Overview

URL ccdlwl.com/news/20150621/1139.html
IP47.52.236.127
ASN
Location Canada
Report completed2018-07-13 00:05:23 CEST
StatusLoading report..
urlQuery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro
Timestamp Severity Source IP Destination IP Alert
2018-07-13 00:00:37 CEST 1  47.52.236.127 Client IP ET TROJAN RAMNIT.A M1
2018-07-13 00:00:36 CEST 1  47.52.236.127 Client IP ET CURRENT_EVENTS DRIVEBY EXE Embeded in Page Likely Evil M1
2018-07-13 00:00:36 CEST 1  47.52.236.127 Client IP ET TROJAN RAMNIT.A M2
2018-07-13 00:00:36 CEST 1  47.52.236.127 Client IP ET TROJAN PE EXE or DLL Windows file download Text


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2018-07-13 2 ccdlwl.com/news/20150621/1139.html Malware
2018-07-13 2 ccdlwl.com/templets/default/js/plugin.js Malware
2018-07-13 2 ccdlwl.com/templets/default/js/all-min.js Malware
2018-07-13 2 ccdlwl.com/templets/default/images/bitbug_favicon.ico Malware
2018-07-13 2 ccdlwl.com/templets/default/js/jquery_banner.js Malware
2018-07-13 2 ccdlwl.com/templets/default/images/flashplay.swf Malware
2018-07-13 2 ccdlwl.com/images/ccdl.swf Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 8 reports on IP: 47.52.236.127

Date UQ / IDS / BL URL IP
2018-07-16 23:18:16 +0200
0 - 4 - 3 qdandehuojia.com/gsxw/20130520274.html 47.52.236.127
2018-07-10 23:53:21 +0200
0 - 4 - 4 qdandehuojia.com/guestbook.html 47.52.236.127
2018-07-05 22:03:07 +0200
0 - 4 - 7 ccdlwl.com/product/dianqishebeiyongdianxiandi (...) 47.52.236.127
2018-07-04 06:14:43 +0200
0 - 4 - 3 qdandehuojia.com/product/zxhj/index.html 47.52.236.127
2018-07-01 21:21:11 +0200
0 - 4 - 7 ccdlwl.com/product/dianqishebeiyongdianxiandi (...) 47.52.236.127
2018-06-30 05:01:07 +0200
0 - 4 - 4 qdandehuojia.com/hyxw 47.52.236.127
2018-05-15 10:36:51 +0200
0 - 1 - 3 qdandehuojia.com/hyxw/20130520268.html 47.52.236.127
2018-01-11 06:56:29 +0100
0 - 0 - 1 bk-tex.com/index.php 47.52.236.127

Last 10 reports on ASN:

Date UQ / IDS / BL URL IP
2018-07-23 11:55:08 +0200
0 - 0 - 0 sendy.ant-tna.com/l/9qApGvtuYnRpZ5Zwwfo763qA/ (...) 34.219.16.57
2018-07-23 11:50:42 +0200
0 - 0 - 0 s.ss2.us 13.32.16.243
2018-07-23 11:45:13 +0200
0 - 1 - 0 theothers.org.uk/ 196.196.6.87
2018-07-23 11:45:00 +0200
0 - 1 - 0 sports.hr-communication.com/flexprogram/e-mai (...) 34.234.104.233
2018-07-23 11:43:39 +0200
0 - 0 - 0 d19v95boryqmjs.cloudfront.net/104886.7z 13.32.16.108
2018-07-23 11:38:39 +0200
0 - 0 - 0 hankesa.com/colier/dropbox/dlx/asset/jquery.js 198.54.114.136
2018-07-23 11:36:37 +0200
0 - 1 - 0 luckysfloorrefinishing.com/ 198.54.117.200
2018-07-23 11:36:20 +0200
0 - 0 - 1 dlsft.com/an/robux.php 35.190.60.70
2018-07-23 11:34:34 +0200
0 - 0 - 0 panel.adnemail.com/public/campaigns/MTUzMTgxM (...) 67.209.122.17
2018-07-23 11:31:00 +0200
0 - 0 - 0 concierge.tripla.ai 52.193.74.2

