Overview

URL helenhr.com.cn/index.php/Contact2/index/cid/1395.html
IP47.90.47.141
ASN
Location Canada
Report completed2018-07-18 10:01:10 CEST
StatusLoading report..
urlquery Alerts Crypto currency mining script


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro
Timestamp Severity Source IP Destination IP Alert
2018-07-18 10:00:41 CEST 1  47.90.47.141 Client IP ET CURRENT_EVENTS CoinHive In-Browser Miner Detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2018-07-18 2 coinhive.com/lib/coinhive.min.js Malware
2018-07-18 2 helenhr.com.cn/index.php/Contact2/index/cid/1395.html Malware
2018-07-18 2 helenhr.com.cn/App/Tpl/default/Home/Public/js/AC_RunActiveContent.js Malware
2018-07-18 2 helenhr.com.cn/App/Tpl/default/Home/Public/swf/flash.swf Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 7 reports on IP: 47.90.47.141

Date UQ / IDS / BL URL IP
2018-12-04 18:12:27 +0100
2 - 1 - 4 helenhr.com/index.php/Service/index/cid/1516.html 47.90.47.141
2018-10-24 09:33:16 +0200
2 - 0 - 4 helenhr.com.cn/index.php/Success/show/cid/152 (...) 47.90.47.141
2018-10-05 03:29:21 +0200
2 - 0 - 4 helenhr.com/index.php/News2/index/cid/1175.html 47.90.47.141
2018-09-22 03:45:12 +0200
2 - 1 - 4 helenhr.com.cn/index.php/News/index 47.90.47.141
2018-07-16 18:17:10 +0200
2 - 1 - 4 helenhr.com/index.php/News2/index/cid/1175.html 47.90.47.141
2018-07-03 23:34:10 +0200
2 - 1 - 1 helenhr.com/index.php/Success/show/cid/1524/i (...) 47.90.47.141
2018-06-16 07:22:02 +0200
2 - 1 - 1 helenhr.com/index.php/Success/show/cid/1524/i (...) 47.90.47.141

Last 10 reports on ASN:

Date UQ / IDS / BL URL IP
2018-12-19 07:26:18 +0100
0 - 0 - 1 download.speedbit.com/dap95_fox.exe 143.204.51.89
2018-12-19 07:25:04 +0100
0 - 0 - 1 onlinedown.down.123ch.cn/download/WinRAR_1@5.exe 59.83.218.231
2018-12-19 07:22:55 +0100
0 - 0 - 1 xc.gongnou.com/down/photoshop%20cs5%20%E5%AE% (...) 114.55.188.114
2018-12-19 07:22:24 +0100
0 - 0 - 1 cheilith.info/installers/cli/1404555022824/fl (...) 198.54.117.199
2018-12-19 07:18:57 +0100
0 - 0 - 1 cheilith.info/installers/cli/1404551416186/fl (...) 198.54.117.199
2018-12-19 07:17:01 +0100
0 - 0 - 13 ncpll1392.ir/Rechnung-fur-Zahlung 185.159.153.100
2018-12-19 07:17:01 +0100
0 - 0 - 1 14614.xc.41gw.com/xiaz/Chrome%E6%9E%81%E9%80% (...) 139.224.39.0
2018-12-19 07:16:59 +0100
0 - 0 - 1 vacompany.co.za/history/rechargecardsoftware.exe 102.135.160.181
2018-12-19 07:15:15 +0100
0 - 0 - 2 treycorp.com/DownLoad/xputty.exe 67.205.156.67
2018-12-19 07:14:06 +0100
0 - 0 - 2 googletime.ac.ug/18/_outputA58EF4Fr1.exe 185.178.44.91

Last 2 reports on domain: helenhr.com.cn

Date UQ / IDS / BL URL IP
2018-10-24 09:33:16 +0200
2 - 0 - 4 helenhr.com.cn/index.php/Success/show/cid/152 (...) 47.90.47.141
2018-09-22 03:45:12 +0200
2 - 1 - 4 helenhr.com.cn/index.php/News/index 47.90.47.141


JavaScript

Executed Scripts (8)


Executed Evals (0)


Executed Writes (1)

#1 JavaScript::Write (size: 261, repeated: 1) - SHA256: 9485b91e2f2ec1851c569d45d29fe007e9922a7de5005d4728f76a4ffdf5db89

