Overview

URL www.sinyotec.com/
IP104.223.149.199
ASNAS46573 Global Frag Networks
Location United States
Report completed2017-11-13 09:59:18 CET
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2017-11-13 2 www.sinyotec.com/yesads.js Malware
2017-11-13 2 www.sinyotec.com/ Malware
2017-11-13 2 www.sinyotec.com/tongji.js Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 104.223.149.199

Date UQ / IDS / BL URL IP
2017-11-03 08:50:39 +0100
0 - 0 - 2 www.sinyotec.com/ 104.223.149.199
2017-10-30 08:56:03 +0100
0 - 3 - 2 www.sinyotec.com/ 104.223.149.199
2017-10-27 02:56:33 +0200
0 - 0 - 10 www.ahchda1.com/ 104.223.149.199
2017-10-21 09:45:10 +0200
0 - 4 - 3 www.sinyotec.com/ 104.223.149.199
2017-10-17 18:53:31 +0200
0 - 4 - 3 sinyotec.com/html/gongying642.html 104.223.149.199
2017-10-17 18:53:32 +0200
0 - 4 - 3 sinyotec.com/html/gongying520.html 104.223.149.199
2017-10-17 18:53:32 +0200
0 - 4 - 3 sinyotec.com/html/gongying520.html 104.223.149.199
2017-10-17 18:53:27 +0200
0 - 4 - 3 sinyotec.com/html/news798.html 104.223.149.199
2017-10-17 18:11:54 +0200
0 - 3 - 2 www.sinyotec.com/html/news821.html 104.223.149.199
2017-10-12 17:25:28 +0200
0 - 4 - 3 www.sinyotec.com/ 104.223.149.199

Last 10 reports on ASN: AS46573 Global Frag Networks

Date UQ / IDS / BL URL IP
2017-11-24 00:46:26 +0100
0 - 4 - 13 ly707.com.cn/html/info19633502.html 107.179.64.198
2017-11-23 22:21:42 +0100
0 - 0 - 1 www.taylor-carls.com/ 104.148.122.237
2017-11-23 11:23:07 +0100
0 - 0 - 1 51zjjj.com/qspace/hompy_index_main.aspusername=hmj 157.52.209.135
2017-11-23 11:20:51 +0100
0 - 0 - 1 51zjjj.com/qspace/hompy_index_left.aspusernam (...) 157.52.209.135
2017-11-23 09:43:50 +0100
0 - 7 - 6 sxstwl360.com/ 104.223.149.227
2017-11-23 07:33:36 +0100
0 - 0 - 1 jun005202yi.cn/html/info1095....indexnews.jsp (...) 107.179.69.203
2017-11-23 05:00:54 +0100
0 - 0 - 1 www.lhzhende.cn/html/xl_list.jspurltypetree.T (...) 107.179.69.117
2017-11-23 02:17:29 +0100
0 - 0 - 1 m.peizhvn.cn/ 192.200.212.124
2017-11-22 23:13:51 +0100
0 - 4 - 14 lhw168.com.cn/html/info10071783.html 107.179.69.126
2017-11-22 23:13:11 +0100
0 - 4 - 7 promedex.com.cn/html/zdxk1sjzdxk.html 107.179.64.53

No other reports on domain: sinyotec.com



JavaScript

Executed Scripts (5)


Executed Evals (0)


Executed Writes (5)

#1 JavaScript::Write (size: 62, repeated: 1) - SHA256: 918566ef3ce2d1aa6e0bd076527b84a67d0c2d930cb8de0e4ca978948553b4b6

                                        < meta http - equiv = "X-UA-Compatible"
content = "IE=edge,chrome=1" >
                                    

#2 JavaScript::Write (size: 39, repeated: 1) - SHA256: 99a94ea8db124489c35731188bcfaefd07ace73e5c7a9d6453a3cd930d20577c

                                        < meta name = "renderer"
content = "webkit" >
                                    

#3 JavaScript::Write (size: 88, repeated: 1) - SHA256: 8c624108a27a4268ce8b2bae04fc30452f065cd8aaa118c1abbf50bc1a331f98

                                        < meta name = "viewport"
content = "width=device-width, initial-scale=1.0, user-scalable=no" >
                                    

#4 JavaScript::Write (size: 87, repeated: 1) - SHA256: a72b285b9287c1181927cd290a6f6c08d519ebc6754bc9f04fce904ca106945e

