Overview

URL 1ivbqs9.liwhctyy.cn/
IP192.200.195.212
ASNAS46573 Global Frag Networks
Location United States
Report completed2019-02-04 04:48:29 CET
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2019-02-04 2 1ivbqs9.liwhctyy.cn/ Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 192.200.195.212

Date UQ / IDS / BL URL IP
2019-02-27 13:37:11 +0100
0 - 0 - 1 1tn64jq.xawhctyy.cn/ 192.200.195.212
2019-02-26 13:24:26 +0100
0 - 0 - 1 1x5marm.wowhctyy.cn/ 192.200.195.212
2019-02-19 12:18:32 +0100
0 - 0 - 1 1nr970x.rywhctyy.cn/ 192.200.195.212
2019-02-17 09:59:06 +0100
0 - 0 - 1 juwhctyy.cn/pjx 192.200.195.212
2019-02-17 02:38:28 +0100
0 - 0 - 1 juwhctyy.cn/pjj 192.200.195.212
2019-02-10 03:03:45 +0100
0 - 0 - 1 31.xawhctyy.cn/da/1470.html 192.200.195.212
2019-02-06 06:48:41 +0100
0 - 0 - 1 liwhctyy.cn/news/20180621_478951.pdf 192.200.195.212
2019-02-03 05:10:25 +0100
0 - 0 - 1 liwhctyy.cn/news/20180621_478951.pdf 192.200.195.212
2019-02-03 04:48:18 +0100
0 - 0 - 1 1vul647.rywhctyy.cn/ 192.200.195.212
2019-01-30 19:06:10 +0100
0 - 0 - 1 iphone.ly.juwhctyy.cn/ 192.200.195.212

Last 10 reports on ASN: AS46573 Global Frag Networks

Date UQ / IDS / BL URL IP
2019-06-10 18:25:41 +0200
0 - 0 - 1 lcxunjie.cn/html/hdxzxstd86190.html 107.179.119.78
2019-06-10 18:25:19 +0200
0 - 0 - 1 sdvmj.cn/html/info345....xbjjxbjj.html 107.179.119.158
2019-06-10 18:25:02 +0200
0 - 0 - 1 jxylmuye.cn/html/bmgkjgsz.html 107.179.119.198
2019-06-10 18:24:57 +0200
0 - 0 - 1 phyxgs.com.cn/html/zsjz14252847496.html 107.179.119.182
2019-06-10 17:50:47 +0200
0 - 0 - 1 lylhf.com.cn/html/jiuyebaozhanghezuodanwei201 (...) 107.179.119.197
2019-06-10 17:50:45 +0200
0 - 0 - 1 jensmay.cn/html/.tztg201611....hysqk.html 107.179.119.216
2019-06-10 17:50:11 +0200
0 - 0 - 1 lyjiuhua136.cn/html/hyzx7641.html 107.179.119.198
2019-06-10 17:49:34 +0200
0 - 0 - 1 jinaotanye.com.cn/htmlzt2016bkhpc_hashaymnR1.html 107.179.119.16
2019-06-10 17:49:17 +0200
0 - 0 - 2 lczhggwz.com.cn/xzzxxwbgzl.html 107.179.119.77
2019-06-10 17:48:36 +0200
0 - 0 - 2 lczhggwz.com.cn/html/jxsw234404.html 107.179.119.77

No other reports on domain: liwhctyy.cn



JavaScript

Executed Scripts (2)


Executed Evals (0)


Executed Writes (2)

#1 JavaScript::Write (size: 157, repeated: 1) - SHA256: 634fd724e59faf424d4db086b0923b60dafa45153c7406b38c5b178496445587

                                        < a href = 'https://www.cnzz.com/stat/website.php?web_id=1273796629'
target = _blank title = '&#31449;&#38271;&#32479;&#35745;' > & #31449;&# 38271; & #32479;&# 35745; < /a>
                                    

#2 JavaScript::Write (size: 112, repeated: 1) - SHA256: e2421daf5d011a350974617c8b62d81a5a19dd7b35bd89b29e5b1c6d2ff96f8e

