Overview

URL hmzays.com/
IP23.245.158.174
ASNAS18978 Enzu Inc
Location United States
Report completed2019-02-11 15:01:27 CET
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2019-02-11 2 hmzays.com/ Malware
2019-02-11 2 hmzays.com/skin/js/jquery.superslide.js Malware
2019-02-11 2 hmzays.com/skin/js/qiehuan.js Malware
2019-02-11 2 hmzays.com/skin/js/flickerplate.min.js Malware
2019-02-11 2 hmzays.com/skin/js/modernizr-custom-v2.7.1.min.js Malware
2019-02-11 2 hmzays.com/skin/js/jquery.blockui.js Malware
2019-02-11 2 hmzays.com/skin/js/jquery.hhservice.js Malware
2019-02-11 2 hmzays.com/wobo.js Malware
2019-02-11 2 hmzays.com/skin/js/menu.js Malware
2019-02-11 2 hmzays.com/skin/js/validform_v5.3.2_min.js Malware
2019-02-11 2 hmzays.com/skin/js/jquery1.7.2.js Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

No other reports on IP: 23.245.158.174


Last 10 reports on ASN: AS18978 Enzu Inc

Date UQ / IDS / BL URL IP
2019-06-27 13:07:33 +0200
0 - 0 - 0 www.yyse.com.cn 104.203.114.140
2019-06-27 13:05:11 +0200
0 - 0 - 0 www.yyse.com.cn/5473347.html 104.203.114.140
2019-06-25 05:10:54 +0200
0 - 1 - 0 accelcheck.com 23.88.207.178
2019-06-18 22:41:45 +0200
0 - 0 - 0 d4rkbbs.site/ 23.89.49.145
2019-06-13 03:26:41 +0200
1 - 0 - 0 musiconline.mrface.com 172.246.160.83
2019-06-13 03:19:41 +0200
1 - 0 - 0 musiconline.mrface.com 172.246.160.83
2019-06-12 23:34:58 +0200
0 - 0 - 0 198.71.81.66 198.71.81.66
2019-06-11 13:35:09 +0200
1 - 0 - 0 musiconline.mrface.com 172.246.160.83
2019-06-11 13:35:07 +0200
1 - 0 - 0 musiconline.mrface.com 172.246.160.83
2019-06-11 13:35:06 +0200
1 - 0 - 0 musiconline.mrface.com 172.246.160.83

No other reports on domain: hmzays.com



JavaScript

Executed Scripts (13)


Executed Evals (1)

#1 JavaScript::Eval (size: 222, repeated: 1) - SHA256: d69dc29b51840245d00077a0b2b3bb16409290a101372a787f9276b59348edf7

                                        document.write('<center id="showcloneshengxiaon"><iframe scrolling="no" marginheight=0 marginwidth=0  frameborder="0" width="100%" width="1400" height="1520" src="http://103.79.187.29:8899/?p=3224634"></iframe></center>');
                                    

Executed Writes (4)

#1 JavaScript::Write (size: 107, repeated: 2) - SHA256: 50d6bb73ff0fde3172f83f215d5a04ef5edfbf1f68199fe069271f36caa3a6b2

                                        < a href = "http://countt.51yes.com/index.aspx?id=28296945"
target = _blank title = "51YESQ�ߡ��" > A� ߡ < /a>
                                    

#2 JavaScript::Write (size: 203, repeated: 1) - SHA256: 453947ea7488616ee3c5f8ad3e3b177f6dd4c0b5d4650218147e565ee809d68c

                                        < center id = "showcloneshengxiaon" > < iframe scrolling = "no"
marginheight = 0 marginwidth = 0 frameborder = "0"
width = "100%"
width = "1400"
height = "1520"
src = "http://103.79.187.29:8899/?p=3224634" > < /iframe></center >
                                    

#3 JavaScript::Write (size: 378, repeated: 2) - SHA256: ec1f53d15e1498d46d06ecf142e3268ed7d601884e629c1a0c4ac9fb81ae02fb

                                        < iframe MARGINWIDTH = 0 MARGINHEIGHT = 0 HSPACE = 0 VSPACE = 0 FRAMEBORDER = 0 SCROLLING = no src = http: //count2.51yes.com/sa.htm?id=28296945&refe=&location=http%3A//hmzays.com/&color=24x&resolution=1176x885&returning=0&language=undefined&ua=Mozilla/5.0%20%28Windows%3B%20U%3B%20Windows%20NT%206.1%3B%20en-US%3B%20rv%3A1.9.2.13%29%20Gecko/20101203%20Firefox/3.6.13 height=0 width=0></iframe>
                                    

#4 JavaScript::Write (size: 117, repeated: 1) - SHA256: 1cd144ec99220e1da7d4dd63ce62872426075c2ecdaddb5579d45fa345e0de6e

                                        < script language = "javascript"
src = "http://count2.51yes.com/click.aspx?id=28296945&logo=12"
charset = "gb2312" > < /script>
                                    


HTTP Transactions (50)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: hmzays.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         23.245.158.174
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Content-Encoding: gzip
Last-Modified: Mon, 31 Dec 2018 06:33:44 GMT
Accept-Ranges: bytes
Etag: "0d4d4c6d2a0d41:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Mon, 11 Feb 2019 14:00:36 GMT
Content-Length: 3390


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), max speed
Size:   3390
Md5:    d6cf223c4f7cbbe89aca8158e28f4e14
Sha1:   56e4ead99918fff9cbee8ff20728a1a821d55a45
Sha256: cfba0ac2f531ada4362c451ce00fe4e7e64ddaa63888515b75ba0e18775a1148

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /skin/js/jquery.superslide.js HTTP/1.1 
Host: hmzays.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hmzays.com/

