3)..Accept-Encoding: gzip,deflate..Accept-Language: zh-CN, en-US..Accept-Charset: utf-8, iso-8859-1, utf-16, *;q=0.7..Cookie: BAIDUID=119003BF4A4E7F9D368915FED110AC43:FG=1; plus_lsv=f3642adac024c00f; PLUS=1; BIDUPSID=119003BF4A4E7F9D368915FED110AC43; BDUSS=GZ5NGNSUXJlRHlKaU5sb1ktY281SGN6Yll5WEx0QWpZQ3Z0Q3QtV1Q5SDROVzlWQVFBQUFBJCQAAAAAAAAAAAEAAABaM5FVbmhwbLrDxq~BwQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPioR1X4qEdVO; BAIDULOC=13386418_3446253_47_293_1430977342301; WISE_HIS_PM=1; BDSFRCVID=M_PsJeCCxG3Tdj7lswaIHUWWbj_f1lhAv0Uz3J; H_BDCLCKID_SF=tRk8oK0hfIvDHJTI5t5HhICV-frb-C62aKDs--c7-hcqEpO9QTbxb-TWhhbftCr83Tb4BxbvQJn0Efnqyj_BDUThDHt8J5-Dfn3fL-08KJjEe45P-tP_-P4DePcdQnJZ5m7mXp0bQnb8MnRR5PQzyhLi3U5By-KDaIbCLDJGMDOkbRO4-TFhe5byjf5; BDLIGHTID=3784585..........=.A.{coN.m.D..............S.V....L....q.z.<&...X...._........XLpt-Encoding: gzip, deflate.........|~...W.1J>..i. .........53A1%25257D%2526reqData%253D%25257B%252522cf%252522%25253A%252522lightapp%252522%25257D HTTP/1.1..Host: stat.zhidahao.baidu.com..Connection: keep-alive..Referer: https://zhifu.baidu.com/proxy/req/newcashier?customerId=3&deviceType=2&orderCreateTime=1430977427&orderId=1952820&service=cashier&payAmount=2400&originalAmount=4400&notifyUrl=http%3A%2F%2Ftitanic.dianying.baidu.com%2Fapi%2FlbsCallback%2FpayCallback&title=%E4%BD%95%E4%BB%A5%E7%AC%99%E7%AE%AB%E9%BB%98&mobile=13970014937&itemInfo=%5B%7B%22id%22%3A9446%2C%22name%22%3A%22%E4%BD%95%E4%BB%A5%E7%AC%99%E7%AE%AB%E9%BB%98%22%2C%22price%22%3A2200%2C%22number%22%3A2%7D%5D&signType=1&sign=b8f81937a1ec58a63e9090a7a6b1da67&passuid=1291636820&sdk=0&returnUrl=http%3A%2F%2Fm.dianying.baidu.com%2Fticket%2Fpayback%3FmOrderId%3D3071342%26c%3D163%26sfrom%3Dwise_cinema_app&failUrl=http%3A%2F%2Fm.dianying.baidu.com%2Fticket%2Fconfirm%3ForderId%3D3071342%26sfrom%3Dwise_cinema_app%26from%3Dwebapp%26sub_channel%3Dbaiduboxapp%257Cwise%257Clight_null%257Cwz_dianyingyuan%26c%3D163%26cc%3D%26crt%3Dm%26lng%3D12907276%26lat%3D3314076%26kehuduan%3D&defaultResPage=0&tpl=2&extData=%7B%22wallet%22%3A%22type%3A1%3Bdianying%22%2C%22dianying%22%3A1%7D&reqData=%7B%22cf%22%3A%22lightapp%22%7D..Accept: */*..User-Agent: Mozilla/5.0 (Linux; U; Android 4.4.2; zh-cn; H60-L02 Build/HDH60-L02) AppleWebKit/534.24 (KHTML, like Gecko) Version/4.0 Mobile Safari/534.24 T5/2.0 light/1.0 baiduboxapp/6.5 (Baidu; P1 4.4.2)..Accept-Encoding: gzip,deflate..Accept-Language: zh-CN, en-US..Accept-Charset: utf-8, iso-8859-1, utf-16, *;q=0.7..Cookie: BAIDU_WISE_UID=A33022CAB38778CA19C1F1FC321A1FF0; html_rand=1425362026; BAIDUID=2E0EBACD0D120D15FE785E829320B5BE:FG=1; BDUSS=GJ3aWtiTW5QZnE3elVoZk82UGQ2bGwyTjJSNmNUQ2FpTVFBV3Z5ZkpUbjdGV2xWQVFBQUFBJCQAAAAAAAAAAAEAAABU0PxMamVzc2llODYxMDk5MVkAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPuIQVX7iEFVU; BAIDUCUID=_i-6i_8b28_PaBip_iHai0uOB80vi2tL_uSEugal-i8Sa283guBQ8_uQ28_Ca2fHA; BAIDULOC=12907276_3314076_170_163_1430977384601; WISE_HIS_PM=1; BDLIGHTID=2387396|1; BAIDUMOVIELOC=12907276_3314076_1000_163_1430977423010....'G.....N..jS6.$.#m..................efaultResPage=0&tpl=2&extData=%7B%22wallet%22%3A%22type%3A1%3Bdianying%22%2C%22dianying%22%3A1%7D&reqData=%7B%22cf%22%3A%22lightapp%22%7D..Accept-Encoding: gzip, deflate....>..L....\\....V.y.U.................9808........$3..kC>.Hv%3.n......1582_1000_132_1430919010474.......v....A.vN.Lg..n...............54_2800093_1000_255_1430900526126........5......m.FF...$........\"543ccc13-2b\"...........................+.......+................................5......................\\...............@4...................................................................................................................................................................... ................7.......7......................(6......%7......................................HTTP/1.1 200 OK..Server: nginx/1.7.6..Date: Tue, 28 Apr 2015 06:36:14 GMT..Content-Type: image/gif..Content-Length: 43..Last-Modified: Tue, 14 Oct 2014 07:09:07 GMT..Connection: keep-alive..ETag: \"543ccc13-2b\"..Accept-Ranges: bytes....Accept-Ranges: bytes..5...............................................................#[email protected]#.......4......(7......stat_log: 2015-04-28 14:36:14: ip[60.6.208.30] uri[ts=26&t=pv&sid=i90xx5niife&app_id=2123454&smb=no] refer[http://qinhuangdao.baixing.com/m/chushi/a707697258.html] ua[Mozilla/5.0 (Linux; U; Android 4.4.4; zh-CN; HM NOTE 1LTETD Build/KTU84P) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/10.2.1.550 U3/0.8.0 Mobile Safari/534.30] cookie[BAIDUID=F7705424DF78944DE2F87E4C4A6677E5:FG=1; plus_lsv=a724012c16338104a0z4; PLUS=1] statics_ext[]  .ID=F3E4F7B4418A415D37BCDC4F2737A0F0:FG=1; BDSFRCVID=OoPsJeCCY481b9olhg3n-M_IGgKK0gOTJf6DUW-iRc0nfvAwFjrLEG0Ptx8gywL-LSWoogKK0gOTH65P; H_BDCLCKID_SF=JJu8_CIXJCvVKR5g-tu_-P4DeNrR3RJZ5mAqotn-aKjTVJRdbTQ-qfumytJMB5QCtn7naIQqa43xElQT0T3f5UAzj-nLJpO43bRTaq7sL4JZs56pbt_VhP-UyPRLWh37JJTTVD0KJK8WMKDrK-QJbDCV-frb-C62aKDs-n7a-hcqEIL45J7aK4ughM7MLpKLBGOAKb3cJlD2hUbSj4LW2--vXUbmBhc45HOW2fjX2h5nhMJmjPvGKhFvqtFH3Jcy523iab6vQpP-MftujTD2jj5QDNRf-b-XMC5OBRu8Kb7VbI0wDbbkbfJBDGO0Knc0LCJ30b3gHl6rOq3TyToND5t7yajKqU7HtD7BQb5SaCbTqCbO3PbpQT8r5aJQQROk3PjuaIQ7ab3vOpvzXpO1j6LreGDtt5-Dtb-sW6uXfRbHjjrnh6RAbxFyyxomtjjQbIb2oUos2n3GHj6EBUrnbUn0LH0eLUkqKCjOLUAyQ-OoOt3zLp50Kq_QQttjQUT9aN6jhl-EtJQ0VJ7TyURvhf47yaDtQTIqtJKtVCIafbC_eJbpMDTjhPrM3h8LbMT-0bFHXPoOtCOxDbnTWMFVXq4PQUJiXUrbbHn7_JjEbMbIsR3bD-ObXM53XUcaqxQxtNRZ2bRl-UTUKJjNbDcobUPUyUc9LUkqJG4E_DtyJIKaMKv6-J0_Kb8O-fuX5-RLf2OybPOF5lOToD-9DtKBhPAJbNbXexrdWmvMahkM5h7xORLCQhoRqtFw-N3XKJ5Cb2cBQqRN3KJmf-P9bnrbXKuT0nJy2-biWbRM2MbdJD5mbRO4-TFhjTQWjxK; BDLIGHTID=0|1; H_LOC_APP=%7B%22crd%22%3A%2211845889.240030_3428086.955299_73.45967864990234%22%2C%22t%22%3A%221430202761773%22%2C%22tp%22%3A%22gl%22%2C%22street%22%3A%22%E7%9F%BF%E6%9F%8F%E5%85%AC%E8%B7%AF%22%2C%22addr%22%3A%22%E9%87%8D%E5%BA%86%E5%B8%82%E6%B2%99%E5%9D%AA%E5%9D%9D%E5%8C%BA%E7%9F%BF%E6%9F%8F%E5%85%AC%E8%B7%AF%22%2C%22cc%22%3A%22132%22%2C%22dist%22%3A%22%E6%B2%99%E5%9D%AA%E5%9D%9D%E5%1!......%2C%22city%22%3A%22%E9%87%8D%E5%BA%86%E5%B8%82%22%7D] statics_ext[]  ....B........'......................................B.......~.......................................B......d.@.....................P................B..........JY..........c...............o........B......