Overview

URL www.hongda5668.cn/html/sxjyindex.html
IP107.179.69.31
ASNAS46573 Global Frag Networks
Location United States
Report completed2018-05-17 03:00:00 CEST
StatusLoading report..
urlQuery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro
Timestamp Severity Source IP Destination IP Alert
2018-05-17 02:59:29 CEST 1  107.179.69.31 Client IP ET CURRENT_EVENTS DRIVEBY EXE Embeded in Page Likely Evil M1
2018-05-17 02:59:29 CEST 1  107.179.69.31 Client IP ET TROJAN RAMNIT.A M2
2018-05-17 02:59:29 CEST 1  107.179.69.31 Client IP ET TROJAN PE EXE or DLL Windows file download Text
2018-05-17 02:59:30 CEST 1  107.179.69.31 Client IP ET TROJAN RAMNIT.A M1


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2018-05-17 2 www.hongda5668.cn/yesads.js Malware
2018-05-17 2 www.hongda5668.cn/images/xgcinccomm.js Malware
2018-05-17 2 www.hongda5668.cn/images/xgcincdropdown.js Malware
2018-05-17 2 www.hongda5668.cn/html/sxjyindex.html Malware
2018-05-17 2 www.hongda5668.cn/tongji.js Malware
2018-05-17 2 www.hongda5668.cn/images/xgcimageslogo.swf Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 107.179.69.31

Date UQ / IDS / BL URL IP
2018-08-15 03:08:59 +0200
0 - 4 - 3 kimyang87.com.cn/html/.jrqszzjg....kyjy.html 107.179.69.31
2018-08-14 04:50:59 +0200
0 - 4 - 3 kimyang87.com.cn/html/.zxdtjzxx201311.....html 107.179.69.31
2018-08-12 14:14:41 +0200
0 - 0 - 3 kimyang87.com.cn/html/.zxdtjzxx201312......jd (...) 107.179.69.31
2018-08-12 04:29:48 +0200
0 - 4 - 3 kimyang87.com.cn/html/.xwjygzzd....jdyd.html 107.179.69.31
2018-08-12 02:19:18 +0200
0 - 4 - 3 kimyang87.com.cn/html/.kyjyjyxx201505......zx (...) 107.179.69.31
2018-08-11 02:38:22 +0200
0 - 4 - 3 kimyang87.com.cn/html/.xstdsp...html 107.179.69.31
2018-08-10 06:55:12 +0200
0 - 0 - 3 kimyang87.com.cn/html/.kyjyjyxx201505......xw (...) 107.179.69.31
2018-08-09 07:44:26 +0200
0 - 3 - 3 kimyang87.com.cn/html/.kyjylsct....zxdtjzxx.html 107.179.69.31
2018-07-20 09:04:49 +0200
0 - 4 - 5 kimyang87.com.cn/html/.zxdttpxw201512......jd (...) 107.179.69.31
2018-07-20 02:25:18 +0200
0 - 4 - 5 kimyang87.com.cn/html/.jrqsfwzn....kyjykyqk.html 107.179.69.31

Last 10 reports on ASN: AS46573 Global Frag Networks

Date UQ / IDS / BL URL IP
2018-08-15 13:29:16 +0200
0 - 0 - 10 029smt.com/ 104.223.149.92
2018-08-15 10:09:47 +0200
0 - 0 - 2 beilangzhanlan.com/html/gzdt.html 104.223.149.221
2018-08-15 09:21:20 +0200
0 - 4 - 5 ylppyh.com/weblist2831ff72-f960-4ffc-8118-078 (...) 104.223.149.177
2018-08-15 09:10:39 +0200
0 - 0 - 1 hongfashipin.com.cn/html/lzupageB201312161223 (...) 107.179.69.29
2018-08-15 09:07:38 +0200
0 - 0 - 2 runchangshangmao.com/html/zhongshishenghuolis (...) 104.223.149.110
2018-08-15 08:55:05 +0200
0 - 4 - 2 yzdfjz.com/html/htmlpljc201212052739.html 104.223.149.104
2018-08-15 08:23:18 +0200
0 - 0 - 2 yjlfcw.com/html/dzznjyqx.html 104.223.149.137
2018-08-15 08:08:48 +0200
0 - 4 - 1 hongfaqicai.cn/html/xxyd2010011001.html 107.179.69.30
2018-08-15 08:08:37 +0200
0 - 4 - 20 lxtlxt2009.com.cn/html/xkzyxkjs.html 107.179.64.218
2018-08-15 07:11:04 +0200
0 - 4 - 5 hbtongfang.com/html/20130903294223.html 104.223.149.15