                                        < embed width = "490"
height = "240"
src = "/App/Tpl/default/Home/Public/swf/flash.swf"
quality = "high"
pluginspage = "http://www.adobe.com/shockwave/download/download.cgi?P1_Prod_Version=ShockwaveFlash"
wmode = "transparent"
type = "application/x-shockwave-flash" > < /embed>
                                    


HTTP Transactions (27)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 116
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Fri, 13 Jul 2018 15:54:30 GMT
Etag: 9EFE5ED5BF6F66D11F90E673C6C9130F3C0FA963
X-OCSP-Responder-ID: rmdccaocsp30
Content-Length: 472
Cache-Control: public, no-transform, must-revalidate, max-age=200647
Expires: Fri, 20 Jul 2018 15:44:46 GMT
Date: Wed, 18 Jul 2018 08:00:39 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   472
Md5:    104736aae704d9f8a9dc1a8d1b0d65d1
Sha1:   9efe5ed5bf6f66d11f90e673c6c9130f3c0fa963
Sha256: 56ae444f7202aeca1034bfb7a01353ad5258cc4182070f1c3fcb96f101f041ae
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Thu, 12 Jul 2018 10:51:21 GMT
Etag: AF8576934BEB6715211CD8F9B2C8D7020F7C010A
X-OCSP-Responder-ID: rmdccaocsp30
Content-Length: 727
Cache-Control: public, no-transform, must-revalidate, max-age=96036
Expires: Thu, 19 Jul 2018 10:41:15 GMT
Date: Wed, 18 Jul 2018 08:00:39 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   727
Md5:    40c64300cfea21aa0f8fe24600a0997b
Sha1:   af8576934beb6715211cd8f9b2c8d7020f7c010a
Sha256: 56a71c807ca21f0cd347e105c84793283205fd2383b5a841f5d5af31d70256e7
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.18
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Thu, 12 Jul 2018 10:51:21 GMT
Etag: 27551B28C14CBF2EDAEA7D6E156CE69A4E57C1CE
X-OCSP-Responder-ID: rmdccaocsp10
Content-Length: 471
Cache-Control: public, no-transform, must-revalidate, max-age=95986
Expires: Thu, 19 Jul 2018 10:40:25 GMT
Date: Wed, 18 Jul 2018 08:00:39 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   471
Md5:    c6d72d52d0f84e80bc73598e312d4d36
Sha1:   27551b28c14cbf2edaea7d6e156ce69a4e57c1ce
Sha256: 48f5ddfbcbf0ef2ebd8421768e29378a59ad43ccec5986e6b57a1ad75024078a
                                        
                                            GET /lib/coinhive.min.js HTTP/1.1 
Host: coinhive.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://helenhr.com.cn/index.php/Contact2/index/cid/1395.html

                                         
                                         104.20.208.59
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Wed, 18 Jul 2018 08:00:39 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=d429ea0e253a936b7b35175a8c5fac1051531900839; expires=Thu, 18-Jul-19 08:00:39 GMT; path=/; domain=.coinhive.com; HttpOnly
Last-Modified: Wed, 11 Apr 2018 09:52:41 GMT
Etag: W/"5acddae9-40063"
Expires: Wed, 18 Jul 2018 16:00:39 GMT
Cache-Control: public, max-age=28800
Access-Control-Allow-Origin: *
Content-Encoding: gzip
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 43c36a74bd9b428b-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   68258
Md5:    aace5e5a34519cdd9c971d57f21e5d82
Sha1:   ceecd09dbe85c771648f2ce6942fe9707c6f31f4
Sha256: ef2f23c272fb07e8e93f26cf6051bd2c3d377cf54e2431f9fdd6666852749e62