                                        < script src = 'https://s95.b9823852351323h.com/by/dz.js'
type = 'text/javascript' > < /script>
                                    

#5 JavaScript::Write (size: 201, repeated: 1) - SHA256: 5bbba051e036cd1348ce8d653eb361e558189d0ca08c6d0640c85414e23a22ad

                                        < style > * {
    margin: 0!important;padding: 0!important
}
html, body {
    height: 100 % !important;width: 100 % !important;min - width: 100 % !important;max - width: 100 % !important
}
body * : not(iframe) {
    display: none!important
} < /style>
                                    


HTTP Transactions (24)


Request Response
                                        
                                            GET /yesads.js HTTP/1.1 
Host: www.sinyotec.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sinyotec.com/

                                         
                                         104.223.149.199
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 106
Last-Modified: Thu, 13 Apr 2017 15:53:12 GMT
Accept-Ranges: bytes
Etag: "c2cff5d6eb4d21:c7ad"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Mon, 13 Nov 2017 16:57:51 GMT


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   106
Md5:    17a8754edf85068082f8b1ac1519d80e
Sha1:   33a9c0cccfe3d299c1ebb6d77fc4e0097b35f5a9
Sha256: 85965e1cee169e6ea1129285cafdd3c90f4e7b046207290c9ad9bc51bc58afdf

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/imagescsscss.css HTTP/1.1 
Host: www.sinyotec.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sinyotec.com/

                                         
                                         104.223.149.199
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Length: 3906
Last-Modified: Sun, 27 Nov 2016 01:11:46 GMT
Accept-Ranges: bytes
Etag: "b6f02b394b48d21:c7ad"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Mon, 13 Nov 2017 16:57:51 GMT


--- Additional Info ---
Magic:  troff or preprocessor input text
Size:   3906
Md5:    0b48fcc50c2c426494604d715c77b35e
Sha1:   c6604f1e5316ac8c30337189c646124df04bd205
Sha256: d5c4d643a751041fe13b4a849a8da75eb82c10dfdc7a32923bc257642d1be9ad
                                        
                                            GET /images/imageslogo.jpg HTTP/1.1 
Host: www.sinyotec.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sinyotec.com/

                                         
                                         104.223.149.199
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 43542
Last-Modified: Sun, 27 Nov 2016 01:11:36 GMT
Accept-Ranges: bytes
Etag: "48e55334b48d21:c7ad"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Mon, 13 Nov 2017 16:57:51 GMT


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   43542
Md5:    f83974e61a7efe862f8106c232a3d96f
Sha1:   80425642a86bc002024926e48df52856153430c3
Sha256: dd0f25688fad8646ae25c202560b9382e69c2ee106569f3982c5b59ed91f479b
                                        
                                            GET /images/uploadfiles20161118201611180143503466.jpg HTTP/1.1 
Host: www.sinyotec.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sinyotec.com/

                                         
                                         104.223.149.199
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 47428
Last-Modified: Sun, 27 Nov 2016 01:11:39 GMT
Accept-Ranges: bytes
Etag: "9c25b1344b48d21:c7ad"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Mon, 13 Nov 2017 16:57:51 GMT


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   47428
Md5:    2c16446e19e55daa7a2ed670854479f7
Sha1:   20191c6308e18ec97385377a1f36930d5e5d2145
Sha256: c95999c1dbbda8dd57eea07f8b4a92267ce87c0ecd8ce31a7f4aad3b3ac52c35
                                        
                                            GET /images/uploadfiles20161011201610110956338387.jpg HTTP/1.1 
Host: www.sinyotec.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sinyotec.com/

                                         
                                         104.223.149.199
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 49808
Last-Modified: Sun, 27 Nov 2016 01:11:38 GMT
Accept-Ranges: bytes
Etag: "041a344b48d21:c7ad"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Mon, 13 Nov 2017 16:57:51 GMT


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   49808
Md5:    a22454cb162834cc295f3ba2b497f257
Sha1:   cc037df4064b9b950b9b607369f53882c4694bb8
Sha256: 9dec4e9ea7a4fc4d5b9a8e2af64e63a8b2d4496e04193eaa323d0b67278ba3ba
                                        