Last 5 reports on domain: ccdlwl.com

Date UQ / IDS / BL URL IP
2018-07-05 22:03:07 +0200
0 - 4 - 7 ccdlwl.com/product/dianqishebeiyongdianxiandi (...) 47.52.236.127
2018-07-01 21:21:11 +0200
0 - 4 - 7 ccdlwl.com/product/dianqishebeiyongdianxiandi (...) 47.52.236.127
2017-10-05 04:54:43 +0200
0 - 0 - 2 www.ccdlwl.com/contact.html 103.216.216.45
2017-10-03 17:49:52 +0200
0 - 0 - 2 ccdlwl.com/cpzs/dxdl/zmdjdxdl/index.html 103.216.216.45
2017-09-22 03:52:46 +0200
0 - 4 - 2 www.ccdlwl.com/about.html 103.216.216.45


JavaScript

Executed Scripts (8)


Executed Evals (0)


Executed Writes (6)

#1 JavaScript::Write (size: 9, repeated: 1) - SHA256: 196c7c813d82c026b1111acb891087e8f52e9e7c936a6ea3edd38fcf0eea3a3e

                                        < /object>
                                    

#2 JavaScript::Write (size: 486, repeated: 1) - SHA256: 6c7f59bc467209c9f836fbb2f30cf7945125a1d6316cd85e18260baeacac2227

                                        < embed src = "/templets/default/images/flashplay.swf"
wmode = "opaque"
FlashVars = "pics=/templets/default/images/banner001.jpg|/templets/default/images/banner002.jpg|/templets/default/images/banner003.jpg&links=#|#|#|#|#&texts=5P�|5P�|5P�&borderwidth=232&borderheight=138&textheight=0"
menu = "false"
bgcolor = "#ffffff"
quality = "high"
width = "232"
height = "138"
allowScriptAccess = "sameDomain"
type = "application/x-shockwave-flash"
pluginspage = "http://www.macromedia.com/go/getflashplayer" / >
                                    

#3 JavaScript::Write (size: 183, repeated: 1) - SHA256: 27a9500a46c8eed59aa7f58f5112942ad16d8b6ff7b2309dca2960ee13398900

                                        < object classid = "clsid:d27cdb6e-ae6d-11cf-96b8-444553540000"
codebase = "http://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=6,0,0,0"
width = "232"
height = "138" >
                                    

#4 JavaScript::Write (size: 240, repeated: 1) - SHA256: a616eab875be694ab645f8441f24111413724a72ea9fbd38742a4c23c5eaf64a

                                        < param name = "FlashVars"
value = "pics=/templets/default/images/banner001.jpg|/templets/default/images/banner002.jpg|/templets/default/images/banner003.jpg&links=#|#|#|#|#&texts=5P�|5P�|5P�&borderwidth=232&borderheight=138&textheight=0" >
                                    

#5 JavaScript::Write (size: 191, repeated: 1) - SHA256: 7ceca8ccdd0d41b91d5cf576689d663795b274065b3cfbfa2368a5e14f675031

                                        < param name = "allowScriptAccess"
value = "sameDomain" > < param name = "movie"
value = "/templets/default/images/flashplay.swf" > < param name = "quality"
value = "high" > < param name = "bgcolor"
value = "#ffffff" >
                                    

#6 JavaScript::Write (size: 68, repeated: 1) - SHA256: 8f986b10ec634f105bb45e22e135c99454f7481eb38ef061cd1bdead11d569d5

                                        < param name = "menu"
value = "false" > < param name = "wmode"
value = "opaque" >
                                    


HTTP Transactions (33)


Request Response
                                        
                                            GET /news/20150621/1139.html HTTP/1.1 
Host: ccdlwl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         47.52.236.127
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Date: Thu, 12 Jul 2018 22:00:35 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Mon, 09 Apr 2018 01:57:40 GMT
Etag: "1ed07-56960bb1bdec1-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   69652
Md5:    1c42d878c36c15365366f466a09bc603
Sha1:   6b87d2d86cc6af2720f6455e828ee0af5d069e8a
Sha256: f4a830b48d968ddc062e0c733bae369dbf7bfaa162647079afca185a84d5c7f1