Alerts:
  urlquery:
    - Crypto currency mining script
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /index.php/Contact2/index/cid/1395.html HTTP/1.1 
Host: helenhr.com.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         47.90.47.141
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Date: Wed, 18 Jul 2018 08:00:38 GMT
Server: Apache/2.4.10 (Win64) PHP/5.5.6
X-Powered-By: ThinkPHP
Set-Cookie: think_language=zh-cn; expires=Wed, 18-Jul-2018 09:00:38 GMT; Max-Age=3600; path=/ PHPSESSID=dq0dinabkbdosp0a9p53952pt4; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: private
Pragma: no-cache
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  UTF-8 Unicode HTML document text, with very long lines, with CRLF, LF line terminators
Size:   10795
Md5:    a4b2cc0fb08ef155fbc4e8e36a6ac10b
Sha1:   67785bc70b5c9522dbcad5e21072659d929a965b
Sha256: c1e7a4d770228a53f69ee42e6f0b58d4dae3ef9aefd46d0e0142455e394ca8ba

Alerts:
  Blacklists:
    - fortinet: Malware
  IDS:
    - ET CURRENT_EVENTS CoinHive In-Browser Miner Detected
                                        
                                            GET /App/Tpl/default/Home/Public/images/home.jpg HTTP/1.1 
Host: helenhr.com.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://helenhr.com.cn/index.php/Contact2/index/cid/1395.html
Cookie: think_language=zh-cn; PHPSESSID=dq0dinabkbdosp0a9p53952pt4

                                         
                                         47.90.47.141
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 18 Jul 2018 08:00:39 GMT
Server: Apache/2.4.10 (Win64) PHP/5.5.6
Last-Modified: Fri, 07 Apr 2017 02:14:08 GMT
Etag: "89e-54c8a2e355c00"
Accept-Ranges: bytes
Content-Length: 2206
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   2206
Md5:    c33bcab21e82eb75597186952ae9db7e
Sha1:   8b7975b24e81fafa5232a02d4d6a345c25257a54
Sha256: 22caccdf9b8a52b9da658108c0aa548bc6a575b0e9297d9b8beeb7884e26a4e2
                                        
                                            GET /App/Tpl/default/Home/Public/banner/tu.css HTTP/1.1 
Host: helenhr.com.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://helenhr.com.cn/index.php/Contact2/index/cid/1395.html
Cookie: think_language=zh-cn; PHPSESSID=dq0dinabkbdosp0a9p53952pt4

                                         
                                         47.90.47.141
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 18 Jul 2018 08:00:39 GMT
Server: Apache/2.4.10 (Win64) PHP/5.5.6
Last-Modified: Fri, 07 Apr 2017 02:13:12 GMT
Etag: "5ed-54c8a2adede00"
Accept-Ranges: bytes
Content-Length: 1517
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  UTF-8 Unicode C program text, with CRLF line terminators
Size:   1517
Md5:    187708149a697f6c8acacf58ecc7a6d7
Sha1:   5781d8c14344953514f3e935b83792f7800ea338
Sha256: 037e10d89fa1d8a1e25125c9601145e65acf6e9a245af79ce87556df4e8b24e6
                                        
                                            GET /App/Tpl/default/Home/Public/js/AC_RunActiveContent.js HTTP/1.1 
Host: helenhr.com.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://helenhr.com.cn/index.php/Contact2/index/cid/1395.html
Cookie: think_language=zh-cn; PHPSESSID=dq0dinabkbdosp0a9p53952pt4

                                         
                                         47.90.47.141
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 18 Jul 2018 08:00:39 GMT
Server: Apache/2.4.10 (Win64) PHP/5.5.6
Last-Modified: Fri, 07 Apr 2017 02:17:48 GMT
Etag: "2081-54c8a3b524b00"
Accept-Ranges: bytes
Content-Length: 8321
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII C++ program text, with CRLF line terminators
Size:   8321
Md5:    9b2224a10312f4ef94fca5bcefee5bdb
Sha1:   46c525e5b491bfd94ded94351779553c6892c3fe
Sha256: 7c70801a45befd1577f0467d26e1c922a96211003be5393a5b100fcd7617f674

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /App/Tpl/default/Home/Public/css/style.css HTTP/1.1 
Host: helenhr.com.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://helenhr.com.cn/index.php/Contact2/index/cid/1395.html
Cookie: think_language=zh-cn; PHPSESSID=dq0dinabkbdosp0a9p53952pt4

