Overview

URL www.jiayeleather.com/html/info10391673.html
IP104.223.149.232
ASNAS46573 Global Frag Networks
Location United States
Report completed2017-10-22 04:49:35 CEST
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2017-10-22 2 www.jiayeleather.com/images/_sitegray_sitegray.js Malware
2017-10-22 2 www.jiayeleather.com/images/systemresourcejscounter.js Malware
2017-10-22 2 www.jiayeleather.com/images/systemresourcejsdynclicks.js Malware
2017-10-22 2 www.jiayeleather.com/yesads.js Malware
2017-10-22 2 www.jiayeleather.com/images/skinsjsjquery.plus.js Malware
2017-10-22 2 www.jiayeleather.com/images/systemresourcejsopenlink.js Malware
2017-10-22 2 www.jiayeleather.com/images/systemresourcejsbase64.js Malware
2017-10-22 2 www.jiayeleather.com/images/systemresourcejsformfunc.js Malware
2017-10-22 2 www.jiayeleather.com/html/info10391673.html Malware
2017-10-22 2 www.jiayeleather.com/images/skinsjsjquery.min.js Malware
2017-10-22 2 www.jiayeleather.com/images/_dwrinterfaceNewsvoteDWR.js Malware
2017-10-22 2 www.jiayeleather.com/images/systemresourcejsajax.js Malware
2017-10-22 2 www.jiayeleather.com/images/skinsjsjquery.fix.js Malware
2017-10-22 2 www.jiayeleather.com/images/systemresourcejsnewsnewscontent.js Malware
2017-10-22 2 www.jiayeleather.com/images/skinsjsmenu.longyang.js Malware
2017-10-22 2 www.jiayeleather.com/images/skinsjstool.quick.js Malware
2017-10-22 2 www.jiayeleather.com/tongji.js Malware
2017-10-22 2 www.jiayeleather.com/images/_dwrengine.js Malware
2017-10-22 2 www.jiayeleather.com/images/bdimgsharebaiducomstaticapijssharejsv89860593js (...) Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 9 reports on IP: 104.223.149.232

Date UQ / IDS / BL URL IP
2017-11-22 08:05:03 +0100
0 - 0 - 19 jiayeleather.com/html/info10391641.html 104.223.149.232
2017-11-15 06:03:51 +0100
0 - 0 - 6 xaxxdq.com/html/news20151139025.html 104.223.149.232
2017-11-15 03:48:28 +0100
0 - 0 - 6 xaxxdq.com/html/news20151139025.html 104.223.149.232
2017-11-15 01:46:03 +0100
0 - 0 - 6 xaxxdq.com/html/news20151139025.html 104.223.149.232
2017-11-14 19:17:34 +0100
0 - 0 - 6 xaxxdq.com/html/news20151139025.html 104.223.149.232
2017-11-14 14:28:00 +0100
0 - 0 - 6 xaxxdq.com/html/news20151139025.html 104.223.149.232
2017-10-31 23:15:46 +0100
0 - 0 - 19 jiayeleather.com/html/index.html 104.223.149.232
2017-07-29 10:00:34 +0200
0 - 4 - 19 www.jiayeleather.com/html/info10191791.html 104.223.149.232
2017-07-27 23:49:22 +0200
0 - 4 - 19 www.jiayeleather.com/html/info10181839.html 104.223.149.232