Alerts:
  Blacklists:
    - fortinet: Malware
  IDS:
    - ET TROJAN RAMNIT.A M1
    - ET CURRENT_EVENTS DRIVEBY EXE Embeded in Page Likely Evil M1
    - ET TROJAN RAMNIT.A M2
    - ET TROJAN PE EXE or DLL Windows file download Text
                                        
                                            GET /templets/default/js/plugin.js HTTP/1.1 
Host: ccdlwl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ccdlwl.com/news/20150621/1139.html

                                         
                                         47.52.236.127
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 12 Jul 2018 22:00:36 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Mon, 09 Apr 2018 02:00:06 GMT
Etag: "c7f0-56960c3cf68d1-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 13720


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   13720
Md5:    93b21ef8863da0d4d320bc6d02b73d24
Sha1:   bce755feb43d6e597533977f7ee2fdc29a0a3735
Sha256: e12d3536e68d2e0cdb8cb857672eb76a791bdb0fd1a7e94e0ebfec308c3d0a6b

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /templets/default/css/layout.css HTTP/1.1 
Host: ccdlwl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ccdlwl.com/news/20150621/1139.html

                                         
                                         47.52.236.127
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 12 Jul 2018 22:00:36 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Mon, 09 Apr 2018 01:59:30 GMT
Etag: "30ac-56960c1ab7375-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2724


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2724
Md5:    224004e8b03183cf4f5bd868048f5950
Sha1:   c983985a39f91b86a7490cad6439eeebde15d110
Sha256: a333197e4e3bc8037c1e29f6b3fd440be6fc2a7748c6510637b18157026f60cf
                                        
                                            GET /templets/default/js/all-min.js HTTP/1.1 
Host: ccdlwl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ccdlwl.com/news/20150621/1139.html

                                         
                                         47.52.236.127
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 12 Jul 2018 22:00:36 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Mon, 09 Apr 2018 02:00:05 GMT
Etag: "1af0-56960c3c10151-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1910


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1910
Md5:    ecb6c16c07f3f8edf7520b706276bf53
Sha1:   3b0e69460b143233e1c2993a5bfef136c21856d3
Sha256: 106f93b3ef78ff2c92157c63973a94a37accc20be6737c39e2a4dcf5cc5c5139

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /templets/default/images/bitbug_favicon.ico HTTP/1.1 
Host: ccdlwl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         47.52.236.127
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Date: Thu, 12 Jul 2018 22:00:36 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Mon, 09 Apr 2018 01:59:53 GMT
Etag: "47e-56960c3037daf-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 969


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   969
Md5:    a656969c6da6c0c4922edf700899acbe
Sha1:   5418a7adf2e3feffa0d05ca4902ca10c798d0a91
Sha256: 24552c11bc80bdf3c71b7e246be11b6e5afdc541a3a876eac8f6a47b6787cd4b

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /templets/default/js/jquery_banner.js HTTP/1.1 
Host: ccdlwl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ccdlwl.com/news/20150621/1139.html

                                         
                                         47.52.236.127
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 12 Jul 2018 22:00:36 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Mon, 09 Apr 2018 02:00:06 GMT
Etag: "119ef-56960c3ca38b1-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 24607


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   24607
Md5:    d0036e53516dbd466f341d02eae3bc9c
Sha1:   e801679a71ae3a88bacfb5bb8a5d59d8284fd0af
Sha256: cb51e547afed3b9158665ea67c5125469e179c5df87846d47e8e7183297674bd

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /plus/count.php?view=yes&aid=1139&mid=4 HTTP/1.1 
Host: ccdlwl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ccdlwl.com/news/20150621/1139.html

                                         
                                         47.52.236.127
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Date: Thu, 12 Jul 2018 22:00:37 GMT
Server: Apache
X-Powered-By: PHP/5.3.29
Upgrade: h2
Connection: Upgrade, close
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 23


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   23
Md5:    7ef3933d0347a8eb9b3dbf6f4b035b78
Sha1:   772121927ca42ae6345bcfc9eea8a0a3dcefc369
Sha256: 1645ef4e05613302e213e91b4ef584695a22391778e12d0dff49b0fdbd0208da
                                        
                                            GET /templets/default/images/bulletin.gif HTTP/1.1 
Host: ccdlwl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ccdlwl.com/news/20150621/1139.html