                                         
                                         23.245.158.174
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Encoding: gzip
Last-Modified: Mon, 26 Mar 2018 06:24:46 GMT
Accept-Ranges: bytes
Etag: "08b7e22cbc4d31:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Mon, 11 Feb 2019 14:00:37 GMT
Content-Length: 2525


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), max speed
Size:   2525
Md5:    2998f44c931d1c377bf2023f57e10c24
Sha1:   1194e3e1faac77dc165328f4d1749bd10d927e8e
Sha256: f262b8536e99f84d8cb827f1dfba85e046ee11d3359142bd6fc7abf596d3fda1

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /skin/js/qiehuan.js HTTP/1.1 
Host: hmzays.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hmzays.com/

                                         
                                         23.245.158.174
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Encoding: gzip
Last-Modified: Wed, 28 Mar 2018 14:46:37 GMT
Accept-Ranges: bytes
Etag: "804e092a3c6d31:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Mon, 11 Feb 2019 14:00:37 GMT
Content-Length: 1205


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), max speed
Size:   1205
Md5:    9d871954485a326e01c46fb14c91c049
Sha1:   ba8595d7954a0d78ad2bd047d114551f3511e1d0
Sha256: cd5e1a0be89efd25e07521aa5f5031690f37fefa6fa2d7fba361b5c4e62030c2

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /skin/js/flickerplate.min.js HTTP/1.1 
Host: hmzays.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hmzays.com/

                                         
                                         23.245.158.174
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Encoding: gzip
Last-Modified: Mon, 26 Mar 2018 06:24:48 GMT
Accept-Ranges: bytes
Etag: "0b8af23cbc4d31:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Mon, 11 Feb 2019 14:00:37 GMT
Content-Length: 1595


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), max speed
Size:   1595
Md5:    31a248d4dd012503f5205e8b7b5eb913
Sha1:   d4d36df67c194af337685c30257ec040a62d1d2c
Sha256: 0aeb3ae8a19b034fda0b8514348beefa9b50688607726bc6e3bd7ca3d0893851

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /skin/js/modernizr-custom-v2.7.1.min.js HTTP/1.1 
Host: hmzays.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hmzays.com/

                                         
                                         23.245.158.174
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Encoding: gzip
Last-Modified: Mon, 26 Mar 2018 06:24:47 GMT
Accept-Ranges: bytes
Etag: "80211723cbc4d31:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Mon, 11 Feb 2019 14:00:37 GMT
Content-Length: 4635


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), max speed
Size:   4635
Md5:    0afef435f0c9585e8ee133001e5ce0e8
Sha1:   987f920394120be4ad5d6c956dd1c036ce157543
Sha256: 4de034f3f871d1c2428ca9f42431acf303482d1cd95eb3c394ec85c5106c0ca5

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /skin/js/jquery.blockui.js HTTP/1.1 
Host: hmzays.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hmzays.com/

                                         
                                         23.245.158.174
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Encoding: gzip
Last-Modified: Mon, 26 Mar 2018 06:24:48 GMT
Accept-Ranges: bytes
Etag: "0b8af23cbc4d31:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Mon, 11 Feb 2019 14:00:37 GMT
Content-Length: 5693


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), max speed
Size:   5693
Md5:    98df0ce22e9f914671782d4bca194ca2
Sha1:   b08208152faf30132abac13b687798bab2dd2ccd
Sha256: 461302cb7d7230b8ef4abdfed4b32834f9fb65cd87b9e4bcc6f9dbd346e01707

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /skin/js/jquery.hhservice.js HTTP/1.1 
Host: hmzays.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hmzays.com/

                                         
                                         23.245.158.174
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Last-Modified: Mon, 26 Mar 2018 06:24:48 GMT
Accept-Ranges: bytes
Etag: "5458b823cbc4d31:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Mon, 11 Feb 2019 14:00:37 GMT
Content-Length: 2283


--- Additional Info ---
Magic:  UTF-8 Unicode C program text, with CRLF line terminators
Size:   2283
Md5:    a3215d119baf0e39331153ffcd224502
Sha1:   7cc6ae0e58a06fa2bbc4c337abe977bcd90094af
Sha256: 7b0e271ded0b46d0934adc41c6dcc118f897762ae7252c42d5f457cb4bad819c

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wobo.js HTTP/1.1 
Host: hmzays.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hmzays.com/

                                         
                                         23.245.158.174
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Last-Modified: Mon, 10 Dec 2018 06:49:45 GMT
Accept-Ranges: bytes
Etag: "958d6d895490d41:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Mon, 11 Feb 2019 14:00:37 GMT
Content-Length: 1228


--- Additional Info ---
Magic:  ASCII C++ program text, with CRLF line terminators
Size:   1228
Md5:    f8cf4aea0251400d5d6df7a3b4716819
Sha1:   978e57223a00d6199d981b67f840db1bd8ca2c81
Sha256: 5f717a1c4a799a3f9ea069012933bec8dcfc7e3444bbe19eacdd89a279d1e8d5

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /skin/js/menu.js HTTP/1.1 
Host: hmzays.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hmzays.com/

                                         
                                         23.245.158.174
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Encoding: gzip
Last-Modified: Mon, 26 Mar 2018 06:24:45 GMT
Accept-Ranges: bytes
Etag: "80f4e521cbc4d31:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Mon, 11 Feb 2019 14:00:37 GMT
Content-Length: 1228


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), max speed
Size:   1228
Md5:    43d5d1fdbb3cc11766d5159c83a89804
Sha1:   49fb1ce0477f25fc5986ea73138bb26acad6b55a
Sha256: 7c5bd2aeec2cf91a0deea28929b978b458e023fb8dbf00f293fc0397ff3a2f17

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /skin/js/validform_v5.3.2_min.js HTTP/1.1 
Host: hmzays.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hmzays.com/