No other reports on domain: hongda5668.cn



JavaScript

Executed Scripts (6)


Executed Evals (0)


Executed Writes (1)

#1 JavaScript::Write (size: 88, repeated: 1) - SHA256: de844c1d024759ef14d0995c1565e90cb4e4f2be0bb3896df1278cbc7cc4be3f

                                        < script src = 'https://s95.b9823852351323h.com/cp/001.js'
type = 'text/javascript' > < /script>
                                    


HTTP Transactions (29)


Request Response
                                        
                                            GET /yesads.js HTTP/1.1 
Host: www.hongda5668.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hongda5668.cn/html/sxjyindex.html

                                         
                                         107.179.69.31
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 107
Last-Modified: Sun, 16 Apr 2017 16:16:06 GMT
Accept-Ranges: bytes
Etag: "46aa42c0ccb6d21:8082"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:47:24 GMT


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   107
Md5:    2d8836322e6dbef9fb9bae6f88e1f426
Sha1:   6122bd04902333b90037e09d74fe4d987e570692
Sha256: b49114f04157381f856f22a91a61eabef288f3fb0245d1158b5983d5ffd107a6

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/xgcinccomm.js HTTP/1.1 
Host: www.hongda5668.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hongda5668.cn/html/sxjyindex.html

                                         
                                         107.179.69.31
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 4183
Last-Modified: Sun, 30 Oct 2016 00:10:59 GMT
Accept-Ranges: bytes
Etag: "9c3984174232d21:8082"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:47:24 GMT


--- Additional Info ---
Magic:  UTF-8 Unicode C++ program text
Size:   4183
Md5:    15ef3cc6d3a016f5737d6ae4e210a113
Sha1:   1226cb3ec1263f7d6d9a971da05e3ffcd4cfccb4
Sha256: 3527e0e5819f32fe539f73fa209f22dee1e83c20789f550dddad3bb95d3a19ce

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/xgcimagesnav_xian.jpg HTTP/1.1 
Host: www.hongda5668.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hongda5668.cn/html/sxjyindex.html

                                         
                                         107.179.69.31
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 781
Last-Modified: Sun, 30 Oct 2016 00:11:03 GMT
Accept-Ranges: bytes
Etag: "c68fc194232d21:8082"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:47:25 GMT


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   781
Md5:    3870e30bf2066b2a952ede16e71e57cb
Sha1:   459a91058f724e68d7c5e12a3acd60c08c17bd24
Sha256: bafe18192b9543c4840ecf72bbd0b6a7914e9241e5c700c0d28e57379f8a5cd2
                                        
                                            GET /images/xgcimagesnav_left.jpg HTTP/1.1 
Host: www.hongda5668.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hongda5668.cn/html/sxjyindex.html

                                         
                                         107.179.69.31
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 768
Last-Modified: Sun, 30 Oct 2016 00:11:02 GMT
Accept-Ranges: bytes
Etag: "a95c7194232d21:8082"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:47:25 GMT


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   768
Md5:    01ccb1e8284cd2aebce8b365da6ede63
Sha1:   95b1e60380dad2d890cf684df5cb106e1d75fcf6
Sha256: 746e8f9f0659e33afb4789a09db2a7f33b376afdf5d41861113b13a5722b41e5
                                        
                                            GET /images/xgcinccsscss.css HTTP/1.1 
Host: www.hongda5668.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hongda5668.cn/html/sxjyindex.html

                                         
                                         107.179.69.31
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Length: 10904
Last-Modified: Sun, 30 Oct 2016 00:12:48 GMT
Accept-Ranges: bytes
Etag: "ae4c9b584232d21:8082"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:47:24 GMT


--- Additional Info ---
Magic:  UTF-8 Unicode C program text, with very long lines
Size:   10904
Md5:    afc3e610b24b0891fad34ca81eae109f
Sha1:   739079d74e10080360c6e310a6508ba9fcdf3b4d
Sha256: c3a344d430ae18c27828945e7095f7012898f125f2321f669ba55288a45d9d58
                                        
                                            GET /images/xgcincdropdown.js HTTP/1.1 
Host: www.hongda5668.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hongda5668.cn/html/sxjyindex.html