                                         
                                         47.52.236.127
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Thu, 12 Jul 2018 22:00:37 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Mon, 09 Apr 2018 01:59:53 GMT
Etag: "22f-56960c3065ff7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 582


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   582
Md5:    e31c2abf288c53617d22e1e01fce88cf
Sha1:   fa16576a51a999d4d7b9860b8535ae9f6b28d43b
Sha256: 4a7200d0c26e342e5b1a1905b37de7b350b5e03657b902972417d86b665fad50
                                        
                                            GET /templets/default/images/news.gif HTTP/1.1 
Host: ccdlwl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ccdlwl.com/news/20150621/1139.html

                                         
                                         47.52.236.127
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Thu, 12 Jul 2018 22:00:37 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Mon, 09 Apr 2018 02:00:00 GMT
Etag: "296-56960c37b3df0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 662


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   662
Md5:    802b18dffa1ea4a865c0de81515e0382
Sha1:   5c84d27785138cb384681b5d4b1d2acbedc0c910
Sha256: de0c876f243ea7d2644c9a6e4c0ba8a02a3cc024c12ba15b9a9c022177a3075d
                                        
                                            GET /templets/default/images/zixun.jpg HTTP/1.1 
Host: ccdlwl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ccdlwl.com/news/20150621/1139.html

                                         
                                         47.52.236.127
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 12 Jul 2018 22:00:37 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Mon, 09 Apr 2018 02:00:04 GMT
Etag: "4990-56960c3b2c4c8-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 9342


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   9342
Md5:    c75b3ac73bdeb68d85a06c44193eec65
Sha1:   ae79bebfd8e6f727d3a4931bf7d59f2425ebefe5
Sha256: 6032d61542b2711a77b8c9044728cbe26cf0a09c56f3f6cbf6ed8542adaba7b6
                                        
                                            GET /templets/default/images/b_07.gif HTTP/1.1 
Host: ccdlwl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ccdlwl.com/news/20150621/1139.html

                                         
                                         47.52.236.127
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Thu, 12 Jul 2018 22:00:38 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Mon, 09 Apr 2018 01:59:53 GMT
Etag: "183f-56960c306fc37-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6140


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   6140
Md5:    a774f5e843914476ca8df8e3067c7e1a
Sha1:   cc28eb5ad8561b3969a4dc6679b6a204f245ef1e
Sha256: 9d7ce7f3e454f4f083472a3d7b212c8af39b1f9158c4e630adb35e39b8d9be1e
                                        
                                            GET /templets/default/images/a_03.gif HTTP/1.1 
Host: ccdlwl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ccdlwl.com/news/20150621/1139.html

                                         
                                         47.52.236.127
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Thu, 12 Jul 2018 22:00:37 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Mon, 09 Apr 2018 01:59:50 GMT
Etag: "80ed-56960c2d88d7f-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 32738


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   32738
Md5:    5e7d69a9a1a1facab80258bae2282d66
Sha1:   94b37808a7eea2db6b5bc507076f3c0932111900
Sha256: fa4b5ec04203b642600d9a83c926e1236a1f373e5e6580334fc5f14dda7fd5b8
                                        
                                            GET /templets/default/images/b_10.gif HTTP/1.1 
Host: ccdlwl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ccdlwl.com/news/20150621/1139.html

                                         
                                         47.52.236.127
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Thu, 12 Jul 2018 22:00:38 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Mon, 09 Apr 2018 01:59:53 GMT
Etag: "1817-56960c30a1cff-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6098


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   6098
Md5:    dfa0fc6c74c6de51534f390082c6e3e5
Sha1:   52d5a6989e5289fc9e35e682dba719e9e149dea2
Sha256: 8f43036ad89c4d7e17e766f98783cb11209f42b8c6129a852e24ee2707372bbb
                                        
                                            GET /templets/default/images/b_12.gif HTTP/1.1 
Host: ccdlwl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ccdlwl.com/news/20150621/1139.html

                                         
                                         47.52.236.127
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Thu, 12 Jul 2018 22:00:38 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Mon, 09 Apr 2018 01:59:53 GMT
Etag: "1702-56960c30ab93f-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5873