                                         
                                         23.245.158.174
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Encoding: gzip
Last-Modified: Mon, 26 Mar 2018 06:24:47 GMT
Accept-Ranges: bytes
Etag: "80211723cbc4d31:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Mon, 11 Feb 2019 14:00:37 GMT
Content-Length: 6333


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), max speed
Size:   6333
Md5:    29c631cf435c13e6627dffd9ce590406
Sha1:   b34f66e8730e057d564dc73957800bb5db96ef74
Sha256: 14cc4509c12c5572a244d4c6771f9167919616d2ad5c533c2e63d15305633b27

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /uploads/allimg/170914/1_0914105F56058.jpg HTTP/1.1 
Host: hmzays.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hmzays.com/

                                         
                                         23.245.158.174
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Mon, 11 Feb 2019 14:00:37 GMT
Content-Length: 1163


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1163
Md5:    8363acaeab9cbb099b59b78a44127ca6
Sha1:   aef448ce5500e3734059ec285cf6ec0b547075f2
Sha256: 9b342ae7f25d65bdb817d8c995f3211ac398e41575fc5d149d994c1dcb008f0a
                                        
                                            GET /skin/css/css.css HTTP/1.1 
Host: hmzays.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hmzays.com/

                                         
                                         23.245.158.174
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Last-Modified: Thu, 29 Mar 2018 15:33:03 GMT
Accept-Ranges: bytes
Etag: "6515663a73c7d31:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Mon, 11 Feb 2019 14:00:37 GMT
Content-Length: 17761


--- Additional Info ---
Magic:  UTF-8 Unicode (with BOM) C program text, with CRLF line terminators
Size:   17761
Md5:    85762ff1988ecdf02b9e7be7b427ea77
Sha1:   df9299f34bb48f628f7586ffa57d9f256f4ef0d5
Sha256: 92282e4ef6a857b042c61ee2e7ac202b4dc3350aff2bcdb1ed9aa492b6925185
                                        
                                            GET /uploads/allimg/170914/1_0914105A54L7.jpg HTTP/1.1 
Host: hmzays.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hmzays.com/

                                         
                                         23.245.158.174
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Mon, 11 Feb 2019 14:00:37 GMT
Content-Length: 1163


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1163
Md5:    8363acaeab9cbb099b59b78a44127ca6
Sha1:   aef448ce5500e3734059ec285cf6ec0b547075f2
Sha256: 9b342ae7f25d65bdb817d8c995f3211ac398e41575fc5d149d994c1dcb008f0a
                                        
                                            GET /uploads/allimg/170914/1-1F914105622936-lp.jpg HTTP/1.1 
Host: hmzays.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hmzays.com/

                                         
                                         23.245.158.174
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Mon, 11 Feb 2019 14:00:37 GMT
Content-Length: 1163


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1163
Md5:    8363acaeab9cbb099b59b78a44127ca6
Sha1:   aef448ce5500e3734059ec285cf6ec0b547075f2
Sha256: 9b342ae7f25d65bdb817d8c995f3211ac398e41575fc5d149d994c1dcb008f0a
                                        
                                            GET /skin/images/bg_flkr.png HTTP/1.1 
Host: hmzays.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hmzays.com/

                                         
                                         23.245.158.174
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Mon, 26 Mar 2018 06:24:48 GMT
Accept-Ranges: bytes
Etag: "6f37bf23cbc4d31:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Mon, 11 Feb 2019 14:00:37 GMT
Content-Length: 5036


--- Additional Info ---
Magic:  PNG image, 261 x 59, 8-bit/color RGB, non-interlaced
Size:   5036
Md5:    971d0b1faa8d92ad87dc624a28066d8c
Sha1:   b6abc486d758530850639ca052455f9f343f890f
Sha256: 6c13e5682843529e6163f0b9c716b23e0c431dcbe848c872a3a71bef1abf8c60
                                        
                                            GET /images/defaultpic.gif HTTP/1.1 
Host: hmzays.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hmzays.com/

                                         
                                         23.245.158.174
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Last-Modified: Fri, 12 Dec 2014 07:44:10 GMT
Accept-Ranges: bytes
Etag: "0415b6adf15d01:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Mon, 11 Feb 2019 14:00:37 GMT
Content-Length: 2707


--- Additional Info ---
Magic:  GIF image data, version 89a, 150 x 114
Size:   2707
Md5:    b69aaeb4997159c3dc0e68538ac3ac54
Sha1:   600b8c3d4142e6fbf1fcd6ecf4ed84340e2aedea
Sha256: 8bae2404bac6edcdc2e9e22c2e38aabb741c6536f63f654b34fef94d1e6e37dd
                                        
                                            GET /skin/js/jquery1.7.2.js HTTP/1.1 
Host: hmzays.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hmzays.com/

                                         
                                         23.245.158.174
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Encoding: gzip
Last-Modified: Mon, 26 Mar 2018 06:24:45 GMT
Accept-Ranges: bytes
Etag: "80f4e521cbc4d31:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Mon, 11 Feb 2019 14:00:37 GMT
Content-Length: 33073


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), max speed
Size:   33073
Md5:    50e141d7e00d0b7165c93984708f65dc
Sha1:   034cd7b0bd5b37201482d8fdbef23e4a7ff22c14
Sha256: 0f3897c7288e04b08089244fbc2084fd7ba8e64f7c83eb0272d1f0565a65e6ef

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /skin/images/tese.png HTTP/1.1 
Host: hmzays.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hmzays.com/

                                         
                                         23.245.158.174
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Wed, 28 Mar 2018 14:29:43 GMT
Accept-Ranges: bytes
Etag: "d6b3c436a1c6d31:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Mon, 11 Feb 2019 14:00:37 GMT
Content-Length: 46158


