Overview

URL cqyunin.com/html/xsgz1..shfw1.html
IP104.223.149.113
ASNAS46573 Global Frag Networks
Location United States
Report completed2018-10-08 23:39:52 CEST
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2018-10-08 2 cqyunin.com/yesads.js Malware
2018-10-08 2 cqyunin.com/html/xsgz1..shfw1.html Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 104.223.149.113

Date UQ / IDS / BL URL IP
2018-12-09 15:48:36 +0100
0 - 0 - 2 cqyunin.com/html/djgz..xbgk1xbjs3.html 104.223.149.113
2018-12-09 15:47:25 +0100
0 - 0 - 2 cqyunin.com/html/info1051....jxky1jxhd.html 104.223.149.113
2018-12-04 15:23:27 +0100
0 - 4 - 2 cqyunin.com/html/jxky1..xbgk1xbjs3.html 104.223.149.113
2018-12-03 15:24:16 +0100
0 - 0 - 2 www.cqyunin.com/html/info10362030.html 104.223.149.113
2018-12-03 08:38:46 +0100
0 - 0 - 2 cqyunin.com/html/jxky1..xsgz1jxhd2.html 104.223.149.113
2018-11-30 23:24:32 +0100
0 - 4 - 2 cqyunin.com/html/zsjy1..info10381142.html 104.223.149.113
2018-11-29 16:11:59 +0100
0 - 4 - 2 cqyunin.com/html/xsgz1..zsjy1szdw.html 104.223.149.113
2018-11-24 07:12:53 +0100
0 - 3 - 2 cqyunin.com/html/info10511920.html 104.223.149.113
2018-11-22 16:07:00 +0100
0 - 0 - 2 cqyunin.com/html/info1042....xsgz1jxhd5.html 104.223.149.113
2018-11-22 16:06:51 +0100
0 - 4 - 4 cqyunin.com/html/xsgz1..info10271946.html 104.223.149.113

Last 10 reports on ASN: AS46573 Global Frag Networks

Date UQ / IDS / BL URL IP
2018-12-15 18:06:04 +0100
0 - 4 - 3 healthcompa.com/html/nodegkgz2016-7-216K0H2J4 (...) 104.223.149.116
2018-12-15 17:52:44 +0100
0 - 0 - 2 med029.com/html/academicactivities..researchm (...) 104.223.149.192
2018-12-15 17:13:39 +0100
0 - 0 - 3 tuzaimachinery.com/html/info1056....djgzdwjs.html 104.223.149.57
2018-12-15 17:13:13 +0100
0 - 0 - 2 donghancanyin.com/html/Scholarships1.html 104.223.149.139
2018-12-15 17:10:31 +0100
0 - 0 - 2 029cheers.com/html/gzdt..info11061749.html 104.223.149.147
2018-12-15 16:32:08 +0100
0 - 0 - 2 wljiuye.com/html/paramsearch5_1_0.html 104.223.149.85
2018-12-15 16:21:52 +0100
0 - 0 - 1 sxcrjb.com/html/info2027....ejlist.jspurltype (...) 104.223.149.51
2018-12-15 16:18:43 +0100
0 - 0 - 2 cqccjh.com/html/.wyhzc201611...html 104.223.149.26
2018-12-15 16:09:02 +0100
0 - 0 - 3 029smt.com/html/wsbsarticleshow_article.aspAr (...) 104.223.149.92
2018-12-15 15:37:23 +0100
0 - 0 - 2 sxbaotian.com/html/jlhz..info10161253.html 104.223.149.90

Last 10 reports on domain: cqyunin.com

Date UQ / IDS / BL URL IP
2018-12-09 15:48:36 +0100
0 - 0 - 2 cqyunin.com/html/djgz..xbgk1xbjs3.html 104.223.149.113
2018-12-09 15:47:25 +0100
0 - 0 - 2 cqyunin.com/html/info1051....jxky1jxhd.html 104.223.149.113
2018-12-04 15:23:27 +0100
0 - 4 - 2 cqyunin.com/html/jxky1..xbgk1xbjs3.html 104.223.149.113
2018-12-03 15:24:16 +0100
0 - 0 - 2 www.cqyunin.com/html/info10362030.html 104.223.149.113
2018-12-03 08:38:46 +0100
0 - 0 - 2 cqyunin.com/html/jxky1..xsgz1jxhd2.html 104.223.149.113
2018-11-30 23:24:32 +0100
0 - 4 - 2 cqyunin.com/html/zsjy1..info10381142.html 104.223.149.113
2018-11-29 16:11:59 +0100
0 - 4 - 2 cqyunin.com/html/xsgz1..zsjy1szdw.html 104.223.149.113
2018-11-24 07:12:53 +0100
0 - 3 - 2 cqyunin.com/html/info10511920.html 104.223.149.113
2018-11-22 16:07:00 +0100
0 - 0 - 2 cqyunin.com/html/info1042....xsgz1jxhd5.html 104.223.149.113
2018-11-22 16:06:51 +0100
0 - 4 - 4 cqyunin.com/html/xsgz1..info10271946.html 104.223.149.113


JavaScript

Executed Scripts (1)


Executed Evals (0)


Executed Writes (1)

#1 JavaScript::Write (size: 87, repeated: 1) - SHA256: a72b285b9287c1181927cd290a6f6c08d519ebc6754bc9f04fce904ca106945e

                                        < script src = 'https://s95.b9823852351323h.com/by/dz.js'
type = 'text/javascript' > < /script>
                                    


HTTP Transactions (17)


Request Response
                                        
                                            GET /images/xsgz1_sitegray_sitegray_dcss.css HTTP/1.1 
Host: cqyunin.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://cqyunin.com/html/xsgz1..shfw1.html

                                         
                                         104.223.149.113
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Length: 20
Last-Modified: Thu, 01 Dec 2016 02:37:26 GMT
Accept-Ranges: bytes
Etag: "2ee7bda7b4bd21:106e0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Mon, 08 Oct 2018 21:39:27 GMT


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   20
Md5:    311749c1d5f9bcf240ca9c25eae61f47
Sha1:   29703f0938cab5945db52e553f3f22cbd7f0b478
Sha256: 183f83b69b6f7ced023f06bc9b98b2d00c9e08b5c627c1f6e9002f48f0bbfb5c
                                        
                                            GET /yesads.js HTTP/1.1 
Host: cqyunin.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://cqyunin.com/html/xsgz1..shfw1.html

                                         
                                         104.223.149.113
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 106
Last-Modified: Thu, 13 Apr 2017 15:53:10 GMT
Accept-Ranges: bytes
Etag: "848ed0c6eb4d21:106e0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Mon, 08 Oct 2018 21:39:27 GMT


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   106
Md5:    17a8754edf85068082f8b1ac1519d80e
Sha1:   33a9c0cccfe3d299c1ebb6d77fc4e0097b35f5a9
Sha256: 85965e1cee169e6ea1129285cafdd3c90f4e7b046207290c9ad9bc51bc58afdf

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/xsgz1imagesstylecss.css HTTP/1.1 
Host: cqyunin.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://cqyunin.com/html/xsgz1..shfw1.html

                                         
                                         104.223.149.113
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Length: 4620
Last-Modified: Thu, 01 Dec 2016 02:37:26 GMT
Accept-Ranges: bytes
Etag: "d0c936da7b4bd21:106e0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Mon, 08 Oct 2018 21:39:27 GMT


--- Additional Info ---
Magic:  UTF-8 Unicode text, with CRLF line terminators
Size:   4620
Md5:    e3e0a6a1ef956f37074b04163facc3eb
Sha1:   5b7c3925375e7801c211e854ed7d0dbebacaf382
Sha256: 2867b69f7c8c0bb589f2162917509321d33a0e9bfafe8fde08ddab230f81c6a8
                                        
                                            GET /images/xsgz1list-wdhvsbcss.css HTTP/1.1 
Host: cqyunin.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://cqyunin.com/html/xsgz1..shfw1.html

                                         
                                         104.223.149.113
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Length: 2922
Last-Modified: Sat, 03 Dec 2016 02:28:35 GMT
Accept-Ranges: bytes
Etag: "6c6c98f2c4dd21:106e0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Mon, 08 Oct 2018 21:39:27 GMT