}../............................. ......0C......-..@............. ......$........ .......B......x$..]...........= ..............N ......?C.......]BBY..n........A\"..............S\"......HC.......}......pC.......V..W&.].........~...............~......tC.......~...............~..............'~.......C......%20current%20value.%0D%0A%0D%0A%20%20%20%20%20%20%20%20function%20p(s)%20%7B%0D%0A%0D%0A%20%20%20%20%20%20%20%20%20%20%20%20%2F%2F%20p%20accumulates%20text%20fragment%20pairs%20in%20an%20array.%20It%20inserts%20a%20comma%20before%20all%0D%0A%20%20%20%20%20%20%20%20%20%20%20%20%2F%2F%20except%20the%20first%20fragment%20pair.%0D%0A%0D%0A%20%20%20%20%20%20%20%20%20%20%20%20if%20(b)%20%7B%0D%0A%20%20%20%20%20%20%20%2hostacceptconnectioncookiegentre.?......user-agentreferereguageo 0..............  ..............Cookie. BAIDUID=F3E4F7B4418A415D37BCDC4F2737A0F0:FG=1; BDSFRCVID=OoPsJeCCY481b9olhg3n-M_IGgKK0gOTJf6DUW-iRc0nfvAwFjrLEG0Ptx8gywL-LSWoogKK0gOTH65P; H_BDCLCKID_SF=JJu8_CIXJCvVKR5g-tu_-P4DeNrR3RJZ5mAqotn-aKjTVJRdbTQ-qfumytJMB5QCtn7naIQqa43xElQT0T3f5UAzj-nLJpO43bRTaq7sL4JZs56pbt_VhP-UyPRLWh37JJTTVD0KJK8WMKDrK-QJbDCV-frb-C62aKDs-n7a-hcqEIL45J7aK4ughM7MLpKLBGOAKb3cJlD2hUbSj4LW2--vXUbmBhc45HOW2fjX2h5nhMJmjPvGKhFvqtFH3Jcy523iab6vQpP-MftujTD2jj5QDNRf-b-XMC5OBRu8Kb7VbI0wDbbkbfJBDGO0Knc0LCJ30b3gHl6rOq3TyToND5t7yajKqU7HtD7BQb5SaCbTqCbO3PbpQT8r5aJQQROk3PjuaIQ7ab3vOpvzXpO1j6LreGDtt5-Dtb-sW6uXfRbHjjrnh6RAbxFyyxomtjjQbIb2oUos2n3GHj6EBUrnbUn0LH0eLUkqKCjOLUAyQ-OoOt3zLp50Kq_QQttjQUT9aN6jhl-EtJQ0VJ7TyURvhf47yaDtQTIqtJKtVCIafbC_eJbpMDTjhPrM3h8LbMT-0bFHXPoOtCOxDbnTWMFVXq4PQUJiXUrbbHn7_JjEbMbIsR3bD-ObXM53XUcaqxQxtNRZ2bRl-UTUKJjNbDcobUPUyUc9LUkqJG4E_DtyJIKaMKv6-J0_Kb8O-fuX5-RLf2OybPOF5lOToD-9DtKBhPAJbNbXexrdWmvMahkM5h7xORLCQhoRqtFw-N3XKJ5Cb2cBQqRN3KJmf-P9bnrbXKuT0nJy2-biWbRM2MbdJD5mbRO4-TFhjTQWjxK; BDLIGHTID=0|1; H_LOC_APP=%7B%22crd%22%3A%2211845889.240030_3428086.955299_73.45967864990234%22%2C%22t%22%3A%221430202761773%22%2C%22tp%22%3A%22gl%22%2C%22street%22%3A%22%E7%9F%BF%E6%9F%8F%E5%85%AC%E8%B7%AF%22%2C%22addr%22%3A%22%E9%87%8D%E5%BA%86%E5%B8%82%E6%B2%99%E5%9D%AA%E5%9D%9D%E5%8C%BA%E7%9F%BF%E6%9F%8F%E5%85%AC%E8%B7%AF%22%2C%22cc%22%3A%22132%22%2C%22dist%22%3A%22%E6%B2%99%E5%9D%AA%E5%9D%9D%E5%8C%BA%22%2C%22city%22%3A%22%E9%87%8D%E5%BA%86%E5%B8%82%22%7D......Z.....kie[BAIDUID=88617A2BE0DAAD888C15BD48C75C75CC:FG=1; PLUS=1; plus_lsv=a724012c16338104] statics_ext[]  .rowser/2.1.1] cookie[BAIDUID=C8F5CA44121E3BE386C23ED01465647A:FG=1; BDUSS=FJkNU1ma1lCS3ViU1o1TG5LQUVWOTR2VjEtNTJnQ3J0LU4tZGxQMm9HQTAtQzFWQVFBQUFBJCQAAAAAAAAAAAEAAADyRfFey6fT47n-uf4AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADRrBlU0awZVR; BAIDUCUID=F727B5FCFD444062DE7CB2A16A2C8CCD%7C88622191500099; plus_lsv=a724012c16338104; PLUS=1; BAIDULOC=12691489.934546_3891362.0459629_59_269_1430202095125; BDLIGHTID=5513199] statics_ext[]  .NzeW91AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIYIwlSGCMJUT; PLUS=1; BAIDUID=1A840A904EA9289EFD9C0BF5C70F0B67:FG=1; BAIDU_WISE_UID=wapp_1429010223600_832; BDLIGHTID=0|1; BAIDU_DUP_lcr=http://m.sp.sm.cn/s?q=%E8%8B%B9%E6%9E%9C%E7%94%B5%E8%84%91%E5%BC%80%E6%9C%BA%E6%BB%B4%E6%BB%........................................................................................................................................................................................................................................................................................................HW..............................................(.......B..0....................................i...............S.........................................................................................................................................................................................................................................................................................................................0......................................R.......~..............'...............3........R........'.............?...............G........R..........JY..........]...............i........R......*........................................R......-..@.....................................R......x$..]...........................%........R......}../[email protected][email protected][email protected].......~..............n...............z.......yS........ .*..).........c...............d......mS...........([email protected]......\".......;d.......S......%2C%20%20%20%20%20%20%20%20%20%20%2F%2F%20The%20current%20key.%0D%0A%20%20%20%20%20%20%20%20%20%20%20%20v%3B%20%20%20%20%20%20%20%20%20%20%2F%2F%20The%20current%20value.%0D%0A%0D%0A%20%20%20%20%20%20%20%20function%20p(s)%20%7B%0D%0A%0D%0A%20%20%20%20%20%20%20%20%20%20%20%20%2F%2F%20p%20ahostconnectionacceptuser-agentdntrefereraccept-encodingcookierer.................[...... c......................accept-languagea.P.......................S......................B.......................................`C.........0.....M_...................................................................................................................................................../home/hummer/nginx/html/s.gif...)\\@......T..............M.......PT..............\"543ccc13-2b\"...................................................+.......+............................... U......................M...............PT......................................................................................................................................................................................#W......#W......................8V......5W......................................HTTP/1.1 200 OK..Server: nginx/1.7.6..Date: Tue, 28 Apr 2015 06:36:14 GMT..Content-Type: image/gif..Content-Length: 43..Last-Modified: Tue, 14 Oct 2014 07:09:07 GMT..Connection: keep-alive..ETag: \"543ccc13-2b\"..Accept-Ranges: bytes....90xx8rkm8j&app_id=551.U...............................................................C......................................d@E.....