Overview

URL gyyfptj.ynshangji.com/liuyan/
IP116.55.242.246
ASNAS4134 Chinanet
Location China
Report completed2017-08-13 05:39:10 CEST
StatusLoading report..
urlQuery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2017-08-13 2 js.users.51.la/2551716.js Malware
2017-08-13 2 js.users.51.la/2551716.js Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 116.55.242.246

Date UQ / IDS / BL URL IP
2017-10-23 14:47:11 +0200
0 - 0 - 1 kwte5aun.ynshangji.com/ 116.55.242.246
2017-10-22 11:53:56 +0200
0 - 0 - 1 shibazi.ynshangji.com/ 116.55.242.246
2017-10-21 10:47:20 +0200
0 - 0 - 1 htsysb.ynshangji.com/ 116.55.242.246
2017-10-20 05:56:35 +0200
0 - 0 - 1 sdxdhj77.ynshangji.com/liuyan/ 116.55.242.246
2017-10-20 01:05:18 +0200
0 - 0 - 1 jsbray.ynshangji.com/ 116.55.242.246
2017-10-19 15:30:24 +0200
0 - 0 - 1 runhua123.ynshangji.com/liuyan/ 116.55.242.246
2017-10-18 14:06:00 +0200
0 - 0 - 1 uift.ynshangji.com/ 116.55.242.246
2017-10-16 05:58:26 +0200
0 - 0 - 4 tztz148583.ynshangji.com/ 116.55.242.246
2017-10-15 18:21:38 +0200
0 - 0 - 1 bj8288.ynshangji.com/ 116.55.242.246
2017-10-13 15:04:25 +0200
0 - 0 - 1 dwngjx.ynshangji.com/ 116.55.242.246

Last 10 reports on ASN: AS4134 Chinanet

Date UQ / IDS / BL URL IP
2017-10-24 10:43:55 +0200
0 - 0 - 1 sxzj.lqt8.cn/ 122.9.28.224
2017-10-24 10:12:17 +0200
0 - 0 - 1 sapi.97myj.com/dkieu.php? 115.231.76.6
2017-10-24 09:54:59 +0200
0 - 3 - 10 www.qyqrencai.com/ 220.177.198.246
2017-10-24 09:54:01 +0200
0 - 0 - 1 down413802.xiazaidown.com/ 59.47.232.75
2017-10-24 09:51:07 +0200
0 - 0 - 1 down413811.xiazaidown.com/ 221.229.204.145
2017-10-24 09:50:53 +0200
0 - 0 - 1 cl.qpzqxz.com/ 150.138.169.68
2017-10-24 09:45:34 +0200
0 - 0 - 8 www.jnzhuoli.com/ 222.173.37.6
2017-10-24 09:44:15 +0200
0 - 4 - 2 www.cndeplo.com/ 202.75.219.117
2017-10-24 09:43:00 +0200
0 - 10 - 9 ywywd.com/ 218.95.37.200
2017-10-24 09:40:56 +0200
0 - 4 - 9 www.hbyfyxh.com/ 58.53.128.247

No other reports on domain: .



JavaScript

Executed Scripts (5)


Executed Evals (1)

#1 JavaScript::Eval (size: 2127, repeated: 1) - SHA256: f796f924638ba46a6ae1d20cadaf872bc40964b402d497b52458d904f1b9027e