                                        < script src = 'https://c.cnzz.com/core.php?web_id=1273796629&t=z'
charset = 'utf-8'
type = 'text/javascript' > < /script>
                                    


HTTP Transactions (14)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: 1ivbqs9.liwhctyy.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         192.200.195.212
HTTP/1.1 302 Object moved
Content-Type: text/html
                                        
Content-Length: 0
Server: GSHD/3.0
Location: http://www.dhastar.com


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET / HTTP/1.1 
Host: www.dhastar.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         173.82.219.33
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: kangle/sakura
Date: Mon, 04 Feb 2019 03:40:04 GMT
Content-Encoding: gzip
Last-Modified: Sun, 04 Nov 2018 16:34:12 GMT
X-Cache: MISS from kangle web server for sakura ca
Transfer-Encoding: chunked
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   796
Md5:    7bffe65b31ad1056072ab7c7a30776d6
Sha1:   2ab93fb04f465ffcd6475afd257d2830c9da3134
Sha256: 4872be7e3f31231d95130f36819d0e0da6437062fec89044fc93ec2aefa22822
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.itzmx.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         91.121.255.214
HTTP/1.1 301 Moved Permanently
                                        
Server: kangle/sakura
Date: Mon, 04 Feb 2019 03:47:56 GMT
Location: https://www.itzmx.com/favicon.ico
Content-Length: 0
Connection: keep-alive


--- Additional Info ---
                                        
                                            POST /gsorganizationvalsha2g2 HTTP/1.1 
Host: ocsp2.globalsign.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 111
Content-Type: application/ocsp-request

                                         
                                         104.18.21.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 04 Feb 2019 03:47:57 GMT
Content-Length: 1570
Connection: keep-alive
Set-Cookie: __cfduid=d68334fc6dec93c01ddcef73bf9767cb81549252076; expires=Tue, 04-Feb-20 03:47:56 GMT; path=/; domain=.globalsign.com; HttpOnly
Last-Modified: Mon, 04 Feb 2019 03:00:01 GMT
Expires: Fri, 08 Feb 2019 03:00:01 GMT
Etag: "2cd98f5eb6f28e338161bcf736b5378b1d99198f"
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: EXPIRED
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4a3a28a9228142a9-OSL


--- Additional Info ---
Magic:  data
Size:   1570
Md5:    ac1253a4abc540a2b0ec6e0b312e0d59
Sha1:   2cd98f5eb6f28e338161bcf736b5378b1d99198f
Sha256: 281d6fcac9fa46e59072c3515cbd5a540f3f88322c8921000540e24094183a1a
                                        
                                            POST / HTTP/1.1 
Host: ocsp.int-x3.letsencrypt.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 117
Content-Type: application/ocsp-request

                                         
                                         91.135.34.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 527
Etag: "23C115A4C4E8836C04981327E5677D5F5A508D9BBBEA160BC5CC6EEE967FA5F9"
Last-Modified: Sun, 03 Feb 2019 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=36301
Expires: Mon, 04 Feb 2019 13:52:58 GMT
Date: Mon, 04 Feb 2019 03:47:57 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   527
Md5:    a2006e7e7e18f9d8a038b826a304a80b
Sha1:   eaf73446d658043e381411a7f83d13d8d7ea1219
Sha256: 23c115a4c4e8836c04981327e5677d5f5a508d9bbbea160bc5cc6eee967fa5f9
                                        
                                            POST / HTTP/1.1 
Host: isrg.trustid.ocsp.identrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.113
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Transfer-Encoding: Binary
Last-Modified: Sun, 03 Feb 2019 14:17:16 GMT
Etag: "6016462d5af1790fa5a7f4f77769178a69667591"
Content-Length: 1398
Cache-Control: public, no-transform, must-revalidate, max-age=12299
Expires: Mon, 04 Feb 2019 07:12:56 GMT
Date: Mon, 04 Feb 2019 03:47:57 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1398
Md5:    b89423a47c6c88ce1f0d6130ff5c477c
Sha1:   6016462d5af1790fa5a7f4f77769178a69667591
Sha256: f76281982ec28a57d8f4d25d24759c3eaf672a48cfad90c44b73fdd539b90240
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.itzmx.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         91.121.255.214
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Strict-Transport-Security: max-age=31104000
Server: kangle/sakura/itzmx
Date: Mon, 04 Feb 2019 03:01:26 GMT
Last-Modified: Wed, 03 Sep 2014 00:25:10 GMT
X-Cache: HIT from kangle web server dedi, HIT from Anti-DDoS
Age: 1543
Content-Length: 4286
Connection: keep-alive