`C.......T......8W......stat_log: 2015-04-28 14:36:14: ip[119.40.39.47] uri[ts=5k&t=comboapi&sid=i90xx9h0ql8&app_id=3513069&dur=6&mods=account] refer[http://www.haha.mx/?qa] ua[Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.5.1000 Chrome/30.0.1599.101 Safari/537.36] cookie[BDUSS=85NUpEQ2tDS05LWkNNSUMyY3Z5cERtVGtFMi1KUk1-WHV2Tzh-dn51c1lZS05VQVFBQUFBJCQAAAAAAAAAAAEAAAA6wOgyanpfaGUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABjTe1QY03tUSE; BAIDUPSID=82D9D049EC57495476F305CBA5A165E5; _ga=GA1.2.2089136132.1422262249; BIDUPSID=3CBD9654B4D6F304FC33D8309E37277F; pgv_pvi=6935641088; MCITY=-131%3A; BAIDUID=26C755208DD65A4D15E4376E5A43C8A0:FG=1; BDRCVFR[gztQtCol733]=aeXf-1x8UdYcs; H_PS_PSSID=1436_7477_12772_13074_12867_13322_12692_10562_12722_13439_13602_11470_13086_8498_10633] statics_ext[]  .0_13086_8498_10633] statics_ext[]  ._uW28YPa2fHA; BDUSS=1IzOGZ0OEtGdH5uZDVHbndvSUItaklZMU5PY3RqblV2azRxUTF0LU4tM2w4bWxVQVFBQUFBJCQAAAAAAAAAAAEAAABCDUo~1ba9q7Tzsb7TqgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOVlQlTlZUJUa; BAIDULOC=13710646_5022814_64_351_1430203141496; BDLIGHTID=2490867|1] statics_ext[]  .E5%AE%9A%E5%B8%82%22%7D] statics_ext[] .MDlyNjlSSGNDZDM2WDI4OFRpRXRkRThPajVCekd1WEJqOVpSYjlVQVFBQUFBJCQAAAAAAAAAAAEAAADofRkJzsq1wNCh0KHNwQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFm4l1RZuJdUM; BDLIGHTID=1563095|1; BAIDULOC=12132682_4050779_116_233_1430202924456] statics_ext[]  ..................................0..0............+.................................................................................................................................................................................................................................................................................................................................................................0......................................b........'......................................b.......~.......................................b......d.@......................................b..........JY...................................c......}../....................................Pc......-..@....................+................c......x$..]..................................._c......d.@......................................c.......]BBY..n................................nc.......~..............Z...............f........c........ .*..)........8t..............It.......c.......-.._..}........Xt..............nt.......c......................{t...............t.......c.......~...............t...............t.......c.......]BBY..n........+~..............=~.......c......%0A%20%20%20%20%20%20%20%20a.push('%7D')%3B%0D%0A%20%20%20%20%20%20%20%20return%20a.join('')%3B%0D%0A%20%20%20%20%7D] refer[http://020.howjia.com/brand.php?id=1802] ua[Mozilla/5.0 (Macintosh; hostacceptconnectioncookieprofil._......user-agentreferer`[email protected]. BAIDU_WISE_UID=wapp_1402839662210_155; BAIDUID=EC69F6E77D0243F6E1624A16ACDA3CF3:FG=1; BAIDUCUID=g8HOfluwvi01a2u0_iHb8lPqBug6P2i_gaBWi_uK-a8Au28__aBQ8_uW28YPa2fHA; BDUSS=1IzOGZ0OEtGdH5uZDVHbndv\[email protected][...r....+..H...9........w.3....f.....\".!.9.8.........5.............................3.2.....E.D...../...A.................................I...........4.2...................................................#.......ncoding: gzip, deflate..Accept: */*..Accept-Language: zh-cn..Connection: keep-alive..User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 7_0_4 like Mac OS X) AppleWebKit/537.51.1 (KHTML, like Gecko) Mobile/11B554a unicom{version:[email protected]}[email protected]........:j..............AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABb4SlUW-EpVN; PLUS=1; WISE_HIS_PM=1..User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 8_3 like Mac OS X) AppleWebKit/600.1.4 (KHTML, like Gecko) Mobile/12F70 light%2F1.0 baiduboxapp/0_0.1.4.6_enohpi_6311_046/3.8_1C2%256enohPi/1099a/E3298753713CA0DC0E103F3C98087205C865269AEOGJGASJBTH/1..Accept-Language: zh-cn..Referer: https://www.baifubao.com/group/0/charge/0/start/0?activity_id=155757236137660307&tn=baifubaoapp-wallet&bd_vip=1&bd_ts=0977565&bd_framework=1&bd_vip=1&bd_source_light=3784585..Accept-Encoding: gzip, deflate.............o.o..S^.B..............uSv8_Ga2tWA; BAIDULOC=13543238_4683720_44_167_1430969324229; WISE_HIS_PM=0; BDUSS=dkSDY3UWlIU0F0LVVDUGZ0dkl3YUtvLTkzRUVsUUpuTXZqQTJXQkRmVnJoM0pWQVFBQUFBJCQAAAAAAAAAAAEAAADm32RCeW14b2ZrdTk0OTUxAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGv6SlVr-kpVan; BDLIGHTID=3784585.....2Y.....>.....Ko.2s.....bh....................261; BAIDUMOVIELOC=12510454_4094610_1000_153_1430977142119; BDLIGHTID=2387396; BDUSS=h1LTZ2Zjlia3BudE5LN1kzRVVRQnpTWn5TeUVKRWdQTDlvTXVGb3Jsbn4xLWxVQVFBQUFBJCQAAAAAAAAAAAEAAAD~YkUMbHhreWw3NwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAP9KwlT~SsJUZH; WISE_HIS_PM=1..Accept-Language: zh-cn..Connection: keep-alive..User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 8_3 like Mac OS X) AppleWebKit/600.1.4 (KHTML, like Gecko) Mobile/12F70 light%2F1.0 baiduboxapp/0_0.1.4.6_enohpi_6311_046/3.8_2C2%255enohPi/1099a/4F3B2A2357A5663DBD7B54E3005257F0DC76A306EFCNPKHJCBG/1....K>$.Z...+.wd@.>..!.a.....LOC=11856433_3421181_1000_132_1430976660328; BDLIGHTID=2387396|1; BDUSS=2xFMHRCMjRhT08yVFQweWJ5RElRc1hRMG16aUU3OTg1LXFPZURydlhsV1R1UEZVQVFBQUFBJCQAAAAAAAAAAAEAAAC1drdUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAJMrylSTK8pUR; WISE_HIS_PM=1..User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 7_1_2 like Mac OS X) AppleWebKit/537.51.2 (KHTML, like Gecko) Mobile/11D257 light%2F1.0 baiduboxapp/0_0.1.4.6_enohpi_6311_046/2.1.7_2C2%256enohPi/1099a/879638A44E44B6B613CFDC34905923EDE65E04C7COCDDHNHFLC/1..Accept-Language: zh-cn..Referer: https://zhifu.baidu.com/proxy/req/newcashier?customerId=3&deviceType=2&orderCreateTime=1430976673&orderId=1952309&service=cashier&payAmount=5400&originalAmount=7400&notifyUrl=http%3A%2F%2Ftitanic.dianying.baidu.com%2Fapi%2FlbsCallback%2FpayCallback&title=%E9%80%9F%E5%BA%A6%E4%B8%8E%E6%BF%80%E6%83%857&mobile=18996200067&itemInfo=%5B%7B%22id%22%3A9422%2C%22name%22%3A%22%E9%80%9F%E5%BA%A6%E4%B8%8E%E6%BF%80%E6%83%857%22%2C%22price%22%3A3700%2C%22number%22%3A2%7D%5D&signType=1&sign=7459cfbbd03904b89eb10dfcd7d903f3&passuid=1421309621&sdk=0&returnUrl=http%3A%2F%2Fm.dianying.baidu.com%2Fticket%2Fpayback%3FmOrderId%3D3070605%26c%3D132%26sfrom%3Dlightapp&failUrl=http%3A%2F%2Fm.dianying.baidu.com%2Fticket%2Fconfirm%3ForderId%3D3070605%26sfrom%3Dlightapp%26from%3Dwebapp%26sub_channel%3Dlight_null%257Csearchbox%257Clight_null%257Clight_null%26c%3D132%26cc%3D%26crt%3Dm%26lng%3D11856433.04%26lat%3D3421181.69%26kehuduan%3D&defaultResPage=0&tpl=2&extData=%7B%22wallet%22%3A%22type%3A1%3Bdianying%22%2C%22dianying%22%3A1%7D&reqData=%7B%22cf%22%3A%22lightapp%22%7D..Accept-Encoding: gzip, deflate.....