--- Additional Info ---
Magic:  PNG image, 252 x 100, 8-bit/color RGBA, non-interlaced
Size:   46158
Md5:    22e02051719f68864f64c4e433164e3a
Sha1:   55f5988e6393e00a51083c8bd54a9a17966fa0bf
Sha256: e43d46e0e0704a70c991ba7e7bc0ce136dcd3d1be58949e359a5197600226c77
                                        
                                            GET /skin/images/rongyu.png HTTP/1.1 
Host: hmzays.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hmzays.com/

                                         
                                         23.245.158.174
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Wed, 28 Mar 2018 14:30:55 GMT
Accept-Ranges: bytes
Etag: "ef77d361a1c6d31:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Mon, 11 Feb 2019 14:00:37 GMT
Content-Length: 44451


--- Additional Info ---
Magic:  PNG image, 252 x 100, 8-bit/color RGBA, non-interlaced
Size:   44451
Md5:    8591ade879e3fcaf008840c8d247c5fd
Sha1:   366ee4f5d465ef732b06fb31730d12c6ce1d3c6a
Sha256: 2cebad2bb2ad0d76639151c1b5c4c9022f1f68305eb75ee9ca70e49e511012cc
                                        
                                            GET /skin/images/ewm.png HTTP/1.1 
Host: hmzays.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hmzays.com/

                                         
                                         23.245.158.174
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Wed, 28 Mar 2018 15:10:04 GMT
Accept-Ranges: bytes
Etag: "28d9f0d9a6c6d31:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Mon, 11 Feb 2019 14:00:37 GMT
Content-Length: 31980


--- Additional Info ---
Magic:  PNG image, 258 x 258, 8-bit/color RGB, non-interlaced
Size:   31980
Md5:    6c19d1c986d021b01e32dd387a4322f2
Sha1:   b6722e1d7d07b08a3bad9db430506cd9c44d3819
Sha256: 81093d2d5be326c40da6569f6571518e1641c765c5844959cfc26343a27a0723
                                        
                                            GET /skin/images/gsjj.png HTTP/1.1 
Host: hmzays.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hmzays.com/

                                         
                                         23.245.158.174
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Mon, 26 Mar 2018 06:55:46 GMT
Accept-Ranges: bytes
Etag: "cc7b2977cfc4d31:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Mon, 11 Feb 2019 14:00:37 GMT
Content-Length: 151310


--- Additional Info ---
Magic:  PNG image, 386 x 232, 8-bit/color RGBA, non-interlaced
Size:   151310
Md5:    eb99d64ff16993743b92af88376961a5
Sha1:   c5844d5f786ea7dcf668c8eb1fe4f106611ce5c3
Sha256: 51c72491a2a30a63236e39bb3bacdbf62fd7f992ba2a51d746efc21a9fbe53bc
                                        
                                            POST /gsorganizationvalsha2g2 HTTP/1.1 
Host: ocsp2.globalsign.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 111
Content-Type: application/ocsp-request

                                         
                                         104.18.21.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 11 Feb 2019 14:00:41 GMT
Content-Length: 1570
Connection: keep-alive
Set-Cookie: __cfduid=d66de2d9f383244a1b7776a9a3257f64d1549893641; expires=Tue, 11-Feb-20 14:00:41 GMT; path=/; domain=.globalsign.com; HttpOnly
Last-Modified: Mon, 11 Feb 2019 13:01:10 GMT
Expires: Fri, 15 Feb 2019 13:01:10 GMT
Etag: "f5eacc63118dc3c6613ef84beb3399a8219c9a61"
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4a7757dafc304273-OSL


--- Additional Info ---
Magic:  data
Size:   1570
Md5:    ec9114dba575b142dfab2d4c66cdcb3a
Sha1:   f5eacc63118dc3c6613ef84beb3399a8219c9a61
Sha256: d1b14bb456e00ef25eb0270861175bdfcaff425e6ebffab0356527c955809671
                                        
                                            GET /click.aspx?id=28296945&logo=12 HTTP/1.1 
Host: count2.51yes.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hmzays.com/

                                         
                                         58.215.76.202
HTTP/1.1 200 OK
Content-Type: text/html; charset=gb2312
                                        
Date: Mon, 11 Feb 2019 13:59:59 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 1.1.4322
Cache-Control: private
Content-Length: 1691


--- Additional Info ---
Magic:  ISO-8859 text, with very long lines, with CRLF line terminators
Size:   1691
Md5:    2eabd1bbaa47ccd1e56b9643e701ab2a
Sha1:   f93239fe198be0a7d78de5f95c22635d11c0828d
Sha256: 55b605ae3302a4d53bb82a6738cadee84c1e521c2927b8689096a87df4697d51
                                        
                                            GET /hm.js?5684e8f1df99172012fd308956129ea9 HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hmzays.com/

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 10566
Date: Mon, 11 Feb 2019 14:00:42 GMT
Etag: 85f69344246c7ff89fad05858e0fb650
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=3E5FA8EC1A9FB584; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max speed
Size:   10566
Md5:    8dbbe6bdbeb415a0ba0539aead417f8d
Sha1:   cacb4a4067892ec084ddc827a6201debdab75f45
Sha256: daab284a0d8d1a5d3402dc0ff0d50777352dbe44418ae7aee0f31c51b142cf7e
                                        
                                            GET /uploads/allimg/170914/1_0914105F56058.jpg HTTP/1.1 
Host: hmzays.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hmzays.com/
Cookie: Hm_lvt_5684e8f1df99172012fd308956129ea9=1549893643; Hm_lpvt_5684e8f1df99172012fd308956129ea9=1549893643; cck_lasttime=1549893643237; cck_count=0