                                            GET / HTTP/1.1 
Host: www.sinyotec.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         104.223.149.199
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Content-Length: 128985
Content-Location: http://www.sinyotec.com/index.html
Last-Modified: Fri, 28 Apr 2017 09:17:09 GMT
Accept-Ranges: bytes
Etag: "6618c360c0d21:c7ad"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Mon, 13 Nov 2017 16:57:51 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   128985
Md5:    0e306179e884acfbd67c11cc00d01739
Sha1:   62916dbbe7eb4b3fb9af6c6b0310fd22bca251a6
Sha256: 07c99cdab67e05845befd860882756a2ab0ea66bc3160dd00ab4e681da3e628b

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/uploadfiles20160908201609080851283773.jpg HTTP/1.1 
Host: www.sinyotec.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sinyotec.com/

                                         
                                         104.223.149.199
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 51977
Last-Modified: Sun, 27 Nov 2016 01:11:41 GMT
Accept-Ranges: bytes
Etag: "4a9ff364b48d21:c7ad"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Mon, 13 Nov 2017 16:57:51 GMT


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   51977
Md5:    fa2365aab9f740dcb1c11ceaea54c83f
Sha1:   12f155b4eeec8b0c19574bde16a13d9dd77c66d3
Sha256: 6210cbfb21553db8509ec0e0843eedf2957a9bcbd9d996040a06789891829399
                                        
                                            GET /images/uploadfiles20161027201610270440518119.jpg HTTP/1.1 
Host: www.sinyotec.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sinyotec.com/

                                         
                                         104.223.149.199
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 48586
Last-Modified: Sun, 27 Nov 2016 01:11:40 GMT
Accept-Ranges: bytes
Etag: "38a58354b48d21:c7ad"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Mon, 13 Nov 2017 16:57:51 GMT


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   48586
Md5:    acc1970578e9f05b23e48c4ae8e57c10
Sha1:   6c07390b9cb1d0e122c10526500fbc3bddbe0557
Sha256: a921491a34f7b7cb642667bce1be41466020e88120f29204706423a894388be0
                                        
                                            GET /images/imagesad.gif HTTP/1.1 
Host: www.sinyotec.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sinyotec.com/

                                         
                                         104.223.149.199
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Content-Length: 6150
Last-Modified: Sun, 27 Nov 2016 01:11:43 GMT
Accept-Ranges: bytes
Etag: "e8bae374b48d21:c7ad"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Mon, 13 Nov 2017 16:57:52 GMT


--- Additional Info ---
Magic:  GIF image data, version 89a, 190 x 70
Size:   6150
Md5:    bba44c0965a70b47e75f80975eea2751
Sha1:   54632204d1c7dff1cf17057f8299f9286ede9fa8
Sha256: bc5494469f05a6b9843c3833b2d235ace24e588c5df4844758bcff7ccf155144
                                        
                                            GET /images/uploadfiles20160911201609110319158192.jpg HTTP/1.1 
Host: www.sinyotec.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sinyotec.com/

                                         
                                         104.223.149.199
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 38513
Last-Modified: Sun, 27 Nov 2016 01:11:42 GMT
Accept-Ranges: bytes
Etag: "32bfb1364b48d21:c7ad"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Mon, 13 Nov 2017 16:57:52 GMT


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   38513
Md5:    f24f9f53ae6d3504499d6d224c6a1a1e
Sha1:   edb6dbc13b7a5d8dd93b44ece1d705435725936d
Sha256: 53b1b60c0e772432b0c80a60bf332c9af407b41b45a8486118917235c3cdcb73
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 116
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 13 Nov 2017 09:05:23 GMT
Server: Apache
Last-Modified: Fri, 10 Nov 2017 02:50:09 GMT
Expires: Fri, 17 Nov 2017 02:50:09 GMT
Etag: FA1B0E26484A1433E322CDD262635DD5A195B31E
Cache-Control: max-age=322485,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp17
Content-Length: 472
Connection: close


--- Additional Info ---
Magic:  data
Size:   472
Md5:    6b31d894ae32ab263046cc06d0e0d9df
Sha1:   fa1b0e26484a1433e322cdd262635dd5a195b31e
Sha256: 98d0303f7482db550ef9bf4dd32e92d8426f85545c1ba6f9a3fca235f3d3e8d9
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 13 Nov 2017 09:05:23 GMT
Server: Apache
Last-Modified: Thu, 09 Nov 2017 23:43:12 GMT
Expires: Thu, 16 Nov 2017 23:43:12 GMT
Etag: 5EDA96BC38215DAA085B8DF93974F85EA3A3A176
Cache-Control: max-age=311268,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp22
Content-Length: 727
Connection: close