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon
Size:   4286
Md5:    c716b44e7f6437ed1951c371d2bc2a4d
Sha1:   9f05b38379212d2c2da600b33b45dd8e8b64cbcb
Sha256: 4e6a8a8462587eb2be005769bf7ed1edd6647ce645bb035b553a1891ec1c3fd7
                                        
                                            GET /error/404.png HTTP/1.1 
Host: static-s.bilibili.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.dhastar.com/

                                         
                                         107.150.117.242
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: Tengine
Date: Mon, 04 Feb 2019 03:47:57 GMT
Content-Length: 79326
Last-Modified: Thu, 02 Apr 2015 09:16:03 GMT
Connection: keep-alive
Etag: "551d08d3-135de"
Expires: Mon, 04 Feb 2019 11:47:57 GMT
Cache-Control: max-age=28800
X-Cache: HIT from u-s-euwest-webcdn-01.hdslb.com Memory
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 640 x 427, 8-bit/color RGBA, non-interlaced
Size:   79326
Md5:    1b19a663423c9a01f2170dc86b66fbda
Sha1:   1d676529b512322ba12ce48e9c1860d2c7306dcb
Sha256: e7b07ed5ce3f25fe7881045bd56f9515cdd6168ed749495ec165767886eb779f
                                        
                                            POST /gsorganizationvalsha2g2 HTTP/1.1 
Host: ocsp2.globalsign.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 111
Content-Type: application/ocsp-request
Cookie: __cfduid=d68334fc6dec93c01ddcef73bf9767cb81549252076

                                         
                                         104.18.21.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 04 Feb 2019 03:47:58 GMT
Content-Length: 1570
Connection: keep-alive
Last-Modified: Mon, 04 Feb 2019 01:00:52 GMT
Expires: Fri, 08 Feb 2019 01:00:52 GMT
Etag: "52892b844bb361cea6c74443b1119a75c02bdfb8"
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4a3a28b482f242a9-OSL


--- Additional Info ---
Magic:  data
Size:   1570
Md5:    e66971ef628a6fd03963216f430c3f03
Sha1:   52892b844bb361cea6c74443b1119a75c02bdfb8
Sha256: 41fcb049754f31f7ac09d9128004ee98cb09cd32992b2749e6314c5aca4579d7
                                        
                                            GET /z_stat.php?id=1273796629&web_id=1273796629 HTTP/1.1 
Host: s19.cnzz.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.dhastar.com/

                                         
                                         118.123.241.230
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: Tengine
Content-Length: 11734
Connection: keep-alive
Date: Mon, 04 Feb 2019 03:14:24 GMT
Last-Modified: Mon, 04 Feb 2019 03:14:24 GMT
Cache-Control: max-age=5400,s-maxage=5400
Ali-Swift-Global-Savetime: 1549250064
Via: cache17.l2cn739[0,200-0,H], cache29.l2cn739[0,0], kunlun3.cn1435[0,200-0,H], kunlun2.cn1435[1,0]
Age: 2015
X-Cache: HIT TCP_MEM_HIT dirn:11:249559964
X-Swift-SaveTime: Mon, 04 Feb 2019 03:21:25 GMT
X-Swift-CacheTime: 4979
Timing-Allow-Origin: *
EagleId: 767bf19615492520793392876e


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   11734
Md5:    783ac094a60d30ee500425af03de5c92
Sha1:   333fc4b38e7f7e3c52ecde25967be1aae40ff585
Sha256: 2c0a735f1a16bb4e942475ec2cbab12017aa6726303348cb23a7b484efa0ac0b
                                        
