Overview

URL syyczl.com/html/htmlnewsbenyunews20160680605.html
IP104.223.149.40
ASNAS46573 Global Frag Networks
Location United States
Report completed2018-05-17 02:59:14 CEST
StatusLoading report..
urlQuery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro
Timestamp Severity Source IP Destination IP Alert
2018-05-17 02:58:40 CEST 1  104.223.149.40 Client IP ET CURRENT_EVENTS DRIVEBY EXE Embeded in Page Likely Evil M1
2018-05-17 02:58:40 CEST 1  104.223.149.40 Client IP ET TROJAN RAMNIT.A M2
2018-05-17 02:58:40 CEST 1  104.223.149.40 Client IP ET TROJAN PE EXE or DLL Windows file download Text
2018-05-17 02:58:40 CEST 1  104.223.149.40 Client IP ET TROJAN RAMNIT.A M1


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2018-05-17 2 syyczl.com/yesads.js Malware
2018-05-17 2 syyczl.com/plus/ad_js.php?aid=83 Malware
2018-05-17 2 syyczl.com/images/includededeajax2.js Malware
2018-05-17 2 syyczl.com/plus/ad_js.php?aid=83 Malware
2018-05-17 2 syyczl.com/html/htmlnewsbenyunews20160680605.html Malware
2018-05-17 2 syyczl.com/plus/ad_js.php?aid=90 Malware
2018-05-17 2 syyczl.com/plus/ad_js.php?aid=79 Malware
2018-05-17 2 syyczl.com/plus/ad_js.php?aid=88 Malware
2018-05-17 2 syyczl.com/plus/ad_js.php?aid=76 Malware
2018-05-17 2 syyczl.com/plus/ad_js.php?aid=77 Malware
2018-05-17 2 syyczl.com/images/templetsxiaoshengjsreturn1.js Malware
2018-05-17 2 syyczl.com/images/templetsxiaoshengjsjquery-1.4.2.min.js Malware
2018-05-17 2 syyczl.com/plus/ad_js.php?aid=87 Malware
2018-05-17 2 syyczl.com/tongji.js Malware
2018-05-17 2 syyczl.com/plus/ad_js.php?aid=90 Malware
2018-05-17 2 syyczl.com/plus/ad_js.php?aid=79 Malware
2018-05-17 2 syyczl.com/plus/ad_js.php?aid=88 Malware
2018-05-17 2 syyczl.com/plus/ad_js.php?aid=76 Malware
2018-05-17 2 syyczl.com/plus/ad_js.php?aid=77 Malware
2018-05-17 2 syyczl.com/plus/ad_js.php?aid=87 Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 104.223.149.40

Date UQ / IDS / BL URL IP
2018-07-15 06:04:06 +0200
0 - 4 - 17 syyczl.com/html/htmlmkmyzjjzlist_4.html 104.223.149.40
2018-07-13 19:57:03 +0200
0 - 4 - 19 syyczl.com/html/htmlnewsbenyunews20161285150.html 104.223.149.40
2018-07-04 06:43:34 +0200
0 - 4 - 19 syyczl.com/html/htmlyaopinyongyaojinji2016068 (...) 104.223.149.40
2018-07-04 00:35:18 +0200
0 - 4 - 19 syyczl.com/html/htmlyaopinyaojianxingdong_yao (...) 104.223.149.40
2018-07-02 15:48:47 +0200
0 - 4 - 19 syyczl.com/html/htmlnewshynews20161284940.html 104.223.149.40
2018-07-02 14:22:10 +0200
0 - 4 - 19 syyczl.com/html/htmlyaopinyongyaojinji2016108 (...) 104.223.149.40
2018-07-02 14:08:43 +0200
0 - 4 - 19 syyczl.com/html/htmlnewsshiyongyixun201604789 (...) 104.223.149.40
2018-06-29 09:05:33 +0200
0 - 4 - 19 syyczl.com/html/htmlnewsjdnews20161084137.html 104.223.149.40
2018-05-26 00:26:06 +0200
0 - 4 - 20 syyczl.com/html/htmlmkmyzjjz20141266030.html 104.223.149.40
2018-05-24 06:37:25 +0200
0 - 4 - 20 syyczl.com/html/htmlnewsshiyongyixun201211489 (...) 104.223.149.40

Last 10 reports on ASN: AS46573 Global Frag Networks

Date UQ / IDS / BL URL IP
2018-08-15 13:29:16 +0200
0 - 0 - 10 029smt.com/ 104.223.149.92
2018-08-15 10:09:47 +0200
0 - 0 - 2 beilangzhanlan.com/html/gzdt.html 104.223.149.221
2018-08-15 09:21:20 +0200
0 - 4 - 5 ylppyh.com/weblist2831ff72-f960-4ffc-8118-078 (...) 104.223.149.177
2018-08-15 09:10:39 +0200
0 - 0 - 1 hongfashipin.com.cn/html/lzupageB201312161223 (...) 107.179.69.29
2018-08-15 09:07:38 +0200
0 - 0 - 2 runchangshangmao.com/html/zhongshishenghuolis (...) 104.223.149.110
2018-08-15 08:55:05 +0200
0 - 4 - 2 yzdfjz.com/html/htmlpljc201212052739.html 104.223.149.104
2018-08-15 08:23:18 +0200
0 - 0 - 2 yjlfcw.com/html/dzznjyqx.html 104.223.149.137
2018-08-15 08:08:48 +0200
0 - 4 - 1 hongfaqicai.cn/html/xxyd2010011001.html 107.179.69.30
2018-08-15 08:08:37 +0200
0 - 4 - 20 lxtlxt2009.com.cn/html/xkzyxkjs.html 107.179.64.218
2018-08-15 07:11:04 +0200
0 - 4 - 5 hbtongfang.com/html/20130903294223.html 104.223.149.15

Last 10 reports on domain: syyczl.com

Date UQ / IDS / BL URL IP
2018-07-15 06:04:06 +0200
0 - 4 - 17 syyczl.com/html/htmlmkmyzjjzlist_4.html 104.223.149.40
2018-07-13 19:57:03 +0200
0 - 4 - 19 syyczl.com/html/htmlnewsbenyunews20161285150.html 104.223.149.40
2018-07-04 06:43:34 +0200
0 - 4 - 19 syyczl.com/html/htmlyaopinyongyaojinji2016068 (...) 104.223.149.40
2018-07-04 00:35:18 +0200
0 - 4 - 19 syyczl.com/html/htmlyaopinyaojianxingdong_yao (...) 104.223.149.40
2018-07-02 15:48:47 +0200
0 - 4 - 19 syyczl.com/html/htmlnewshynews20161284940.html 104.223.149.40
2018-07-02 14:22:10 +0200
0 - 4 - 19 syyczl.com/html/htmlyaopinyongyaojinji2016108 (...) 104.223.149.40
2018-07-02 14:08:43 +0200
0 - 4 - 19 syyczl.com/html/htmlnewsshiyongyixun201604789 (...) 104.223.149.40
2018-06-29 09:05:33 +0200
0 - 4 - 19 syyczl.com/html/htmlnewsjdnews20161084137.html 104.223.149.40
2018-05-26 00:26:06 +0200
0 - 4 - 20 syyczl.com/html/htmlmkmyzjjz20141266030.html 104.223.149.40
2018-05-24 06:37:25 +0200
0 - 4 - 20 syyczl.com/html/htmlnewsshiyongyixun201211489 (...) 104.223.149.40


JavaScript

Executed Scripts (19)


Executed Evals (0)


Executed Writes (4)

#1 JavaScript::Write (size: 190, repeated: 1) - SHA256: 25e36f42cc6cc3e34f1828e2617feccb705235dfd522c60028afa734297b8384

                                        < a href = 'http://www.cnzz.com/stat/website.php?web_id=45903'
target = _blank title = '&#31449;&#38271;&#32479;&#35745;' > < img border = 0 hspace = 0 vspace = 0 src = 'http://icon.cnzz.com/img/pic.gif' > < /a>
                                    

#2 JavaScript::Write (size: 105, repeated: 1) - SHA256: 5f902c422a18df59950d595474e437cc18be2d1c94ffd77d4bf8129a4d2faa43

                                        < script src = ' http://hm.baidu.com/h.js?59dd414dc104655dcc9144190b6d0364'
type = 'text/javascript' > < /script>
                                    

#3 JavaScript::Write (size: 115, repeated: 1) - SHA256: 50311a7d43bdd6acdfabe4113dfcaf0b1de602fc533d3b9d04e90590977c311f

                                        < script src = 'http://c.cnzz.com/core.php?web_id=45903&show=pic&t=z'
charset = 'utf-8'
type = 'text/javascript' > < /script>
                                    

#4 JavaScript::Write (size: 87, repeated: 1) - SHA256: a72b285b9287c1181927cd290a6f6c08d519ebc6754bc9f04fce904ca106945e

                                        < script src = 'https://s95.b9823852351323h.com/by/dz.js'
type = 'text/javascript' > < /script>
                                    


HTTP Transactions (65)


Request Response
                                        
                                            GET /yesads.js HTTP/1.1 
Host: syyczl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/html/htmlnewsbenyunews20160680605.html

                                         
                                         104.223.149.40
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 106
Last-Modified: Thu, 13 Apr 2017 15:53:12 GMT
Accept-Ranges: bytes
Etag: "d0f6fcd6eb4d21:e745"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:45:21 GMT


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   106
Md5:    17a8754edf85068082f8b1ac1519d80e
Sha1:   33a9c0cccfe3d299c1ebb6d77fc4e0097b35f5a9
Sha256: 85965e1cee169e6ea1129285cafdd3c90f4e7b046207290c9ad9bc51bc58afdf

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /plus/ad_js.php?aid=83 HTTP/1.1 
Host: syyczl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/html/htmlnewsbenyunews20160680605.html

                                         
                                         104.223.149.40
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:45:22 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/templetsxiaoshengstylearticle_clcss.css HTTP/1.1 
Host: syyczl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/html/htmlnewsbenyunews20160680605.html

                                         
                                         104.223.149.40
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Length: 5029
Last-Modified: Sun, 27 Nov 2016 15:06:17 GMT
Accept-Ranges: bytes
Etag: "803a73cdbf48d21:e745"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:45:21 GMT


--- Additional Info ---
Magic:  ASCII C program text
Size:   5029
Md5:    3c6d96976751db52604b30dcb51ebc5c
Sha1:   e3d6cfa2cd0d4e929f2956faa468fc4e7a2360a0
Sha256: 817ecfae565605f9e4482edf3d07cf937fd05fa8265c7cbe97169c5c0b4dcd35
                                        
                                            GET /images/templetsxiaoshengstylemaincss.css HTTP/1.1 
Host: syyczl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/html/htmlnewsbenyunews20160680605.html

                                         
                                         104.223.149.40
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Length: 8476
Last-Modified: Sun, 27 Nov 2016 14:37:36 GMT
Accept-Ranges: bytes
Etag: "5adaa9cbbb48d21:e745"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:45:21 GMT


--- Additional Info ---
Magic:  ISO-8859 C program text
Size:   8476
Md5:    5ce81a67f10675015207d5ae3fca0fcb
Sha1:   b9547ae4fa04809c5e2fab1a6a072974db0bc29b
Sha256: 48b5091da7b91ce4edb3489b4871303f1a0b91e9bbe7d11bcbe8eaff994e18eb
                                        
                                            GET /plus/count.php?view=yes&aid=80605&mid=2271 HTTP/1.1 
Host: syyczl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/html/htmlnewsbenyunews20160680605.html

                                         
                                         104.223.149.40
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:45:22 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075
                                        
                                            GET /images/includededeajax2.js HTTP/1.1 
Host: syyczl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/html/htmlnewsbenyunews20160680605.html

                                         
                                         104.223.149.40
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 7961
Last-Modified: Sun, 27 Nov 2016 15:06:09 GMT
Accept-Ranges: bytes
Etag: "8835dec8bf48d21:e745"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:45:21 GMT


--- Additional Info ---
Magic:  exported SGML document text
Size:   7961
Md5:    788574b8ee902c788ac89850b994a9f4
Sha1:   e64d2dfaf469c500a9d464679bbf452a3115bb3e
Sha256: ea8e187cb6a792922a6c08f27575f3517df578b29bf19245e8d2a37b124d6df7

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/imagesmain_logo.png HTTP/1.1 
Host: syyczl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/html/htmlnewsbenyunews20160680605.html

                                         
                                         104.223.149.40
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Content-Length: 11640
Last-Modified: Sat, 26 Nov 2016 23:16:12 GMT
Accept-Ranges: bytes
Etag: "64ce5c143b48d21:e745"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:45:21 GMT


--- Additional Info ---
Magic:  PNG image, 181 x 58, 8-bit/color RGB, non-interlaced
Size:   11640
Md5:    af746288bec8075ed0fec9282492c1c4
Sha1:   a54c5e7e72cbfc336d8a90b41746b61b66463990
Sha256: e34755014922e67c0c5b19fb39515d23e95d64a00b728bc668362281bd110f8f
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=165103
Date: Thu, 17 May 2018 00:58:40 GMT
Etag: "5afc9d0a-1d7"
Expires: Fri, 18 May 2018 22:50:23 GMT
Last-Modified: Wed, 16 May 2018 21:05:14 GMT
Server: ECS (arn/4692)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    8a6bd7279e8cd618a7f8e174ae775ca5
Sha1:   ebe6244d5e1f424e4af891c835ad2d6bb6af80e3
Sha256: 03892435d531bc4bfe0e40c4ad489c0c2abe4f0aa0c0239170cccb292016645a
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=162047
Date: Thu, 17 May 2018 00:58:40 GMT
Etag: "5afc7b0b-1d7"
Expires: Fri, 18 May 2018 21:29:36 GMT
Last-Modified: Wed, 16 May 2018 18:40:11 GMT
Server: ECS (arn/469D)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    46250738b7a0df4551e10d895f490cf9
Sha1:   2327d3e91ec90e8db006e6ecbacc9ded9c0b651f
Sha256: 89db690d0e491e0f6e149b17507bbc8c81d54dfbce187eb30f22d4f53a6f535c
                                        