                                         
                                         47.90.47.141
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 18 Jul 2018 08:00:39 GMT
Server: Apache/2.4.10 (Win64) PHP/5.5.6
Last-Modified: Fri, 07 Apr 2017 02:13:16 GMT
Etag: "4669-54c8a2b1be700"
Accept-Ranges: bytes
Content-Length: 18025
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  UTF-8 Unicode C program text, with CRLF line terminators
Size:   18025
Md5:    3d4c669b73b372b2fb898610fcb2bc16
Sha1:   a6c463661190c7d7bc77a4beeefae045924bb6fc
Sha256: d42ec155051dde4493336856a21deeae32f06a3899450a28473922a07c6c30e1
                                        
                                            GET /App/Tpl/default/Home/Public/images/nav_bg1.jpg HTTP/1.1 
Host: helenhr.com.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://helenhr.com.cn/App/Tpl/default/Home/Public/css/style.css
Cookie: think_language=zh-cn; PHPSESSID=dq0dinabkbdosp0a9p53952pt4

                                         
                                         47.90.47.141
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 18 Jul 2018 08:00:41 GMT
Server: Apache/2.4.10 (Win64) PHP/5.5.6
Last-Modified: Fri, 07 Apr 2017 02:14:28 GMT
Etag: "6d8-54c8a2f668900"
Accept-Ranges: bytes
Content-Length: 1752
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   1752
Md5:    ec91238b15f613cc27f53e06786a6ae1
Sha1:   124a93e3778e156e7f90d76eefb28273745191af
Sha256: d0f036a31e616d9c9ef7f17e0627034eb0df631033e689aebcbd9c6ffb99f8a2
                                        
                                            GET /App/Tpl/default/Home/Public/images/bg.jpg HTTP/1.1 
Host: helenhr.com.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://helenhr.com.cn/index.php/Contact2/index/cid/1395.html
Cookie: think_language=zh-cn; PHPSESSID=dq0dinabkbdosp0a9p53952pt4

                                         
                                         47.90.47.141
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 18 Jul 2018 08:00:41 GMT
Server: Apache/2.4.10 (Win64) PHP/5.5.6
Last-Modified: Fri, 07 Apr 2017 02:13:54 GMT
Etag: "15719-54c8a2d5fbc80"
Accept-Ranges: bytes
Content-Length: 87833
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   87833
Md5:    bbc282208a160bddae4bc55d4c3f1414
Sha1:   8b9b6bf558842613188ec2452b7ed246d4bc3e28
Sha256: e35da8b6baf27cde9d04577e188e34b176dd2bd09ccc31ef130cd7aa782a3a32
                                        
                                            GET /App/Tpl/default/Home/Public/images/left_bg.jpg HTTP/1.1 
Host: helenhr.com.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://helenhr.com.cn/App/Tpl/default/Home/Public/css/style.css
Cookie: think_language=zh-cn; PHPSESSID=dq0dinabkbdosp0a9p53952pt4

                                         
                                         47.90.47.141
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 18 Jul 2018 08:00:42 GMT
Server: Apache/2.4.10 (Win64) PHP/5.5.6
Last-Modified: Fri, 07 Apr 2017 02:14:26 GMT
Etag: "d28-54c8a2f480480"
Accept-Ranges: bytes
Content-Length: 3368
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   3368
Md5:    5ff8f07fee070a5066cb09ae575a122a
Sha1:   97d054b00843a93218e3e625f1017800a56a32d1
Sha256: 696d7b65ed8a182a0e40d8349adb54ed97b674bd138d20b94beb2178d1dacefe
                                        
                                            GET /App/Tpl/default/Home/Public/images/service.jpg HTTP/1.1 
Host: helenhr.com.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://helenhr.com.cn/index.php/Contact2/index/cid/1395.html
Cookie: think_language=zh-cn; PHPSESSID=dq0dinabkbdosp0a9p53952pt4

                                         
                                         47.90.47.141
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 18 Jul 2018 08:00:41 GMT
Server: Apache/2.4.10 (Win64) PHP/5.5.6
Last-Modified: Fri, 07 Apr 2017 02:15:20 GMT
Etag: "3e2c-54c8a327ffe00"
Accept-Ranges: bytes
Content-Length: 15916
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   15916
Md5:    72a3aafa46a6553d0cfea7af82a73792
Sha1:   4914d86436135c2bbeede90a1e01c6e39e49a481
Sha256: ad50672fac2398323d6cae44b0d234ae8dd3f5a8dc01fab67460e0adb3fd1f87
                                        
                                            GET /App/Tpl/default/Home/Public/images/index_02.jpg HTTP/1.1 
Host: helenhr.com.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://helenhr.com.cn/App/Tpl/default/Home/Public/css/style.css
Cookie: think_language=zh-cn; PHPSESSID=dq0dinabkbdosp0a9p53952pt4

                                         
                                         47.90.47.141
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 18 Jul 2018 08:00:41 GMT
Server: Apache/2.4.10 (Win64) PHP/5.5.6
Last-Modified: Fri, 07 Apr 2017 02:14:14 GMT
Etag: "3c1a-54c8a2e90e980"
Accept-Ranges: bytes
Content-Length: 15386
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   15386
Md5:    49b9f4ed4fd8320e97ca3628e4b5af79
Sha1:   335c48a3c7ecc634d88ffdcf73b4f11d116df643
Sha256: ef802a43a47a327246eae3e46d2d54fe1ae2934638c2c4a18a1151732dcc2126
                                        
                                            GET /App/Tpl/default/Home/Public/images/left_nav01.jpg HTTP/1.1 
Host: helenhr.com.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://helenhr.com.cn/App/Tpl/default/Home/Public/css/style.css
Cookie: think_language=zh-cn; PHPSESSID=dq0dinabkbdosp0a9p53952pt4

                                         
                                         47.90.47.141
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 18 Jul 2018 08:00:42 GMT
Server: Apache/2.4.10 (Win64) PHP/5.5.6
Last-Modified: Fri, 07 Apr 2017 02:14:26 GMT
Etag: "29b-54c8a2f480480"
Accept-Ranges: bytes
Content-Length: 667
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   667
Md5:    d00cf94c65f51d685702906343eaef4f
Sha1:   97a2d8112631b70c4dbdc369f07415f054b917ae
Sha256: dea87bd8ee8fcb146e235833c78ea2bc541832bedffe063e86108581c4b7e4e9
                                        
                                            GET /App/Tpl/default/Home/Public/images/page07.jpg HTTP/1.1 
Host: helenhr.com.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://helenhr.com.cn/App/Tpl/default/Home/Public/css/style.css
Cookie: think_language=zh-cn; PHPSESSID=dq0dinabkbdosp0a9p53952pt4

                                         
                                         47.90.47.141
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 18 Jul 2018 08:00:41 GMT
Server: Apache/2.4.10 (Win64) PHP/5.5.6
Last-Modified: Fri, 07 Apr 2017 02:15:18 GMT
Etag: "176de-54c8a32617980"
Accept-Ranges: bytes
Content-Length: 95966
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   95966
Md5:    7b651475f05134be8c53661a69934a7a
Sha1:   5ed946364d0c506a63734ab6ded78e8ba5d37f71
Sha256: e13d898aac1abfc067fe6430f9ea2aa779f1f62c153dd1ed929e18394caa5930
                                        
                                            GET /App/Tpl/default/Home/Public/images/add_bg.jpg HTTP/1.1 
Host: helenhr.com.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://helenhr.com.cn/App/Tpl/default/Home/Public/css/style.css
Cookie: think_language=zh-cn; PHPSESSID=dq0dinabkbdosp0a9p53952pt4

                                         
                                         47.90.47.141
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 18 Jul 2018 08:00:42 GMT
Server: Apache/2.4.10 (Win64) PHP/5.5.6
Last-Modified: Fri, 07 Apr 2017 02:13:52 GMT
Etag: "280-54c8a2d413800"
Accept-Ranges: bytes
Content-Length: 640
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   640
Md5:    10e824222f9ab41416df08d411ea012e
Sha1:   49a53bc3b3e24bcaf775e16a3dcf25a3d3600ce5
Sha256: f194060552c1f1539b20dba7d3ade2b220a9e63458857bcce1679fade25e5ab6
                                        
                                            GET /App/Tpl/default/Home/Public/images/index_12.jpg HTTP/1.1 
Host: helenhr.com.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://helenhr.com.cn/App/Tpl/default/Home/Public/css/style.css
Cookie: think_language=zh-cn; PHPSESSID=dq0dinabkbdosp0a9p53952pt4