(.I.`....,..lU....~.............A%22lightapp%22%7D..Accept-Encoding: gzip, deflate.......h.....'..1.v....~......AAAAAAAAAAAAAAAAPelQlX3pUJVZ; BAIDUCUID=_uSfiga0BigSP2iQgu-38_ar2805ivaogiSz8_8MSa8ea2aFju2Af_aq28ANL7qOC; BAIDUID=6857767170532805F91A377B35CA8260:FG=1; WISE_HIS_PM=1; BAIDULOC=12749917_4419973_69_266_1430972873304; BDLIGHTID=2387396; BAIDUMOVIELOC=12749917_4419973_1000_266_1430976029444......../....c...+.\\xy4........7.......!.&.........n.....L\\..d..~}.#.H.^-\".W...BU.....f.....A.I+.:{........8.......Y..\"$E/..[..A>.Kby......&_.5P.{S...\\...M.?....~.......6....3.X21;...}-..\\.H.X.d....lk......6....3.X21;...}-..\\.H.X.d....lk.2265497&it=1896&dt=4766&lt=4768&fr=2&rt=319] refer[http://wap.eastmoney.com/iphone/default.shtml] ua[Mozilla/5.0 (Linux; U; Android 4.2.2; zh-cn; Coolpad 7232 Build/JDQ39) AppleWebKit/534.24 (KHTML, like Gecko) Version/4.0 Mobile Safari/534.24 T5/2.0 baiduboxapp/4.9 (Baidu; P1 4.2.2)] cookie[BAIDUID=61E6BE27CD4BE71AC06635A1399D2A06:FG=1; BAIDU_WISE_UID=wapp_1429000413997_876; plus_lsv=add6e771f5cfdeefa0z4; PLUS=1; BAIDUCUID=YuSHa_ui28l3iB850uv2ugix2ujKOH8Ngavw8_iEHtKoL2XRB; BAIDULOC=12435981_4955245_59_321_1430202202769] statics_ext[] .UID=494686F2B3B7F05F8C96F5243CA74824:FG=1] statics_ext[]  .468; BAIDULOC=12977816.112024_4565785.474475_40_149_1430173423968] statics_ext[]  ._13322_12692_8502_12723_13438_13202_13601_13162_13256_11914_13086_8498] statics_ext[]  ......+.......................+.......+...............................H.......................a...............x.......................................................................................................................................................................................K.......K.......................`.......].......................................HTTP/1.1 200 OK..Server: nginx/1.7.6..Date: Tue, 28 Apr 2015 06:21:05 GMT..Content-Type: image/gif..Content-Length: 43..Last-Modified: Tue, 14 O........................................................................................................................................................................................................................................................................................................................................................8.......J..0....+.............................................../.........................................................................................................................................................................................................................................................................................................................0..............................................~..............................................-..@..............................................'.................................................JY..........................................x$..]...........................................}../.............................................qh.....................\".......................d.@.............'.............../................s...................................... ........V..W&.]................................(.......22%2C%22cc%22%3A%22268%22%2C%22dist%22%3A%22%E4%B8%AD%E5%8E%9F%E5%8C%BA%22%2C%22city%22%3A%22%E9%83%91%E5%B7%9E%E5%B8%82%22%7D; BDLIGHTID=1563095|1] statics_ext[]  ............................................................................................................................................................................................................................................................................hostconnectionrefereracceptuser-agentaccept-encodingcookQ...............................1.......accept-languageaccept-encodingea................X.......................0.......+..........................................0.....M_...................................................................................................................................................../home/hummer/nginx/html/s.gif.hu)\\@.....0.......................................\"543ccc13-2b\"...........\"543ccc13-2b\"cc13-2b\"...................+.......+...............................................................................................................................................................................................................................................................................................................................................HTTP/1.1 200 OK..Server: nginx/1.7.6..Date: Tue, 28 Apr 2015 06:23:27 GMT..Content-Type: image/gif..Content-Length: 43..Last-Modified: Tue, 14 Oct 2014 07:09:07 GMT..Connection: keep-alive..ETag: \"543ccc13-2b\"..Accept-Ranges: bytes....Accept-Ranges: bytes.................................................................P.......................................d@E.............x...............stat_log: 2015-04-28 14:23:27: ip[120.210.180.13] uri[ts=6w&t=pv&sid=i90xgu1xk2i&app_id=5795544&smb=no] refer[http://lightapp.baidu.com/site/www.dingdong.cn/?appid=2478654] ua[Mozilla/5.0 (iPhone; CPU iPhone OS 8_2 like Mac OS X) AppleWebKit/600.1.4 (KHTML, like Gecko) Mobile/12D508 rabbit%2F1.0 baiduboxapp/0_0.1.4.6_enohpi_4331_057/2.8_2C2%257enohPi/1099a/A28DE5C7ABB9460F8FFE05164C222B49707C31393ORQJLTTDKA/1] cookie[BAIDU_WISE_UID=C7AA6A0680C3A29622F7DA7C4F4EEFCE; BAIDUID=EFC44873B1C427BB935FEDC201CA7030:FG=1; BAIDULOC=12906708.929077_3720732.7977069_1000_298_1430202087629; BDLIGHTID=1982576; BDSFRCVID=Gn4sJeC62iPAgbRlhgTsbSSBSmEKI3JTH6am6frLzV2XWyDMn08pEG0Pt7lQpYD-eQajogKKWmOTH7oP; H_BDCLCKID_SF=JJ-j_IKKfIvbHttkbPQ_M4cH-UnLq-At3T7Z0l8Ktforjf7Ij4vsbUF--Rbg3qJLWbrKKMjmWIQHDDTqMxJp0ULQXlbRLncxLIJ4KKJxbI3SVtJXQKFKetDjhUJiBhbLBan7_b7xfD_MbK8Cej83h-FsMhOKbn8XKD600PK8Kb7Vbp3kjbbkbfJBDxrT34baLDJ30MbbKfO6ExOzQfRzDUI7yajK265h-eJE-Do9Q-TU8Juxeb3pQT8r5aJQQROk3Pj-bRj_ab3vOU3zXpO1jP4rexbH55uJJb4J3J; html_rand=1429788396; WISE_HIS_PM=0] statics_ext[]  .; BAIDUMOVIELOC=12961910_4837507_1000_131_1430202115791] statics_ext[]  .TjHwwYf0; H_PS_PSSID=13421_1467_13462_13074_10213_12868_13322_12691_10562_12722_13438_13601_13161_13257_12350_13086_8498_10633; BDSFRCVID=4HCsJeC62R0utWJlhIo47ndib22aYMQTH6aIjaoRR4b1P_P9VLr9EG0Pt7lQpYD-S28cogKK0mOTHvbP; H_BDCLCKID_SF=tRAOoCD-tDvbHJTz-tu_-4_tbh_X5-RLfbn75-OF5l8-hx_x5JORy4AJyfPJt-6b2CuHoJjwBxjxOKQpyt6HhpDwjMKDQpRTfGcrQDTN3KJmfK310J3ZQKu9DG722-biWbRL2MbdbJombRO4-TFKe530ef5; _ga=GA1.2.2028800645.1415101728] statics_ext[]  .800645.1415101728] statics_ext[]  .......................................................................................................................................................................................................................................................................................................0.............I...............O...............x$..]