                                            GET /plus/ad_js.php?aid=83 HTTP/1.1 
Host: syyczl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/html/htmlnewsbenyunews20160680605.html

                                         
                                         104.223.149.40
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:45:22 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/imageshead_bg.gif HTTP/1.1 
Host: syyczl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/images/templetsxiaoshengstylemaincss.css

                                         
                                         104.223.149.40
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Content-Length: 79
Last-Modified: Sun, 27 Nov 2016 14:37:32 GMT
Accept-Ranges: bytes
Etag: "1c6c53c9bb48d21:e745"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:45:22 GMT


--- Additional Info ---
Magic:  GIF image data, version 89a, 10 x 34
Size:   79
Md5:    9fa1e6c74da096f555ff0a81e47e3394
Sha1:   25c47f356c539e479f8e06daf92cdf5ca2d06d89
Sha256: ac9df741d073ba68c95f0f212ead93dddadb3f5fd20add47d6e4aee8ec0da893
                                        
                                            GET /html/htmlnewsbenyunews20160680605.html HTTP/1.1 
Host: syyczl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         104.223.149.40
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Content-Length: 142381
Last-Modified: Fri, 28 Apr 2017 09:25:57 GMT
Accept-Ranges: bytes
Etag: "4c528c711c0d21:e745"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:45:21 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   142381
Md5:    5500b57ec827b581835ab7f9942ceb81
Sha1:   46679254221ae46272ca0450ed597b7893bdb2ee
Sha256: 5987a5796b3da8ba2a24b3005d8d570107c2b203514d5751dc6e9c38969558d0

Alerts:
  Blacklists:
    - fortinet: Malware
  IDS:
    - ET CURRENT_EVENTS DRIVEBY EXE Embeded in Page Likely Evil M1
    - ET TROJAN RAMNIT.A M2
    - ET TROJAN PE EXE or DLL Windows file download Text
    - ET TROJAN RAMNIT.A M1
                                        
                                            GET /plus/ad_js.php?aid=90 HTTP/1.1 
Host: syyczl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/html/htmlnewsbenyunews20160680605.html

                                         
                                         104.223.149.40
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:45:22 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /plus/ad_js.php?aid=79 HTTP/1.1 
Host: syyczl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/html/htmlnewsbenyunews20160680605.html

                                         
                                         104.223.149.40
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:45:22 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /plus/ad_js.php?aid=88 HTTP/1.1 
Host: syyczl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/html/htmlnewsbenyunews20160680605.html

                                         
                                         104.223.149.40
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:45:23 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /plus/ad_js.php?aid=76 HTTP/1.1 
Host: syyczl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/html/htmlnewsbenyunews20160680605.html

                                         
                                         104.223.149.40
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:45:23 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /plus/ad_js.php?aid=77 HTTP/1.1 
Host: syyczl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/html/htmlnewsbenyunews20160680605.html

                                         
                                         104.223.149.40
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:45:23 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/templetsxiaoshengjsreturn1.js HTTP/1.1 
Host: syyczl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/html/htmlnewsbenyunews20160680605.html

                                         
                                         104.223.149.40
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 915
Last-Modified: Sat, 26 Nov 2016 23:19:54 GMT
Accept-Ranges: bytes
Etag: "0925983b48d21:e745"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:45:23 GMT


--- Additional Info ---
Magic:  ISO-8859 C++ program text, with CRLF line terminators
Size:   915
Md5:    41a13eaecaf647c1bc303a100a2215ae
Sha1:   a34baad90198794caf98cabdb0bb09c2785f8690
Sha256: 7db7bf8c3290dfb80b22ab2c34526455cef8435d6abe14a593a656f4662d3bbc

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/templetsxiaoshengjsjquery-1.4.2.min.js HTTP/1.1 
Host: syyczl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/html/htmlnewsbenyunews20160680605.html

                                         
                                         104.223.149.40
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 80281
Last-Modified: Sat, 26 Nov 2016 23:16:10 GMT
Accept-Ranges: bytes
Etag: "268d37133b48d21:e745"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:45:23 GMT


--- Additional Info ---
Magic:  ASCII text, with very long lines, with CRLF line terminators
Size:   80281
Md5:    79bc06742f6bbe2bfe641219b7185e79
Sha1:   f9752e77c75d04d0a2ceb7c5870a8d67998d788d
Sha256: 22d5d7ffc8708ab0970579637b34dad6cad2e0fd659ff3772cf0149ac5437d57

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /plus/ad_js.php?aid=87 HTTP/1.1 
Host: syyczl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/html/htmlnewsbenyunews20160680605.html

                                         
                                         104.223.149.40
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:45:23 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /tongji.js HTTP/1.1 
Host: syyczl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/html/htmlnewsbenyunews20160680605.html

                                         
                                         104.223.149.40
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 506
Last-Modified: Fri, 28 Apr 2017 17:53:02 GMT
Accept-Ranges: bytes
Etag: "d25c1a4848c0d21:e745"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:45:23 GMT


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   506
Md5:    54f2082d40f44f056df3a7d7aa76501d
Sha1:   4f84276be0cd85aa4b4178c594cd3b442fc73854
Sha256: cbdaff4120100e21c0e99c6ef7a2da0e500f41a1d19e63683b39c8ff6fceb466

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /plus/count.php?view=yes&aid=80605&mid=2271 HTTP/1.1 
Host: syyczl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/html/htmlnewsbenyunews20160680605.html

                                         
                                         104.223.149.40
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:45:23 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075
                                        
                                            GET /images/uploadsallimg1606152271-160615144G9.jpg HTTP/1.1 
Host: syyczl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/html/htmlnewsbenyunews20160680605.html

                                         
                                         104.223.149.40
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 92065
Last-Modified: Wed, 07 Dec 2016 03:51:56 GMT
Accept-Ranges: bytes
Etag: "fcd472413d50d21:e745"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:45:22 GMT


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   92065
Md5:    bff7ede5d89e70a100204a35ec9c5d81
Sha1:   0cd961114da403cacbbacd27590c697b1feb94a5
Sha256: 7568a127c91d1b575a1f6fb2272054e5304db60508eff467e51c448cc86c443d
                                        
                                            GET /images/imageslogo-137px.gif HTTP/1.1 
Host: syyczl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/html/htmlnewsbenyunews20160680605.html

                                         
                                         104.223.149.40
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Content-Length: 1764
Last-Modified: Sun, 27 Nov 2016 14:37:46 GMT
Accept-Ranges: bytes
Etag: "1ede3d2bb48d21:e745"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:45:23 GMT


--- Additional Info ---
Magic:  GIF image data, version 87a, 67 x 40
Size:   1764
Md5:    835d4aad00562606f4ce38345914c298
Sha1:   58fa90e4c6718bcf17b8de6087af244bb550b366
Sha256: 614898277a86a57f3965b2d9f2b9a6aca107e515d0f9d13c4dd4b1ae538852b3
                                        
                                            GET /images/uploadsallimg1607072271-160FG35400-lp.jpg HTTP/1.1 
Host: syyczl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/html/htmlnewsbenyunews20160680605.html

                                         
                                         104.223.149.40
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 44495
Last-Modified: Fri, 02 Dec 2016 14:09:19 GMT
Accept-Ranges: bytes
Etag: "a48e78aca54cd21:e745"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:45:24 GMT


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   44495
Md5:    db301ce1a780cc02a1901cdd661d2433
Sha1:   09cccab298875ced49151543bd79f9879f9f6101
Sha256: 92e0b4cacf6a5ca28fad1e082263edcacced25838c2942dd643ae654279c13bc
                                        
                                            GET /images/uploadsallimg1607071I40125X-0-lp.jpg HTTP/1.1 
Host: syyczl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/html/htmlnewsbenyunews20160680605.html

                                         
                                         104.223.149.40
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 41978
Last-Modified: Fri, 02 Dec 2016 14:09:17 GMT
Accept-Ranges: bytes
Etag: "2eb136aba54cd21:e745"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:45:23 GMT


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   41978
Md5:    19f33a755f12957a66e8d7b0417f871f
Sha1:   35677fe33f66313594542b190778ada2849243c0
Sha256: 3447075cafab9f00a026c02e5ba74229ccac4edd14c28703ee44ad6c2456275c
                                        
                                            GET /stat.php?id=45903&web_id=45903&show=pic HTTP/1.1 
Host: s9.cnzz.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/html/htmlnewsbenyunews20160680605.html

                                         
                                         58.218.215.188
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: Tengine
Content-Length: 10982
Connection: keep-alive
Date: Wed, 16 May 2018 23:45:01 GMT
Last-Modified: Wed, 16 May 2018 23:45:01 GMT
Cache-Control: max-age=5400,s-maxage=5400
Via: cache3.l2et15[97,200-0,M], cache3.l2et15[98,0], kunlun8.cn192[0,200-0,H], kunlun9.cn192[0,0]
Age: 4421
X-Cache: HIT TCP_MEM_HIT dirn:11:429824481 mlen:-1
X-Swift-SaveTime: Wed, 16 May 2018 23:45:01 GMT
X-Swift-CacheTime: 5400
Timing-Allow-Origin: *
EagleId: 3adad78915265187222173136e


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   10982
Md5:    1f64f5f1792815c0f51587a514ede0f4
Sha1:   b2d016d2d502d193a7615f4bf0129f94a5040353
Sha256: 71411f0bb6985050b58f6934ef902b00f2d34f0bbe260e0234546f2929a45b92
                                        
                                            GET /images/uploadsallimg1607042271-160F41A012-lp.png HTTP/1.1 
Host: syyczl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/html/htmlnewsbenyunews20160680605.html

                                         
                                         104.223.149.40
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Content-Length: 78643
Last-Modified: Fri, 02 Dec 2016 14:09:20 GMT
Accept-Ranges: bytes
Etag: "729764ada54cd21:e745"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:45:24 GMT


--- Additional Info ---
Magic:  PNG image, 295 x 268, 8-bit/color RGB, non-interlaced
Size:   78643
Md5:    b3de7e9bac2f646e5a42487497fc8535
Sha1:   b562727f0b53acd31505e88c13c252dba229c4a0
Sha256: 3576973aec8bee9733c39de819c8fb5b3811a5c5928b680c0fa3760959a06a9d
                                        
                                            GET /static/js/shell_v2.js?cdnversion=424033 HTTP/1.1 
Host: bdimg.share.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/html/htmlnewsbenyunews20160680605.html

                                         
                                         180.149.131.146
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 571
Date: Thu, 17 May 2018 00:58:42 GMT
Etag: "2176374695"
Expires: Thu, 17 May 2018 01:28:42 GMT
Last-Modified: Fri, 05 Jun 2015 08:50:12 GMT
Server: BWS/1.0
Vary: Accept-Encoding


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   571
Md5:    00557ef156b68551fac985596b5095e9
Sha1:   56287832fbec3545fbfd175ffe9e39d965341f27
Sha256: 10cf659ebdde336a7bfa71ca25af87f67d153def839e001ac9714873b5b70f39
                                        
                                            GET /images/uploadsallimg1607062275-160F6155U0-lp.jpg HTTP/1.1 
Host: syyczl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/html/htmlnewsbenyunews20160680605.html

                                         
                                         104.223.149.40
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 44878
Last-Modified: Fri, 02 Dec 2016 14:09:32 GMT
Accept-Ranges: bytes
Etag: "86446ab4a54cd21:e745"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:45:24 GMT


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   44878
Md5:    a0410a339b4c6228b3f7c23e4d5ea5a7
Sha1:   97fae05a61b9b0f71cbc4bb651e024d387006107
Sha256: e33e7bee1624afc8c2b496dd25ca14a6537eb1c4eab8c80bde9a3d7ef259757d
                                        
                                            GET /images/uploadsallimg1607012275-160F1163Z9-lp.jpg HTTP/1.1 
Host: syyczl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/html/htmlnewsbenyunews20160680605.html

                                         
                                         104.223.149.40
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 53758
Last-Modified: Fri, 02 Dec 2016 14:09:28 GMT
Accept-Ranges: bytes
Etag: "de15b2b1a54cd21:e745"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:45:24 GMT


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   53758
Md5:    8d1315cde33105d8483648ec2a75657f
Sha1:   ae4b5f8d6ade12ae53e779ed3c6e8139f19db959
Sha256: 08f018c88dbd714ff7dc5aa7e11731da0392743a6c44ba4f5be8759dcf2e661c
                                        
                                            GET /plus/ad_js.php?aid=90 HTTP/1.1 
Host: syyczl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/html/htmlnewsbenyunews20160680605.html

                                         
                                         104.223.149.40
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:45:24 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/imagesfooter_map_logo.png HTTP/1.1 
Host: syyczl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/html/htmlnewsbenyunews20160680605.html

                                         
                                         104.223.149.40
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Content-Length: 7930
Last-Modified: Sat, 26 Nov 2016 23:19:51 GMT
Accept-Ranges: bytes
Etag: "4c17ef963b48d21:e745"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:45:24 GMT


--- Additional Info ---
Magic:  PNG image, 150 x 150, 8-bit/color RGBA, non-interlaced
Size:   7930
Md5:    93e2305bbd8c4793ca887e27394f9b0f
Sha1:   a7d7c3dcf2e6e8da2323496222fcb58e4049445c
Sha256: 9185b1913d9308c20e5a9630c71415f531e19b346ff01c7f8947121a237e5c74
                                        
                                            GET /images/uploadsallimg1607012-160F11H9460-L.jpg HTTP/1.1 
Host: syyczl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/html/htmlnewsbenyunews20160680605.html

                                         
                                         104.223.149.40
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 182870
Last-Modified: Fri, 02 Dec 2016 14:09:23 GMT
Accept-Ranges: bytes
Etag: "9c39abaea54cd21:e745"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:45:24 GMT


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   182870
Md5:    a3c4e0ee6dc45ed29459a86119261533
Sha1:   f0fa4ff4881391601a3cd990e933d5e184739e3f
Sha256: 9a1ff66a52cbe0690f968328f22864ca63537c444733ccf37003f17f148eb2e8
                                        
                                            GET /images/imagesweixin.jpg HTTP/1.1 
Host: syyczl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/html/htmlnewsbenyunews20160680605.html

                                         
                                         104.223.149.40
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 31753
Last-Modified: Sat, 26 Nov 2016 23:19:55 GMT
Accept-Ranges: bytes
Etag: "3464c2983b48d21:e745"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:45:24 GMT


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   31753
Md5:    9029dbb1c1a29847df7da6f59164642c
Sha1:   e6a0849d7f5bfc2b67ebaf89e6351ec355bd11a5
Sha256: ae5a69a5aceb5fedc5aad58fe7a000077f6acf0a2ee94ff657927c68f40308ec
                                        
                                            GET /plus/ad_js.php?aid=79 HTTP/1.1 
Host: syyczl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/html/htmlnewsbenyunews20160680605.html

                                         
                                         104.223.149.40
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:45:24 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/imagessearch_a.png HTTP/1.1 
Host: syyczl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/images/templetsxiaoshengstylemaincss.css

                                         
                                         104.223.149.40
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Content-Length: 1149
Last-Modified: Sun, 27 Nov 2016 14:37:35 GMT
Accept-Ranges: bytes
Etag: "c02c5bcbbb48d21:e745"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:45:24 GMT


--- Additional Info ---
Magic:  PNG image, 15 x 15, 8-bit/color RGBA, non-interlaced
Size:   1149
Md5:    1f264520a90802daf5937168a0c3ecb4
Sha1:   6ebc437a0a598f049aa303ba487f76e7d66d2b28
Sha256: 70d9ac0f196e4a2cba2efcdcc98f2f42bcdd1fa6da4b933033a1424983680230
                                        
                                            GET /images/imagesnewdigg-bg.png HTTP/1.1 
Host: syyczl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/images/templetsxiaoshengstylearticle_clcss.css

                                         
                                         104.223.149.40
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Content-Length: 5107
Last-Modified: Sun, 27 Nov 2016 14:36:32 GMT
Accept-Ranges: bytes
Etag: "ec38a3a5bb48d21:e745"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:45:25 GMT


--- Additional Info ---
Magic:  PNG image, 390 x 102, 8-bit/color RGBA, non-interlaced
Size:   5107
Md5:    c2b05037cf0ad26b49610ad5f96c90d2
Sha1:   0ddacecc19b1010f5861b384f341df0ab865ffd1
Sha256: d48ad6ff5d027de1a4408eae9c35aa4c3a1d9a847be414c2fa64de021bb80cb7
                                        
                                            GET /images/imagesulrbg.jpg HTTP/1.1 
Host: syyczl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/images/templetsxiaoshengstylearticle_clcss.css

                                         
                                         104.223.149.40
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 1787
Last-Modified: Sun, 27 Nov 2016 15:06:17 GMT
Accept-Ranges: bytes
Etag: "803a73cdbf48d21:e745"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:45:25 GMT


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   1787
Md5:    302ab31f09ffec3ac868d08f4ae20fcc
Sha1:   4c279261cf92bb171403b3590c1abc3f07375d66
Sha256: b689b62048a494cf946fd55c0f5d055bd48c3f650fb67d6a6e95f757ab165502
                                        
                                            GET /images/imagespoint.gif HTTP/1.1 
Host: syyczl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/images/templetsxiaoshengstylearticle_clcss.css

                                         
                                         104.223.149.40
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Content-Length: 1095
Last-Modified: Sat, 26 Nov 2016 23:19:56 GMT
Accept-Ranges: bytes
Etag: "d8f798993b48d21:e745"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:45:25 GMT


--- Additional Info ---
Magic:  GIF image data, version 89a, 4 x 4
Size:   1095
Md5:    d7110405e7419f338304b320f2f6a5b1
Sha1:   2619a606bea3b7ef4d7187206afbfcbda151b1f6
Sha256: c0e1b83f3f7712ccaf6f2e16f5857bf3644e0af6b1361cc06fa3091102cbd1c8
                                        
                                            GET /static/js/bds_s_v2.js?cdnversion=424033 HTTP/1.1 
Host: bdimg.share.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/html/htmlnewsbenyunews20160680605.html

                                         
                                         180.149.131.146
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 9992
Date: Thu, 17 May 2018 00:58:42 GMT
Etag: "859391591"
Expires: Thu, 17 May 2018 01:28:42 GMT
Last-Modified: Fri, 05 Jun 2015 08:50:12 GMT
Server: BWS/1.0
Vary: Accept-Encoding


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   9992
Md5:    666a677963a48538c3c7839cd2e6ff58
Sha1:   b6f5b5f721c6a399b69730ea265077304de99e01
Sha256: dfe19948df1360a5a80fa4d63773ef15d1ce728bf918cb4f0d70897817154261
                                        
                                            GET /images/uploadsallimg160708101J32301-0.png HTTP/1.1 
Host: syyczl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/html/htmlnewsbenyunews20160680605.html

                                         
                                         104.223.149.40
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Content-Length: 247524
Last-Modified: Fri, 02 Dec 2016 18:14:40 GMT
Accept-Ranges: bytes
Etag: "9a95eff2c74cd21:e745"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:45:22 GMT


--- Additional Info ---
Magic:  PNG image, 554 x 369, 8-bit/color RGB, non-interlaced
Size:   247524
Md5:    310af31004242529d3a6236c73e6ee7d
Sha1:   216dab95a66eb68cd7df399d4216f3ebf71a8b38
Sha256: 397922ad0cf3e2bd62c075488d900b5fc936d8448728b5a1f59a3de9a30dbc44
                                        
                                            GET /plus/ad_js.php?aid=88 HTTP/1.1 
Host: syyczl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/html/htmlnewsbenyunews20160680605.html
Cookie: bdshare_firstime=1526518723474

                                         
                                         104.223.149.40
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:45:25 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/uploadsallimg1606152271-160615144G7.jpg HTTP/1.1 
Host: syyczl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/html/htmlnewsbenyunews20160680605.html

                                         
                                         104.223.149.40
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 151619
Last-Modified: Fri, 02 Dec 2016 16:43:18 GMT
Accept-Ranges: bytes
Etag: "5cb0742fbb4cd21:e745"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:45:22 GMT


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   151619
Md5:    474b188d5d71695586cd045152046d3c
Sha1:   3b26c194313a9048fdb55b90313bba527c07a839
Sha256: e6c261e3e8bb88525671276f97be9eaaed6ecd26b430e81327093582a61d44ed
                                        
                                            GET /static/css/bdsstyle.css?cdnversion=20131219 HTTP/1.1 
Host: bdimg.share.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/html/htmlnewsbenyunews20160680605.html

                                         
                                         180.149.131.146
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Accept-Ranges: bytes
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 2021
Date: Thu, 17 May 2018 00:58:43 GMT
Etag: "3350779264"
Expires: Thu, 17 May 2018 01:28:43 GMT
Last-Modified: Fri, 05 Jun 2015 08:50:09 GMT
Server: BWS/1.0
Vary: Accept-Encoding


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2021
Md5:    6173f7b3e49c84be234ef0bf8bd51cac
Sha1:   1cfb38a64ebc61e184f0eb23f4d33ab7cde46dec
Sha256: 034ed2dda6d5a1e42fc58e2cac588815f8dbff7e2f9d56cf6eab6e1a77f490a2
                                        
                                            GET /plus/ad_js.php?aid=76 HTTP/1.1 
Host: syyczl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/html/htmlnewsbenyunews20160680605.html
Cookie: bdshare_firstime=1526518723474

                                         
                                         104.223.149.40
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:45:25 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /plus/ad_js.php?aid=77 HTTP/1.1 
Host: syyczl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/html/htmlnewsbenyunews20160680605.html
Cookie: bdshare_firstime=1526518723474

                                         
                                         104.223.149.40
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:45:25 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /static/images/is.png?cdnversion=20131219 HTTP/1.1 
Host: bdimg.share.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://bdimg.share.baidu.com/static/css/bdsstyle.css?cdnversion=20131219

                                         
                                         180.149.131.146
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Accept-Ranges: bytes
Cache-Control: max-age=604800
Content-Length: 12294
Date: Thu, 17 May 2018 00:58:43 GMT
Etag: "557408074"
Expires: Thu, 24 May 2018 00:58:43 GMT
Last-Modified: Fri, 05 Jun 2015 08:50:09 GMT
Server: BWS/1.0


--- Additional Info ---
Magic:  PNG image, 20 x 2620, 8-bit colormap, non-interlaced
Size:   12294
Md5:    fee619fb8de49c08487681bd0119fa5c
Sha1:   9c7231237e5e5f4e8408623b401dece33f6563ce
Sha256: dc274420601f10bec22ea0dc7e9a1a1425ba67d4a40153d30c864752c09901d2
                                        
                                            GET /core.php?web_id=45903&show=pic&t=z HTTP/1.1 
Host: c.cnzz.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/html/htmlnewsbenyunews20160680605.html

                                         
                                         58.218.215.188
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: Tengine
Content-Length: 762
Connection: keep-alive
Date: Thu, 17 May 2018 00:50:33 GMT
Last-Modified: Thu, 17 May 2018 00:50:33 GMT
Expires: Thu, 17 May 2018 01:05:33 GMT
Via: cache7.l2et15[96,200-0,M], cache20.l2et15[97,0], kunlun9.cn192[0,200-0,H], kunlun4.cn192[3,0]
Age: 491
X-Cache: HIT TCP_MEM_HIT dirn:-2:-2 mlen:-1
X-Swift-SaveTime: Thu, 17 May 2018 00:50:33 GMT
X-Swift-CacheTime: 900
Timing-Allow-Origin: *
EagleId: 3adad78415265187247878391e


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   762
Md5:    d3dd85371c4a899ca84f4b3ab325e472
Sha1:   a630187b7d5153b940e28cdaa44a4636b2014cb7
Sha256: edebcd65292f293e05ec92973d2b68a30a7c28d15180db322b11f22ba33a1e65
                                        
                                            GET /plus/ad_js.php?aid=87 HTTP/1.1 
Host: syyczl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/html/htmlnewsbenyunews20160680605.html
Cookie: bdshare_firstime=1526518723474; UM_distinctid=1636b9b36851-0c95971115fdc7-6c242d76-fe178-1636b9b36863b; CNZZDATA45903=cnzz_eid%3D506583071-1526514301-%26ntime%3D1526514301

                                         
                                         104.223.149.40
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:45:26 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/imagesfloat-panel-bg.png HTTP/1.1 
Host: syyczl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/images/templetsxiaoshengstylemaincss.css
Cookie: bdshare_firstime=1526518723474; UM_distinctid=1636b9b36851-0c95971115fdc7-6c242d76-fe178-1636b9b36863b; CNZZDATA45903=cnzz_eid%3D506583071-1526514301-%26ntime%3D1526514301

                                         
                                         104.223.149.40
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Content-Length: 3164
Last-Modified: Sun, 27 Nov 2016 14:37:36 GMT
Accept-Ranges: bytes
Etag: "5adaa9cbbb48d21:e745"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:45:26 GMT


--- Additional Info ---
Magic:  PNG image, 36 x 226, 8-bit/color RGB, non-interlaced
Size:   3164
Md5:    413ebda29600f05a07abcc0f71281beb
Sha1:   cdf2cf07d8357a654f6741863778b3f118f9fb9e
Sha256: 0432ef93880843bb89a853b2128bdcd66ac7871835926e69967a9a5a81c425f6
                                        
                                            GET /h.js?59dd414dc104655dcc9144190b6d0364 HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/html/htmlnewsbenyunews20160680605.html

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 9029
Date: Thu, 17 May 2018 00:58:45 GMT
Etag: 224f9e0ea8518203b473bf99ef356207
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=55FCF7541C19F6E5; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max speed
Size:   9029
Md5:    c82a40b2f6f17b083bc61858d62b5498
Sha1:   5fbeed4b01f5cc9db52725c129383215c3c5e1a7
Sha256: bafc367af3575f1288fcdd66d443b4e70b7de87192d2b6a60598f8ee5f09c19b
                                        
                                            GET /9.gif?abc=1&rnd=960974231 HTTP/1.1 
Host: cnzz.mmstat.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/html/htmlnewsbenyunews20160680605.html

                                         
                                         106.11.176.5
HTTP/1.1 302 Found
Content-Type: image/gif
                                        
Date: Thu, 17 May 2018 00:58:45 GMT
Content-Length: 43
Connection: close
P3p: CP="NOI DSP COR CURa ADMa DEVa PSAa PSDa OUR IND UNI PUR NAV"
Set-Cookie: cna=xcGDE313DQUCAU0ogXtTo9xO; expires=Sun, 14-May-28 00:58:45 GMT; path=/; domain=.mmstat.com sca=55e6009f; path=/; domain=.cnzz.mmstat.com atpsida=03742715535d4b1c744e7280_1526518725_1; path=/; domain=.cnzz.mmstat.com
Location: http://pcookie.cnzz.com/app.gif?&cna=xcGDE313DQUCAU0ogXtTo9xO
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Pragma: no-cache


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /img/pic.gif HTTP/1.1 
Host: icon.cnzz.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/html/htmlnewsbenyunews20160680605.html

                                         
                                         58.218.215.188
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: Tengine
Content-Length: 719
Connection: keep-alive
Date: Wed, 16 May 2018 11:50:13 GMT
Last-Modified: Fri, 16 Jan 2009 08:10:47 GMT
Expires: Thu, 17 May 2018 11:50:13 GMT
Cache-Control: max-age=86400
Accept-Ranges: bytes
Via: cache18.l2ne1[20,304-0,C], cache23.l2ne1[10,0], kunlun4.cn192[0,200-0,H], kunlun4.cn192[6,0]
Age: 47313
X-Cache: HIT TCP_MEM_HIT dirn:7:425520922 mlen:-1
X-Swift-SaveTime: Wed, 16 May 2018 11:50:13 GMT
X-Swift-CacheTime: 86400
Timing-Allow-Origin: *
EagleId: 3adad78415265187260671036e


--- Additional Info ---
Magic:  GIF image data, version 89a, 50 x 12
Size:   719
Md5:    bcdd9aa92c5876f207f70567d101a896
Sha1:   786c52002f857fcbff04a5781ec35792be11af4a
Sha256: 98a4ab97e12555ab969012d151a578dae7a3b8699d202485fcf8116e55497735
                                        
                                            GET /images/uploadsallimg1606162271-1606160U621.png HTTP/1.1 
Host: syyczl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/html/htmlnewsbenyunews20160680605.html

                                         
                                         104.223.149.40
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Content-Length: 1262222
Last-Modified: Wed, 07 Dec 2016 03:51:54 GMT
Accept-Ranges: bytes
Etag: "acf48403d50d21:e745"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:45:22 GMT


--- Additional Info ---
Magic:  PNG image, 1272 x 470, 8-bit/color RGBA, non-interlaced
Size:   1262222
Md5:    2a46b4f047f9d4e35c29bd2e5106dba1
Sha1:   f681203782c5676deb79295f4b3af57984ddb0e8
Sha256: ae42d42a1e420b9de57796aeaf060f968eee8afb1e29795458771cd20c684bcf
                                        
                                            GET /static/js/logger.js?cdnversion=424033 HTTP/1.1 
Host: bdimg.share.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/html/htmlnewsbenyunews20160680605.html

                                         
                                         180.149.131.146
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 2404
Date: Thu, 17 May 2018 00:58:46 GMT
Etag: "867751605"
Expires: Thu, 17 May 2018 01:28:46 GMT
Last-Modified: Fri, 05 Jun 2015 08:50:12 GMT
Server: BWS/1.0
Vary: Accept-Encoding


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2404
Md5:    8d97ba4654dcd20da83631b6f298e30a
Sha1:   4ef15efe157573e2d46ec6eacf7e41160b01a4fa
Sha256: 6a43a65e541c0f46d9c542ca83bc4585998c58c0f902b872955852d943279f32
                                        
                                            GET /hm.gif?cc=0&ck=1&cl=24-bit&ds=1176x885&vl=754&et=0&fl=10.0&ja=1&ln=en-us&lo=0&rnd=405590829&si=59dd414dc104655dcc9144190b6d0364&v=1.2.30&lv=1&ct=!!&tt=%E5%BE%90%E5%B7%9E%E4%BB%81%E6%85%88%E5%8C%BB%E9%99%A2%E4%BA%8C%E6%9C%9F%E6%96%B0%E5%A4%A7%E6%A5%BC%E5%90%AF%E7%94%A8%E6%9A%A8%E5%A4%A7%E5%9E%8B%E4%B9%89%E8%AF%8A%E6%B4%BB%E5%8A%A8%E9%9A%86%E9%87%8D%E5%BC%80%E5%B9%95_www.746.com%EF%BC%8D%E5%BE%90%E5%B7%9E%E5%81%A5%E5%BA%B7%E7%BD%91%7C%E5%BE%90%E5%B7%9E%E5%B0%B1%E5%8C%BB%EF%BD%9C%E5%BE%90%E5%B7%9E%E7%BD%91%E4%B8%8A%E5%8C%BB%E9%99%A2%7C%E5%BE%90%E5%B7%9E%E6%8C%82%E5%8F%B7%E7%BD%91%7C%E6%B7%AE%E6%B5%B7%E5%81%A5%E5%BA%B7%7C%E6%B7%AE%E6%B5%B7%E5%90%8D%E5%8C%BB%E7%BD%91&sn=11972 HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/html/htmlnewsbenyunews20160680605.html
Cookie: HMACCOUNT=55FCF7541C19F6E5

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Date: Thu, 17 May 2018 00:58:46 GMT
Pragma: no-cache
Server: apache
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /hm.js?328360645dd8c2ffdf33f4fca180b186 HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/html/htmlnewsbenyunews20160680605.html
Cookie: HMACCOUNT=55FCF7541C19F6E5

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 9031
Date: Thu, 17 May 2018 00:58:47 GMT
Etag: 89844962ad8515babd1fb8f42409b61e
Server: apache


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max speed
Size:   9031
Md5:    0ec0ef8b037ccd70e0819df40287619d
Sha1:   e9c5a160001ff7be94d59bd818473abcbbe881b9
Sha256: f39af84fdbb25c36903332c9dadb18b4ee5a4b2764704511b2ff6221dfa82930
                                        
                                            GET /hm.js?72e65c3cebfb173f62cc0b5533764dc7 HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/html/htmlnewsbenyunews20160680605.html
Cookie: HMACCOUNT=55FCF7541C19F6E5

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 9031
Date: Thu, 17 May 2018 00:58:47 GMT
Etag: 712ed51a6de77351fed3954d2b44bf86
Server: apache


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max speed
Size:   9031
Md5:    05e706cced93ad0fc7e2e7451b17daa5
Sha1:   5a3ff76a79c5cabe2c8b0640921a6f25ae615633
Sha256: 7ecaffd3769ae4738f8576f737e831bd0211bcf7f1613ee9b3c5bb42c4f57550
                                        