                                            GET /core.php?web_id=1273796629&t=z HTTP/1.1 
Host: c.cnzz.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.dhastar.com/

                                         
                                         118.123.241.231
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: Tengine
Content-Length: 996
Connection: keep-alive
Date: Mon, 04 Feb 2019 03:46:22 GMT
Last-Modified: Mon, 04 Feb 2019 03:46:22 GMT
Expires: Mon, 04 Feb 2019 04:01:22 GMT
Ali-Swift-Global-Savetime: 1549251982
Via: cache1.l2cn739[0,200-0,H], cache3.l2cn739[2,0], kunlun10.cn1435[16,200-0,M], kunlun9.cn1435[18,0]
Age: 98
X-Cache: MISS TCP_REFRESH_MISS dirn:-2:-2
X-Swift-SaveTime: Mon, 04 Feb 2019 03:48:00 GMT
X-Swift-CacheTime: 802
Timing-Allow-Origin: *
EagleId: 767bf19d15492520804463278e


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   996
Md5:    f9450f0cbbf51fbf9e4953fd1b4bfb4c
Sha1:   33af8b006d823feedf6a1684f1e0a37e4068dc31
Sha256: 5ae5ea6611470d7c2fc6eac527fb1458cf4e1e7c9064df06941e28b3eabd70ef
                                        
                                            POST /gsorganizationvalsha2g2 HTTP/1.1 
Host: ocsp2.globalsign.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 111
Content-Type: application/ocsp-request
Cookie: __cfduid=d68334fc6dec93c01ddcef73bf9767cb81549252076

                                         
                                         104.18.21.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 04 Feb 2019 03:48:01 GMT
Content-Length: 1570
Connection: keep-alive
Last-Modified: Mon, 04 Feb 2019 02:45:35 GMT
Expires: Fri, 08 Feb 2019 02:45:35 GMT
Etag: "45a6e003162dbaa3e4f317fa428a01fe50b55606"
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4a3a28c713bf42a9-OSL


--- Additional Info ---
Magic:  data
Size:   1570
Md5:    ddf1e04f188f8adaf460c9b9f4bfd969
Sha1:   45a6e003162dbaa3e4f317fa428a01fe50b55606
Sha256: 1cd8f88c3923aa833de49c2d93068410eb6cb6333a0794d790913181b7c9679c
                                        
                                            GET /stat.htm?id=1273796629&r=&lg=en-us&ntime=none&cnzz_eid=826167960-1549250064-&showp=1176x885&t=%E5%87%BA%E9%94%99%E5%95%A6!&umuuid=168b69eaf772-0f7bfc6fe282b8-6c242d76-fe178-168b69eaf783&h=1&rnd=835357204 HTTP/1.1 
Host: z8.cnzz.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.dhastar.com/

                                         
                                         203.119.206.93
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Server: Tengine
Date: Mon, 04 Feb 2019 03:48:02 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   22
Md5:    8bd3e739a9ba80a435f0214811da0c2a
Sha1:   bfc17d1e04e56542eb8037f08ed142efd252ea82
Sha256: a2dd5774b01bbfc29140279e02fea087df42a4c257dce8858226737a2e521986
                                        
                                            GET /9.gif?abc=1&rnd=1801933214 HTTP/1.1 
Host: cnzz.mmstat.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.dhastar.com/

                                         
                                         198.11.136.24
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Mon, 04 Feb 2019 03:48:02 GMT
Content-Length: 43
Connection: close
P3P: CP="NOI DSP COR CURa ADMa DEVa PSAa PSDa OUR IND UNI PUR NAV"
Set-Cookie: cna=8qPeFF4xwAoCAU0ogXsHwP7w; expires=Thu, 01-Feb-29 03:48:02 GMT; path=/; domain=.mmstat.com sca=ab49484e; path=/; domain=.cnzz.mmstat.com atpsida=efe5386c086215c509ff8db3_1549252082_1; path=/; domain=.cnzz.mmstat.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Pragma: no-cache


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda