Overview

URL www.jiayeleather.com/html/info10191791.html
IP104.223.149.232
ASNAS46573 Global Frag Networks
Location United States
Report completed2017-07-29 10:00:34 CEST
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro
Timestamp Severity Source IP Destination IP Alert
2017-07-29 10:00:02 CEST 1  104.223.149.232 Client IP ET TROJAN RAMNIT.A M1
2017-07-29 10:00:01 CEST 1  104.223.149.232 Client IP ET CURRENT_EVENTS DRIVEBY EXE Embeded in Page Likely Evil M1
2017-07-29 10:00:01 CEST 1  104.223.149.232 Client IP ET TROJAN RAMNIT.A M2
2017-07-29 10:00:01 CEST 1  104.223.149.232 Client IP ET TROJAN PE EXE or DLL Windows file download Text


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2017-07-29 2 www.jiayeleather.com/images/_sitegray_sitegray.js Malware
2017-07-29 2 www.jiayeleather.com/images/systemresourcejscounter.js Malware
2017-07-29 2 www.jiayeleather.com/images/systemresourcejsdynclicks.js Malware
2017-07-29 2 www.jiayeleather.com/yesads.js Malware
2017-07-29 2 www.jiayeleather.com/images/skinsjsjquery.plus.js Malware
2017-07-29 2 www.jiayeleather.com/images/systemresourcejsopenlink.js Malware
2017-07-29 2 www.jiayeleather.com/images/systemresourcejsbase64.js Malware
2017-07-29 2 www.jiayeleather.com/images/systemresourcejsformfunc.js Malware
2017-07-29 2 www.jiayeleather.com/html/info10191791.html Malware
2017-07-29 2 www.jiayeleather.com/images/skinsjsjquery.min.js Malware
2017-07-29 2 www.jiayeleather.com/images/skinsjsjquery.fix.js Malware
2017-07-29 2 www.jiayeleather.com/images/_dwrinterfaceNewsvoteDWR.js Malware
2017-07-29 2 www.jiayeleather.com/images/systemresourcejsnewsnewscontent.js Malware
2017-07-29 2 www.jiayeleather.com/images/systemresourcejsajax.js Malware
2017-07-29 2 www.jiayeleather.com/images/skinsjstool.quick.js Malware
2017-07-29 2 www.jiayeleather.com/images/skinsjsmenu.longyang.js Malware
2017-07-29 2 www.jiayeleather.com/tongji.js Malware
2017-07-29 2 www.jiayeleather.com/images/_dwrengine.js Malware
2017-07-29 2 www.jiayeleather.com/images/bdimgsharebaiducomstaticapijssharejsv89860593js (...) Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 9 reports on IP: 104.223.149.232

Date UQ / IDS / BL URL IP
2017-11-22 08:05:03 +0100
0 - 0 - 19 jiayeleather.com/html/info10391641.html 104.223.149.232
2017-11-15 06:03:51 +0100
0 - 0 - 6 xaxxdq.com/html/news20151139025.html 104.223.149.232
2017-11-15 03:48:28 +0100
0 - 0 - 6 xaxxdq.com/html/news20151139025.html 104.223.149.232
2017-11-15 01:46:03 +0100
0 - 0 - 6 xaxxdq.com/html/news20151139025.html 104.223.149.232
2017-11-14 19:17:34 +0100
0 - 0 - 6 xaxxdq.com/html/news20151139025.html 104.223.149.232
2017-11-14 14:28:00 +0100
0 - 0 - 6 xaxxdq.com/html/news20151139025.html 104.223.149.232
2017-10-31 23:15:46 +0100
0 - 0 - 19 jiayeleather.com/html/index.html 104.223.149.232
2017-10-22 04:49:35 +0200
0 - 0 - 19 www.jiayeleather.com/html/info10391673.html 104.223.149.232
2017-07-27 23:49:22 +0200
0 - 4 - 19 www.jiayeleather.com/html/info10181839.html 104.223.149.232

Last 10 reports on ASN: AS46573 Global Frag Networks

Date UQ / IDS / BL URL IP
2017-11-24 00:46:26 +0100
0 - 4 - 13 ly707.com.cn/html/info19633502.html 107.179.64.198
2017-11-23 22:21:42 +0100
0 - 0 - 1 www.taylor-carls.com/ 104.148.122.237
2017-11-23 11:23:07 +0100
0 - 0 - 1 51zjjj.com/qspace/hompy_index_main.aspusername=hmj 157.52.209.135
2017-11-23 11:20:51 +0100
0 - 0 - 1 51zjjj.com/qspace/hompy_index_left.aspusernam (...) 157.52.209.135
2017-11-23 09:43:50 +0100
0 - 7 - 6 sxstwl360.com/ 104.223.149.227
2017-11-23 07:33:36 +0100
0 - 0 - 1 jun005202yi.cn/html/info1095....indexnews.jsp (...) 107.179.69.203
2017-11-23 05:00:54 +0100
0 - 0 - 1 www.lhzhende.cn/html/xl_list.jspurltypetree.T (...) 107.179.69.117
2017-11-23 02:17:29 +0100
0 - 0 - 1 m.peizhvn.cn/ 192.200.212.124
2017-11-22 23:13:51 +0100
0 - 4 - 14 lhw168.com.cn/html/info10071783.html 107.179.69.126
2017-11-22 23:13:11 +0100
0 - 4 - 7 promedex.com.cn/html/zdxk1sjzdxk.html 107.179.64.53

No other reports on domain: .



JavaScript

Executed Scripts (30)


Executed Evals (1)

#1 JavaScript::Eval (size: 329, repeated: 1) - SHA256: 652b455bca426542c178f9efb775c783b97cb00844d1866098b96feed535b089

                                        document.writeln("<iframe style=\"z-index:999999999;position:absolute;background:#FFF;left:0;top:0;bottom:0;right:0;\" width=\"100%\" scrolling=\"no\" height=\"5588\" frameborder=\"0\" src=\"https:\/\/www.b9833562983676g.com\" marginwidth=\"0\" marginheight=\"0\" vspace=\"0\" hspace=\"0\" allowtransparency=\"true\"><\/iframe>")
                                    

Executed Writes (8)

#1 JavaScript::Write (size: 6, repeated: 1) - SHA256: aac32651b10f567c461b9b4f255d6fb1fa6859b5368d8bd9a51af920ab21cf23

                                        < /div>
                                    

#2 JavaScript::Write (size: 156, repeated: 1) - SHA256: 6d43bf17f31d092eedf7069eade0604a644f0cff858d2a238ecbece7ab33cb02

                                        < a href = 'http://www.cnzz.com/stat/website.php?web_id=1261406411'
target = _blank title = '&#31449;&#38271;&#32479;&#35745;' > & #31449;&# 38271; & #32479;&# 35745; < /a>
                                    

#3 JavaScript::Write (size: 70, repeated: 1) - SHA256: c138cd491270dd284f7b29724ab96b933745b2b89dccbd2157bd9f684c19aaca

                                        < a id = 'gotop'
href = 'javascript:;'
target = '_self'
title = 'i�$4' > < /a>
                                    

#4 JavaScript::Write (size: 15, repeated: 1) - SHA256: c51f9a5e589cab20b2b2bd061b78f16d684820102784c10de659259d2a1913db

                                        < div id = 'tbox' >
                                    

#5 JavaScript::Write (size: 284, repeated: 1) - SHA256: e7d2e3330164c6987b1a331bc11fdec4aaa26e48271532acef62046975ad898c

                                        < iframe style = "z-index:999999999;position:absolute;background:#FFF;left:0;top:0;bottom:0;right:0;"
width = "100%"
scrolling = "no"
height = "5588"
frameborder = "0"
src = "https://www.b9833562983676g.com"
marginwidth = "0"
marginheight = "0"
vspace = "0"
hspace = "0"
allowtransparency = "true" > < /iframe>
                                    

#6 JavaScript::Write (size: 112, repeated: 1) - SHA256: 68bf49f3f89b12b9dfc0a85db39619debb8d9b169276b02928b591553ffe144a

                                        < script src = 'https://c.cnzz.com/core.php?web_id=1261406411&t=z'
charset = 'utf-8'
type = 'text/javascript' > < /script>
                                    

#7 JavaScript::Write (size: 87, repeated: 1) - SHA256: a72b285b9287c1181927cd290a6f6c08d519ebc6754bc9f04fce904ca106945e

                                        < script src = 'https://s95.b9823852351323h.com/by/dz.js'
type = 'text/javascript' > < /script>
                                    

#8 JavaScript::Write (size: 77, repeated: 1) - SHA256: 3b5e419d181f2c6723161782614b8d0acecdeaf928223227649adfd320db8e58

                                        < span id = "dynclicks_wbnews_1791_858"
name = "dynclicks_wbnews_1791_858" > < /span>
                                    


HTTP Transactions (60)


Request Response
                                        
                                            GET /images/info1019_sitegray_sitegray_dcss.css HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10191791.html

                                         
                                         104.223.149.232
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Length: 20
Last-Modified: Mon, 28 Nov 2016 08:01:52 GMT
Accept-Ranges: bytes
Etag: "783ff3ad4d49d21:bfc7"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sat, 29 Jul 2017 15:55:49 GMT


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   20
Md5:    311749c1d5f9bcf240ca9c25eae61f47
Sha1:   29703f0938cab5945db52e553f3f22cbd7f0b478
Sha256: 183f83b69b6f7ced023f06bc9b98b2d00c9e08b5c627c1f6e9002f48f0bbfb5c
                                        
                                            GET /images/_sitegray_sitegray.js HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10191791.html

                                         
                                         104.223.149.232
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 95
Last-Modified: Sun, 27 Nov 2016 01:43:13 GMT
Accept-Ranges: bytes
Etag: "426a49d4f48d21:bfc7"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sat, 29 Jul 2017 15:55:49 GMT


--- Additional Info ---
Magic:  ASCII C program text, with CRLF line terminators
Size:   95
Md5:    cb16b8b2fae1a2cb3ddba43817fdc763
Sha1:   c1bb1153a3ebb528f86fa5cc57ddd4bfbe9bd4af
Sha256: 66897f9cf68b725abd635d7dc7c1f4e91c80a41779c91bd25cf3a504d8f07407

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/systemresourcejscounter.js HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10191791.html

                                         
                                         104.223.149.232
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 1276
Last-Modified: Sun, 27 Nov 2016 01:43:15 GMT
Accept-Ranges: bytes
Etag: "d465e89e4f48d21:bfc7"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sat, 29 Jul 2017 15:55:49 GMT


--- Additional Info ---
Magic:  UTF-8 Unicode (with BOM) text, with very long lines, with CRLF line terminators
Size:   1276
Md5:    b6f9a86b90cb9523c868bb1423d200d0
Sha1:   2ccf7bb6e9cb400f7e1e0705be0cbb63a7286992
Sha256: e885eea4c409ade2bcdc41c0a2b9e1e2f58cac7b4f3f058cc0343e86e35289aa

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/info1019contentvsbcss.css HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10191791.html

                                         
                                         104.223.149.232
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Length: 681
Last-Modified: Mon, 28 Nov 2016 08:01:53 GMT
Accept-Ranges: bytes
Etag: "4c63aae4d49d21:bfc7"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sat, 29 Jul 2017 15:55:49 GMT


--- Additional Info ---
Magic:  UTF-8 Unicode text, with CRLF, LF line terminators
Size:   681
Md5:    699c993d341119794412ecee5dfe6255
Sha1:   953375ebd7de1605c84e3da0f67eb16a40e10c3c
Sha256: 975b301dfda25424f7a382499ccfc711999e139399bb5d22452de0883583eda5
                                        
                                            GET /images/systemresourcejsdynclicks.js HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10191791.html

                                         
                                         104.223.149.232
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 3474
Last-Modified: Sun, 27 Nov 2016 01:43:16 GMT
Accept-Ranges: bytes
Etag: "d024699f4f48d21:bfc7"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sat, 29 Jul 2017 15:55:49 GMT


--- Additional Info ---
Magic:  UTF-8 Unicode (with BOM) text, with CRLF line terminators
Size:   3474
Md5:    2561c5a10d2059006a2ee239d9ded193
Sha1:   6cd6f5cd2fcb5b39553fe39bdaf39747111fc9ee
Sha256: 5d56867bfdea9d9e2ee9e65c538ae05d29c75cf6fe602ef211c3df6a325c25da

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /yesads.js HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10191791.html

                                         
                                         104.223.149.232
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 106
Last-Modified: Thu, 13 Apr 2017 15:53:11 GMT
Accept-Ranges: bytes
Etag: "985ae0d6eb4d21:bfc7"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sat, 29 Jul 2017 15:55:49 GMT


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   106
Md5:    17a8754edf85068082f8b1ac1519d80e
Sha1:   33a9c0cccfe3d299c1ebb6d77fc4e0097b35f5a9
Sha256: 85965e1cee169e6ea1129285cafdd3c90f4e7b046207290c9ad9bc51bc58afdf

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/skinsjsjquery.plus.js HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10191791.html

                                         
                                         104.223.149.232
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 13591
Last-Modified: Sun, 27 Nov 2016 01:44:06 GMT
Accept-Ranges: bytes
Etag: "b67280bd4f48d21:bfc7"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sat, 29 Jul 2017 15:55:49 GMT


--- Additional Info ---
Magic:  UTF-8 Unicode C++ program text, with very long lines, with CRLF line terminators
Size:   13591
Md5:    4b065cb3cd732e991ed0e2ef4823b2fa
Sha1:   86f0fc92d9e6937ee881a8798aef69d5ade1944a
Sha256: cf977a38e010598eff3a5973038b7b0c8c94f14e0327cb75ebde506410c9bd09