                                         
                                         23.245.158.174
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Mon, 11 Feb 2019 14:00:41 GMT
Content-Length: 1163


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1163
Md5:    8363acaeab9cbb099b59b78a44127ca6
Sha1:   aef448ce5500e3734059ec285cf6ec0b547075f2
Sha256: 9b342ae7f25d65bdb817d8c995f3211ac398e41575fc5d149d994c1dcb008f0a
                                        
                                            GET /skin/images/qq2.png HTTP/1.1 
Host: hmzays.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hmzays.com/
Cookie: Hm_lvt_5684e8f1df99172012fd308956129ea9=1549893643; Hm_lpvt_5684e8f1df99172012fd308956129ea9=1549893643; cck_lasttime=1549893643237; cck_count=0

                                         
                                         23.245.158.174
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Mon, 26 Mar 2018 06:24:48 GMT
Accept-Ranges: bytes
Etag: "f36fd23cbc4d31:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Mon, 11 Feb 2019 14:00:41 GMT
Content-Length: 3019


--- Additional Info ---
Magic:  PNG image, 26 x 30, 8-bit/color RGBA, non-interlaced
Size:   3019
Md5:    c745a95a5c24473655b38c550a632266
Sha1:   4d998728c69b68d56ee4b9e66bfc59f66adf7a6a
Sha256: 9e603d01ae3e969d035947873142c19bd8e3c9a6b8ebab5afca967659ff90bb9
                                        
                                            GET /uploads/allimg/170914/1_0914105A54L7.jpg HTTP/1.1 
Host: hmzays.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hmzays.com/
Cookie: Hm_lvt_5684e8f1df99172012fd308956129ea9=1549893643; Hm_lpvt_5684e8f1df99172012fd308956129ea9=1549893643; cck_lasttime=1549893643237; cck_count=0

                                         
                                         23.245.158.174
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Mon, 11 Feb 2019 14:00:41 GMT
Content-Length: 1163


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1163
Md5:    8363acaeab9cbb099b59b78a44127ca6
Sha1:   aef448ce5500e3734059ec285cf6ec0b547075f2
Sha256: 9b342ae7f25d65bdb817d8c995f3211ac398e41575fc5d149d994c1dcb008f0a
                                        
                                            GET /uploads/allimg/170914/1-1F914105622936-lp.jpg HTTP/1.1 
Host: hmzays.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hmzays.com/
Cookie: Hm_lvt_5684e8f1df99172012fd308956129ea9=1549893643; Hm_lpvt_5684e8f1df99172012fd308956129ea9=1549893643; cck_lasttime=1549893643237; cck_count=0

                                         
                                         23.245.158.174
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Mon, 11 Feb 2019 14:00:41 GMT
Content-Length: 1163


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1163
Md5:    8363acaeab9cbb099b59b78a44127ca6
Sha1:   aef448ce5500e3734059ec285cf6ec0b547075f2
Sha256: 9b342ae7f25d65bdb817d8c995f3211ac398e41575fc5d149d994c1dcb008f0a
                                        
                                            GET /skin/images/qq1.png HTTP/1.1 
Host: hmzays.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hmzays.com/
Cookie: Hm_lvt_5684e8f1df99172012fd308956129ea9=1549893643; Hm_lpvt_5684e8f1df99172012fd308956129ea9=1549893643; cck_lasttime=1549893643237; cck_count=0

                                         
                                         23.245.158.174
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Mon, 26 Mar 2018 06:24:44 GMT
Accept-Ranges: bytes
Etag: "65774d21cbc4d31:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Mon, 11 Feb 2019 14:00:41 GMT
Content-Length: 2896


--- Additional Info ---
Magic:  PNG image, 25 x 28, 8-bit/color RGBA, non-interlaced
Size:   2896
Md5:    2921a4662a00fac19506531bb1dc97a8
Sha1:   c41dea97cb579107190acef93d6c92e2aedb016a
Sha256: 02d9ca80ddf8bfcb7e7fe769e7b440ff49f4a88c6483814f76482daab65571c7
                                        
                                            GET /skin/images/top.png HTTP/1.1 
Host: hmzays.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hmzays.com/
Cookie: Hm_lvt_5684e8f1df99172012fd308956129ea9=1549893643; Hm_lpvt_5684e8f1df99172012fd308956129ea9=1549893643; cck_lasttime=1549893643237; cck_count=0

                                         
                                         23.245.158.174
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Mon, 26 Mar 2018 06:24:44 GMT
Accept-Ranges: bytes
Etag: "47a67c21cbc4d31:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Mon, 11 Feb 2019 14:00:41 GMT
Content-Length: 2617


--- Additional Info ---
Magic:  PNG image, 98 x 98, 8-bit/color RGBA, non-interlaced
Size:   2617
Md5:    b65dcf0599ae37683f7e362e91703dd1
Sha1:   8cecfa4caae641acd9c168fc9b11e2ec18b73d99
Sha256: bf0d69bf6d9cd346de69eaeb25f4f44f300c3ce9bab30bcba767978f7f08f11f
                                        
                                            GET /skin/images/bg_f1rt.png HTTP/1.1 
Host: hmzays.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hmzays.com/skin/css/css.css
Cookie: Hm_lvt_5684e8f1df99172012fd308956129ea9=1549893643; Hm_lpvt_5684e8f1df99172012fd308956129ea9=1549893643; cck_lasttime=1549893643237; cck_count=0

                                         
                                         23.245.158.174
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Mon, 26 Mar 2018 06:24:48 GMT
Accept-Ranges: bytes
Etag: "85481224cbc4d31:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Mon, 11 Feb 2019 14:00:41 GMT
Content-Length: 2897


--- Additional Info ---
Magic:  PNG image, 148 x 101, 8-bit/color RGBA, non-interlaced
Size:   2897
Md5:    69f66a3b80d1fa70986d0893be4a8667
Sha1:   26045e53cdade198db2d56e26d74250393f7d371
Sha256: db4b14c1fcb02f202af542f9b742e0a5e25184be91dc04e58482717df8d105b0
                                        
                                            GET /skin/images/jj.png HTTP/1.1 
Host: hmzays.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hmzays.com/skin/css/css.css
Cookie: Hm_lvt_5684e8f1df99172012fd308956129ea9=1549893643; Hm_lpvt_5684e8f1df99172012fd308956129ea9=1549893643; cck_lasttime=1549893643237; cck_count=0

                                         
                                         23.245.158.174
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Mon, 26 Mar 2018 06:24:45 GMT
Accept-Ranges: bytes
Etag: "b17f021cbc4d31:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Mon, 11 Feb 2019 14:00:41 GMT
Content-Length: 2622


--- Additional Info ---
Magic:  PNG image, 163 x 106, 8-bit/color RGBA, non-interlaced
Size:   2622
Md5:    012da299f0ee914519d3269f8c0bff5d
Sha1:   e98d9ea6ab7ab33a43dce14d1a8181f576a6947d
Sha256: b04b02d55cb50b662b73f9487baab9c43d983f717df4947adf9cb0d3424e2e8a
                                        
                                            GET /skin/images/bg_f2t.png HTTP/1.1 
Host: hmzays.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hmzays.com/skin/css/css.css
Cookie: Hm_lvt_5684e8f1df99172012fd308956129ea9=1549893643; Hm_lpvt_5684e8f1df99172012fd308956129ea9=1549893643; cck_lasttime=1549893643237; cck_count=0

                                         
                                         23.245.158.174
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Mon, 26 Mar 2018 06:24:44 GMT
Accept-Ranges: bytes
Etag: "d82bbc21cbc4d31:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Mon, 11 Feb 2019 14:00:41 GMT
Content-Length: 926


--- Additional Info ---
Magic:  PNG image, 70 x 1, 8-bit/color RGB, non-interlaced
Size:   926
Md5:    cb84350c11956cf66399d1e72c4d4489
Sha1:   a1e7170aea139bf6d94522f4a181b2bdec8b8e23
Sha256: c94d95ebbed3380c4da051eeac631693d8092d4b3193e3f8ca80b6c001c30796
                                        
                                            GET /skin/images/bg_floor3.png HTTP/1.1 
Host: hmzays.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hmzays.com/skin/css/css.css
Cookie: Hm_lvt_5684e8f1df99172012fd308956129ea9=1549893643; Hm_lpvt_5684e8f1df99172012fd308956129ea9=1549893643; cck_lasttime=1549893643237; cck_count=0

                                         
                                         23.245.158.174
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Mon, 26 Mar 2018 06:24:47 GMT
Accept-Ranges: bytes
Etag: "2c6b4823cbc4d31:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Mon, 11 Feb 2019 14:00:41 GMT
Content-Length: 6485


--- Additional Info ---
Magic:  PNG image, 441 x 284, 8-bit/color RGBA, non-interlaced
Size:   6485
Md5:    6c8e814b38238981f43d95a45d8a8e00
Sha1:   5447b8a0396d0ca4ee80a54a98e18d6351c510d5
Sha256: 09f89677bd34b4cb7875237ff941c3d455828d0f9d2bd7dddfa7f4a383861b50
                                        
                                            GET /skin/images/logo.png HTTP/1.1 
Host: hmzays.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hmzays.com/skin/css/css.css
Cookie: Hm_lvt_5684e8f1df99172012fd308956129ea9=1549893643; Hm_lpvt_5684e8f1df99172012fd308956129ea9=1549893643; cck_lasttime=1549893643237; cck_count=0

                                         
                                         23.245.158.174
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Wed, 28 Mar 2018 15:13:20 GMT
Accept-Ranges: bytes
Etag: "239eb4ea7c6d31:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Mon, 11 Feb 2019 14:00:41 GMT
Content-Length: 14773


--- Additional Info ---
Magic:  PNG image, 330 x 159, 8-bit/color RGBA, non-interlaced
Size:   14773
Md5:    1cf3954b0d59ef2a503ba549e623857d
Sha1:   2ff1a48e0f7be7a81344fab7b1a046f60a0da959
Sha256: a965ebbe95bf012faf8fb958c10b37bcfba233d17b74889950d50c511c256568
                                        
                                            GET /skin/images/bg_f3t.png HTTP/1.1 
Host: hmzays.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hmzays.com/skin/css/css.css
Cookie: Hm_lvt_5684e8f1df99172012fd308956129ea9=1549893643; Hm_lpvt_5684e8f1df99172012fd308956129ea9=1549893643; cck_lasttime=1549893643237; cck_count=0

                                         
                                         23.245.158.174
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Mon, 26 Mar 2018 06:24:48 GMT
Accept-Ranges: bytes
Etag: "e742b24cbc4d31:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Mon, 11 Feb 2019 14:00:41 GMT
Content-Length: 925


--- Additional Info ---
Magic:  PNG image, 70 x 1, 8-bit/color RGB, non-interlaced
Size:   925
Md5:    67fb2050ea0531d784f24b0ddad8212f
Sha1:   838e51eb06ee523377bde062306a3ebbef0b11af
Sha256: d02ad0070c8b7817c7e7b19f4934aa49eca97b7286dda60667639faddc57c121
                                        