...........h...............y...............d.@.....................@........................~................................................'.................................................JY..........................................}../............................................-..@....................0.......................*...............................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................hostaccept-encodingcookie.......0.......connectionacceptA...............1.......Cookie. BDUSS=EN2YkhCMWdldTN-TFdyZlhya29Ub1VKc2lvOE00ZnFVWGxBQX5DVzEtQ2RkZXhVQVFBQUFBJCQAAAAAAAAAAAEAAACm8ytdAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAJ3oxFSd6MRUO; BAIDUID=0BCD29329D6EA33AB14CD604452A5FA4:FG=1; BAIDUCUID=0aSNflaC280EOSitlaHA80as2ulAu28-juvqtj8ov88zuv8fgu2q8gac28AOToqqC; BAIDULOC=12961910_4837507_200_131_1430201442980; WISE_HIS_PM=1; BDLIGHTID=2387396|1; BAIDUMOVIELOC=12961910_4837507_1000_131_1430202115791..Host. stat.zhidahao.baidu.com..Cache-Control. max-age=43200..Connection. keep-alive....F64ADB3DD681C577; MCITY=-%3A; BDUSS=1oRWRIYzRjdHJubW43aEFSWVdqODIwYjJHRTdESHlWYzZ4Yk1-TTdTVE1obVZWQUFBQUFBJCQAAAAAAAAAAAEAAAAS8mpcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMz5PVXM-T1VVk; BDRCVFR[feWj1Vr5u3D]=I67x6TjHwwYf0; H_PS_PSSID=13421_1467_13462_13074_10213_12868_13322_12691_10562_12722_13438_13601_13161_13257_12350_13086_8498_10633; BDSFRCVID=4HCsJeC62R0utWJlhIo47ndib22aYMQTH6aIjaoRR4b1P_P9VLr9EG0Pt7lQpYD-S28cogKK0mOTHvbP; H_BDCLCKID_SF=tRAOoCD-tDvbHJTz-tu_-4_tbh_X5-RLfbn75-OF5l8-hx_x5JORy4AJyfPJt-6b2CuHoJjwBxjxOKQpyt6HhpDwjMKDQpRTfGcrQDTN3KJmfK310J3ZQKu9DG722-biWbRL2MbdbJombRO4-TFKe530ef5; _ga=GA1.2.2028800645.1415101728....] uri[ts=1z&t=comboapi&sid=i90xgt4honn&app_id=2799432&dur=14&mods=account] refer[http://wap.eastmoney.com/3g/center/default.shtml] ua[Mozilla/5.0 (iPhone; CPU iPhone OS 8_1_1 like Mac OS X) AppleWebKit/600.1.4 (KHTML, like Gecko) Version/8.0 Mobile/12B436 Safari/600.1.4] cookie[BAIDUID=9BB11D2B5851C285D3831FFFD22CA73C:FG=1; BDLIGHTID=2799432] statics_ext[]  .......................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................1y......................................user-agentaccept-languagednt....................x......................./.......................................`..........0.....M_...................................................................................................................................................../home/hummer/nginx/html/s.gif...)\\@.....P...............(...............P0......\"543ccc13-2b\"...................................................+.......+.......................................................(.......................................................................................................................................................................................P0......................................................................\[email protected][...r....+..H...9........w.3....f.....\".!.9.8.........5.............................3.2.....E.D...../...A.................................I...........4.2...................................................#.......y_id%253D155757227137793570%2526tn%253Dbaifubaoapp-wallet HTTP/1.1..Host: stat.zhidahao.baidu.com..Connection: keep-alive..Referer: https://www.baifubao.com/group/0/charge/0/start/0?activity_id=155757227137793570&tn=baifubaoapp-wallet..X-Requested-With: com.baidu.searchbox..User-Agent: Mozilla/5.0 (Linux; U; Android 4.2.1; zh-cn; Lenovo K900 Build/JOP40D) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Mobile Safari/534.30 light/1.0 baiduboxapp/6.5 (Baidu; P1 4.2.1)..Accept-Encoding: gzip,deflate..Accept-Language: zh-CN, en-US..Accept-Charset: utf-8, iso-8859-1, utf-16, *;q=0.7..Cookie: BDUSS=p5M2wyallLMU5tbnViYm0wZlhRSHF1Y2ZJcHZZQ0ZOU3c3TUFxLWoweVpkMDFWQVFBQUFBJCQAAAAAAAAAAAEAAABG6nJMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAJnqJVWZ6iVVUV; BAIDUID=94E2CA1FD6A768E41DC026FC6F5997D7:FG=1; BAIDUCUID=_Ov480uOv8_EuvfH0OBga_8yvu0xi28oluvnulaA2i8Ku28F_u2I8_aL2t_Oa2t1A; BAIDULOC=12941612_4872117_63_131_1430975836689; WISE_HIS_PM=1; BDLIGHTID=3784585.....+I..$0`.!..d..e..`....H..LL..'..bR.N...S...S...8..q.....T.#zAXAI593J; H_BDCLCKID_SF=tRk8oK0hfIvbfP0k-4QEbRLV-fPX5-RLf56RB-OF5lOTJh0R3-O8jPAy5NQJJhvlMNcnMbLhannNfCJa26bke6oWeH-fJ6ksKD600t5tKRA_HRjYbb__-P4DenjeBbJZ5m7mXp0bQnb8MnRR5TLMDbv00M_tWh53Me6v5lIafCOkbCD6ej-bDjvM-xQ0KJQaKC8X3JjV5PK_Hn7zeP68LntpbtbmhU-eQInB_bRbb-tBqt3mW-4-XpKJ24Qv3xFtfR7ZVJO-KKC5hIKljMK; BDUSS=g1Y2NvM2NrOWFCQVF-N2ZrbnNyc1h0TX5oNHBEQjBzeE1jSE5EWWFsaUxoSEpWQVFBQUFBJCQAAAAAAAAAAAEAAAB3PcthAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIv3SlWL90pVaD; BDLIGHTID=3784585|1......>...3n....''