                                         
                                         107.179.69.31
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 5397
Last-Modified: Sun, 30 Oct 2016 00:11:02 GMT
Accept-Ranges: bytes
Etag: "4e2193194232d21:8082"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:47:25 GMT


--- Additional Info ---
Magic:  ASCII text
Size:   5397
Md5:    4691f172d30b417113c9371a409977f9
Sha1:   882741d1d3f761a97fcd94124e9ed3127bc6d168
Sha256: 06ac8b32b1bd50f50d697af4153b29f7e87d61ff38ab316446f2a29ebcf04142

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=165103
Date: Thu, 17 May 2018 00:59:29 GMT
Etag: "5afc9d0a-1d7"
Expires: Fri, 18 May 2018 22:51:12 GMT
Last-Modified: Wed, 16 May 2018 21:05:14 GMT
Server: ECS (arn/4692)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    8a6bd7279e8cd618a7f8e174ae775ca5
Sha1:   ebe6244d5e1f424e4af891c835ad2d6bb6af80e3
Sha256: 03892435d531bc4bfe0e40c4ad489c0c2abe4f0aa0c0239170cccb292016645a
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=162047
Date: Thu, 17 May 2018 00:59:29 GMT
Etag: "5afc7b0b-1d7"
Expires: Fri, 18 May 2018 21:30:25 GMT
Last-Modified: Wed, 16 May 2018 18:40:11 GMT
Server: ECS (arn/469D)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    46250738b7a0df4551e10d895f490cf9
Sha1:   2327d3e91ec90e8db006e6ecbacc9ded9c0b651f
Sha256: 89db690d0e491e0f6e149b17507bbc8c81d54dfbce187eb30f22d4f53a6f535c
                                        
                                            GET /images/xgcimagesbg.jpg HTTP/1.1 
Host: www.hongda5668.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hongda5668.cn/images/xgcinccsscss.css

                                         
                                         107.179.69.31
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 1667
Last-Modified: Sun, 30 Oct 2016 00:12:43 GMT
Accept-Ranges: bytes
Etag: "e8987c554232d21:8082"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:47:25 GMT


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   1667
Md5:    8a24b85f42bc054820cb65e12c0d42b6
Sha1:   dae884c611991f7bf696711671f45e7823f79367
Sha256: 12e2b927da571492c9f80eb3fb97218123e51ebf8f4c2547f4e6762830e876fa
                                        
                                            GET /html/sxjyindex.html HTTP/1.1 
Host: www.hongda5668.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         107.179.69.31
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Content-Length: 130049
Last-Modified: Fri, 28 Apr 2017 05:17:55 GMT
Accept-Ranges: bytes
Etag: "f2f22ccbdebfd21:8082"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:47:24 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   130049
Md5:    e2d261403b60d471133faae65e627f15
Sha1:   085f5add44d0fb6f0e5725b22a612acae7b0ace5
Sha256: 5ac9dd499ffe713a391960737edd53c5826efb5f525f8034fbf99e44f98416c3

Alerts:
  Blacklists:
    - fortinet: Malware
  IDS:
    - ET CURRENT_EVENTS DRIVEBY EXE Embeded in Page Likely Evil M1
    - ET TROJAN RAMNIT.A M2
    - ET TROJAN PE EXE or DLL Windows file download Text
    - ET TROJAN RAMNIT.A M1
                                        
                                            GET /html/images/xgcimageslogo1.jpg HTTP/1.1 
Host: www.hongda5668.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hongda5668.cn/html/sxjyindex.html

                                         
                                         107.179.69.31
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:47:26 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075
                                        
                                            GET /images/xgcimageslan_xian.jpg HTTP/1.1 
Host: www.hongda5668.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hongda5668.cn/html/sxjyindex.html

                                         
                                         107.179.69.31
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 1018
Last-Modified: Tue, 01 Nov 2016 03:15:14 GMT
Accept-Ranges: bytes
Etag: "c4aff829ee33d21:8082"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:47:26 GMT


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   1018
Md5:    c5221f6a4bc334030992911cea8d6d89
Sha1:   28543fdae8967f3de0e69c30ae99f011434f1da4
Sha256: 795a601aa4f98bac2ecf575634c15beb445012905155983c58f91eda003d09da
                                        
                                            GET /images/xgcimageshome.jpg HTTP/1.1 
Host: www.hongda5668.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hongda5668.cn/html/sxjyindex.html

                                         
                                         107.179.69.31
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 1186
Last-Modified: Tue, 01 Nov 2016 03:15:15 GMT
Accept-Ranges: bytes
Etag: "74337e2aee33d21:8082"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:47:26 GMT


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   1186
Md5:    7ff99d59de6f206b47e0150f11d90bf0
Sha1:   53850c3aac1061f9e479fac0542deae96b373c06
Sha256: f32e59df67a86391acf14915e1f1a63ea53adbe58a5ded19d350b9af3d0531ca
                                        
                                            GET /images/xgcimagesnav_bg.jpg HTTP/1.1 
Host: www.hongda5668.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hongda5668.cn/images/xgcinccsscss.css

                                         
                                         107.179.69.31
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 661
Last-Modified: Sun, 30 Oct 2016 00:12:45 GMT
Accept-Ranges: bytes
Etag: "36381574232d21:8082"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:47:26 GMT


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   661
Md5:    d258d887cd64a98f8a61f55f3fa4d65e
Sha1:   9c2618f1f03fb060f490f87d09596f9155c950b8
Sha256: 170eb45b99399fd67d157d87f4cf79d4357422a6fdbf5fb5160ef2904f34eb8b
                                        
                                            GET /images/xgcimagesbiao1.jpg HTTP/1.1 
Host: www.hongda5668.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hongda5668.cn/html/sxjyindex.html

                                         
                                         107.179.69.31
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 694
Last-Modified: Sun, 30 Oct 2016 00:11:03 GMT
Accept-Ranges: bytes
Etag: "f2b4691a4232d21:8082"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:47:26 GMT


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   694
Md5:    6a9cf4d60c70b1c613b9fb81707bedba
Sha1:   d6e15e94a5531b7d7e201814c5a6887a8412019f
Sha256: f4fc34da59798e83add73ef49be2f707b73c729ff38a3a52e7f7a391a65b205a
                                        
                                            GET /images/xgcimagesnav_right.jpg HTTP/1.1 
Host: www.hongda5668.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hongda5668.cn/html/sxjyindex.html

                                         
                                         107.179.69.31
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 775
Last-Modified: Sun, 30 Oct 2016 00:11:03 GMT
Accept-Ranges: bytes
Etag: "3641351a4232d21:8082"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:47:26 GMT


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   775
Md5:    9b28ce8f4aec4a6ae4e1396eeef77b53
Sha1:   991588f288ccab3b2882329b185c8e9448785bc6
Sha256: 41cd432ab85a6930a08305b0cf5a214e3266dfe6071cf24ed513876fa33cdafc
                                        
                                            GET /xgcimages/lan_top_bg1.jpg HTTP/1.1 
Host: www.hongda5668.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hongda5668.cn/html/sxjyindex.html

                                         
                                         107.179.69.31
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:47:26 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075
                                        
                                            GET /images/xgcimageslan_bg.jpg HTTP/1.1 
Host: www.hongda5668.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hongda5668.cn/images/xgcinccsscss.css

                                         
                                         107.179.69.31
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 1363
Last-Modified: Sun, 30 Oct 2016 00:12:48 GMT
Accept-Ranges: bytes
Etag: "ae4c9b584232d21:8082"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:47:26 GMT


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   1363
Md5:    9cf937625d16985cba7de745c508a324
Sha1:   7b276e79efbe12f36929cd91857fcd066dae91bb
Sha256: d1732ef214db7fa260b6f2348a17af12743cbf2783667403a7b1f1b387be7c9c
                                        
                                            GET /xgcimages/content_top_bg.jpg HTTP/1.1 
Host: www.hongda5668.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hongda5668.cn/html/sxjyindex.html

                                         
                                         107.179.69.31
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:47:26 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075
                                        
                                            GET /xgcimages/title_bg2.jpg HTTP/1.1 
Host: www.hongda5668.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hongda5668.cn/html/sxjyindex.html

                                         
                                         107.179.69.31
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:47:26 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075
                                        
                                            GET /xgcimages/bottom_bg1.jpg HTTP/1.1 
Host: www.hongda5668.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hongda5668.cn/html/sxjyindex.html

                                         
                                         107.179.69.31
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:47:26 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075
                                        
                                            GET /xgcimages/bottom_bg2.jpg HTTP/1.1 
Host: www.hongda5668.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hongda5668.cn/html/sxjyindex.html

                                         
                                         107.179.69.31
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:47:26 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075
                                        
                                            GET /tongji.js HTTP/1.1 
Host: www.hongda5668.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hongda5668.cn/html/sxjyindex.html

                                         
                                         107.179.69.31
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 252
Last-Modified: Sat, 12 Nov 2016 17:13:12 GMT
Accept-Ranges: bytes
Etag: "4c6963c83dd21:8082"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:47:26 GMT


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   252
Md5:    dc440c2025e870f1e78bd0cfc53500ae
Sha1:   d958c753602b336fc14c4a0b0570b4ea93a2d4c2
Sha256: 36e307ce12bf62576468e6f0a0d4b341769054c726ab19aca7404379f6bcce02

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /get/flashplayer/update/current/xml/version_en_win_pl.xml HTTP/1.1 
Host: fpdownload2.macromedia.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         91.135.34.11
HTTP/1.1 200 OK
Content-Type: text/xml
                                        
Server: Apache
Last-Modified: Tue, 08 May 2018 08:13:38 GMT
Etag: "60e-56bad5d10b56c"
Accept-Ranges: bytes
Content-Length: 1550
Date: Thu, 17 May 2018 00:59:31 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  XML document text\012 XML document text
Size:   1550
Md5:    1c2b455c79acf989c967737b34e37cf1
Sha1:   de570428785cc79f236affc2e40480f6dfa6cab2
Sha256: 1957a1d2eb880dea87f026732c22aa3b813ea43b9930a425f7edc8e34ff46c9e
                                        
                                            GET /hm.js?f53da8843726457e9c5c6862188915be HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hongda5668.cn/html/sxjyindex.html

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 9033
Date: Thu, 17 May 2018 00:59:31 GMT
Etag: 216482caec616426624417e6117a665f
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=D7100913D7D4E0DB; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max speed
Size:   9033
Md5:    8537071bac5633eb3075017b9406035a
Sha1:   d633f579dd1952c42fd526c9f5fcba2af495074d
Sha256: 1ad67a83e08d6678f4d92e3b8a9507defb765cca6b1b1eeb525217a155b08450
                                        
                                            GET /hm.gif?cc=0&ck=1&cl=24-bit&ds=1176x885&vl=775&et=0&fl=10.0&ja=1&ln=en-us&lo=0&rnd=925834853&si=f53da8843726457e9c5c6862188915be&v=1.2.30&lv=1&ct=!!&tt=%E4%B8%AD%E5%9B%BD%E7%9F%BF%E4%B8%9A%E5%A4%A7%E5%AD%A6%EF%BC%88%E5%8C%97%E4%BA%AC%EF%BC%89%E5%AD%A6%E7%94%9F%E5%B7%A5%E4%BD%9C%E5%A4%84&sn=12017 HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hongda5668.cn/html/sxjyindex.html
Cookie: HMACCOUNT=D7100913D7D4E0DB

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Date: Thu, 17 May 2018 00:59:31 GMT
Pragma: no-cache
Server: apache
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /images/xgcimageslogo.swf HTTP/1.1 
Host: www.hongda5668.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.hongda5668.cn/html/sxjyindex.html

                                         
                                         107.179.69.31
HTTP/1.1 200 OK
Content-Type: application/x-shockwave-flash
                                        
Content-Length: 495691
Last-Modified: Sun, 30 Oct 2016 00:11:02 GMT
Accept-Ranges: bytes
Etag: "ed646194232d21:8082"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:47:27 GMT


--- Additional Info ---
Magic:  Macromedia Flash data, version 4
Size:   495691
Md5:    034124079edef5261fa1a20c993c4197
Sha1:   4e70dd58835ead56c9381bd97dd7cf1bf341b9c9
Sha256: ad225e3f6f81c1c722cebdcdba7d9cdbd65966a75a9388df32c84e7df17e62ed

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.hongda5668.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: Hm_lvt_f53da8843726457e9c5c6862188915be=1526518772; Hm_lpvt_f53da8843726457e9c5c6862188915be=1526518772

                                         
                                         107.179.69.31
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:47:30 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.hongda5668.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: Hm_lvt_f53da8843726457e9c5c6862188915be=1526518772; Hm_lpvt_f53da8843726457e9c5c6862188915be=1526518772

                                         
                                         107.179.69.31
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 17 May 2018 08:47:33 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075