                                            GET /hm.gif?cc=0&ck=1&cl=24-bit&ds=1176x885&vl=754&et=0&fl=10.0&ja=1&ln=en-us&lo=0&rnd=626864258&si=5684e8f1df99172012fd308956129ea9&v=1.2.38&lv=1&ct=!!&tt=%E5%A8%81%E5%B0%BC%E6%96%AF%207908.com%2C%E6%89%8B%E6%9C%BA%E7%BD%91%E6%8A%95%E4%B8%8B%E8%BD%BD%2C%E6%BE%B3%E9%97%A8%E5%A8%81%E5%B0%BC%E6%96%AF%E4%BA%BA%E8%B5%8C%E5%9C%BA%E7%BA%BF%E4%B8%8A&sn=56428 HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hmzays.com/
Cookie: HMACCOUNT=3E5FA8EC1A9FB584

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Date: Mon, 11 Feb 2019 14:00:43 GMT
Pragma: no-cache
Server: apache
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /skin/images/bg_floor2.jpg HTTP/1.1 
Host: hmzays.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hmzays.com/skin/css/css.css
Cookie: Hm_lvt_5684e8f1df99172012fd308956129ea9=1549893643; Hm_lpvt_5684e8f1df99172012fd308956129ea9=1549893643; cck_lasttime=1549893643237; cck_count=0

                                         
                                         23.245.158.174
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Mon, 26 Mar 2018 06:24:45 GMT
Accept-Ranges: bytes
Etag: "7393ec21cbc4d31:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Mon, 11 Feb 2019 14:00:41 GMT
Content-Length: 48416


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   48416
Md5:    52d014933bff689d8d9a6b7c1e442a47
Sha1:   ab029ba0983f40a72d7c245bf745cd51bfa8f45c
Sha256: 60a4af9adb5ebaffd23eaf1b3ba0b0df0bb0ee2f0b1b767e21cf3bc600f80e1a
                                        
                                            GET /skin/images/pic08.jpg HTTP/1.1 
Host: hmzays.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hmzays.com/skin/css/css.css
Cookie: Hm_lvt_5684e8f1df99172012fd308956129ea9=1549893643; Hm_lpvt_5684e8f1df99172012fd308956129ea9=1549893643; cck_lasttime=1549893643237; cck_count=0

                                         
                                         23.245.158.174
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Mon, 26 Mar 2018 06:24:43 GMT
Accept-Ranges: bytes
Etag: "c2ad4521cbc4d31:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Mon, 11 Feb 2019 14:00:41 GMT
Content-Length: 16961


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   16961
Md5:    e4bc2a1e151047e9f3bda753898fdd3b
Sha1:   ef8a0f8e0a8a3d7fe8bded547dfa94f578a26010
Sha256: f08c358aba1776408354c62baafe64c998cb64e1437377bb1806d7d23d4484a7
                                        
                                            GET /skin/images/pic10.jpg HTTP/1.1 
Host: hmzays.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hmzays.com/skin/css/css.css
Cookie: Hm_lvt_5684e8f1df99172012fd308956129ea9=1549893643; Hm_lpvt_5684e8f1df99172012fd308956129ea9=1549893643; cck_lasttime=1549893643237; cck_count=0

                                         
                                         23.245.158.174
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Mon, 26 Mar 2018 06:24:48 GMT
Accept-Ranges: bytes
Etag: "ecd62e24cbc4d31:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Mon, 11 Feb 2019 14:00:41 GMT
Content-Length: 23611


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   23611
Md5:    9ef7348447b1d32b2ffa8b95966ea272
Sha1:   78c9c4bac6445b39f9c8922df0928e36514be32c
Sha256: 5f0292b2f722d71621c02a47c3567da4a8126092d8beaf3cceecb9aef97613ed
                                        
                                            GET /skin/images/pic09.jpg HTTP/1.1 
Host: hmzays.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hmzays.com/skin/css/css.css
Cookie: Hm_lvt_5684e8f1df99172012fd308956129ea9=1549893643; Hm_lpvt_5684e8f1df99172012fd308956129ea9=1549893643; cck_lasttime=1549893643237; cck_count=0

                                         
                                         23.245.158.174
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Mon, 26 Mar 2018 06:24:47 GMT
Accept-Ranges: bytes
Etag: "fc7a4023cbc4d31:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Mon, 11 Feb 2019 14:00:41 GMT
Content-Length: 23598


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   23598
Md5:    e5e9305d1da3dfff04a7073ad245e600
Sha1:   6a29194f76a817b460ab395940e8bc27521510c5
Sha256: dfb4855c48c06113ae44f2b2355efda4726c5f547e363543321b4f05df62e625
                                        
                                            GET /skin/images/bg_flkl.png HTTP/1.1 
Host: hmzays.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hmzays.com/skin/css/css.css
Cookie: Hm_lvt_5684e8f1df99172012fd308956129ea9=1549893643; Hm_lpvt_5684e8f1df99172012fd308956129ea9=1549893643; cck_lasttime=1549893643237; cck_count=0

                                         
                                         23.245.158.174
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Mon, 26 Mar 2018 07:42:57 GMT
Accept-Ranges: bytes
Etag: "a917eced6c4d31:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Mon, 11 Feb 2019 14:00:41 GMT
Content-Length: 12994


--- Additional Info ---
Magic:  PNG image, 540 x 67, 8-bit/color RGBA, non-interlaced
Size:   12994
Md5:    3bf4351f92ed0e1c48c63a966adea028
Sha1:   3216faaa188189f3d193850c59d56f1913d34276
Sha256: 96b49a8e8ce3459ecff510bb1966210890edb00216067c3b4627aa0fd0997b79
                                        
                                            GET /skin/images/bg_ewm.png HTTP/1.1 
Host: hmzays.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hmzays.com/skin/css/css.css
Cookie: Hm_lvt_5684e8f1df99172012fd308956129ea9=1549893643; Hm_lpvt_5684e8f1df99172012fd308956129ea9=1549893643; cck_lasttime=1549893643237; cck_count=0