Last 10 reports on ASN: AS46573 Global Frag Networks

Date UQ / IDS / BL URL IP
2017-11-24 00:46:26 +0100
0 - 4 - 13 ly707.com.cn/html/info19633502.html 107.179.64.198
2017-11-23 22:21:42 +0100
0 - 0 - 1 www.taylor-carls.com/ 104.148.122.237
2017-11-23 11:23:07 +0100
0 - 0 - 1 51zjjj.com/qspace/hompy_index_main.aspusername=hmj 157.52.209.135
2017-11-23 11:20:51 +0100
0 - 0 - 1 51zjjj.com/qspace/hompy_index_left.aspusernam (...) 157.52.209.135
2017-11-23 09:43:50 +0100
0 - 7 - 6 sxstwl360.com/ 104.223.149.227
2017-11-23 07:33:36 +0100
0 - 0 - 1 jun005202yi.cn/html/info1095....indexnews.jsp (...) 107.179.69.203
2017-11-23 05:00:54 +0100
0 - 0 - 1 www.lhzhende.cn/html/xl_list.jspurltypetree.T (...) 107.179.69.117
2017-11-23 02:17:29 +0100
0 - 0 - 1 m.peizhvn.cn/ 192.200.212.124
2017-11-22 23:13:51 +0100
0 - 4 - 14 lhw168.com.cn/html/info10071783.html 107.179.69.126
2017-11-22 23:13:11 +0100
0 - 4 - 7 promedex.com.cn/html/zdxk1sjzdxk.html 107.179.64.53

No other reports on domain: jiayeleather.com



JavaScript

Executed Scripts (24)


Executed Evals (0)


Executed Writes (9)

#1 JavaScript::Write (size: 6, repeated: 1) - SHA256: aac32651b10f567c461b9b4f255d6fb1fa6859b5368d8bd9a51af920ab21cf23

                                        < /div>
                                    

#2 JavaScript::Write (size: 70, repeated: 1) - SHA256: c138cd491270dd284f7b29724ab96b933745b2b89dccbd2157bd9f684c19aaca

                                        < a id = 'gotop'
href = 'javascript:;'
target = '_self'
title = 'i�$4' > < /a>
                                    

#3 JavaScript::Write (size: 15, repeated: 1) - SHA256: c51f9a5e589cab20b2b2bd061b78f16d684820102784c10de659259d2a1913db

                                        < div id = 'tbox' >
                                    

#4 JavaScript::Write (size: 62, repeated: 1) - SHA256: 918566ef3ce2d1aa6e0bd076527b84a67d0c2d930cb8de0e4ca978948553b4b6

                                        < meta http - equiv = "X-UA-Compatible"
content = "IE=edge,chrome=1" >
                                    

#5 JavaScript::Write (size: 39, repeated: 1) - SHA256: 99a94ea8db124489c35731188bcfaefd07ace73e5c7a9d6453a3cd930d20577c

                                        < meta name = "renderer"
content = "webkit" >
                                    

#6 JavaScript::Write (size: 88, repeated: 1) - SHA256: 8c624108a27a4268ce8b2bae04fc30452f065cd8aaa118c1abbf50bc1a331f98

                                        < meta name = "viewport"
content = "width=device-width, initial-scale=1.0, user-scalable=no" >
                                    

#7 JavaScript::Write (size: 87, repeated: 1) - SHA256: a72b285b9287c1181927cd290a6f6c08d519ebc6754bc9f04fce904ca106945e

                                        < script src = 'https://s95.b9823852351323h.com/by/dz.js'
type = 'text/javascript' > < /script>
                                    

#8 JavaScript::Write (size: 77, repeated: 1) - SHA256: 168b7a2a84b2448d2a749f11a0fef6a91eff2c79d92339b3201314dc11e49736

                                        < span id = "dynclicks_wbnews_1672_205"
name = "dynclicks_wbnews_1672_205" > < /span>
                                    

#9 JavaScript::Write (size: 201, repeated: 1) - SHA256: 5bbba051e036cd1348ce8d653eb361e558189d0ca08c6d0640c85414e23a22ad

                                        < style > * {
    margin: 0!important;padding: 0!important
}
html, body {
    height: 100 % !important;width: 100 % !important;min - width: 100 % !important;max - width: 100 % !important
}
body * : not(iframe) {
    display: none!important
} < /style>
                                    


HTTP Transactions (36)


Request Response
                                        
                                            GET /images/info1039_sitegray_sitegray_dcss.css HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10391673.html

                                         
                                         104.223.149.232
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Length: 20
Last-Modified: Mon, 28 Nov 2016 08:03:35 GMT
Accept-Ranges: bytes
Etag: "e86ef8ea4d49d21:c7ad"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sun, 22 Oct 2017 10:48:46 GMT