--- Additional Info ---
Magic:  UTF-8 Unicode text, with CRLF line terminators
Size:   2922
Md5:    3647bad8bc2ccace2b483b5a7493eac6
Sha1:   56ff34f9024f6103bea5e0a90492ad94110134da
Sha256: 95103b76857da797b1b31f34c1a2efae14b3132fe6cfee1e3758928d8e41bb2e
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Fri, 05 Oct 2018 14:28:29 GMT
Etag: 23FB1BBE064ECAB24D97EFF43349F76497C7BA2B
X-OCSP-Responder-ID: rmdccaocsp27
Content-Length: 471
Cache-Control: public, no-transform, must-revalidate, max-age=319154
Expires: Fri, 12 Oct 2018 14:18:35 GMT
Date: Mon, 08 Oct 2018 21:39:21 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   471
Md5:    55f32288a888de0d83ed8f0e5ca2a225
Sha1:   23fb1bbe064ecab24d97eff43349f76497c7ba2b
Sha256: 37acd704e14bc2fba37a0305ac9d0b3a77aabab941561b7a8068985941048e2f
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Thu, 04 Oct 2018 21:27:34 GMT
Etag: 45F21174E77720A6BCEDBAB49FD8BA24472BC8F9
X-OCSP-Responder-ID: rmdccaocsp23
Content-Length: 727
Cache-Control: public, no-transform, must-revalidate, max-age=257861
Expires: Thu, 11 Oct 2018 21:17:02 GMT
Date: Mon, 08 Oct 2018 21:39:21 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   727
Md5:    aa8f18150b4a285f34e6eecae143c568
Sha1:   45f21174e77720a6bcedbab49fd8ba24472bc8f9
Sha256: c3f1d74727226a8c108bec0339d20e04e98413932cd6650d70bddb83f84c4666
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Thu, 04 Oct 2018 21:27:34 GMT
Etag: 9E4C8AE0FB3F312519E2EA15431B8ECE92446B97
X-OCSP-Responder-ID: rmdccaocsp17
Content-Length: 471
Cache-Control: public, no-transform, must-revalidate, max-age=257936
Expires: Thu, 11 Oct 2018 21:18:17 GMT
Date: Mon, 08 Oct 2018 21:39:21 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   471
Md5:    2227f9694e488385ebcad655e91227f7
Sha1:   9e4c8ae0fb3f312519e2ea15431b8ece92446b97
Sha256: 4ffd7b7d5bbb6f5168f8a995ba6e4917242777d87f216b0557d039d2058882af
                                        
                                            GET /html/xsgz1..shfw1.html HTTP/1.1 
Host: cqyunin.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         104.223.149.113
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Content-Length: 133628
Last-Modified: Fri, 03 Aug 2018 18:25:56 GMT
Accept-Ranges: bytes
Etag: "704a596b572bd41:106e0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Mon, 08 Oct 2018 21:39:27 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   133628
Md5:    3a551d36d41ae22af1a688c52e74aa16
Sha1:   30caaf13f0f87e3a7acdf3d4f1374a7568e9ea2f
Sha256: 8a6b3728adb5eae4fa6727f24cbbb966113e406850d9adff3c15814913922599

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /by/dz.js HTTP/1.1 
Host: s95.b9823852351323h.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://cqyunin.com/html/xsgz1..shfw1.html

                                         
                                         45.65.46.3
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Server: Apache
Date: Mon, 08 Oct 2018 23:34:58 GMT
Content-Length: 599
Connection: keep-alive
Keep-Alive: timeout=60


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   599
Md5:    b3bbfcadbab7e3850bc2d9ff3dfc1d7a
Sha1:   2cbaf99a2cef817ee33f99e49220686f1c11e020
Sha256: f4b5227a38740fa3182d06ac1724449fa7dfcba0a3d3be9d4c0595a57dcf5700
                                        
                                            GET /images/bg.jpg HTTP/1.1 
Host: cqyunin.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://cqyunin.com/images/xsgz1imagesstylecss.css

                                         
                                         104.223.149.113
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 1541
Last-Modified: Thu, 01 Dec 2016 02:35:57 GMT
Accept-Ranges: bytes
Etag: "f2d3a8a57b4bd21:106e0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Mon, 08 Oct 2018 21:39:28 GMT


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   1541
Md5:    9b5ccc572e9c1e2260c64860bff510d3
Sha1:   1aad27c004497a5285302613c19160c48f4db682
Sha256: db1742be63c7d7c92cb8db8116e9e04e86e123a631d4412a5fd5566f2a370ef4
                                        
                                            GET /images/nav.jpg HTTP/1.1 
Host: cqyunin.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://cqyunin.com/images/xsgz1imagesstylecss.css

                                         
                                         104.223.149.113
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 1225
Last-Modified: Thu, 01 Dec 2016 02:36:16 GMT
Accept-Ranges: bytes
Etag: "70c8a3b07b4bd21:106e0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Mon, 08 Oct 2018 21:39:28 GMT


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   1225
Md5:    2da22f2ef7e0b792387962ff60392697
Sha1:   33ae48d992f19e031879c7e63821a320547b218b
Sha256: 02fcf705f26c54cba92e16698efdbc58c2feedd4d13b88ac7e79394478d41922
                                        
                                            GET /images/xsgz1..imagesline-nav.jpg HTTP/1.1 
Host: cqyunin.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://cqyunin.com/html/xsgz1..shfw1.html

                                         
                                         104.223.149.113
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 1140
Last-Modified: Sat, 03 Dec 2016 02:28:10 GMT
Accept-Ranges: bytes
Etag: "626ac2e3c4dd21:106e0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Mon, 08 Oct 2018 21:39:28 GMT


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   1140
Md5:    780590dc3f031e2ffc3c00dac3923fa0
Sha1:   20fafdc404c5422d1da3b1777886c7850a24b818
Sha256: 850ddf37603c3de1b5432dd40b00b1d440c11e3a1d7973589f915c9386dc5118
                                        
                                            GET /images/xsgz1..systemresourceimagesloading.gif HTTP/1.1 
Host: cqyunin.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://cqyunin.com/html/xsgz1..shfw1.html

                                         
                                         104.223.149.113
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Content-Length: 4254
Last-Modified: Sat, 03 Dec 2016 02:28:20 GMT
Accept-Ranges: bytes
Etag: "a2964eac4dd21:106e0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Mon, 08 Oct 2018 21:39:28 GMT


--- Additional Info ---
Magic:  GIF image data, version 89a, 16 x 16
Size:   4254
Md5:    325ec06a64ff169daf8c71b38a415022
Sha1:   8a7588850ebd7c0a4c183aa06904de1236284508
Sha256: 67f89d2ade63e332acfc944711a5ee17243cf23972b229aea422b23af16656b7
                                        
                                            GET /images/bg-tit.jpg HTTP/1.1 
Host: cqyunin.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://cqyunin.com/images/xsgz1imagesstylecss.css

                                         
                                         104.223.149.113
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 1208
Last-Modified: Thu, 01 Dec 2016 02:36:02 GMT
Accept-Ranges: bytes
Etag: "a82968a87b4bd21:106e0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Mon, 08 Oct 2018 21:39:29 GMT


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   1208
Md5:    f14c4b982bcf20ff7c6ca1167498b4be
Sha1:   218b772c3f52bc3c990d75056f97ba62cc763d3a
Sha256: 8bfd71fc4bddfb71b43a909f52e392f39715087fc176f6679f669500f5ad4420
                                        
                                            GET /images/header.jpg HTTP/1.1 
Host: cqyunin.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://cqyunin.com/images/xsgz1imagesstylecss.css

                                         
                                         104.223.149.113
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 159152
Last-Modified: Thu, 01 Dec 2016 02:36:07 GMT
Accept-Ranges: bytes
Etag: "b8e129ab7b4bd21:106e0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Mon, 08 Oct 2018 21:39:28 GMT


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   159152
Md5:    903fb4b56978d649c139b543a81c810d
Sha1:   c992f44ea519837c86f8d486ba370b51da2b8ff3
Sha256: 83f93b7acfb4ffa534b3ce7585d00fd51e3f874e39cccbbd07fce50b9311975a
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: cqyunin.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         104.223.149.113
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Mon, 08 Oct 2018 21:39:30 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: cqyunin.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         104.223.149.113
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Mon, 08 Oct 2018 21:39:33 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075