--- Additional Info ---
Magic:  data
Size:   727
Md5:    957e70ae8eafad41a8f023f365b098f5
Sha1:   5eda96bc38215daa085b8df93974f85ea3a3a176
Sha256: dbf5350b16bf8a8047d7cc1417f55188323cc3302bf51802bc398df0ef8afbae
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 13 Nov 2017 09:05:23 GMT
Server: Apache
Last-Modified: Thu, 09 Nov 2017 23:43:12 GMT
Expires: Thu, 16 Nov 2017 23:43:12 GMT
Etag: 6885266066D53690577ED6AE29E4C0A499E93B69
Cache-Control: max-age=311268,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp17
Content-Length: 471
Connection: close


--- Additional Info ---
Magic:  data
Size:   471
Md5:    d39e2a9401661ee1786fdb11a4a9832d
Sha1:   6885266066d53690577ed6ae29e4c0a499e93b69
Sha256: 4a9f254184a7c139ef8d8d468b5194c8ef50a0822fcf3961eb0defcf3e882bf7
                                        
                                            GET /by/dz.js HTTP/1.1 
Host: s95.b9823852351323h.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sinyotec.com/

                                         
                                         14.204.144.173
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: NWSs
Date: Mon, 13 Nov 2017 09:05:24 GMT
Content-Length: 1415
Connection: keep-alive
Cache-Control: max-age=600
Expires: Mon, 13 Nov 2017 09:15:24 GMT
Last-Modified: Wed, 11 Oct 2017 07:47:43 GMT
Content-Encoding: gzip
X-NWS-LOG-UUID: 175363a5-10bb-4ad1-96c3-19ae4450f03c
X-Cache-Lookup: Hit From MemCache Gz


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1415
Md5:    0968fd3a5aa920ddfee5513a68ce5f04
Sha1:   327beababb34392770dfad82a10e1f9c789027f3
Sha256: ad9d1fe3172a05e26a5e9c5d8e5f27fff2a54de724007b784781239a1cc3b1d9
                                        
                                            GET /tongji.js HTTP/1.1 
Host: www.sinyotec.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sinyotec.com/

                                         
                                         104.223.149.199
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 506
Last-Modified: Fri, 28 Apr 2017 17:53:03 GMT
Accept-Ranges: bytes
Etag: "ea69a94848c0d21:c7ad"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Mon, 13 Nov 2017 16:57:54 GMT


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   506
Md5:    54f2082d40f44f056df3a7d7aa76501d
Sha1:   4f84276be0cd85aa4b4178c594cd3b442fc73854
Sha256: cbdaff4120100e21c0e99c6ef7a2da0e500f41a1d19e63683b39c8ff6fceb466

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/h_bg.jpg HTTP/1.1 
Host: www.sinyotec.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sinyotec.com/images/imagescsscss.css

                                         
                                         104.223.149.199
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 1423
Last-Modified: Sun, 27 Nov 2016 01:11:45 GMT
Accept-Ranges: bytes
Etag: "82958e384b48d21:c7ad"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Mon, 13 Nov 2017 16:57:54 GMT


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   1423
Md5:    78525b741d531e2272cf731f3c027151
Sha1:   afa6904f56a3a2d7d626373882977576c1621f5d
Sha256: 802d41e12876aa87f1d7563684d5820fcdb37105fd42ac7b56d12a948a15f0e8
                                        
                                            GET /images/uploadfiles20160517201605170156468574.jpg HTTP/1.1 
Host: www.sinyotec.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sinyotec.com/

                                         
                                         104.223.149.199
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 12821
Last-Modified: Sun, 27 Nov 2016 01:11:44 GMT
Accept-Ranges: bytes
Etag: "2fff5374b48d21:c7ad"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Mon, 13 Nov 2017 16:57:54 GMT


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   12821
Md5:    b6ecf612627e7b2f3198f0eedffd06bb
Sha1:   63a05d26e2680673f02620fba35684cc27a77149
Sha256: 33ecbe580da68964c4c59e8048d447cb17256a0878535f3b83602d59ef8545a9
                                        