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   20
Md5:    311749c1d5f9bcf240ca9c25eae61f47
Sha1:   29703f0938cab5945db52e553f3f22cbd7f0b478
Sha256: 183f83b69b6f7ced023f06bc9b98b2d00c9e08b5c627c1f6e9002f48f0bbfb5c
                                        
                                            GET /images/_sitegray_sitegray.js HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10391673.html

                                         
                                         104.223.149.232
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 95
Last-Modified: Sun, 27 Nov 2016 01:43:13 GMT
Accept-Ranges: bytes
Etag: "426a49d4f48d21:c7ad"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sun, 22 Oct 2017 10:48:46 GMT


--- Additional Info ---
Magic:  ASCII C program text, with CRLF line terminators
Size:   95
Md5:    cb16b8b2fae1a2cb3ddba43817fdc763
Sha1:   c1bb1153a3ebb528f86fa5cc57ddd4bfbe9bd4af
Sha256: 66897f9cf68b725abd635d7dc7c1f4e91c80a41779c91bd25cf3a504d8f07407

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/systemresourcejscounter.js HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10391673.html

                                         
                                         104.223.149.232
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 1276
Last-Modified: Sun, 27 Nov 2016 01:43:15 GMT
Accept-Ranges: bytes
Etag: "d465e89e4f48d21:c7ad"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sun, 22 Oct 2017 10:48:47 GMT


--- Additional Info ---
Magic:  UTF-8 Unicode (with BOM) text, with very long lines, with CRLF line terminators
Size:   1276
Md5:    b6f9a86b90cb9523c868bb1423d200d0
Sha1:   2ccf7bb6e9cb400f7e1e0705be0cbb63a7286992
Sha256: e885eea4c409ade2bcdc41c0a2b9e1e2f58cac7b4f3f058cc0343e86e35289aa

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/info1039contentvsbcss.css HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10391673.html

                                         
                                         104.223.149.232
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Length: 681
Last-Modified: Mon, 28 Nov 2016 08:03:35 GMT
Accept-Ranges: bytes
Etag: "c0303beb4d49d21:c7ad"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sun, 22 Oct 2017 10:48:47 GMT


--- Additional Info ---
Magic:  UTF-8 Unicode text, with CRLF, LF line terminators
Size:   681
Md5:    699c993d341119794412ecee5dfe6255
Sha1:   953375ebd7de1605c84e3da0f67eb16a40e10c3c
Sha256: 975b301dfda25424f7a382499ccfc711999e139399bb5d22452de0883583eda5
                                        
                                            GET /images/systemresourcejsdynclicks.js HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10391673.html

                                         
                                         104.223.149.232
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 3474
Last-Modified: Sun, 27 Nov 2016 01:43:16 GMT
Accept-Ranges: bytes
Etag: "d024699f4f48d21:c7ad"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sun, 22 Oct 2017 10:48:47 GMT


--- Additional Info ---
Magic:  UTF-8 Unicode (with BOM) text, with CRLF line terminators
Size:   3474
Md5:    2561c5a10d2059006a2ee239d9ded193
Sha1:   6cd6f5cd2fcb5b39553fe39bdaf39747111fc9ee
Sha256: 5d56867bfdea9d9e2ee9e65c538ae05d29c75cf6fe602ef211c3df6a325c25da

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /yesads.js HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10391673.html

                                         
                                         104.223.149.232
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 106
Last-Modified: Thu, 13 Apr 2017 15:53:11 GMT
Accept-Ranges: bytes
Etag: "985ae0d6eb4d21:c7ad"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sun, 22 Oct 2017 10:48:47 GMT


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   106
Md5:    17a8754edf85068082f8b1ac1519d80e
Sha1:   33a9c0cccfe3d299c1ebb6d77fc4e0097b35f5a9
Sha256: 85965e1cee169e6ea1129285cafdd3c90f4e7b046207290c9ad9bc51bc58afdf

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/info1039skinscssstylecss.css HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10391673.html

                                         
                                         104.223.149.232
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Length: 20790
Last-Modified: Mon, 28 Nov 2016 08:03:34 GMT
Accept-Ranges: bytes
Etag: "b64ab3ea4d49d21:c7ad"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sun, 22 Oct 2017 10:48:46 GMT