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5873
Md5:    4e8c0c2e68d87f0f3584c4594460713c
Sha1:   86330aa6ec1d61eb2d765cde562f36efa93159df
Sha256: 25214e685cb55f08509bbe157718d7e13e2d32806c39d0505d476d4e99e45314
                                        
                                            GET /templets/default/images/f_left.jpg HTTP/1.1 
Host: ccdlwl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ccdlwl.com/news/20150621/1139.html

                                         
                                         47.52.236.127
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 12 Jul 2018 22:00:38 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Mon, 09 Apr 2018 01:59:57 GMT
Etag: "2d19-56960c33f2338-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5471


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5471
Md5:    68ec15b3a58d5c2a5ff5204dde397b81
Sha1:   8376a8144d474de019aa721ea71a17c1e8e44770
Sha256: ef5bef0bd50125b228a91d38ef2ab9ebad0b12f664b4b1b9ee99a9199caa723e
                                        
                                            GET /templets/default/images/sign1.jpg HTTP/1.1 
Host: ccdlwl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ccdlwl.com/news/20150621/1139.html

                                         
                                         47.52.236.127
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 12 Jul 2018 22:00:38 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Mon, 09 Apr 2018 02:00:02 GMT
Etag: "5806-56960c3920210-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 13185


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   13185
Md5:    28c46edb606af584113fa440b5175216
Sha1:   8777f92c0b6c8d631c8cd752569ebd183d6b966a
Sha256: 9b9a87c9c6690f866e8865ccc583d3bce3cbd42a036375fe0eed8d774b2fff68
                                        
                                            GET /templets/default/images/biaoshi.gif HTTP/1.1 
Host: ccdlwl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ccdlwl.com/news/20150621/1139.html

                                         
                                         47.52.236.127
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Thu, 12 Jul 2018 22:00:39 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Mon, 09 Apr 2018 01:59:53 GMT
Etag: "50a-56960c302b677-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1285


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1285
Md5:    e1ccefc294cc588edc0e10e65611f519
Sha1:   fd31c12098c33cea0cf88aadb00280d63603d04f
Sha256: 5088419561d88d9cf3470ec2091187d7df1a26109c087c8ebc08422335a6ad56
                                        
                                            GET /templets/default/images/icon_12.gif HTTP/1.1 
Host: ccdlwl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ccdlwl.com/news/20150621/1139.html

                                         
                                         47.52.236.127
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Thu, 12 Jul 2018 22:00:39 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Mon, 09 Apr 2018 01:59:57 GMT
Etag: "336-56960c34c9c70-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 772


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   772
Md5:    e6be3d745e7b8e9a0f1352536a9b5cf3
Sha1:   01292f16cf158cd7e9bd94a101f6c6df489b7b16
Sha256: 146cd7e4c549d6db8866a5133c9f3e691ba1478670661f58ffb18ececa4ef4ea
                                        
                                            GET /templets/default/images/bg.jpg HTTP/1.1 
Host: ccdlwl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ccdlwl.com/templets/default/css/layout.css

                                         
                                         47.52.236.127
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 12 Jul 2018 22:00:39 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Mon, 09 Apr 2018 01:59:52 GMT
Etag: "3e23-56960c2feca8f-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6233


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   6233
Md5:    da1bae8ee71fe758bb0d887b063d28ed
Sha1:   1e4b4b73f5bbfc604a5d55ad76a5010525182ee3
Sha256: bb15e3366cd86dd5dbce3bde5365a37721354f7c7df4dc63c4b7eca5d751f005
                                        
                                            GET /templets/default/images/f_right.jpg HTTP/1.1 
Host: ccdlwl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ccdlwl.com/news/20150621/1139.html

                                         
                                         47.52.236.127
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 12 Jul 2018 22:00:39 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Mon, 09 Apr 2018 01:59:57 GMT
Etag: "2ced-56960c3404448-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5399


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5399
Md5:    d0ffe29a3d1efca908407b1b69f3d1af
Sha1:   b68ab887bc0bc6f2edbcd1b5915626a62088989e
Sha256: 051948b45bb02dd14fb30edc8e008bbca7c32930835b06e02c233b842d0f0cc6
                                        
                                            GET /templets/default/images/21.jpg HTTP/1.1 
Host: ccdlwl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ccdlwl.com/news/20150621/1139.html

                                         
                                         47.52.236.127
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 12 Jul 2018 22:00:47 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Mon, 09 Apr 2018 01:59:48 GMT
Etag: "4a39-56960c2b8b527-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 9286


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   9286
Md5:    3a6688fbf244573a682fe2a3144e26a1
Sha1:   1f464a4ff65ef7d81990227c0553e357cb71d661
Sha256: 67a3e9acddc2cb669dd05d1917c2fc199c561ab566dcca33d06dfcac0e7bd7ea
                                        
                                            GET /templets/default/images/nav.jpg HTTP/1.1 
Host: ccdlwl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ccdlwl.com/templets/default/css/layout.css

                                         
                                         47.52.236.127
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 12 Jul 2018 22:00:58 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Mon, 09 Apr 2018 02:00:00 GMT
Etag: "5c10-56960c37ad090-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 13008


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   13008
Md5:    76d64f165377439f1461135980d22ecc
Sha1:   631af01af221bdf4fd4d007010ae7f4b00f815a3
Sha256: dcfeba3c8f6b6dadd9508fbd0181342bb3e0a7e3a589bfd5911d94759eaa4e2d
                                        
                                            GET /templets/default/images/mlbg.jpg HTTP/1.1 
Host: ccdlwl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ccdlwl.com/templets/default/css/layout.css

                                         
                                         47.52.236.127
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 12 Jul 2018 22:00:58 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Mon, 09 Apr 2018 02:00:00 GMT
Etag: "52a1-56960c3743cf8-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8173


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   8173
Md5:    e722ddfc4be0f6ce45d9c34f1ff17ea3
Sha1:   0b4fb2667fb5047638ca4127aeb6481462c27eb6
Sha256: 6d646ccba5fb5f13c1e8604c0118f6a22a912a9806291994eeaf8d1713359d9d
                                        
                                            GET /templets/default/images/headbg.jpg HTTP/1.1 
Host: ccdlwl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ccdlwl.com/templets/default/css/layout.css

                                         
                                         47.52.236.127
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 12 Jul 2018 22:00:58 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Mon, 09 Apr 2018 01:59:57 GMT
Etag: "2a90-56960c3482000-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5054


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5054
Md5:    8f22c9c7fff002c75fee7b58f1e5ea78
Sha1:   d12de29fa156e5ee38a5f1de882279693113d3e1
Sha256: ccfbac7b12d82d7d8c65bacbbb6ff310c6ee00fcb23f207a01320a93b47f3f04
                                        
                                            GET /templets/default/images/index.gif HTTP/1.1 
Host: ccdlwl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ccdlwl.com/templets/default/css/layout.css

                                         
                                         47.52.236.127
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Thu, 12 Jul 2018 22:00:58 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Mon, 09 Apr 2018 01:59:58 GMT
Etag: "298-56960c34fa5c8-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 631


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   631
Md5:    23c1dc6a3bd7451858e941bac351e53a
Sha1:   d97fcef59c5de3ea9f9c07e3b27ac33c94915375
Sha256: 26f9f69d8597c99dc7ed405f59c573089b358ac14fe8c6e67bcba455a89e2ea1
                                        
                                            GET /templets/default/images/mrtop_03.jpg HTTP/1.1 
Host: ccdlwl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ccdlwl.com/templets/default/css/layout.css

                                         
                                         47.52.236.127
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 12 Jul 2018 22:00:58 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Mon, 09 Apr 2018 02:00:00 GMT
Etag: "8c6-56960c375e2d8-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1722


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1722
Md5:    3f1dc923477fecd42b2a39077320ef6d
Sha1:   06b6b88d8802116ab7752a7d5373fe1e48c0e142
Sha256: 6b21b719e410537c63d5280a06633cf7b4bd45a3dfdedb8fdb69c514ba7634ee
                                        
                                            GET /templets/default/images/f_cen.jpg HTTP/1.1 
Host: ccdlwl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ccdlwl.com/templets/default/css/layout.css

                                         
                                         47.52.236.127
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 12 Jul 2018 22:00:58 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Mon, 09 Apr 2018 01:59:56 GMT
Etag: "5119-56960c33af100-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7541