                                        (function($) {
    $.fn.lazyload = function(options) {
        var settings = {
            threshold: 0,
            failurelimit: 0,
            event: "scroll",
            effect: "show",
            container: window
        };
        if (options) {
            $.extend(settings, options)
        }
        var elements = this;
        if ("scroll" == settings.event) {
            $(settings.container).bind("scroll", function(event) {
                var counter = 0;
                elements.each(function() {
                    if (!$.belowthefold(this, settings) && !$.rightoffold(this, settings)) {
                        $(this).trigger("appear")
                    } else {
                        if (counter++ > settings.failurelimit) {
                            return false
                        }
                    }
                });
                var temp = $.grep(elements, function(element) {
                    return !element.loaded
                });
                elements = $(temp)
            })
        }
        return this.each(function() {
            var self = this;
            $(self).attr("original", $(self).attr("src"));
            if ("scroll" != settings.event || $.belowthefold(self, settings) || $.rightoffold(self, settings)) {
                if (settings.placeholder) {
                    $(self).attr("src", settings.placeholder)
                } else {
                    $(self).removeAttr("src")
                }
                self.loaded = false
            } else {
                self.loaded = true
            }
            $(self).one("appear", function() {
                if (!this.loaded) {
                    $("<img />").bind("load", function() {
                        $(self).hide().attr("src", $(self).attr("original"))[settings.effect](settings.effectspeed);
                        self.loaded = true
                    }).attr("src", $(self).attr("original"))
                }
            });
            if ("scroll" != settings.event) {
                $(self).bind(settings.event, function(event) {
                    if (!self.loaded) {
                        $(self).trigger("appear")
                    }
                })
            }
        })
    };
    $.belowthefold = function(element, settings) {
        if (settings.container === undefined || settings.container === window) {
            var fold = $(window).height() + $(window).scrollTop()
        } else {
            var fold = $(settings.container).offset().top + $(settings.container).height()
        }
        return fold <= $(element).offset().top - settings.threshold
    };
    $.rightoffold = function(element, settings) {
        if (settings.container === undefined || settings.container === window) {
            var fold = $(window).width() + $(window).scrollLeft()
        } else {
            var fold = $(settings.container).offset().left + $(settings.container).width()
        }
        return fold <= $(element).offset().left - settings.threshold
    };
    $.extend($.expr[':'], {
        "below-the-fold": "$.belowthefold(a, {threshold : 0, container: window})",
        "above-the-fold": "!$.belowthefold(a, {threshold : 0, container: window})",
        "right-of-fold": "$.rightoffold(a, {threshold : 0, container: window})",
        "left-of-fold": "!$.rightoffold(a, {threshold : 0, container: window})"
    })
})(jQuery);
                                    

Executed Writes (0)



HTTP Transactions (26)


Request Response
                                        
                                            GET /qiehuan/css.css HTTP/1.1 
Host: gyyfptj.ynshangji.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gyyfptj.ynshangji.com/liuyan/
Cookie: ASPSESSIONIDSQRDDTAD=KMACODODBKLKKLNNMNGPPBBM; safedog-flow-item=EDEAA1AD2E5FC0ED1F6E2EF428919151

                                         
                                         116.55.242.246
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Cache-Control: max-age=2592000
Content-Length: 307
Content-Encoding: gzip
Last-Modified: Wed, 01 Mar 2017 14:14:19 GMT
Accept-Ranges: bytes
Etag: "80afce1d9692d21:0"
Vary: Accept-Encoding
Server: IIS
X-Powered-By: WAF/2.0
Date: Sun, 13 Aug 2017 03:37:29 GMT


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), max speed
Size:   307
Md5:    d8827aa3401086076f0b30f8c76f4b17
Sha1:   f9817f9d80952ff9d18d6bbf0e725abbd540e139
Sha256: 05d165c97e0bdbb25c37eb0f31a6d5bce6c742845dcbcc85ce6343164ba0587b
                                        
                                            GET /qiehuan/qie.js HTTP/1.1 
Host: gyyfptj.ynshangji.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gyyfptj.ynshangji.com/liuyan/
Cookie: ASPSESSIONIDSQRDDTAD=KMACODODBKLKKLNNMNGPPBBM; safedog-flow-item=EDEAA1AD2E5FC0ED1F6E2EF428919151

                                         
                                         116.55.242.246
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Cache-Control: max-age=2592000
Content-Length: 138
Content-Encoding: gzip
Last-Modified: Wed, 01 Mar 2017 14:14:19 GMT
Accept-Ranges: bytes
Etag: "80afce1d9692d21:0"
Vary: Accept-Encoding
Server: IIS
X-Powered-By: WAF/2.0
Date: Sun, 13 Aug 2017 03:37:30 GMT


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), max speed
Size:   138
Md5:    73c1dc44e491397e4ccda453ac6e5934
Sha1:   10709c9c468c812de60c562cb1a58dff8fdc891f
Sha256: f984971f85136ad6bd11b0016389046212c454a3eaf21e8f3075dc324ce69702
                                        
                                            GET /skin/1/style.css HTTP/1.1 
Host: gyyfptj.ynshangji.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gyyfptj.ynshangji.com/liuyan/
Cookie: ASPSESSIONIDSQRDDTAD=KMACODODBKLKKLNNMNGPPBBM; safedog-flow-item=EDEAA1AD2E5FC0ED1F6E2EF428919151

                                         
                                         116.55.242.246
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Cache-Control: max-age=2592000
Content-Length: 1158
Content-Encoding: gzip
Last-Modified: Thu, 09 Mar 2017 08:02:21 GMT
Accept-Ranges: bytes
Etag: "80248c7aab98d21:0"
Vary: Accept-Encoding
Server: IIS
X-Powered-By: WAF/2.0
Date: Sun, 13 Aug 2017 03:37:29 GMT


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), max speed
Size:   1158
Md5:    ad4bcdba30124d1e8668bfc5cad6388a
Sha1:   64708b8bbb91bf6a0775feaa1ff9db9bc11ad6cc
Sha256: 8ee51bf7118c52488b2c6796907c5d9c0ca76499c76389fd52d7c105013cb39b
                                        
                                            GET /images/b1.gif HTTP/1.1 
Host: www.ynshangji.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gyyfptj.ynshangji.com/liuyan/
Cookie: safedog-flow-item=EDEAA1AD2E5FC0ED1F6E2EF428919151

                                         
                                         58.211.137.24
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Sun, 13 Aug 2017 03:38:38 GMT
Content-Length: 1577
Connection: keep-alive
Set-Cookie: __cfduid=d90ae6528cbb10cdfb7175cbd887b23f91502595518; expires=Mon, 13-Aug-18 03:38:38 GMT; path=/; domain=.ynshangji.com; HttpOnly
Cache-Control: public, max-age=2592000
Last-Modified: Sat, 07 Mar 2015 10:55:26 GMT
Etag: "ba46c837c558d01:0"
X-Powered-By: ASP.NET
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Tue, 12 Sep 2017 03:38:38 GMT
Accept-Ranges: bytes
Server: yunjiasu-nginx
CF-RAY: 38d8a488f5e34370-SZV


--- Additional Info ---
Magic:  GIF image data, version 89a, 23 x 12
Size:   1577
Md5:    e1179674fd6e330e546db35ff6cb41b3
Sha1:   258c7efa0eff8f7f351e1c23f9f86aea24706d49
Sha256: 83c1cbdc047094ed18cf52aea917206da0910a18cb4e8c8f35f24fc65f54204a
                                        
                                            GET /Js/lazyload/jquery.lazyload.js HTTP/1.1 
Host: gyyfptj.ynshangji.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gyyfptj.ynshangji.com/liuyan/
Cookie: ASPSESSIONIDSQRDDTAD=KMACODODBKLKKLNNMNGPPBBM; safedog-flow-item=EDEAA1AD2E5FC0ED1F6E2EF428919151

                                         
                                         116.55.242.246
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Cache-Control: max-age=2592000
Content-Length: 1064
Content-Encoding: gzip
Last-Modified: Wed, 22 Feb 2017 08:38:33 GMT
Accept-Ranges: bytes
Etag: "80caf6ce78cd21:0"
Vary: Accept-Encoding
Server: IIS
X-Powered-By: WAF/2.0
Date: Sun, 13 Aug 2017 03:37:29 GMT


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), max speed
Size:   1064
Md5:    e50fe703ccdbf1fddde3e19956653be7
Sha1:   4b1f49b55441f6aadcb9a07a4211b551f832c615
Sha256: be42141fc5fbc62ea466e06e5dceb31cb1090d7af2469a415344a6758b67f4f5
                                        
                                            GET /images/b2.gif HTTP/1.1 
Host: www.ynshangji.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gyyfptj.ynshangji.com/liuyan/
Cookie: safedog-flow-item=EDEAA1AD2E5FC0ED1F6E2EF428919151

                                         
                                         58.211.137.24
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Sun, 13 Aug 2017 03:38:38 GMT
Content-Length: 765
Connection: keep-alive
Set-Cookie: __cfduid=d98915f808057021e04a5abd0be4640da1502595518; expires=Mon, 13-Aug-18 03:38:38 GMT; path=/; domain=.ynshangji.com; HttpOnly
Cache-Control: public, max-age=2592000
Last-Modified: Sat, 07 Mar 2015 10:55:26 GMT
Etag: "59e5c537c558d01:0"
X-Powered-By: ASP.NET
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Tue, 12 Sep 2017 03:38:38 GMT
Accept-Ranges: bytes
Server: yunjiasu-nginx
CF-RAY: 38d8a489019d43a1-SZV


--- Additional Info ---
Magic:  GIF image data, version 89a, 24 x 13
Size:   765
Md5:    b1b5dc2d46577ae3b553f1c68247554e
Sha1:   80ee7bee9ea7cde625b714c8ead02ec3feeea7c8
Sha256: 8c85743f9cff7500da9ee37f23eff9e5c5c639497a21a5458d1223f31082a0ca
                                        
                                            GET /images/news_point.gif HTTP/1.1 
Host: www.ynshangji.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gyyfptj.ynshangji.com/liuyan/
Cookie: safedog-flow-item=EDEAA1AD2E5FC0ED1F6E2EF428919151

                                         
                                         58.211.137.24
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Sun, 13 Aug 2017 03:38:38 GMT
Content-Length: 63
Connection: keep-alive
Set-Cookie: __cfduid=dba767fdf0ed15ced2b28efacf8cc227d1502595518; expires=Mon, 13-Aug-18 03:38:38 GMT; path=/; domain=.ynshangji.com; HttpOnly
Cache-Control: public, max-age=2592000
Last-Modified: Sat, 07 Mar 2015 10:55:25 GMT
Etag: "ea363e37c558d01:0"
X-Powered-By: ASP.NET
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Tue, 12 Sep 2017 03:38:38 GMT
Accept-Ranges: bytes
Server: yunjiasu-nginx
CF-RAY: 38d8a48903aa43e9-SZV


--- Additional Info ---
Magic:  GIF image data, version 89a, 12 x 12
Size:   63
Md5:    556268298e70014f2ff59bb83abcd4fd
Sha1:   8849c983cf5998b0bd9f1a96d27e7b3b32d8f3a4
Sha256: 13079805ee00e2a49e5edad4a3f8c13d16bf78b1fc2e31ece9ee32082af92693
                                        
                                            GET /uploadpic/pic/rz_1.gif HTTP/1.1 
Host: www.ynshangji.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gyyfptj.ynshangji.com/liuyan/
Cookie: safedog-flow-item=EDEAA1AD2E5FC0ED1F6E2EF428919151

                                         
                                         58.211.137.24
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Sun, 13 Aug 2017 03:38:38 GMT
Content-Length: 2573
Connection: keep-alive
Set-Cookie: __cfduid=df05e428d74139a76a6ddab410d06296e1502595518; expires=Mon, 13-Aug-18 03:38:38 GMT; path=/; domain=.ynshangji.com; HttpOnly
Cache-Control: public, max-age=2592000
Last-Modified: Thu, 30 Mar 2017 08:05:03 GMT
Etag: "bd7b8562ca9d21:0"
X-Powered-By: ASP.NET
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Tue, 12 Sep 2017 03:38:38 GMT
Accept-Ranges: bytes
Server: yunjiasu-nginx
CF-RAY: 38d8a489048a4382-SZV


--- Additional Info ---
Magic:  GIF image data, version 89a, 178 x 39
Size:   2573
Md5:    ced5d50a3b88d477c5ac4d166cf87f1a
Sha1:   4729539b5de6e6b18e636979154441a50fc24079
Sha256: cdc225cacaca2517548bb6decf94b5ac6b77cdc279de3f47d3f0d6debf5f37f0
                                        
                                            GET /Js/lazyload/jquery.js HTTP/1.1 
Host: gyyfptj.ynshangji.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gyyfptj.ynshangji.com/liuyan/
Cookie: ASPSESSIONIDSQRDDTAD=KMACODODBKLKKLNNMNGPPBBM; safedog-flow-item=EDEAA1AD2E5FC0ED1F6E2EF428919151

                                         
                                         116.55.242.246
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Cache-Control: max-age=2592000
Content-Length: 21180
Content-Encoding: gzip
Last-Modified: Wed, 22 Feb 2017 08:38:33 GMT
Accept-Ranges: bytes
Etag: "80caf6ce78cd21:0"
Vary: Accept-Encoding
Server: IIS
X-Powered-By: WAF/2.0
Date: Sun, 13 Aug 2017 03:37:30 GMT


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), max speed
Size:   21180
Md5:    7a28f0ed7562ec54265ee9b15025db67
Sha1:   49dc5a5c700465c153e0046d534af1d9ce5196db
Sha256: e644b0f9d6e4b056cdd35178fcab7de425870674dc651619ba6a5dba140cb163
                                        
                                            GET /qiehuan/1.jpg HTTP/1.1 
Host: gyyfptj.ynshangji.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gyyfptj.ynshangji.com/liuyan/
Cookie: ASPSESSIONIDSQRDDTAD=KMACODODBKLKKLNNMNGPPBBM; safedog-flow-item=EDEAA1AD2E5FC0ED1F6E2EF428919151

                                         
                                         116.55.242.246
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: max-age=2592000
Content-Length: 91848
Last-Modified: Wed, 01 Mar 2017 14:14:19 GMT
Accept-Ranges: bytes
Etag: "a94e171e9692d21:0"
Server: IIS
X-Powered-By: WAF/2.0
Date: Sun, 13 Aug 2017 03:37:30 GMT


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   91848
Md5:    5a46618123a9ff6ec450cb8a7ac3d555
Sha1:   349ad72b766b14d19716565aa2361730a070c41f
Sha256: caaf69e70841cc45a36ada2727fbfbd16e7e56b1bdc2463b48613daaa29dfb2d
                                        
                                            GET /skin/1/daohangbg.gif HTTP/1.1 
Host: gyyfptj.ynshangji.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gyyfptj.ynshangji.com/skin/1/style.css
Cookie: ASPSESSIONIDSQRDDTAD=KMACODODBKLKKLNNMNGPPBBM; safedog-flow-item=EDEAA1AD2E5FC0ED1F6E2EF428919151; __cfduid=df05e428d74139a76a6ddab410d06296e1502595518

                                         
                                         116.55.242.246
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: max-age=2592000
Content-Length: 440
Last-Modified: Wed, 22 Feb 2017 08:38:33 GMT
Accept-Ranges: bytes
Etag: "dd6688de78cd21:0"
Server: IIS
X-Powered-By: WAF/2.0
Date: Sun, 13 Aug 2017 03:37:32 GMT


--- Additional Info ---
Magic:  GIF image data, version 89a, 10 x 57
Size:   440
Md5:    3a1c814b777881871414f1b210675f46
Sha1:   4cd352c84957913e442b0c40d8d98fc97436bc22
Sha256: 7cb4aaf57e4f061489d08a33c6287eeb005e0c6532fc5e6f8efa52f202ff34ef
                                        
                                            GET /qiehuan/3.jpg HTTP/1.1 
Host: gyyfptj.ynshangji.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gyyfptj.ynshangji.com/liuyan/
Cookie: ASPSESSIONIDSQRDDTAD=KMACODODBKLKKLNNMNGPPBBM; safedog-flow-item=EDEAA1AD2E5FC0ED1F6E2EF428919151

                                         
                                         116.55.242.246
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: max-age=2592000
Content-Length: 109311
Last-Modified: Wed, 01 Mar 2017 14:14:19 GMT
Accept-Ranges: bytes
Etag: "49ed141e9692d21:0"
Server: IIS
X-Powered-By: WAF/2.0
Date: Sun, 13 Aug 2017 03:37:30 GMT


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   109311
Md5:    1670c2263666e08664a3d7477cffd08b
Sha1:   647c55a7cd9b6e3ddd41c0f66526f7259a2a916c
Sha256: e91efc0e1da31beba80ea686a8ba3eb3829b33ea8c4006c6195970b836298e32
                                        
                                            GET /qiehuan/2.jpg HTTP/1.1 
Host: gyyfptj.ynshangji.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gyyfptj.ynshangji.com/liuyan/
Cookie: ASPSESSIONIDSQRDDTAD=KMACODODBKLKKLNNMNGPPBBM; safedog-flow-item=EDEAA1AD2E5FC0ED1F6E2EF428919151

                                         
                                         116.55.242.246
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: max-age=2592000
Content-Length: 94111
Last-Modified: Wed, 01 Mar 2017 14:14:19 GMT
Accept-Ranges: bytes
Etag: "a94e171e9692d21:0"
Server: IIS
X-Powered-By: WAF/2.0
Date: Sun, 13 Aug 2017 03:37:30 GMT


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   94111
Md5:    1d770980c1728852d363709ede9d955e
Sha1:   2f4bc50f37b4e303463d328e90437d36867a7ca6
Sha256: 3fb0cd54ec462126dcda680b9c4a21c3681da14a87b27234c3179d7b59d91d3f
                                        
                                            GET /stat.php?id=2290596&web_id=2290596 HTTP/1.1 
Host: s15.cnzz.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gyyfptj.ynshangji.com/liuyan/

                                         
                                         223.82.136.219
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: Tengine
Content-Length: 10984
Connection: keep-alive
Date: Sun, 13 Aug 2017 02:25:22 GMT
Last-Modified: Sun, 13 Aug 2017 02:25:22 GMT
Cache-Control: max-age=5400,s-maxage=5400
Via: cache10.l2et2-1[0,200-0,H], cache14.l2et2-1[3,0], kunlun10.cn107[0,200-0,H], kunlun4.cn107[1,0]
Age: 4399
X-Cache: HIT TCP_MEM_HIT dirn:12:127861884
X-Swift-SaveTime: Sun, 13 Aug 2017 02:50:00 GMT
X-Swift-CacheTime: 3922
Timing-Allow-Origin: *
EagleId: 78cbd79a15025955215147772e


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   10984
Md5:    60a8eaa0419699901c87bde038f5ca33
Sha1:   347ce2535451397e60951088c3b8b2e1d2535d09
Sha256: 5cfe82e5a4ef511176ef9eb931d6854cde4153ebc7d213f3db500584098cc90f
                                        
                                            GET /pa?p=1:3397495403:9 HTTP/1.1 
Host: wpa.qq.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gyyfptj.ynshangji.com/liuyan/

                                         
                                         58.251.100.24
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Date: Sun, 13 Aug 2017 03:38:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Server: tws
Location: http://pub.idqqimg.com/qconn/wpa/button/button_old_91.gif
Pragma: no-cache
Cache-Control: no-cache; must-revalidate


--- Additional Info ---
                                        
                                            GET /qiehuan/js.js HTTP/1.1 
Host: gyyfptj.ynshangji.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gyyfptj.ynshangji.com/liuyan/
Cookie: ASPSESSIONIDSQRDDTAD=KMACODODBKLKKLNNMNGPPBBM; safedog-flow-item=EDEAA1AD2E5FC0ED1F6E2EF428919151

                                         
                                         116.55.242.246
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Cache-Control: max-age=2592000
Content-Length: 1831
Content-Encoding: gzip
Last-Modified: Wed, 01 Mar 2017 14:14:19 GMT
Accept-Ranges: bytes
Etag: "80afce1d9692d21:0"
Vary: Accept-Encoding
Server: IIS
X-Powered-By: WAF/2.0
Date: Sun, 13 Aug 2017 03:37:33 GMT


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), max speed
Size:   1831
Md5:    7457a3cc638539a87e7c68470434d803
Sha1:   bff9c487767e332aedd9a9b45554ed4fb019baf9
Sha256: 50972f02a493063f8529920d5c84c900b2117514961471c4d7a4dbe69a5289e8
                                        
                                            GET /skin/1/title_bg.gif HTTP/1.1 
Host: gyyfptj.ynshangji.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gyyfptj.ynshangji.com/skin/1/style.css
Cookie: ASPSESSIONIDSQRDDTAD=KMACODODBKLKKLNNMNGPPBBM; safedog-flow-item=EDEAA1AD2E5FC0ED1F6E2EF428919151; __cfduid=df05e428d74139a76a6ddab410d06296e1502595518

                                         
                                         116.55.242.246
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: max-age=2592000
Content-Length: 1272
Last-Modified: Wed, 22 Feb 2017 08:38:33 GMT
Accept-Ranges: bytes
Etag: "1ca483de78cd21:0"
Server: IIS
X-Powered-By: WAF/2.0
Date: Sun, 13 Aug 2017 03:37:33 GMT


--- Additional Info ---
Magic:  GIF image data, version 89a, 740 x 28
Size:   1272
Md5:    b059db7d17b511696ebb1675d08a8cad
Sha1:   8895f2896b106445ec0e899e8e9941f152c717fc
Sha256: 28c1243ece061e276c84697c274abf0c10263d55d447165a8329c684b7d76b35
                                        
                                            GET /images/bt_submit1.gif HTTP/1.1 
Host: www.ynshangji.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gyyfptj.ynshangji.com/liuyan/
Cookie: safedog-flow-item=EDEAA1AD2E5FC0ED1F6E2EF428919151; __cfduid=df05e428d74139a76a6ddab410d06296e1502595518

                                         
                                         58.211.137.24
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Sun, 13 Aug 2017 03:38:42 GMT
Content-Length: 1552
Connection: keep-alive
Cache-Control: public, max-age=2592000
Last-Modified: Sat, 07 Mar 2015 10:55:25 GMT
Etag: "74e89337c558d01:0"
X-Powered-By: ASP.NET
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Tue, 12 Sep 2017 03:38:42 GMT
Accept-Ranges: bytes
Server: yunjiasu-nginx
CF-RAY: 38d8a4a001c34370-SZV


--- Additional Info ---
Magic:  GIF image data, version 89a, 92 x 25
Size:   1552
Md5:    1f6b90826ee69fd06d3502e8a540da08
Sha1:   ddf6beb4ce3c64f33a30bba7c3473f6efb4fd1fe
Sha256: d95f75c68ac9c78cad66040f95e1b82f1ecf4dfa9ffd2dedde5e899fdd0d33c7
                                        
                                            GET /pa?p=1:3397495403:41 HTTP/1.1 
Host: wpa.qq.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gyyfptj.ynshangji.com/liuyan/

                                         
                                         58.251.100.24
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Date: Sun, 13 Aug 2017 03:38:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Server: tws
Location: http://pub.idqqimg.com/qconn/wpa/button/button_11.gif
Pragma: no-cache
Cache-Control: no-cache; must-revalidate


--- Additional Info ---
                                        
                                            GET /qconn/wpa/button/button_old_91.gif HTTP/1.1 
Host: pub.idqqimg.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gyyfptj.ynshangji.com/liuyan/

                                         
                                         203.205.158.37
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: X2S_Platform
Connection: keep-alive
Date: Sun, 13 Aug 2017 03:38:42 GMT
Cache-Control: max-age=259200
Expires: Wed, 16 Aug 2017 03:38:42 GMT
Last-Modified: Sat, 08 Apr 2017 19:13:13 GMT
Content-Length: 1434
X-NWS-LOG-UUID: 471d4126-c8a8-43dc-9f45-1b473513b2a5 5b2e8d0495ca8041b0c26b81ab34cc0e
server_ip: 203.205.158.37
Keep-Alive: timeout=60
Vary: Origin
X-Cache-Lookup: Hit From Disktank


--- Additional Info ---
Magic:  GIF image data, version 89a, 57 x 16
Size:   1434
Md5:    ab891ac6df90ec59f774ebfab0c01754
Sha1:   aed38450fb8d9cab1fbc56d5ba12d1d28dda9e10
Sha256: 8e89b9d51ea2979f1219047b21546e26ad487616c10816b04f0886e4a3bca191
                                        
                                            GET /qconn/wpa/button/button_11.gif HTTP/1.1 
Host: pub.idqqimg.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gyyfptj.ynshangji.com/liuyan/