--- Additional Info ---
Magic:  UTF-8 Unicode C program text, with very long lines, with CRLF line terminators
Size:   20790
Md5:    86fb05ec6ceb76f32afb3be92703eb88
Sha1:   bde5dc70f1fdab83ae09217c2b501bf32ae7896c
Sha256: b1e3c79720748911ab944391e02679e8323cd77d0cea6f04981add6e29587594
                                        
                                            GET /images/skinsjsjquery.plus.js HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10391673.html

                                         
                                         104.223.149.232
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 13591
Last-Modified: Sun, 27 Nov 2016 01:44:06 GMT
Accept-Ranges: bytes
Etag: "b67280bd4f48d21:c7ad"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sun, 22 Oct 2017 10:48:46 GMT


--- Additional Info ---
Magic:  UTF-8 Unicode C++ program text, with very long lines, with CRLF line terminators
Size:   13591
Md5:    4b065cb3cd732e991ed0e2ef4823b2fa
Sha1:   86f0fc92d9e6937ee881a8798aef69d5ade1944a
Sha256: cf977a38e010598eff3a5973038b7b0c8c94f14e0327cb75ebde506410c9bd09

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/systemresourcejsopenlink.js HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10391673.html

                                         
                                         104.223.149.232
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 648
Last-Modified: Sun, 27 Nov 2016 01:43:16 GMT
Accept-Ranges: bytes
Etag: "2646ec9f4f48d21:c7ad"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sun, 22 Oct 2017 10:48:47 GMT


--- Additional Info ---
Magic:  UTF-8 Unicode (with BOM) text, with CRLF line terminators
Size:   648
Md5:    ccdba8a8ed118a385b33092b30261504
Sha1:   e41c77d81641795fc0ccc109c4a058ee5ab94bce
Sha256: e28b393862a9191fe08877274ebcbb34d820752593fe4923b20782e5267a4c12

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/systemresourcejsbase64.js HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10391673.html

                                         
                                         104.223.149.232
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 4025
Last-Modified: Sun, 27 Nov 2016 01:43:18 GMT
Accept-Ranges: bytes
Etag: "72ae18a14f48d21:c7ad"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sun, 22 Oct 2017 10:48:47 GMT


--- Additional Info ---
Magic:  UTF-8 Unicode (with BOM) C++ program text, with CRLF line terminators
Size:   4025
Md5:    00b6f6e633d233972647ed727770bb95
Sha1:   1fd81768a34000749f28de5e0ae1331ec23bd323
Sha256: 34bf7cc3ebf6cb87f35b92e5d8d7e1d9d39958ff805cab0758b3489b37d0c0ba

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/systemresourcejsformfunc.js HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10391673.html

                                         
                                         104.223.149.232
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 648
Last-Modified: Sun, 27 Nov 2016 01:43:19 GMT
Accept-Ranges: bytes
Etag: "d6f6a2a14f48d21:c7ad"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sun, 22 Oct 2017 10:48:47 GMT


--- Additional Info ---
Magic:  UTF-8 Unicode (with BOM) text, with CRLF line terminators
Size:   648
Md5:    78d80475f6c6d75956a8b8ece6ef384d
Sha1:   6517ad661c1f6f000edf80a84065de4a2d5d2c07
Sha256: 241aa991e6ecb25d54b1f46422f27df612308427d5426848538c36a3cdbc23a9

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /html/info10391673.html HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         104.223.149.232
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Content-Length: 133088
Last-Modified: Fri, 28 Apr 2017 08:59:24 GMT
Accept-Ranges: bytes
Etag: "78e5e0bbfdbfd21:c7ad"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sun, 22 Oct 2017 10:48:46 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   133088
Md5:    c08362c47f9a677221510655b3ca6468
Sha1:   bdc05f0c18ea7ba5c12711edf6b74f7ffc7ab762
Sha256: df52ab137fc9337fbafb5b5aefaed222424288dbea9e8361d519d025cd4362c4