                                            GET /hm.gif?cc=0&ck=1&cl=24-bit&ds=1176x885&vl=754&et=0&fl=10.0&ja=1&ln=en-us&lo=0&rnd=1318983947&si=72e65c3cebfb173f62cc0b5533764dc7&v=1.2.30&lv=1&ct=!!&tt=%E5%BE%90%E5%B7%9E%E4%BB%81%E6%85%88%E5%8C%BB%E9%99%A2%E4%BA%8C%E6%9C%9F%E6%96%B0%E5%A4%A7%E6%A5%BC%E5%90%AF%E7%94%A8%E6%9A%A8%E5%A4%A7%E5%9E%8B%E4%B9%89%E8%AF%8A%E6%B4%BB%E5%8A%A8%E9%9A%86%E9%87%8D%E5%BC%80%E5%B9%95_www.746.com%EF%BC%8D%E5%BE%90%E5%B7%9E%E5%81%A5%E5%BA%B7%E7%BD%91%7C%E5%BE%90%E5%B7%9E%E5%B0%B1%E5%8C%BB%EF%BD%9C%E5%BE%90%E5%B7%9E%E7%BD%91%E4%B8%8A%E5%8C%BB%E9%99%A2%7C%E5%BE%90%E5%B7%9E%E6%8C%82%E5%8F%B7%E7%BD%91%7C%E6%B7%AE%E6%B5%B7%E5%81%A5%E5%BA%B7%7C%E6%B7%AE%E6%B5%B7%E5%90%8D%E5%8C%BB%E7%BD%91&sn=11973 HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/html/htmlnewsbenyunews20160680605.html
Cookie: HMACCOUNT=55FCF7541C19F6E5

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Date: Thu, 17 May 2018 00:58:47 GMT
Pragma: no-cache
Server: apache
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /hm.gif?cc=0&ck=1&cl=24-bit&ds=1176x885&vl=754&et=0&fl=10.0&ja=1&ln=en-us&lo=0&rnd=979907651&si=328360645dd8c2ffdf33f4fca180b186&v=1.2.30&lv=1&ct=!!&tt=%E5%BE%90%E5%B7%9E%E4%BB%81%E6%85%88%E5%8C%BB%E9%99%A2%E4%BA%8C%E6%9C%9F%E6%96%B0%E5%A4%A7%E6%A5%BC%E5%90%AF%E7%94%A8%E6%9A%A8%E5%A4%A7%E5%9E%8B%E4%B9%89%E8%AF%8A%E6%B4%BB%E5%8A%A8%E9%9A%86%E9%87%8D%E5%BC%80%E5%B9%95_www.746.com%EF%BC%8D%E5%BE%90%E5%B7%9E%E5%81%A5%E5%BA%B7%E7%BD%91%7C%E5%BE%90%E5%B7%9E%E5%B0%B1%E5%8C%BB%EF%BD%9C%E5%BE%90%E5%B7%9E%E7%BD%91%E4%B8%8A%E5%8C%BB%E9%99%A2%7C%E5%BE%90%E5%B7%9E%E6%8C%82%E5%8F%B7%E7%BD%91%7C%E6%B7%AE%E6%B5%B7%E5%81%A5%E5%BA%B7%7C%E6%B7%AE%E6%B5%B7%E5%90%8D%E5%8C%BB%E7%BD%91&sn=11973 HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/html/htmlnewsbenyunews20160680605.html
Cookie: HMACCOUNT=55FCF7541C19F6E5

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Date: Thu, 17 May 2018 00:58:47 GMT
Pragma: no-cache
Server: apache
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /app.gif?&cna=xcGDE313DQUCAU0ogXtTo9xO HTTP/1.1 
Host: pcookie.cnzz.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/html/htmlnewsbenyunews20160680605.html

                                         
                                         106.11.94.21
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Thu, 17 May 2018 00:58:48 GMT
Content-Length: 43
Connection: close
P3p: CP="NOI DSP COR CURa ADMa DEVa PSAa PSDa OUR IND UNI PUR NAV"
Set-Cookie: cna=xcGDE313DQUCAU0ogXtTo9xO; expires=Sun, 14-May-28 00:58:48 GMT; path=/; domain=.cnzz.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Pragma: no-cache


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: syyczl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: bdshare_firstime=1526518723474; UM_distinctid=1636b9b36851-0c95971115fdc7-6c242d76-fe178-1636b9b36863b; CNZZDATA45903=cnzz_eid%3D506583071-1526514301-%26ntime%3D1526514301; Hm_lvt_59dd414dc104655dcc9144190b6d0364=1526518727; Hm_lpvt_59dd414dc104655dcc9144190b6d0364=1526518727; Hm_lvt_72e65c3cebfb173f62cc0b5533764dc7=1526518728; Hm_lpvt_72e65c3cebfb173f62cc0b5533764dc7=1526518728; Hm_lvt_328360645dd8c2ffdf33f4fca180b186=1526518728; Hm_lpvt_328360645dd8c2ffdf33f4fca180b186=1526518728

                                         
                                         104.223.149.40
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:45:30 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: syyczl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: bdshare_firstime=1526518723474; UM_distinctid=1636b9b36851-0c95971115fdc7-6c242d76-fe178-1636b9b36863b; CNZZDATA45903=cnzz_eid%3D506583071-1526514301-%26ntime%3D1526514301; Hm_lvt_59dd414dc104655dcc9144190b6d0364=1526518727; Hm_lpvt_59dd414dc104655dcc9144190b6d0364=1526518727; Hm_lvt_72e65c3cebfb173f62cc0b5533764dc7=1526518728; Hm_lpvt_72e65c3cebfb173f62cc0b5533764dc7=1526518728; Hm_lvt_328360645dd8c2ffdf33f4fca180b186=1526518728; Hm_lpvt_328360645dd8c2ffdf33f4fca180b186=1526518728

                                         
                                         104.223.149.40
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:45:34 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075
                                        
                                            GET /v.gif?pid=307&type=3071&sc=1159,4714,1176,855&desturl=&apitype=1&linkid=jh9tu1dmofh&velo_load=0&velo_cssload=0&velo_jsLoad=875&cite_uid=6781835&cite_type=1&cite_mini=0 HTTP/1.1 
Host: nsclick.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://syyczl.com/html/htmlnewsbenyunews20160680605.html

                                         
                                         115.239.211.92
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Accept-Ranges: bytes
Cache-Control: max-age=0
Content-Length: 0
Date: Thu, 17 May 2018 00:58:53 GMT
Etag: "4280832337"
Expires: Thu, 17 May 2018 00:58:53 GMT
Last-Modified: Fri, 23 Oct 2009 08:06:04 GMT
Pragma: no-cache
Server: BWS/1.0


--- Additional Info ---