                                         
                                         47.90.47.141
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 18 Jul 2018 08:00:42 GMT
Server: Apache/2.4.10 (Win64) PHP/5.5.6
Last-Modified: Fri, 07 Apr 2017 02:14:22 GMT
Etag: "30e6-54c8a2f0afb80"
Accept-Ranges: bytes
Content-Length: 12518
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   12518
Md5:    a034823a4b076e9ce23e2a8f574f5254
Sha1:   5b507eab407282ae1ea175d920e0f6be255fab59
Sha256: 158e8452e8d21c83892413dc53796bae25b41e93f6d46cdba5f4f9e78f018fa6
                                        
                                            GET /App/Tpl/default/Home/Public/images/maps.jpg HTTP/1.1 
Host: helenhr.com.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://helenhr.com.cn/index.php/Contact2/index/cid/1395.html
Cookie: think_language=zh-cn; PHPSESSID=dq0dinabkbdosp0a9p53952pt4

                                         
                                         47.90.47.141
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 18 Jul 2018 08:00:42 GMT
Server: Apache/2.4.10 (Win64) PHP/5.5.6
Last-Modified: Fri, 07 Apr 2017 02:14:28 GMT
Etag: "e8e-54c8a2f668900"
Accept-Ranges: bytes
Content-Length: 3726
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   3726
Md5:    9e62fce2e4b3ce605ae45e2a919b881a
Sha1:   b4769174b0cee0058d5d2814960df3c4478a8c09
Sha256: f2d135ca31da7cf604f9ca652bec6dd59aa6902111263b2953265ba8b305a223
                                        
                                            GET /App/Tpl/default/Home/Public/images/index_01.jpg HTTP/1.1 
Host: helenhr.com.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://helenhr.com.cn/App/Tpl/default/Home/Public/css/style.css
Cookie: think_language=zh-cn; PHPSESSID=dq0dinabkbdosp0a9p53952pt4

                                         
                                         47.90.47.141
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 18 Jul 2018 08:00:41 GMT
Server: Apache/2.4.10 (Win64) PHP/5.5.6
Last-Modified: Fri, 07 Apr 2017 02:14:14 GMT
Etag: "d4a8-54c8a2e90e980"
Accept-Ranges: bytes
Content-Length: 54440
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   54440
Md5:    d030104a77e9a61bc8fe4f04cbba1485
Sha1:   2b69ea493e77f8425ae403d067514707d5b078f6
Sha256: c2b1ebd46feaba94b36ce16bc92ef67ebfba8bfea1f0a372e67159a0ccbf91d1
                                        
                                            POST /gsorganizationvalsha2g2 HTTP/1.1 
Host: ocsp2.globalsign.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 111
Content-Type: application/ocsp-request

                                         
                                         104.18.20.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 18 Jul 2018 08:00:43 GMT
Content-Length: 1570
Connection: keep-alive
Set-Cookie: __cfduid=d74e0e5e85b9c12eaaf622a743098bbf11531900843; expires=Thu, 18-Jul-19 08:00:43 GMT; path=/; domain=.globalsign.com; HttpOnly
Last-Modified: Wed, 18 Jul 2018 05:45:50 GMT
Expires: Sun, 22 Jul 2018 05:45:50 GMT
Etag: "ee49b951747bf93006451043e8b2f13f88793bd0"
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 43c36a8d062142a3-OSL


--- Additional Info ---
Magic:  data
Size:   1570
Md5:    824a67b61dbcd980f528387d17e50621
Sha1:   ee49b951747bf93006451043e8b2f13f88793bd0
Sha256: 981fba809808d86df9996593bc82a0abf636b5c128ae8e347d5c909de4c3da2c
                                        
                                            GET /App/Tpl/default/Home/Public/swf/flash.swf HTTP/1.1 
Host: helenhr.com.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://helenhr.com.cn/index.php/Contact2/index/cid/1395.html
Cookie: think_language=zh-cn; PHPSESSID=dq0dinabkbdosp0a9p53952pt4

                                         
                                         47.90.47.141
HTTP/1.1 200 OK
Content-Type: application/x-shockwave-flash
                                        
Date: Wed, 18 Jul 2018 08:00:42 GMT
Server: Apache/2.4.10 (Win64) PHP/5.5.6
Last-Modified: Fri, 07 Apr 2017 02:17:50 GMT
Etag: "33f-54c8a3b70cf80"
Accept-Ranges: bytes
Content-Length: 831
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  Macromedia Flash data (compressed), version 6
Size:   831
Md5:    2897131ade6c84811e11d9d5654de305
Sha1:   41d5ef8dad0959c2254cd9babd48764546d97e6c
Sha256: 83ac838bc21b6cc8f6dd21da73ff49325fd620d41e2fbc2ccbadf2f804e18b05

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /get/flashplayer/update/current/xml/version_en_win_pl.xml HTTP/1.1 
Host: fpdownload2.macromedia.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         91.135.34.8
HTTP/1.1 200 OK
Content-Type: text/xml
                                        
Server: Apache
Last-Modified: Tue, 10 Jul 2018 09:00:07 GMT
Etag: "60e-570a15b4abfd2"
Accept-Ranges: bytes
Content-Length: 1550
Date: Wed, 18 Jul 2018 08:00:43 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  XML document text\012 XML document text
Size:   1550
Md5:    46219bd9418b94e5f479d9865bbcb673
Sha1:   59dfe58ecf2a7feaecf17560086e3a1d341875f8
Sha256: f6c052497ecfb687ecd7dd378c96dace5bed8b856a844034200703d8ab8734f9
                                        
                                            GET /hm.js?9b679f09aadc23055b672088adef47a9 HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://helenhr.com.cn/index.php/Contact2/index/cid/1395.html

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 9147
Date: Wed, 18 Jul 2018 08:00:43 GMT
Etag: fff8f910468c5147d4129690c64004f1
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=49B112194254389C; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max speed
Size:   9147
Md5:    5186a43ad894c6d3be1a777070577a5f
Sha1:   9c4a346533cd5d3d4d205536e53a74c181984778
Sha256: 5d834f498d99b8a045efbecfe048825f798258b6bc42bcfd725a1c0e1d8494ed
                                        
                                            GET /hm.gif?cc=0&ck=1&cl=24-bit&ds=1176x885&vl=754&et=0&fl=10.0&ja=1&ln=en-us&lo=0&rnd=1296518337&si=9b679f09aadc23055b672088adef47a9&v=1.2.33&lv=1&ct=!!&tt=%E6%B5%B7%E4%BC%A6%E4%BC%81%E4%B8%9A%E4%BF%A1%E6%81%AF%E5%92%A8%E8%AF%A2%EF%BC%88%E9%A6%99%E6%B8%AF%EF%BC%89%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8&sn=20219 HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://helenhr.com.cn/index.php/Contact2/index/cid/1395.html
Cookie: HMACCOUNT=49B112194254389C

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Date: Wed, 18 Jul 2018 08:00:44 GMT
Pragma: no-cache
Server: apache
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: helenhr.com.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: think_language=zh-cn; PHPSESSID=dq0dinabkbdosp0a9p53952pt4; Hm_lvt_9b679f09aadc23055b672088adef47a9=1531900844; Hm_lpvt_9b679f09aadc23055b672088adef47a9=1531900844

                                         
                                         47.90.47.141
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Wed, 18 Jul 2018 08:00:44 GMT
Server: Apache/2.4.10 (Win64) PHP/5.5.6
Content-Length: 209
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   209
Md5:    18ffb59b61525f781cf9251045be575d
Sha1:   bd7318b00b15b7a1c8a48524419fa2e5c27a5b6d
Sha256: b6682cab65d3243b5b75efb7279dbf49491957484780f2ba0a87632cc0e25642
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: helenhr.com.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: think_language=zh-cn; PHPSESSID=dq0dinabkbdosp0a9p53952pt4; Hm_lvt_9b679f09aadc23055b672088adef47a9=1531900844; Hm_lpvt_9b679f09aadc23055b672088adef47a9=1531900844

                                         
                                         47.90.47.141
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Wed, 18 Jul 2018 08:00:47 GMT
Server: Apache/2.4.10 (Win64) PHP/5.5.6
Content-Length: 209
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   209
Md5:    18ffb59b61525f781cf9251045be575d
Sha1:   bd7318b00b15b7a1c8a48524419fa2e5c27a5b6d
Sha256: b6682cab65d3243b5b75efb7279dbf49491957484780f2ba0a87632cc0e25642