-,.;............53D0%2526tpl%253D2%2526extData%253D%25257B%252522wallet%252522%25253A%252522type%25253A1%25253Bdianying%252522%25252C%252522dianying%252522%25253A1%25257D%2526reqData%253D%25257B%252522cf%252522%25253A%252522lightapp%252522%25257D HTTP/1.1..Host: stat.zhidahao.baidu.com..Connection: keep-alive..Referer: https://zhifu.baidu.com/proxy/req/newcashier?customerId=3&deviceType=2&orderCreateTime=1430977063&orderId=1952592&service=cashier&payAmount=5320&originalAmount=8400&notifyUrl=http%3A%2F%2Ftitanic.dianying.baidu.com%2Fapi%2FlbsCallback%2FpayCallback&title=%E5%A4%8D%E4%BB%87%E8%80%85%E8%81%94%E7%9B%9F2%EF%BC%9A%E5%A5%A5%E5%88%9B%E7%BA%AA%E5%85%83&mobile=15217321840&itemInfo=%5B%7B%22id%22%3A9445%2C%22name%22%3A%22%E5%A4%8D%E4%BB%87%E8%80%85%E8%81%94%E7%9B%9F2%EF%BC%9A%E5%A5%A5%E5%88%9B%E7%BA%AA%E5%85%83%22%2C%22price%22%3A4200%2C%22number%22%3A2%7D%5D&signType=1&sign=4f89ff32d3a971bc13a55f75cf7022b4&passuid=1457212772&sdk=0&returnUrl=http%3A%2F%2Fm.dianying.baidu.com%2Fticket%2Fpayback%3FmOrderId%3D3070993%26c%3D257%26sfrom%3Dwise_film_info_app&failUrl=http%3A%2F%2Fm.dianying.baidu.com%2Fticket%2Fconfirm%3ForderId%3D3070993%26sfrom%3Dwise_film_info_app%26from%3Dwebapp%26sub_channel%3Dlight_null%257Csearchbox%257Clight_null%257Clight_null%26c%3D257%26cc%3D%26crt%3Dm%26lng%3D12620342.00%26lat%3D2610474.00%26kehuduan%3D&defaultResPage=0&tpl=2&extData=%7B%22wallet%22%3A%22type%3A1%3Bdianying%22%2C%22dianying%22%3A1%7D&reqData=%7B%22cf%22%3A%22lightapp%22%7D..Accept: */*..User-Agent: Mozilla/5.0 (Linux; U; Android 4.4.4; zh-cn; vivo X5S L Build/KTU84P) AppleWebKit/534.24 (KHTML, like Gecko) Version/4.0 Mobile Safari/534.24 T5/2.0 light/1.0 baiduboxapp/6.5 (Baidu; P1 4.4.4)..Accept-Encoding: gzip,deflate..Accept-Language: zh-CN, en-US..Accept-Charset: utf-8, iso-8859-1, utf-16, *;q=0.7..Cookie: BAIDUID=BFA948BF451D64D19D678AB6E0B9B948:FG=1; BAIDUCUID=0aHuuli3SugKPviZ0iHbaguHv8glOSut08v6fgi6Ba8Pu2t1_avHt_aov8_Ga2tWA; BDUSS=lmSzh6NXMtfkFIYTRlUGhvdWRoRlVoYzJzdFE1TUZmclo3LX5iVzNIfnZOMWRWQVFBQUFBJCQAAAAAAAAAAAEAAABkTdtWAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAO-qL1Xvqi9VaV; BAIDULOC=12620342_2610474_68_257_1430976419896; WISE_HIS_PM=1; BDLIGHTID=2387396; BAIDUMOVIELOC=12620342_2610474_1000_257_1430977059090.....|...5.@.)qH....c.......7DBC80DEE88163AB66B5DFB33OGKAOPQTFD/1.....y!y..l..}....H........612677_1000_138_1430910073444.......V..D.3Q~.j..F8A.Y...........9_1430900160087.....|...W=......k....:a.........................t%25252Ccsrc%252540app_mainbox_txt%25252Cta%252540zbios_2_4.2_6_6.2%2526lid%253D14222423388174270890%2526order%253D1%2526vit%253Dosres%2526fm%253Dalop%2526tj%253Dwise_aladdin_car_1_0_10_l12%2526sec%253D804%2526di%253Dd1461b8878b92ba1%2526bdenc%253D1%2526nsrc%253DIlPT2AEptyoA_yixCFOxXnANedT62v3IJROD_yEK3z3xpUjte4viZQRAYDL6MnqMZpPPgTGclbkPgzLsR7Qz7aZ_%5B%5D0%5B%5D; dcad10=; dc_search10=; CIGDCID=133-735019-3170756-52b1866c1e0e6; CIGDCTP=0; CIGDCTS=0; CIGDCAD=; CIGDCSE=; CIGDCSCD=1429838116; PHPStat_FT_10000001=1531559626142; PHPStat_RT_10000001=1531559626142; PHPStat_MSRC_10000001=%3A%3Amarket_type_free_search%3A%3A%3A%3Abaidu%3A%3Aioqv6putrlqt0mbnul4tsvgkgwlpv6xswboqyhbav48dfgry%2539iepjnybsuqmnfjy%252b0jf%252fsigbc%257amwsbbrnkoow%253d%253d%3A%3A%3A%3A%3A%3Am.baidu.com%3A%3A%3A%3Apmf_from_free_search; PHPStat_MSRC_TYPE_10000001=pmf_from_free_search; pgv_pvi=9017807872; BDUSS=TFxcE1RUHhBZzdpTXJZbXYtY28zU1VGbXhNQ3VCbXhYS3VUTVF3UXduamJiV1ZWQVFBQUFBJCQAAAAAAAAAAAEAAABGPlhk0fjFo8LwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANvgPVXb4D1VY; BAIDU_WISE_UID=wapp_1430119113729_963; BAIDUID=F01B1C9C1F906E72107BBC14B431F5AA:FG=1; BAIDUCUID=g82ailulvigTa2aU_u2Ligurv8l58vaC08Hw8gaKvaiSOv8ggu-Si_aL2t_ua2fHA; WISE_HIS_PM=1; BAIDULOC=11994677_3613348_500_369_1531807895648..x-forwarded-for. 10.200.134.197..x-up-bear-type. GPRS/EDGE..Referer. http://tieba.baidu.com/f?from=1000468c&bd_page_type=1&ssid=0&uid=0&ref=www_utouchbdbox&pu=sz%401320_480%2Ccuid%40g82ailulvigTa2aU_u2Ligurv8l58vaC08Hw8gaKvaiSOv8ggu-Si_aL2t_ua2fHA%2Ccua%40_avLC_aE-i4qywoUfpw1zyaBXi4ra2iLA%2Ccut%405ymy6fJ0eMjeP-YNyaXrizubL8g4IQu85t3-PqqHB%2Cosname%40baiduboxapp%2Cctv%402%2Ccfrom%401000813a%2Ccen%40cuid_cua_cut%2Ccsrc%40app_mainbox_txt%2Cta%40utouchbdbox_2_4.2_6_6.4&lid=10989391720526757209&baiduid=F01B1C9C1F906E72107BBC14B431F5AA&kw=%D1%F8%D1%F2&fr=ala0&mo_device=1&vit=aladdin&pn=0&....0D%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20default%3A%0D%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20p(v.toJSONString())%3B%0D%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%7D%0D%0A%20%20%20%20%20%20%20%20%20%20%20%20%7D%0D%0A%20%20%20%20%20%20%20%20%7D%0D%0A%0D%0A%20%20%20%20%20%20%20%20%20%20%2F%2F%20Join%20all%20of%20the%20fragments%20together%20and%20return.%0D%0A%0D%0A%20%20%20%20%20%20%20%20a.push('%7D')%3B%0D%0A%20%20%20%20%20%20%20%20return%20a.join('')%3B%0D%0A%20%20%20%20%7D] refer[http://020.howjia.com/shownews-57199.html] ua[Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like.........q......Py......................cookiekiPF......x-forwarded-for6.F......hostcache-controlconnectionEBAD0.................j......................L........U...............................9.........0.....M_...................................................................................................................................................../home/hummer/nginx/html/s.gif.VI)\\@......j..................GSOY.j..............\"543ccc13-2b\"QpYD-MKGoogKK3gOTH47P; H_BDCLCKID_S................+.......+................................k.......................................j.......................................................................................................................................................................................m.......m.......................l.......m......................................HTTP/1.1 200 OK..Server: nginx/1.7.6..Date: Tue, 28 Apr 2015 06:18:41 GMT..Content-Type: image/gif..Content-Length: 43..Last-Modified: Tue, 14 Oct 2014 07:09:07 GMT..Connection: keep-alive..ETag: \"543ccc13-2b\"..Accept-Ranges: bytes....1463_12657_13074_1286Hl..............................................................09......................................d@E......9......0k.......m......stat_log: 2015-04-28 14:18:41: ip[14.152.68.117] uri[ts=tb&t=diyEv&sid=i90xanag8a1&app_id=3689649&name=screen_size&value=1280*720] refer[http://qing.boolaw.com/lawer/5e04f6232_3253.html?bd_source_light=3689649] ua[Mozilla/5.0 (Linux; U; Android 4.3; zh-CN; HM 1SC Build/JLS36C) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/10.3.2.559 U3/0.8.0 Mobile Safari/534.30] cookie[BAIDUID=46B34EA4652375879425A4E832726D27:FG=1; BDUSS=nFUMnlyY0hjVml3SVRvazRObThiRy1EdWlGd1k4NHhtRHpQRUdiSWo1eEhYdEJVQVFBQUFBJCQAAAAAAAAAAAEAAAAoNvY11NrIy7zk0tHKx7XfMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEfRqFRH0ahUT; plus_lsv=a724012c16338104; PLUS=1; BDSFRCVID=0XIsJeC62lzjrnolhgPDeDYq125CDDnTH6aGMPlabW32BoK5cM95EG0PtvlQpYD-LV3FogKKWmOTH7bP; H_BDCLCKID_SF=JJ4OoI8-tKv5jtbN-J32q4D_MfOtetJyaR0jhpTbWJ5TMCo1246Kh44jMMJT0PQRy6CDoD5n3pb_ShPC-fJY0-A_-RteJfjyWbT22CIa3l02V-bChhQ2Wf3DXbDe0tRMW23UWl7mWI3DVKcnK4-Xj53LDM5; BDLIGHTID=0|1;] statics_ext[]  ....'$C....................... ..............]BBY..n........x-requested-with.................k.......k.......k.......k......Ti.......i......Wi......[i......Pi.......i......Ri..............................................................................W.[..................... (Baidu;.................:[...............Z.....1440AAC523A9E6D5F13:FG=1; BAIDUCUID=_i2r8_PDHi0WuH8jluvQagu72f_lOHiAlaB6808xvai4u28h_avNf_agv8gha2t1A; BDLIGHTID=1563095; BAIDU_WISE_UID=wapp_1430201810898_765] statics_ext[] .2DACACF4F03F5; BDLIGHTID=1550576; PLUS=1; html_rand=1429683228] statics_ext[]  .s_ext[]  ............................................................................................................... ................................r..............2y...............................t......@x......................0................r..............................................................................................px......................@x...............................j..............................................................................+.................<T....................'&?U.....................................x...............x......f........x...............x......................................................................................................................................................................................................................................................................................................................................................................0..0....[i......C........j..............3j......-.......Vk......................................................................................................................................................................................................................................................................................................................%.......`.......................stat_log: 2015-04-28 14:18:40: ip[218.205.237.42] uri[ts=5fg&t=comboapi&sid=jjpb2y2xxjr&app_id=3552199&dur=6525&mods=smartBar%257Capp%257Cpush%257Csocialshare] refer[http://tieba.baidu.com/f?from=1000468c&bd_page_type=1&ssid=0&uid=0&ref=www_utouchbdbox&pu=sz%401320_480%2Ccuid%40g82ailulvigTa2aU_u2Ligurv8l58vaC08Hw8gaKvaiSOv8ggu-Si_aL2t_ua2fHA%2Ccua%40_avLC_aE-i4qywoUfpw1zyaBXi4ra2iLA%2Ccut%405ymy6fJ0eMjeP-YNyaXrizubL8g4IQu85t3-PqqHB%2Cosname%40baiduboxapp%2Cctv%402%2Ccfrom%401000813a%2Ccen%40cuid_cua_cut%2Ccsrc%40app_mainbox_txt%2Cta%40utouchbdbox_2_4.2_6_6.4&lid=10989391720526757209&baiduid=F01B1C9C1F906E72107BBC14B431F5AA&kw=%D1%F8%D1%F2&fr=ala0&mo_device=1&vit=aladdin&pn=0&] ua[Mozilla/5.0 (Linux; U; Android 4.2.2; zh-cn; Lenovo S898t Build/JDQ39) AppleWebKit/534.24 (KHTML, like Gecko) Version/4.0 Mobile Safari/534.24 T5/2.0 baiduboxapp/6.4 (Baidu; P1 4.2.2)] cookie[SUV=1387586070993279; BIDUPSID=55F40F2E03F41774EA2A768962DC6B57; pgv_pvid=9854442954; CIGDCJZMP=1428229969; dm10=15%7C1428230200%7C0%7C%7C%7C%7C%7C1422017794%7C1422017794%7C1428140740%7C1428229969%7C133-735019-3170756-52b1866c1e0e6%7C0%7C%7C; dm_rff10=m.baidu.com%252Fs%253Ftn%253Dzbios%2526pu%253Dsz%2525401320_480%25252Ccuid%252540g82ailulvigTa2aU_u2Ligurv8l58vaC08Hw8gaKvaiSOv8ggu-Si_aL2t_ua2fHA%25252Ccua%252540_avLC_aE-i4qywoUfpw1zyaBXi4sa2iLA%25252Ccut%2525405ymy6fJ0eMjeP-YNyaXrizubL8g4IQu85t3-PqqHB%25252Cosname%252540baiduboxapp%25252Cctv%2525402%25252Ccfrom%2525401000813a%25252Ccen%252540cuid_cua_cut%25252Ccsrc%252540app_mainbox_txt%2526bd_page_type%253D1%2526word%253DLmNKNJ7HDDa%25252B%252539dRk%25257Au1DuEOhtFRC%25255Ab8gmQQ88C5i2%252539QYl1lAJsvm0S7mEKHx%25252Bt%25257AcQRbNjnvnQmElv%25252BvC%25252FjJCbA%25253D%25253D%2526cki%253D1%2526from%253D1000468c%2526pkgname%253Dcom.baidu.searchbox%2526network%253D1_0%2526sa%253Dkh_2%2526ss%253D01%5B%5Dm.baidu.com%252Ffrom%253D1000468c%252Fbd_page_type%253D1%252Fssid%253D0%252Fuid%253D0%252Fbaiduid%253DBD6384064F38B5EEB520C89803EEB103%252Fw%253D0_10_%2525E5%2525A5%252594%2525E5%2525A5%252594%252Ft%253Dzbios%252Fl%253D1%252Ftc%253Fref%253Dwww_zbios%2526pu%253Dsz%2525401320_480%25252Ccuid%252540g82ailulvigTa2aU_u2Ligurv8l58vaC08Hw8gaKvaiSOv8ggu-Si_aL2t_ua2fHA%25252Ccua%252540_avLC_aE-i4qywoUfpw1zyaBXi4sa2iLA%25252Ccut%2525405ymy6fJ0eMjeP-YNyaXrizubL8g4IQu85t3-PqqHB%25252Cosname%252540baiduboxapp%25252Cctv%2525402%25252Ccfrom%2525401000813a%25252Ccen%252540cuid_cua_cut%25252Ccsrc%252540app_mainbox_txt%25252Cta%252540zbios_2_4.2_6_6.2%2526lid%253D14222423388174270890%2526order%253D1%2526vit%253Dosres%2526fm%253Dalop%2526tj%253Dwise_aladdin_car_1_0_10_l12%2526sec%253D804%2526di%253Dd1461b8878b92ba1%2526bdenc%253D1%2526nsrc%253DIlPT2AEptyoA_yixCFOxXnANedT62v3IJROD_yEK3z3xpUjte4viZQRAYDL6MnqMZpPPgTGclbkPgzLsR7Qz7aZ_%5B%5D0%5B%5D; dcad10=; dc_search10=; CIGDCID=133-735019-3170756-52b1866c1e0e6; CIGDCTP=0; CIGDCTS=0; CIGDCAD=; CIGDCSE=; CIGDCSCD=1429838116; PHPStat_FT_10000001=1531559626142; PHPStat_RT_10000001=1531559626142; PHPStat_MSRC_10000001=%3A%3Amarket_type_free_search%3A%3A%3A%3Abaidu%3A%3Aioqv6putrlqt0mbnul4tsvgkgwlpv6xswboqyhbav48dfgry%2539iepjnybsuqmnfjy%252b0jf%252fsigbc%257amwsbbrnkoow%253d%253d%3A%3A%3A%3A%3A%3Am.baidu.com%3A%3A%3A%3Apmf_from_free_search; PHPStat_MSRC_TYPE_10000001=pmf_from_free_search; pgv_pvi=9017807872; BDUSS=TFxcE1RUHhBZzdpTXJZbXYtY28zU1VGbXhNQ3VCbXhYS3VUTVF3UXduamJiV1ZWQVFBQUFBJCQAAAAAAAAAAAEAAABGPlhk0fjFo8LwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANvgPVXb4D1VY; BAIDU_WISE_UID=wapp_1430119113729_963; BAIDUID=F01B1C9C1F906E72107BBC14B431F5AA:FG=1; BAIDUCUID=g82ailulvigTa2aU_u2Ligurv8l58vaC08Hw8gaKvaiSOv8ggu-Si_aL2t_ua2fHA; WISE_HIS_PM=1; BAIDULOC=11994677_3613348_500_369_1531807895648] statics_ext[]  .3439_13203_13602_13161_13256_11623_13085_8498_10632] statics_ext[] ..0 (Linux; U; Android 4.3; zh-cn; Lenovo A788t Build/S104) AppleWebKit/534.24 (KHTML, like Gecko) Version/4.0 Mobile Safari/534.24 T5/2.0