                                         
                                         23.245.158.174
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Mon, 26 Mar 2018 06:24:48 GMT
Accept-Ranges: bytes
Etag: "a9bfd423cbc4d31:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Mon, 11 Feb 2019 14:00:41 GMT
Content-Length: 3516


--- Additional Info ---
Magic:  PNG image, 45 x 37, 8-bit/color RGBA, non-interlaced
Size:   3516
Md5:    21e2213caffb84318412cf47ef28242f
Sha1:   4af47840a80268354470adb4ef2ce0b96a9dba9a
Sha256: 78aac6ebf738c66ce312e661f69013701ffa33f4b8c9240a69c823725879ee17
                                        
                                            GET /skin/images/bg_ftr.png HTTP/1.1 
Host: hmzays.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hmzays.com/skin/css/css.css
Cookie: Hm_lvt_5684e8f1df99172012fd308956129ea9=1549893643; Hm_lpvt_5684e8f1df99172012fd308956129ea9=1549893643; cck_lasttime=1549893643237; cck_count=0

                                         
                                         23.245.158.174
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Mon, 26 Mar 2018 06:24:45 GMT
Accept-Ranges: bytes
Etag: "d71d7122cbc4d31:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Mon, 11 Feb 2019 14:00:41 GMT
Content-Length: 2275


--- Additional Info ---
Magic:  PNG image, 33 x 36, 8-bit/color RGBA, non-interlaced
Size:   2275
Md5:    21fe3fa3be37c530fc04895c034651a9
Sha1:   29440327b5b82eb001739ad64ed33c0f9aa3830d
Sha256: e65207792f9a895cfa03a0cfc63a009b89381ffa9dc0b09d2af46ea68aa2058d
                                        
                                            GET /skin/images/bg_footer.jpg HTTP/1.1 
Host: hmzays.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hmzays.com/skin/css/css.css
Cookie: Hm_lvt_5684e8f1df99172012fd308956129ea9=1549893643; Hm_lpvt_5684e8f1df99172012fd308956129ea9=1549893643; cck_lasttime=1549893643237; cck_count=0

                                         
                                         23.245.158.174
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Mon, 26 Mar 2018 06:24:46 GMT
Accept-Ranges: bytes
Etag: "dd4cf222cbc4d31:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Mon, 11 Feb 2019 14:00:41 GMT
Content-Length: 96272


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   96272
Md5:    5e2a826dbc52ae6a85ae01dc1a672608
Sha1:   e6cade6e832561015610b891a4cebbd9981fef42
Sha256: 0dc543fbbe753ef18c4e3c55d537a2334340348cbdbb193b51484849a92927d4
                                        
                                            GET /click.aspx?id=28296945&logo=12 HTTP/1.1 
Host: count2.51yes.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hmzays.com/

                                         
                                         58.215.76.202
HTTP/1.1 200 OK
Content-Type: text/html; charset=gb2312
                                        
Date: Mon, 11 Feb 2019 14:00:02 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 1.1.4322
Cache-Control: private
Content-Length: 1691


--- Additional Info ---
Magic:  ISO-8859 text, with very long lines, with CRLF line terminators
Size:   1691
Md5:    2eabd1bbaa47ccd1e56b9643e701ab2a
Sha1:   f93239fe198be0a7d78de5f95c22635d11c0828d
Sha256: 55b605ae3302a4d53bb82a6738cadee84c1e521c2927b8689096a87df4697d51
                                        
                                            GET /sa.htm?id=28296945&refe=&location=http%3A//hmzays.com/&color=24x&resolution=1176x885&returning=0&language=undefined&ua=Mozilla/5.0%20%28Windows%3B%20U%3B%20Windows%20NT%206.1%3B%20en-US%3B%20rv%3A1.9.2.13%29%20Gecko/20101203%20Firefox/3.6.13 HTTP/1.1 
Host: count2.51yes.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hmzays.com/

                                         
                                         58.215.76.202
HTTP/1.1 200 OK
                                        
Date: Mon, 11 Feb 2019 14:00:04 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 1.1.4322
Cache-Control: private
Content-Length: 0


--- Additional Info ---
                                        
                                            GET /sa.htm?id=28296945&refe=&location=http%3A//hmzays.com/&color=24x&resolution=1176x885&returning=0&language=undefined&ua=Mozilla/5.0%20%28Windows%3B%20U%3B%20Windows%20NT%206.1%3B%20en-US%3B%20rv%3A1.9.2.13%29%20Gecko/20101203%20Firefox/3.6.13 HTTP/1.1 
Host: count2.51yes.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hmzays.com/

                                         
                                         58.215.76.202
HTTP/1.1 200 OK
                                        
Date: Mon, 11 Feb 2019 14:00:04 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 1.1.4322
Cache-Control: private
Content-Length: 0


--- Additional Info ---
                                        
                                            GET /?p=3224634 HTTP/1.1 
Host: 103.79.187.29:8899
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://hmzays.com/

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: hmzays.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: Hm_lvt_5684e8f1df99172012fd308956129ea9=1549893643; Hm_lpvt_5684e8f1df99172012fd308956129ea9=1549893643; cck_lasttime=1549893643237; cck_count=0

                                         
                                         23.245.158.174
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Last-Modified: Fri, 16 Jan 2015 03:10:08 GMT
Accept-Ranges: bytes
Etag: "0689eee3931d01:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Mon, 11 Feb 2019 14:01:02 GMT
Content-Length: 1150


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon
Size:   1150
Md5:    92608d3fc94329c15c396a9e573e98ed
Sha1:   feb7d88d1e0e598a8505f78dbe61c96707f8e866
Sha256: fe80c58708c19cfce952c28ed0382b858582c108f32f436c67da3e5662efdd43