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/skinsjsjquery.min.js HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10391673.html

                                         
                                         104.223.149.232
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 93640
Last-Modified: Sun, 27 Nov 2016 01:43:12 GMT
Accept-Ranges: bytes
Etag: "867239d4f48d21:c7ad"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sun, 22 Oct 2017 10:48:46 GMT


--- Additional Info ---
Magic:  UTF-8 Unicode (with BOM) text, with very long lines, with CRLF line terminators
Size:   93640
Md5:    e0a832c7355cfc8c8d8a71e50ca19594
Sha1:   b755ac3184d7a3bf7dde701ea29fac7bfdef144b
Sha256: 7581d038b1e4b668548c9537b7d0e9a9557f906a2e1de696152c5bfb5d3bd5f5

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/_dwrinterfaceNewsvoteDWR.js HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10391673.html

                                         
                                         104.223.149.232
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 1333
Last-Modified: Mon, 28 Nov 2016 08:01:21 GMT
Accept-Ranges: bytes
Etag: "52687b9b4d49d21:c7ad"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sun, 22 Oct 2017 10:48:48 GMT


--- Additional Info ---
Magic:  ASCII C++ program text
Size:   1333
Md5:    ddfa52c16dbd915739d8dd1bb5f8bc5e
Sha1:   80811e316baaca89358002506b84c923f0a28bb0
Sha256: dfdacf9bd9217e6cfd504d467c659de7c63a7d7a5857cbad772f251d7c83240a

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/systemresourcejsajax.js HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10391673.html

                                         
                                         104.223.149.232
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 5127
Last-Modified: Mon, 28 Nov 2016 08:01:22 GMT
Accept-Ranges: bytes
Etag: "6a75a9c4d49d21:c7ad"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sun, 22 Oct 2017 10:48:48 GMT


--- Additional Info ---
Magic:  UTF-8 Unicode (with BOM) C++ program text, with CRLF line terminators
Size:   5127
Md5:    94ccdfac6d79e3250f70e83b2c799aa3
Sha1:   dc14703575563e850cb2eac53659419dcba9788a
Sha256: ed87248762f8831b77e9811545dbe082a9d5a5a7babaca7e9a437aea07fe8e72

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/skinsjsjquery.fix.js HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10391673.html

                                         
                                         104.223.149.232
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 409
Last-Modified: Mon, 28 Nov 2016 08:01:24 GMT
Accept-Ranges: bytes
Etag: "e9e19c4d49d21:c7ad"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sun, 22 Oct 2017 10:48:48 GMT


--- Additional Info ---
Magic:  UTF-8 Unicode C++ program text, with CRLF line terminators
Size:   409
Md5:    2d1e500f1e9e855b5fd5f7e3eaaa7b69
Sha1:   bc2d9a69e3f065019a93aaea3396e0d5b660734d
Sha256: 879f207bf303d776face324fbd0cb6ee2be8b7a5724e5bde671bafb2713d0f30

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/systemresourcejsnewsnewscontent.js HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10391673.html

                                         
                                         104.223.149.232
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 10289
Last-Modified: Mon, 28 Nov 2016 08:01:22 GMT
Accept-Ranges: bytes
Etag: "848cc09b4d49d21:c7ad"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sun, 22 Oct 2017 10:48:48 GMT


--- Additional Info ---
Magic:  UTF-8 Unicode (with BOM) English text, with CRLF line terminators
Size:   10289
Md5:    9cb978ee56666afaac51e5a49415b81d
Sha1:   8ba47620a5299c637077c6fd6c264624f6d3b8a9
Sha256: 7d0b2b60f8544e125b3e7ef97fc9fe64cc8fc21862da844c4adbf83f95ac6459

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/skinsjsmenu.longyang.js HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10391673.html

                                         
                                         104.223.149.232
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 898
Last-Modified: Sun, 27 Nov 2016 01:44:54 GMT
Accept-Ranges: bytes
Etag: "6838c9d94f48d21:c7ad"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sun, 22 Oct 2017 10:48:48 GMT