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   7541
Md5:    9815c8d3d071ee0e150246aea9c69963
Sha1:   d342fb8a4d29fe6c893b47bafb962d685007c153
Sha256: f01a08bc5019fa35331883eddd60076b358cee3ad5a23a8bc527ab7a33b6ae0c
                                        
                                            GET /templets/default/images/flashplay.swf HTTP/1.1 
Host: ccdlwl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ccdlwl.com/news/20150621/1139.html

                                         
                                         47.52.236.127
HTTP/1.1 200 OK
Content-Type: application/x-shockwave-flash
                                        
Date: Thu, 12 Jul 2018 22:00:59 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Mon, 09 Apr 2018 01:59:56 GMT
Etag: "2841-56960c33305a8-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 10328


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   10328
Md5:    00431a8b6b2ee699f4618bbc9bc5faea
Sha1:   cf60061e8652f63edacf26ac5ea0a4a154e296ea
Sha256: b1f59f628725be90e8339c29dd26f1e642e663c49bb40931a0c79ec1503e6262

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /get/flashplayer/update/current/xml/version_en_win_pl.xml HTTP/1.1 
Host: fpdownload2.macromedia.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         91.135.34.11
HTTP/1.1 200 OK
Content-Type: text/xml
                                        
Server: Apache
Last-Modified: Tue, 10 Jul 2018 09:00:07 GMT
Etag: "60e-570a15b4abfd2"
Accept-Ranges: bytes
Content-Length: 1550
Date: Thu, 12 Jul 2018 22:00:59 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  XML document text\012 XML document text
Size:   1550
Md5:    46219bd9418b94e5f479d9865bbcb673
Sha1:   59dfe58ecf2a7feaecf17560086e3a1d341875f8
Sha256: f6c052497ecfb687ecd7dd378c96dace5bed8b856a844034200703d8ab8734f9
                                        
                                            GET /images/ccdl.swf HTTP/1.1 
Host: ccdlwl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ccdlwl.com/news/20150621/1139.html

                                         
                                         47.52.236.127
HTTP/1.1 200 OK
Content-Type: application/x-shockwave-flash
                                        
Date: Thu, 12 Jul 2018 22:00:58 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Mon, 09 Apr 2018 01:50:26 GMT
Etag: "3b82c-56960a1421a20-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   243796
Md5:    a99e60fb9a3319b288ae1daa42a530b4
Sha1:   b714a660f7af60a4b6e7dfd2ea150c4351f13163
Sha256: 521e3969c4a349f8d440012abc7ddda536321ab7e5dabd15669e0295edb1b494

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /templets/default/images/banner002.jpg HTTP/1.1 
Host: ccdlwl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         47.52.236.127
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 12 Jul 2018 22:01:00 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Mon, 09 Apr 2018 01:59:52 GMT
Etag: "e205-56960c2fa32c7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 44383


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   44383
Md5:    3383f1c3626b5577affd31dc4e9c9f1a
Sha1:   29aebfd479cc5de4b36231fa7500626a511494b9
Sha256: 50cce5f8d53f74c70b3d04ca276d1440c02bd800ef0f3d0ad44458156b801a3a
                                        
                                            GET /templets/default/images/banner003.jpg HTTP/1.1 
Host: ccdlwl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         47.52.236.127
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 12 Jul 2018 22:01:00 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Mon, 09 Apr 2018 01:59:52 GMT
Etag: "e20c-56960c2fb4c07-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 44412


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   44412
Md5:    c154e885c99d325838b033536c325919
Sha1:   36473bc3666404a18c9aff09173eacc3a2172c3f
Sha256: 435477dab918ba27ec24fa28f98e1446cfce6838f98b2ed19d6a1c0f43448f2d
                                        
                                            GET /templets/default/images/banner001.jpg HTTP/1.1 
Host: ccdlwl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         47.52.236.127
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 12 Jul 2018 22:01:00 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Mon, 09 Apr 2018 01:59:52 GMT
Etag: "e0ca-56960c2f60477-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 44107


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   44107
Md5:    d3b91bd4eb9121285ed5367a04cd72a6
Sha1:   0fff7492b1bf192c96c2bc3888abc2938232273a
Sha256: 70d07b29589d26f257bf379a10353abb1a8d4ae923a4748bfc80e7aac7b2005f