                                         
                                         203.205.158.37
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: X2S_Platform
Connection: keep-alive
Date: Sun, 13 Aug 2017 03:38:42 GMT
Cache-Control: max-age=259200
Expires: Wed, 16 Aug 2017 03:38:42 GMT
Last-Modified: Sat, 08 Apr 2017 19:13:18 GMT
Content-Length: 3327
X-NWS-LOG-UUID: d4756515-a97a-41b1-a1b7-b1285fca32ce 5b2e8d0495ca8041b0c26b81ab34cc0e
server_ip: 203.205.158.37
Keep-Alive: timeout=60
Vary: Origin
X-Cache-Lookup: Hit From Disktank


--- Additional Info ---
Magic:  GIF image data, version 89a, 77 x 22
Size:   3327
Md5:    1b93c781a53beda815e80a84d1489a84
Sha1:   d8309f9efda40bf22890f09ad7d306dd5970853b
Sha256: 8bf0c34a65b26d415deffefe27bbe423b29d990af2ab18b63d9cfa616df7ec07
                                        
                                            GET /qiehuan/4.jpg HTTP/1.1 
Host: gyyfptj.ynshangji.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gyyfptj.ynshangji.com/liuyan/
Cookie: ASPSESSIONIDSQRDDTAD=KMACODODBKLKKLNNMNGPPBBM; safedog-flow-item=EDEAA1AD2E5FC0ED1F6E2EF428919151

                                         
                                         116.55.242.246
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: max-age=2592000
Content-Length: 95180
Last-Modified: Wed, 01 Mar 2017 14:14:19 GMT
Accept-Ranges: bytes
Etag: "49ed141e9692d21:0"
Server: IIS
X-Powered-By: WAF/2.0
Date: Sun, 13 Aug 2017 03:37:30 GMT


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   95180
Md5:    649fe5eba821559e59ccce6fa36b2452
Sha1:   343f75f73a0924a3cf665016894605f2e34b18e1
Sha256: 23f9d0464904ee1ecc66c09275a2ab14df90db0ecedb8110f75ee02851a508e6
                                        
                                            GET /pa?p=1:3397495403:9 HTTP/1.1 
Host: wpa.qq.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gyyfptj.ynshangji.com/liuyan/

                                         
                                         58.251.100.24
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Date: Sun, 13 Aug 2017 03:38:43 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Server: tws
Location: http://pub.idqqimg.com/qconn/wpa/button/button_old_91.gif
Pragma: no-cache
Cache-Control: no-cache; must-revalidate


--- Additional Info ---
                                        
                                            GET /liuyan/ HTTP/1.1 
Host: gyyfptj.ynshangji.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         116.55.242.246
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Cache-Control: private
Content-Encoding: gzip
Vary: Accept-Encoding
Set-Cookie: ASPSESSIONIDSQRDDTAD=KMACODODBKLKKLNNMNGPPBBM; path=/ safedog-flow-item=EDEAA1AD2E5FC0ED1F6E2EF428919151; expires=Dec, 13-Aug-2017 15:59:29 GMT; domain=ynshangji.com; path=/
Server: IIS
X-Powered-By: WAF/2.0
Date: Sun, 13 Aug 2017 03:37:28 GMT
Connection: close


--- Additional Info ---
                                        
                                            GET /2551716.js HTTP/1.1 
Host: js.users.51.la
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gyyfptj.ynshangji.com/liuyan/

                                         
                                         0.0.0.0
                                        


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /2551716.js HTTP/1.1 
Host: js.users.51.la
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://gyyfptj.ynshangji.com/liuyan/

                                         
                                         42.236.74.213
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Encoding: gzip
Last-Modified: Tue, 07 Mar 2017 05:44:18 GMT
Accept-Ranges: bytes
Etag: "911fcbdc597d21:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
Date: Sun, 13 Aug 2017 03:39:18 GMT
Content-Length: 1003


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), max speed
Size:   1003
Md5:    db2ffdb191c9af3238adb7abb61259df
Sha1:   b38a3cc0586e6c8828503105ffbce86e7b1e8835
Sha256: fb2b9aebf854d01948ebbd4c2857650d51a7a4cf4e3c075d8953e3e9800aca8c

Alerts:
  Blacklists:
    - fortinet: Malware