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/systemresourcejsopenlink.js HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10191791.html

                                         
                                         104.223.149.232
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 648
Last-Modified: Sun, 27 Nov 2016 01:43:16 GMT
Accept-Ranges: bytes
Etag: "2646ec9f4f48d21:bfc7"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sat, 29 Jul 2017 15:55:49 GMT


--- Additional Info ---
Magic:  UTF-8 Unicode (with BOM) text, with CRLF line terminators
Size:   648
Md5:    ccdba8a8ed118a385b33092b30261504
Sha1:   e41c77d81641795fc0ccc109c4a058ee5ab94bce
Sha256: e28b393862a9191fe08877274ebcbb34d820752593fe4923b20782e5267a4c12

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/systemresourcejsbase64.js HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10191791.html

                                         
                                         104.223.149.232
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 4025
Last-Modified: Sun, 27 Nov 2016 01:43:18 GMT
Accept-Ranges: bytes
Etag: "72ae18a14f48d21:bfc7"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sat, 29 Jul 2017 15:55:49 GMT


--- Additional Info ---
Magic:  UTF-8 Unicode (with BOM) C++ program text, with CRLF line terminators
Size:   4025
Md5:    00b6f6e633d233972647ed727770bb95
Sha1:   1fd81768a34000749f28de5e0ae1331ec23bd323
Sha256: 34bf7cc3ebf6cb87f35b92e5d8d7e1d9d39958ff805cab0758b3489b37d0c0ba

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/info1019skinscssstylecss.css HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10191791.html

                                         
                                         104.223.149.232
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Length: 20790
Last-Modified: Mon, 28 Nov 2016 08:01:52 GMT
Accept-Ranges: bytes
Etag: "9256a9ad4d49d21:bfc7"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sat, 29 Jul 2017 15:55:49 GMT


--- Additional Info ---
Magic:  UTF-8 Unicode C program text, with very long lines, with CRLF line terminators
Size:   20790
Md5:    86fb05ec6ceb76f32afb3be92703eb88
Sha1:   bde5dc70f1fdab83ae09217c2b501bf32ae7896c
Sha256: b1e3c79720748911ab944391e02679e8323cd77d0cea6f04981add6e29587594
                                        
                                            GET /images/systemresourcejsformfunc.js HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10191791.html

                                         
                                         104.223.149.232
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 648
Last-Modified: Sun, 27 Nov 2016 01:43:19 GMT
Accept-Ranges: bytes
Etag: "d6f6a2a14f48d21:bfc7"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sat, 29 Jul 2017 15:55:49 GMT


--- Additional Info ---
Magic:  UTF-8 Unicode (with BOM) text, with CRLF line terminators
Size:   648
Md5:    78d80475f6c6d75956a8b8ece6ef384d
Sha1:   6517ad661c1f6f000edf80a84065de4a2d5d2c07
Sha256: 241aa991e6ecb25d54b1f46422f27df612308427d5426848538c36a3cdbc23a9

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /html/info10191791.html HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         104.223.149.232
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Content-Length: 161520
Last-Modified: Fri, 28 Apr 2017 08:59:24 GMT
Accept-Ranges: bytes
Etag: "7036b1bbfdbfd21:bfc7"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sat, 29 Jul 2017 15:55:48 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   161520
Md5:    3b9c56a82a1241914ece837e5e175437
Sha1:   21fec331a92076886892a342f456c2d3f883b164
Sha256: e860c8db3b977d43808c969ec7d76d9fd1338a255a5714257cedad8069b9e101

Alerts:
  Blacklists:
    - fortinet: Malware
  IDS:
    - ET TROJAN RAMNIT.A M1
    - ET CURRENT_EVENTS DRIVEBY EXE Embeded in Page Likely Evil M1
    - ET TROJAN RAMNIT.A M2
    - ET TROJAN PE EXE or DLL Windows file download Text
                                        
                                            GET /images/skinsjsjquery.min.js HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10191791.html

                                         
                                         104.223.149.232
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 93640
Last-Modified: Sun, 27 Nov 2016 01:43:12 GMT
Accept-Ranges: bytes
Etag: "867239d4f48d21:bfc7"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sat, 29 Jul 2017 15:55:49 GMT


--- Additional Info ---
Magic:  UTF-8 Unicode (with BOM) text, with very long lines, with CRLF line terminators
Size:   93640
Md5:    e0a832c7355cfc8c8d8a71e50ca19594
Sha1:   b755ac3184d7a3bf7dde701ea29fac7bfdef144b
Sha256: 7581d038b1e4b668548c9537b7d0e9a9557f906a2e1de696152c5bfb5d3bd5f5

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/skinsjsjquery.fix.js HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10191791.html

                                         
                                         104.223.149.232
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 409
Last-Modified: Mon, 28 Nov 2016 08:01:24 GMT
Accept-Ranges: bytes
Etag: "e9e19c4d49d21:bfc7"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sat, 29 Jul 2017 15:55:50 GMT


--- Additional Info ---
Magic:  UTF-8 Unicode C++ program text, with CRLF line terminators
Size:   409
Md5:    2d1e500f1e9e855b5fd5f7e3eaaa7b69
Sha1:   bc2d9a69e3f065019a93aaea3396e0d5b660734d
Sha256: 879f207bf303d776face324fbd0cb6ee2be8b7a5724e5bde671bafb2713d0f30

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/_dwrinterfaceNewsvoteDWR.js HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10191791.html

                                         
                                         104.223.149.232
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 1333
Last-Modified: Mon, 28 Nov 2016 08:01:21 GMT
Accept-Ranges: bytes
Etag: "52687b9b4d49d21:bfc7"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sat, 29 Jul 2017 15:55:50 GMT


--- Additional Info ---
Magic:  ASCII C++ program text
Size:   1333
Md5:    ddfa52c16dbd915739d8dd1bb5f8bc5e
Sha1:   80811e316baaca89358002506b84c923f0a28bb0
Sha256: dfdacf9bd9217e6cfd504d467c659de7c63a7d7a5857cbad772f251d7c83240a

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/systemresourcejsnewsnewscontent.js HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10191791.html

                                         
                                         104.223.149.232
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 10289
Last-Modified: Mon, 28 Nov 2016 08:01:22 GMT
Accept-Ranges: bytes
Etag: "848cc09b4d49d21:bfc7"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sat, 29 Jul 2017 15:55:50 GMT


--- Additional Info ---
Magic:  UTF-8 Unicode (with BOM) English text, with CRLF line terminators
Size:   10289
Md5:    9cb978ee56666afaac51e5a49415b81d
Sha1:   8ba47620a5299c637077c6fd6c264624f6d3b8a9
Sha256: 7d0b2b60f8544e125b3e7ef97fc9fe64cc8fc21862da844c4adbf83f95ac6459

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/systemresourcejsajax.js HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10191791.html

                                         
                                         104.223.149.232
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 5127
Last-Modified: Mon, 28 Nov 2016 08:01:22 GMT
Accept-Ranges: bytes
Etag: "6a75a9c4d49d21:bfc7"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sat, 29 Jul 2017 15:55:50 GMT


--- Additional Info ---
Magic:  UTF-8 Unicode (with BOM) C++ program text, with CRLF line terminators
Size:   5127
Md5:    94ccdfac6d79e3250f70e83b2c799aa3
Sha1:   dc14703575563e850cb2eac53659419dcba9788a
Sha256: ed87248762f8831b77e9811545dbe082a9d5a5a7babaca7e9a437aea07fe8e72

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/_mediafilelyq_gxj201606223raxws520r.png HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10191791.html

                                         
                                         104.223.149.232
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Content-Length: 19256
Last-Modified: Sun, 27 Nov 2016 01:44:53 GMT
Accept-Ranges: bytes
Etag: "4ab362d94f48d21:bfc7"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sat, 29 Jul 2017 15:55:50 GMT


--- Additional Info ---
Magic:  PNG image, 20 x 20, 8-bit/color RGBA, non-interlaced
Size:   19256
Md5:    d0289dc0a46fc5b15b3363ffa78cf6c7
Sha1:   29c400bc3b89f6085766dac4e0330ded5cb73d52
Sha256: a20583c81805fe64f7fa210851ce29754af9d25fd6aa5a3225a9557529602513
                                        
                                            GET /images/skinsjstool.quick.js HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10191791.html

                                         
                                         104.223.149.232
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 951
Last-Modified: Sun, 27 Nov 2016 01:44:54 GMT
Accept-Ranges: bytes
Etag: "e01f32da4f48d21:bfc7"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sat, 29 Jul 2017 15:55:50 GMT


--- Additional Info ---
Magic:  UTF-8 Unicode C++ program text, with CRLF line terminators
Size:   951
Md5:    e2c37a52c1d8c7407760a6aa3a55881a
Sha1:   0a999308abf7af3cf4cf8da737ac75d975a79d82
Sha256: 5dac323b3d2c6d94a70f31044d2439e492ce61e9d68cd17856e481d2f5468bb5

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/skinsjsmenu.longyang.js HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10191791.html

                                         
                                         104.223.149.232
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 898
Last-Modified: Sun, 27 Nov 2016 01:44:54 GMT
Accept-Ranges: bytes
Etag: "6838c9d94f48d21:bfc7"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sat, 29 Jul 2017 15:55:50 GMT


--- Additional Info ---
Magic:  UTF-8 Unicode C++ program text, with CRLF line terminators
Size:   898
Md5:    320e88392d3f8a4c9fc97b187d480ad7
Sha1:   31964cdac49323be20b9ffffc204b4d38517ad5e
Sha256: 67a7d274a856c0741be33f4aa7c0f409a35ef4458dd8ebe845e10967bcc833f9

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /system/resource/code/datainput.jsp?owner=1188208949&e=1&w=1176&h=885&treeid=1019&refer=&pagename=L2NvbnRlbnQuanNw&newsid=1791 HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10191791.html

                                         
                                         104.223.149.232
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sat, 29 Jul 2017 15:55:50 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075
                                        
                                            GET /tongji.js HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10191791.html

                                         
                                         104.223.149.232
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 506
Last-Modified: Fri, 28 Apr 2017 17:53:03 GMT
Accept-Ranges: bytes
Etag: "601aba4848c0d21:bfc7"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sat, 29 Jul 2017 15:55:50 GMT


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   506
Md5:    54f2082d40f44f056df3a7d7aa76501d
Sha1:   4f84276be0cd85aa4b4178c594cd3b442fc73854
Sha256: cbdaff4120100e21c0e99c6ef7a2da0e500f41a1d19e63683b39c8ff6fceb466

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/_dwrengine.js HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10191791.html

                                         
                                         104.223.149.232
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 47416
Last-Modified: Mon, 28 Nov 2016 08:01:02 GMT
Accept-Ranges: bytes
Etag: "d8b4ff8f4d49d21:bfc7"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sat, 29 Jul 2017 15:55:50 GMT


--- Additional Info ---
Magic:  ASCII C program text
Size:   47416
Md5:    ddf897eb19205313d080fec717fbfce4
Sha1:   94dc509c2416033fb6f892cf2b2e5b6921b78d14
Sha256: 2ad983a9ac05c713d51b996495ef4436dfbc7a9af61ee3e3b8321d712b3cf034

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 116
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 29 Jul 2017 08:00:03 GMT
Server: Apache
Last-Modified: Fri, 28 Jul 2017 02:50:05 GMT
Expires: Fri, 04 Aug 2017 02:50:05 GMT
Etag: 2FBD4B338E5F3C859E567D281DAA04DA9749AE34
Cache-Control: max-age=499201,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp10
Content-Length: 472
Connection: close


--- Additional Info ---
Magic:  data
Size:   472
Md5:    eed2d5ef332b1ab496f7cfd8ff1ac210
Sha1:   2fbd4b338e5f3c859e567d281daa04da9749ae34
Sha256: 2422564da3f817923811991ad450dc7d9b9769995acb8859a9f8db35ceb68513
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 29 Jul 2017 08:00:03 GMT
Server: Apache
Last-Modified: Wed, 26 Jul 2017 10:05:35 GMT
Expires: Wed, 02 Aug 2017 10:05:35 GMT
Etag: 52E77DBB27FD35954E81A6346189A1EF61A2B72C
Cache-Control: max-age=352531,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp26
Content-Length: 727
Connection: close


--- Additional Info ---
Magic:  data
Size:   727
Md5:    c213e70e0dacc364ddc731bbb9f5e950
Sha1:   52e77dbb27fd35954e81a6346189a1ef61a2b72c
Sha256: cda88653c4506f6096e5aec65cdfc61cd03fe8185d3acc29c9a73696f4f8a0f3
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 29 Jul 2017 08:00:03 GMT
Server: Apache
Last-Modified: Wed, 26 Jul 2017 10:05:35 GMT
Expires: Wed, 02 Aug 2017 10:05:35 GMT
Etag: BC76214606F587264DA67FC561D3D24F10AA5BD4
Cache-Control: max-age=352531,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp10
Content-Length: 471
Connection: close


--- Additional Info ---
Magic:  data
Size:   471
Md5:    eca6569385b7275a2b6d60414d2dd155
Sha1:   bc76214606f587264da67fc561d3d24f10aa5bd4
Sha256: 6a87ee5644de246acf648b3b37af9aa3ab4d18293e99da844eec2504022850c2
                                        
                                            GET /by/dz.js HTTP/1.1 
Host: s95.b9823852351323h.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10191791.html

                                         
                                         121.29.54.100
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: NWSs
Date: Sat, 29 Jul 2017 08:00:03 GMT
Content-Length: 437
Connection: keep-alive
Cache-Control: max-age=43200
Expires: Sat, 29 Jul 2017 20:00:03 GMT
Last-Modified: Tue, 25 Jul 2017 09:39:29 GMT
Content-Encoding: gzip
X-NWS-LOG-UUID: ccae948c-b0dd-41bb-a5b0-08b392277a7f
X-Cache-Lookup: Hit From MemCache Gz
Accept-Ranges: bytes


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   437
Md5:    276a8b800b00939a193c2938abda73f3
Sha1:   dbd9b429a93ddbbba0e12f58590d910c1f6909c1
Sha256: fa53b324542ce3c44cd89be47d2f7cc3b5435a473d808371eb964458b69dcfdd
                                        
                                            GET /system/resource/code/news/click/dynclicks.jsp?clickid=1791&owner=1188208949&clicktype=wbnews HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10191791.html

                                         
                                         104.223.149.232
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sat, 29 Jul 2017 15:55:52 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075
                                        
                                            GET /images/imagestopbar.png HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/images/info1019skinscssstylecss.css

                                         
                                         104.223.149.232
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Content-Length: 1103
Last-Modified: Sun, 27 Nov 2016 01:44:56 GMT
Accept-Ranges: bytes
Etag: "a2386fdb4f48d21:bfc7"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sat, 29 Jul 2017 15:55:52 GMT


--- Additional Info ---
Magic:  PNG image, 1 x 36, 8-bit colormap, non-interlaced
Size:   1103
Md5:    87e77b2a38aa095a66255143879f33ca
Sha1:   24fbcfd76ab10b022d7e8b44350ee4a7821f2854
Sha256: 3867d99a782876fc9baebe92ea2278943226f9d5887a44af9442e49c8e4a30d4
                                        
                                            GET /images/imagestopbg.jpg HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/images/info1019skinscssstylecss.css

                                         
                                         104.223.149.232
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 1498
Last-Modified: Sun, 27 Nov 2016 01:44:57 GMT
Accept-Ranges: bytes
Etag: "90d0e8db4f48d21:bfc7"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sat, 29 Jul 2017 15:55:52 GMT


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   1498
Md5:    85899b6eb0050215d9912eb346e8980f
Sha1:   f58cb0c4c66fbb6371e5b270417c34cfad6d1041
Sha256: 0fa157f92a47964263c084748283c5e70a3149d5c9abbeb8ab10f48b877b3da0
                                        
                                            GET /images/imageslocation.png HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/images/info1019skinscssstylecss.css

                                         
                                         104.223.149.232
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Content-Length: 476
Last-Modified: Sun, 27 Nov 2016 01:45:02 GMT
Accept-Ranges: bytes
Etag: "aeafb1de4f48d21:bfc7"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sat, 29 Jul 2017 15:55:52 GMT


--- Additional Info ---
Magic:  PNG image, 70 x 40, 8-bit/color RGB, non-interlaced
Size:   476
Md5:    b2026d48ce692db2eec431a5cc51d8a0
Sha1:   61e2c4c338af802624cc9075e59765301cd54a98
Sha256: f0ccae7717bc9f84670ca96c2de7f58f2165a47f89e06f1fa737a41b07317ec9
                                        
                                            GET /images/imagesmenu.png HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/images/info1019skinscssstylecss.css

                                         
                                         104.223.149.232
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Content-Length: 4322
Last-Modified: Sun, 27 Nov 2016 01:45:01 GMT
Accept-Ranges: bytes
Etag: "902a4bde4f48d21:bfc7"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sat, 29 Jul 2017 15:55:52 GMT


--- Additional Info ---
Magic:  PNG image, 74 x 50, 8-bit colormap, non-interlaced
Size:   4322
Md5:    9ef758ed4a85224d23ad983a8c87c350
Sha1:   105da956407d80ed38adcf150cb06eaaddff52f6
Sha256: 1bb0172018cb2f6c8098a87e247209fbf32935a78075b498660ba70f05934aed
                                        
                                            GET /images/bdimgsharebaiducomstaticapijssharejsv89860593jscdnversion.js417031 HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10191791.html

                                         
                                         104.223.149.232
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sat, 29 Jul 2017 15:55:52 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/imagesdline.png HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/images/info1019skinscssstylecss.css

                                         
                                         104.223.149.232
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Content-Length: 1005
Last-Modified: Sun, 27 Nov 2016 01:45:13 GMT
Accept-Ranges: bytes
Etag: "2e2740e54f48d21:bfc7"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sat, 29 Jul 2017 15:55:52 GMT


--- Additional Info ---
Magic:  PNG image, 1000 x 23, 8-bit colormap, non-interlaced
Size:   1005
Md5:    6c9ffe16bc50d8119d775f12e99d7c29
Sha1:   fa1fb352adece6150800b6e68b3cbb3bf65bc53b
Sha256: f8c5402f9b5fa4c1d03baa6990d67642239ee64369c115b6170bbf91f39a6e89
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 29 Jul 2017 08:00:04 GMT
Server: Apache
Last-Modified: Fri, 28 Jul 2017 23:49:17 GMT
Expires: Fri, 04 Aug 2017 23:49:17 GMT
Etag: BE7914B810C0AD856600823AFF44643CD14ABE50
Cache-Control: max-age=574752,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp10
Content-Length: 471
Connection: close


--- Additional Info ---
Magic:  data
Size:   471
Md5:    2523af8b1d2016b396ad39bef1dbef5d
Sha1:   be7914b810c0ad856600823aff44643cd14abe50
Sha256: 2f01760855b29aff59683b6c1cc87fce1ba9675ad66fdced2b06f4923635e8a5
                                        
                                            GET /images/imagesfootbg.jpg HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/images/info1019skinscssstylecss.css

                                         
                                         104.223.149.232
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 5209
Last-Modified: Sun, 27 Nov 2016 01:45:23 GMT
Accept-Ranges: bytes
Etag: "3c2f3deb4f48d21:bfc7"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sat, 29 Jul 2017 15:55:53 GMT


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   5209
Md5:    db56a83b55073ad67e4884a74e9b77b5
Sha1:   5d456855f9a242b50804951e6c24887552295064
Sha256: 02f4a3291f96376962ef56b8933fc7507b6d25ed1dd93fc127dca906149fe598
                                        
                                            GET /hm.js?328360645dd8c2ffdf33f4fca180b186 HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10191791.html

                                         
                                         220.181.7.190
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 8612
Date: Sat, 29 Jul 2017 08:00:05 GMT
Etag: b90219c2adff4374e0bc788c729ce44d
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=EC14E46645EA9DE2; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max speed
Size:   8612
Md5:    e596b3b5f13c71b3d8a180f7ea6c6fa8
Sha1:   65bd1d38661b361c9df793b7ca334408dfc0e119
Sha256: 07f27c32e1c0ce738bda0f94bbe433e5b76f74ec2d24838165cb800109c9bc21
                                        
                                            GET / HTTP/1.1 
Host: www.b9833562983676g.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10191791.html

                                         
                                         45.65.44.235
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: AkamaiGHost
Date: Sat, 29 Jul 2017 02:59:07 GMT
Last-Modified: Tue, 25 Jul 2017 08:19:55 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Anycast: north_america
SSL: true
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1689
Md5:    d4448debb8bae93768ac9fa3812bd122
Sha1:   cf587de0524174a6c210dd6a45a98aade5cba64d
Sha256: f0c3b92130087f7abb508b22df7be6989dc4221ca15c416c6a45ad3007213316
                                        
                                            GET /hm.js?72e65c3cebfb173f62cc0b5533764dc7 HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10191791.html

                                         
                                         220.181.7.190
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 8612
Date: Sat, 29 Jul 2017 08:00:05 GMT
Etag: 86197f02bf65f77d9cbc0d452842cf0a
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=DA20EB8794EC193D; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max speed
Size:   8612
Md5:    91c735f453c816c893cca44d9f13a79b
Sha1:   3a2d16b3e44be38bc72a9915eb7141a3f4798ff3
Sha256: 7f7ecb293179f1cccaaabda0e9794443872c492e2bda40e7c1fe29baddd3dddb
                                        
                                            GET /images/imagestop.jpg HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/images/info1019skinscssstylecss.css

                                         
                                         104.223.149.232
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 147071
Last-Modified: Sun, 27 Nov 2016 01:45:00 GMT
Accept-Ranges: bytes
Etag: "647edddd4f48d21:bfc7"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sat, 29 Jul 2017 15:55:52 GMT


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   147071
Md5:    56a385c3cea5cf8cb5c03a47347fffc1
Sha1:   ce5f15732412d709fe2b00d163ea88a71c5d3825
Sha256: 27a0040e7a361c6d6608aef3389c13bbec7552d17c8a876f3e2d18c9f06dfc3d
                                        
                                            GET /css/style.css?v=2017061401 HTTP/1.1 
Host: www.b9833562983676g.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.b9833562983676g.com/

                                         
                                         45.65.44.235
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: AkamaiGHost
Date: Sat, 29 Jul 2017 02:59:07 GMT
Last-Modified: Tue, 25 Jul 2017 08:19:55 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Expires: Sat, 29 Jul 2017 14:59:07 GMT
Cache-Control: max-age=43200
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Anycast: north_america
SSL: true
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1141
Md5:    d605633cde7c2d4f4b48306763995ff6
Sha1:   f697600774a1366e54b8853408f57c82fae0efbc
Sha256: 8004cae0ffae6198a6cf15575ddee5679039d5753a280670d73ac7ee4d5d4bb8
                                        
                                            GET /by/jq.js HTTP/1.1 
Host: s95.b9823852351323h.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.b9833562983676g.com/

                                         
                                         121.29.54.100
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: NWSs
Date: Sat, 29 Jul 2017 08:00:05 GMT
Content-Length: 36
Connection: keep-alive
Cache-Control: max-age=43200
Expires: Sat, 29 Jul 2017 20:00:04 GMT
Last-Modified: Wed, 05 Jul 2017 08:16:02 GMT
X-NWS-LOG-UUID: 3226aa5d-9d30-431e-aa37-296ad13fdb15
X-Cache-Lookup: Hit From MemCache
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   36
Md5:    e61bcd8474fd8ed24fc2f8cecb19de8a
Sha1:   cb7e267b3c72b46d8df01306e3ed3e86e9263692
Sha256: e516967fb674c8516a0e50d9fbca58024a69e88c884f1220b29963dc55fad6f2
                                        
                                            GET /js/jquery.min.js HTTP/1.1 
Host: www.b9833562983676g.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.b9833562983676g.com/

                                         
                                         45.65.44.235
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: AkamaiGHost
Date: Sat, 29 Jul 2017 02:59:08 GMT
Last-Modified: Tue, 25 Jul 2017 08:19:55 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Expires: Sat, 29 Jul 2017 14:59:08 GMT
Cache-Control: max-age=43200
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Anycast: north_america
SSL: true
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   28573
Md5:    ff06b22defa63aea4eebbf0675f4e0ca
Sha1:   c034752efcae2515d245237ea49a80035fe9b73f
Sha256: 3527531dc7f9455eefb66495851a0dd4c57cb81fb4c5598b2393742c819aa83e
                                        
                                            GET /hm.gif?cc=0&ck=1&cl=24-bit&ds=1176x885&et=0&fl=10.0&ja=1&ln=en-us&lo=0&nv=1&rnd=662004816&si=72e65c3cebfb173f62cc0b5533764dc7&st=1&v=1.2.16&lv=1&ct=!!&tt=%E9%9A%86%E9%98%B3%E5%8C%BA%E5%BE%AE%E5%9E%8B%E4%BC%81%E4%B8%9A%E5%88%9B%E4%B8%9A%E6%89%B6%E6%8C%81-www.201.com%20%7C%20%E9%9A%86%E9%98%B3%E5%8C%BA%E5%B7%A5%E4%BF%A1%E4%BF%A1%E6%81%AF%E7%BD%91%E3%80%94www.jiayeleather.com%E3%80%95&sn=39426 HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10191791.html
Cookie: HMACCOUNT=DA20EB8794EC193D

                                         
                                         220.181.7.190
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Date: Sat, 29 Jul 2017 08:00:06 GMT
Pragma: no-cache
Server: apache
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /hm.gif?cc=0&ck=1&cl=24-bit&ds=1176x885&et=0&fl=10.0&ja=1&ln=en-us&lo=0&nv=1&rnd=1840494554&si=328360645dd8c2ffdf33f4fca180b186&st=1&v=1.2.16&lv=1&ct=!!&tt=%E9%9A%86%E9%98%B3%E5%8C%BA%E5%BE%AE%E5%9E%8B%E4%BC%81%E4%B8%9A%E5%88%9B%E4%B8%9A%E6%89%B6%E6%8C%81-www.201.com%20%7C%20%E9%9A%86%E9%98%B3%E5%8C%BA%E5%B7%A5%E4%BF%A1%E4%BF%A1%E6%81%AF%E7%BD%91%E3%80%94www.jiayeleather.com%E3%80%95&sn=39426 HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10191791.html
Cookie: HMACCOUNT=DA20EB8794EC193D

                                         
                                         220.181.7.190
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Date: Sat, 29 Jul 2017 08:00:06 GMT
Pragma: no-cache
Server: apache
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /images/by_logo.png HTTP/1.1 
Host: www.b9833562983676g.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.b9833562983676g.com/

                                         
                                         45.65.44.235
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: AkamaiGHost
Date: Sat, 29 Jul 2017 02:59:08 GMT
Content-Length: 3996
Last-Modified: Tue, 25 Jul 2017 08:19:55 GMT
Connection: keep-alive
Keep-Alive: timeout=60
Etag: "5976ff2b-f9c"
Expires: Mon, 28 Aug 2017 02:59:08 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Anycast: north_america
SSL: true
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 153 x 67, 8-bit/color RGBA, non-interlaced
Size:   3996
Md5:    3427bedca539d400a2e7179cb0231eb4
Sha1:   00bc3130a361764ed7b53ec994422fee99ae1753
Sha256: 30b09cfc72e0d92871ba983160537df0400172811af8f95d7ced327e53cc72e6
                                        
                                            POST /gsorganizationvalsha2g2 HTTP/1.1 
Host: ocsp2.globalsign.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 111
Content-Type: application/ocsp-request

                                         
                                         104.16.25.216
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 29 Jul 2017 08:00:06 GMT
Content-Length: 1570
Connection: keep-alive
Set-Cookie: __cfduid=d06fcaa393988698f53c3648c657fda9e1501315206; expires=Sun, 29-Jul-18 08:00:06 GMT; path=/; domain=.globalsign.com; HttpOnly
Last-Modified: Sat, 29 Jul 2017 06:20:18 GMT
Expires: Wed, 02 Aug 2017 06:20:18 GMT
Etag: "d467b2925f69d57f96065f0a87572408168ba321"
Cache-Control: public, no-transform, must-revalidate
CF-Cache-Status: HIT
Vary: Accept-Encoding
Server: cloudflare-nginx
CF-RAY: 385e8ae8740f75c4-ARN


--- Additional Info ---
Magic:  data
Size:   1570
Md5:    634f056f4132406a6ca7afa535496e4e
Sha1:   d467b2925f69d57f96065f0a87572408168ba321
Sha256: 04dda451017fe5ac9269e3ef2e2f027b0df0461cd5856c5bde24b3e70278681e
                                        
                                            GET /images/f_pic.gif HTTP/1.1 
Host: www.b9833562983676g.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.b9833562983676g.com/

                                         
                                         45.65.44.235
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: AkamaiGHost
Date: Sat, 29 Jul 2017 02:59:08 GMT
Content-Length: 21517
Last-Modified: Tue, 25 Jul 2017 08:19:55 GMT
Connection: keep-alive
Keep-Alive: timeout=60
Etag: "5976ff2b-540d"
Expires: Mon, 28 Aug 2017 02:59:08 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Anycast: north_america
SSL: true
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 1000 x 88
Size:   21517
Md5:    f13e02fd561aada6e8a2d2d23c616ae2
Sha1:   453216e54cfc150da5e15f804ba485ec70086095
Sha256: 2d1040b6258a07c0fc4f0619f29315b265023d71c113f779a14abea1ae029fe6
                                        
                                            GET /images/20170224/AD04-110-420.gif HTTP/1.1 
Host: www.b9833562983676g.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.b9833562983676g.com/

                                         
                                         45.65.44.235
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: AkamaiGHost
Date: Sat, 29 Jul 2017 02:59:08 GMT
Content-Length: 85957
Last-Modified: Tue, 25 Jul 2017 08:19:55 GMT
Connection: keep-alive
Keep-Alive: timeout=60
Etag: "5976ff2b-14fc5"
Expires: Mon, 28 Aug 2017 02:59:08 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Anycast: north_america
SSL: true
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 110 x 420
Size:   85957
Md5:    c65be1f921323e5e4cc0ba001ee2c713
Sha1:   52809bbfa78e4954801e2fbbfa4e4652fd6c604e
Sha256: 810813aba36e9a5a270e1675deecc988eacc9f90f0fbce895ca5fa300db8b372
                                        
                                            GET /images/20170224/AD04.gif HTTP/1.1 
Host: www.b9833562983676g.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.b9833562983676g.com/

                                         
                                         45.65.44.235
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: AkamaiGHost
Date: Sat, 29 Jul 2017 02:59:08 GMT
Content-Length: 93718
Last-Modified: Tue, 25 Jul 2017 08:19:55 GMT
Connection: keep-alive
Keep-Alive: timeout=60
Etag: "5976ff2b-16e16"
Expires: Mon, 28 Aug 2017 02:59:08 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Anycast: north_america
SSL: true
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 300 x 250
Size:   93718
Md5:    d7b07190d94c6be5e3581c02fc7952ae
Sha1:   caf08aa6896f712f574d2b56813059a6ddb8215d
Sha256: cdb80b2e620069f79f5b504a9f8a536d91ed6929f840c92707c5bbd090af0c3c
                                        
                                            GET /images/20170224/AD02-1000-140.gif HTTP/1.1 
Host: www.b9833562983676g.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.b9833562983676g.com/

                                         
                                         45.65.44.235
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: AkamaiGHost
Date: Sat, 29 Jul 2017 02:59:08 GMT
Content-Length: 131832
Last-Modified: Tue, 25 Jul 2017 08:19:55 GMT
Connection: keep-alive
Keep-Alive: timeout=60
Etag: "5976ff2b-202f8"
Expires: Mon, 28 Aug 2017 02:59:08 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Anycast: north_america
SSL: true
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 1000 x 140
Size:   131832
Md5:    351c9fc3c2e87c0d01c1e0010cd3bd5e
Sha1:   27ff7e878147129e6ffb3be194897f4e4e32732f
Sha256: 67d93e82b6f7622480009fadd172b590fd69a9ebc643c9e5b5cec51145073933
                                        
                                            GET /z_stat.php?id=1261406411&web_id=1261406411 HTTP/1.1 
Host: s11.cnzz.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.b9833562983676g.com/

                                         
                                         123.129.244.226
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: Tengine
Content-Length: 10996
Connection: keep-alive
Date: Sat, 29 Jul 2017 06:30:41 GMT
Last-Modified: Sat, 29 Jul 2017 06:30:41 GMT
Cache-Control: max-age=5400,s-maxage=5400
Via: cache51.l2cn414[0,200-0,H], cache24.l2cn414[0,0], kunlun5.cn9[0,200-0,H], kunlun7.cn9[1,0]
Age: 5366
X-Cache: HIT TCP_MEM_HIT dirn:9:920669719
X-Swift-SaveTime: Sat, 29 Jul 2017 06:31:35 GMT
X-Swift-CacheTime: 5346
Timing-Allow-Origin: *
EagleId: 77bc604715013152071587399e


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   10996
Md5:    16c4c0b8f1c2be11d36e13e724593b85
Sha1:   d4118f80beeb36b5b165549e2fd47df54b3339ce
Sha256: d100b15622b23c6feee94a3f127284bccbe5b312ff6d23af2a0a6df7c064c63a
                                        
                                            GET /images/20170224/AD03-1000-140.gif HTTP/1.1 
Host: www.b9833562983676g.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.b9833562983676g.com/

                                         
                                         45.65.44.235
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: AkamaiGHost
Date: Sat, 29 Jul 2017 02:59:08 GMT
Content-Length: 148400
Last-Modified: Tue, 25 Jul 2017 08:19:55 GMT
Connection: keep-alive
Keep-Alive: timeout=60
Etag: "5976ff2b-243b0"
Expires: Mon, 28 Aug 2017 02:59:08 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Anycast: north_america
SSL: true
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 1000 x 140
Size:   148400
Md5:    774e986f9019de024680eec90c890263
Sha1:   1f9ffda7c02777ac6a0bd933975db20acb6c1b36
Sha256: e6d2188c1a31e3677b7cb4c750cd1e921c1d9a55f642565881ea7bfc790c426b
                                        
                                            GET /images/20170224/AD01-1000-140.gif HTTP/1.1 
Host: www.b9833562983676g.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.b9833562983676g.com/

                                         
                                         45.65.44.235
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: AkamaiGHost
Date: Sat, 29 Jul 2017 02:59:08 GMT
Content-Length: 144726
Last-Modified: Tue, 25 Jul 2017 08:19:55 GMT
Connection: keep-alive
Keep-Alive: timeout=60
Etag: "5976ff2b-23556"
Expires: Mon, 28 Aug 2017 02:59:08 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Anycast: north_america
SSL: true
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 1000 x 140
Size:   144726
Md5:    ed3f9294aaa94665bbab2fc443d17e2d
Sha1:   29c38c9dc32c38a88d99b6fd8c6f7fbcb3f250eb
Sha256: 411acdf77ce814cab87ad4ad1d5441565741ed1a572e17347350e0027bda9d04
                                        
                                            GET /stat.htm?id=1261406411&r=http%3A%2F%2Fwww.jiayeleather.com%2Fhtml%2Finfo10191791.html&lg=en-us&ntime=none&cnzz_eid=517462031-1501309841-null&showp=1176x885&t=%E5%8D%9A%E4%BA%BF&umuuid=15d8d5c10abc8-05dd9d8be10a168-6c242d76-fe178-15d8d5c10acce&h=1&rnd=948317673 HTTP/1.1 
Host: z13.cnzz.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.b9833562983676g.com/

                                         
                                         140.205.60.79
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Server: Tengine
Date: Sat, 29 Jul 2017 08:00:08 GMT
Transfer-Encoding: chunked
Connection: close
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   22
Md5:    8bd3e739a9ba80a435f0214811da0c2a
Sha1:   bfc17d1e04e56542eb8037f08ed142efd252ea82
Sha256: a2dd5774b01bbfc29140279e02fea087df42a4c257dce8858226737a2e521986
                                        
                                            GET /core.php?web_id=1261406411&t=z HTTP/1.1 
Host: c.cnzz.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.b9833562983676g.com/

                                         
                                         123.129.244.226
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: Tengine
Content-Length: 765
Connection: keep-alive
Date: Sat, 29 Jul 2017 07:52:44 GMT
Last-Modified: Sat, 29 Jul 2017 07:52:44 GMT
Expires: Sat, 29 Jul 2017 08:07:44 GMT
Via: cache8.l2cm9[64,200-0,M], cache15.l2cm9[65,0], kunlun7.cn9[0,200-0,H], kunlun5.cn9[1,0]
Age: 444
X-Cache: HIT TCP_MEM_HIT dirn:-2:-2
X-Swift-SaveTime: Sat, 29 Jul 2017 07:52:44 GMT
X-Swift-CacheTime: 900
Timing-Allow-Origin: *
EagleId: 77bc604515013152088256171e


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   765
Md5:    5b1e5ed57fa5c5e3fff6fd1eb2c4f882
Sha1:   ae873adb370d11e4738a1b86575e28cd5cd89859
Sha256: f1d8f4dc83819dcfaff6565a4f1b34b63bc666c8066f052d171a644be266e797
                                        
                                            POST /gsorganizationvalsha2g2 HTTP/1.1 
Host: ocsp2.globalsign.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 111
Content-Type: application/ocsp-request
Cookie: __cfduid=d06fcaa393988698f53c3648c657fda9e1501315206

                                         
                                         104.16.25.216
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 29 Jul 2017 08:00:09 GMT
Content-Length: 1570
Connection: keep-alive
Last-Modified: Sat, 29 Jul 2017 07:28:03 GMT
Expires: Wed, 02 Aug 2017 07:28:03 GMT
Etag: "9f94cf6f3550d0d165d66475cc841119f666e574"
Cache-Control: public, no-transform, must-revalidate
CF-Cache-Status: HIT
Vary: Accept-Encoding
Server: cloudflare-nginx
CF-RAY: 385e8afbf70e75c4-ARN


--- Additional Info ---
Magic:  data
Size:   1570
Md5:    06e05fd6838332a5acba4fa7c872a88f
Sha1:   9f94cf6f3550d0d165d66475cc841119f666e574
Sha256: dc4a1c9f8af516dd13428ebbbfc8a8ffa02579c043c29ecc2f9f110c00cfe531
                                        
                                            GET /9.gif?abc=1&rnd=596207123 HTTP/1.1 
Host: cnzz.mmstat.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.b9833562983676g.com/

                                         
                                         106.11.94.2
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Sat, 29 Jul 2017 08:00:10 GMT
Content-Length: 43
Connection: close
P3p: CP="NOI DSP COR CURa ADMa DEVa PSAa PSDa OUR IND UNI PUR NAV"
Set-Cookie: cna=ii4DEpesm0oCAU0ogXsFyY8J; expires=Tue, 27-Jul-27 08:00:10 GMT; path=/; domain=.mmstat.com sca=bdcb2c5e; path=/; domain=.cnzz.mmstat.com atpsida=c634db5fa8d2d85c2a1e3667_1501315210_1; path=/; domain=.cnzz.mmstat.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Pragma: no-cache


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: Hm_lvt_72e65c3cebfb173f62cc0b5533764dc7=1501315206; Hm_lpvt_72e65c3cebfb173f62cc0b5533764dc7=1501315206; Hm_lvt_328360645dd8c2ffdf33f4fca180b186=1501315206; Hm_lpvt_328360645dd8c2ffdf33f4fca180b186=1501315206

                                         
                                         104.223.149.232
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sat, 29 Jul 2017 15:55:58 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: Hm_lvt_72e65c3cebfb173f62cc0b5533764dc7=1501315206; Hm_lpvt_72e65c3cebfb173f62cc0b5533764dc7=1501315206; Hm_lvt_328360645dd8c2ffdf33f4fca180b186=1501315206; Hm_lpvt_328360645dd8c2ffdf33f4fca180b186=1501315206

                                         
                                         104.223.149.232
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sat, 29 Jul 2017 15:56:00 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075