--- Additional Info ---
Magic:  UTF-8 Unicode C++ program text, with CRLF line terminators
Size:   898
Md5:    320e88392d3f8a4c9fc97b187d480ad7
Sha1:   31964cdac49323be20b9ffffc204b4d38517ad5e
Sha256: 67a7d274a856c0741be33f4aa7c0f409a35ef4458dd8ebe845e10967bcc833f9

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/skinsjstool.quick.js HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10391673.html

                                         
                                         104.223.149.232
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 951
Last-Modified: Sun, 27 Nov 2016 01:44:54 GMT
Accept-Ranges: bytes
Etag: "e01f32da4f48d21:c7ad"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sun, 22 Oct 2017 10:48:48 GMT


--- Additional Info ---
Magic:  UTF-8 Unicode C++ program text, with CRLF line terminators
Size:   951
Md5:    e2c37a52c1d8c7407760a6aa3a55881a
Sha1:   0a999308abf7af3cf4cf8da737ac75d975a79d82
Sha256: 5dac323b3d2c6d94a70f31044d2439e492ce61e9d68cd17856e481d2f5468bb5

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /tongji.js HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10391673.html

                                         
                                         104.223.149.232
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 506
Last-Modified: Fri, 28 Apr 2017 17:53:03 GMT
Accept-Ranges: bytes
Etag: "601aba4848c0d21:c7ad"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sun, 22 Oct 2017 10:48:48 GMT


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   506
Md5:    54f2082d40f44f056df3a7d7aa76501d
Sha1:   4f84276be0cd85aa4b4178c594cd3b442fc73854
Sha256: cbdaff4120100e21c0e99c6ef7a2da0e500f41a1d19e63683b39c8ff6fceb466

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/images1510291c3g47qlipqm4h_image002.jpg HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10391673.html

                                         
                                         104.223.149.232
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 72228
Last-Modified: Sun, 27 Nov 2016 01:44:21 GMT
Accept-Ranges: bytes
Etag: "60b986c64f48d21:c7ad"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sun, 22 Oct 2017 10:48:48 GMT


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   72228
Md5:    44d5e5b5eb57ca756e5f146fde189355
Sha1:   48199f968c6384b2596cf928882fedc3da21de3f
Sha256: 12c841642b65c609b1a0a06a2fd9dfca050884daffb91b0caa629fcad4cdac7a
                                        
                                            GET /system/resource/code/datainput.jsp?owner=1188208949&e=1&w=1176&h=885&treeid=1039&refer=&pagename=L2NvbnRlbnQuanNw&newsid=1673 HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10391673.html

                                         
                                         104.223.149.232
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sun, 22 Oct 2017 10:48:48 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075
                                        
                                            GET /images/_dwrengine.js HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10391673.html

                                         
                                         104.223.149.232
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 47416
Last-Modified: Mon, 28 Nov 2016 08:01:02 GMT
Accept-Ranges: bytes
Etag: "d8b4ff8f4d49d21:c7ad"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sun, 22 Oct 2017 10:48:48 GMT


--- Additional Info ---
Magic:  ASCII C program text
Size:   47416
Md5:    ddf897eb19205313d080fec717fbfce4
Sha1:   94dc509c2416033fb6f892cf2b2e5b6921b78d14
Sha256: 2ad983a9ac05c713d51b996495ef4436dfbc7a9af61ee3e3b8321d712b3cf034

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/_mediafilelyq_gxj201606223raxws520r.png HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10391673.html

                                         
                                         104.223.149.232
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Content-Length: 19256
Last-Modified: Sun, 27 Nov 2016 01:44:53 GMT
Accept-Ranges: bytes
Etag: "4ab362d94f48d21:c7ad"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sun, 22 Oct 2017 10:48:48 GMT


--- Additional Info ---
Magic:  PNG image, 20 x 20, 8-bit/color RGBA, non-interlaced
Size:   19256
Md5:    d0289dc0a46fc5b15b3363ffa78cf6c7
Sha1:   29c400bc3b89f6085766dac4e0330ded5cb73d52
Sha256: a20583c81805fe64f7fa210851ce29754af9d25fd6aa5a3225a9557529602513
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 116
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 22 Oct 2017 02:55:41 GMT
Server: Apache
Last-Modified: Fri, 20 Oct 2017 02:50:10 GMT
Expires: Fri, 27 Oct 2017 02:50:10 GMT
Etag: DD82BECFFE8E46C8F675615BF9B063301AE636FA
Cache-Control: max-age=431068,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp23
Content-Length: 472
Connection: close


--- Additional Info ---
Magic:  data
Size:   472
Md5:    e306d34818e3719bae6bd91f80cc97f9
Sha1:   dd82becffe8e46c8f675615bf9b063301ae636fa
Sha256: de22c4f580a68a09a38349c70a4f05cbf823264ce6898103c23f2dea52fbb472
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 22 Oct 2017 02:55:41 GMT
Server: Apache
Last-Modified: Sat, 21 Oct 2017 21:42:49 GMT
Expires: Sat, 28 Oct 2017 21:42:49 GMT
Etag: F6F5A208FB78915650ABA1FBE6655B14634217F9
Cache-Control: max-age=585427,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp23
Content-Length: 727
Connection: close


--- Additional Info ---
Magic:  data
Size:   727
Md5:    f66115251eedcb3aae05ffbe22c63e70
Sha1:   f6f5a208fb78915650aba1fbe6655b14634217f9
Sha256: 081699cf094de830809f49a8e3ea027176948d7d444210a65063c247390bb0bb
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 22 Oct 2017 02:55:41 GMT
Server: Apache
Last-Modified: Sat, 21 Oct 2017 21:42:49 GMT
Expires: Sat, 28 Oct 2017 21:42:49 GMT
Etag: D606A7F206E804CBB23A4B3A6AA53A5D4DD9B31C
Cache-Control: max-age=585427,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp23
Content-Length: 471
Connection: close


--- Additional Info ---
Magic:  data
Size:   471
Md5:    62e5d828cffb0fd05a4b58e3b7ebf797
Sha1:   d606a7f206e804cbb23a4b3a6aa53a5d4dd9b31c
Sha256: e8a4706619f0bd3c25f13e9c15a77f1ccefd16aa927b045a53d9ca9651d13392
                                        
                                            GET /by/dz.js HTTP/1.1 
Host: s95.b9823852351323h.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10391673.html

                                         
                                         42.56.76.104
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: NWSs
Date: Sun, 22 Oct 2017 02:55:42 GMT
Content-Length: 1416
Connection: keep-alive
Cache-Control: max-age=600
Expires: Sun, 22 Oct 2017 03:05:42 GMT
Last-Modified: Wed, 11 Oct 2017 07:47:43 GMT
Content-Encoding: gzip
X-NWS-LOG-UUID: c77f2ea8-9b37-4150-b370-925c072130d0
X-Cache-Lookup: Hit From MemCache Gz


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1416
Md5:    d940ff05fbdc16d8b87b67bdae98e3ff
Sha1:   d35b60f4ff8c937e3859558fbde003e3abc72830
Sha256: e3a8ea826bf776d8ba44c55ef697381cdc136cb93104a3a23b9b47e987ad2f64
                                        
                                            GET /system/resource/code/news/click/dynclicks.jsp?clickid=1672&owner=1188208949&clicktype=wbnews HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10391673.html

                                         
                                         104.223.149.232
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sun, 22 Oct 2017 10:49:02 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075
                                        
                                            GET /images/bdimgsharebaiducomstaticapijssharejsv89860593jscdnversion.js419065 HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10391673.html

                                         
                                         104.223.149.232
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sun, 22 Oct 2017 10:49:02 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /hm.js?328360645dd8c2ffdf33f4fca180b186 HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10391673.html

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 9072
Date: Sun, 22 Oct 2017 02:55:52 GMT
Etag: 5daf4ffe701291ee673165cb902a5c47
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=70F9678D84369D4D; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max speed
Size:   9072
Md5:    364d0b4a50d3b46c881cc403829c1a9d
Sha1:   75b2183c8227dd401d520bccd4249d7a18ba6c24
Sha256: 8ac468aedd75d73ea9c54b10d3fe5e945fbbbd6cf4cb828050b8e4fa3defa155
                                        
                                            GET /hm.js?72e65c3cebfb173f62cc0b5533764dc7 HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10391673.html

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 9072
Date: Sun, 22 Oct 2017 02:55:52 GMT
Etag: c0787a82239b6c525c453f9c2ad2f651
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=0FC481BF8DBDD993; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max speed
Size:   9072
Md5:    4ecd7927143b6403435aa504629c0dea
Sha1:   ed16dd6f8b9e071d26bcaddb0944f1a43cf66e64
Sha256: 4a8df4e717369d67893f2542f145b72ed508a48b1760e6fe775f380d5f429715
                                        
                                            GET /hm.gif?cc=0&ck=1&cl=24-bit&ds=1176x885&et=0&fl=10.0&ja=1&ln=en-us&lo=0&rnd=595754904&si=72e65c3cebfb173f62cc0b5533764dc7&v=1.2.24&lv=1&ct=!!&tt=%E6%94%BF%E5%8D%8F%E9%9A%86%E9%98%B3%E5%8C%BA%E5%A7%94%E5%91%98%E4%BC%9A%E8%B0%83%E7%A0%94%E6%9D%BF%E6%A1%A5%E7%94%9F%E7%89%A9%E4%BA%A7%E4%B8%9A%E7%A4%BA%E8%8C%83%E5%9B%AD%E5%8C%BA-www.201.com%20%7C%20%E9%9A%86%E9%98%B3%E5%8C%BA%E5%B7%A5%E4%BF%A1%E4%BF%A1%E6%81%AF%E7%BD%91%E3%80%94www.jiayeleather.com%E3%80%95&sn=25253 HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10391673.html
Cookie: HMACCOUNT=0FC481BF8DBDD993

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Date: Sun, 22 Oct 2017 02:55:53 GMT
Pragma: no-cache
Server: apache
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /hm.gif?cc=0&ck=1&cl=24-bit&ds=1176x885&et=0&fl=10.0&ja=1&ln=en-us&lo=0&rnd=1273362344&si=328360645dd8c2ffdf33f4fca180b186&v=1.2.24&lv=1&ct=!!&tt=%E6%94%BF%E5%8D%8F%E9%9A%86%E9%98%B3%E5%8C%BA%E5%A7%94%E5%91%98%E4%BC%9A%E8%B0%83%E7%A0%94%E6%9D%BF%E6%A1%A5%E7%94%9F%E7%89%A9%E4%BA%A7%E4%B8%9A%E7%A4%BA%E8%8C%83%E5%9B%AD%E5%8C%BA-www.201.com%20%7C%20%E9%9A%86%E9%98%B3%E5%8C%BA%E5%B7%A5%E4%BF%A1%E4%BF%A1%E6%81%AF%E7%BD%91%E3%80%94www.jiayeleather.com%E3%80%95&sn=25253 HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.jiayeleather.com/html/info10391673.html
Cookie: HMACCOUNT=0FC481BF8DBDD993

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Date: Sun, 22 Oct 2017 02:55:53 GMT
Pragma: no-cache
Server: apache
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: Hm_lvt_72e65c3cebfb173f62cc0b5533764dc7=1508640953; Hm_lpvt_72e65c3cebfb173f62cc0b5533764dc7=1508640953; Hm_lvt_328360645dd8c2ffdf33f4fca180b186=1508640953; Hm_lpvt_328360645dd8c2ffdf33f4fca180b186=1508640953

                                         
                                         104.223.149.232
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sun, 22 Oct 2017 10:49:03 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.jiayeleather.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: Hm_lvt_72e65c3cebfb173f62cc0b5533764dc7=1508640953; Hm_lpvt_72e65c3cebfb173f62cc0b5533764dc7=1508640953; Hm_lvt_328360645dd8c2ffdf33f4fca180b186=1508640953; Hm_lpvt_328360645dd8c2ffdf33f4fca180b186=1508640953

                                         
                                         104.223.149.232
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Sun, 22 Oct 2017 10:49:06 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075