漏洞证明：

随便测试一个用户的cookie：

BDUSS=p5M2wyallLMU5tbnViYm0wZlhRSHF1Y2ZJcHZZQ0ZOU3c3TUFxLWoweVpkMDFWQVFBQUFBJCQAAAAAAAAAAAEAAABG6nJMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAJnqJVWZ6iVVUV

修复方案：

应该懂。

版权声明：转载请注明来源杀器王子@乌云

漏洞回应

厂商回应：

危害等级：高

漏洞Rank：15

确认时间：2015-05-07 16:57

厂商回复：

感谢

WooYun.org

漏洞概要关注数(24) 关注此漏洞

缺陷编号：wooyun-2015-0112623

漏洞标题：百度心脏出血漏洞导致部分用户账户可被控制(百度钱包资金可被操作)

相关厂商：百度

漏洞作者：杀器王子

提交时间：2015-05-07 14:03

修复时间：2015-06-21 16:58

公开时间：2015-06-21 16:58

漏洞类型：系统/服务补丁不及时

危害等级：高

自评Rank：20

漏洞状态：厂商已经确认

漏洞来源： http://www.wooyun.org，如有疑问或需要帮助请联系 [email protected]

Tags标签：无

4人收藏收藏
分享漏洞：

漏洞详情

披露状态：

简要描述：

详细说明：

漏洞证明：

修复方案：

版权声明：转载请注明来源杀器王子@乌云

漏洞回应

厂商回应：

厂商回复：

最新状态：

WooYun.org

漏洞概要 关注数(24) 关注此漏洞

缺陷编号：wooyun-2015-0112623

漏洞标题：百度心脏出血漏洞导致部分用户账户可被控制(百度钱包资金可被操作)

相关厂商：百度

漏洞作者： 杀器王子

提交时间：2015-05-07 14:03

修复时间：2015-06-21 16:58

公开时间：2015-06-21 16:58

漏洞类型：系统/服务补丁不及时

危害等级：高

自评Rank：20

漏洞状态：厂商已经确认

Tags标签： 无

4人收藏 收藏 var token=""; var id="wooyun-2015-0112623"; $(".btn-fav").click(function(){ CollectBug(id,token); }); 分享漏洞：

漏洞详情

披露状态：

简要描述：

详细说明：

漏洞证明：

修复方案：

版权声明：转载请注明来源 杀器王子@乌云

漏洞回应

厂商回应：

厂商回复：

最新状态：

漏洞概要关注数(24) 关注此漏洞

漏洞作者：杀器王子

Tags标签：无

4人收藏收藏
分享漏洞：

版权声明：转载请注明来源杀器王子@乌云