                                            GET /images/uploadfiles20161027201610270148339471.gif HTTP/1.1 
Host: www.sinyotec.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sinyotec.com/

                                         
                                         104.223.149.199
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Content-Length: 8798
Last-Modified: Sun, 27 Nov 2016 01:11:43 GMT
Accept-Ranges: bytes
Etag: "7cf085374b48d21:c7ad"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Mon, 13 Nov 2017 16:57:54 GMT


--- Additional Info ---
Magic:  GIF image data, version 89a, 190 x 70
Size:   8798
Md5:    532e3b2547bc504c5232205f50905da8
Sha1:   38785cda4d7eee176f3278f6fc31c500717a4816
Sha256: 9a531fe11c1811e4d1e04ecde37254d4390c32104bdb04c8cd64dd9009324cb4
                                        
                                            GET /hm.js?72e65c3cebfb173f62cc0b5533764dc7 HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sinyotec.com/

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 9032
Date: Mon, 13 Nov 2017 09:05:25 GMT
Etag: 02f26e7c1863cdfcc56ad618dbd7b4f5
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=62DAE19CCD0E87B7; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max speed
Size:   9032
Md5:    d8c3e6a031018a9209bc3729b063243b
Sha1:   147b324efbe51f54d5eae24145cfd3e58e71a756
Sha256: 0a6121b800a3dc437da61899b0fd74f09c2eecb00a11696d8f2aa74f834c5452
                                        
                                            GET /hm.js?328360645dd8c2ffdf33f4fca180b186 HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sinyotec.com/

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 9032
Date: Mon, 13 Nov 2017 09:05:25 GMT
Etag: 9afa0fb6775cc567d1c7df0726528c33
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=33C76332ECD8DD86; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max speed
Size:   9032
Md5:    fcae73b2f6bbbf2c62afd396fb665bd7
Sha1:   1a322acc411d35b9ad8fd8763d839ad6e3350c16
Sha256: c58286c6c5ed097cc9aa3021b3bb8039f6243f6be337abf9f6e826ff81a9d689
                                        
                                            GET /hm.gif?cc=0&ck=1&cl=24-bit&ds=1176x885&vl=754&et=0&fl=10.0&ja=1&ln=en-us&lo=0&rnd=437922695&si=72e65c3cebfb173f62cc0b5533764dc7&v=1.2.27&lv=1&ct=!!&tt=www.31665.com-%E6%97%A0%E6%95%8C%E7%8C%AA%E5%93%A5%E5%BF%83%E6%B0%B4%E8%AE%BA%E5%9D%9B-www.31665.com%E5%A4%87%E7%94%A8%E7%BD%91%E5%9D%80&sn=47712 HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sinyotec.com/
Cookie: HMACCOUNT=62DAE19CCD0E87B7

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Date: Mon, 13 Nov 2017 09:05:26 GMT
Pragma: no-cache
Server: apache
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /hm.gif?cc=0&ck=1&cl=24-bit&ds=1176x885&vl=754&et=0&fl=10.0&ja=1&ln=en-us&lo=0&rnd=421241405&si=328360645dd8c2ffdf33f4fca180b186&v=1.2.27&lv=1&ct=!!&tt=www.31665.com-%E6%97%A0%E6%95%8C%E7%8C%AA%E5%93%A5%E5%BF%83%E6%B0%B4%E8%AE%BA%E5%9D%9B-www.31665.com%E5%A4%87%E7%94%A8%E7%BD%91%E5%9D%80&sn=47712 HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sinyotec.com/
Cookie: HMACCOUNT=33C76332ECD8DD86

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Date: Mon, 13 Nov 2017 09:05:27 GMT
Pragma: no-cache
Server: apache
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.sinyotec.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: Hm_lvt_72e65c3cebfb173f62cc0b5533764dc7=1510563927; Hm_lpvt_72e65c3cebfb173f62cc0b5533764dc7=1510563927; Hm_lvt_328360645dd8c2ffdf33f4fca180b186=1510563927; Hm_lpvt_328360645dd8c2ffdf33f4fca180b186=1510563927

                                         
                                         104.223.149.199
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Mon, 13 Nov 2017 16:57:56 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.sinyotec.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: Hm_lvt_72e65c3cebfb173f62cc0b5533764dc7=1510563927; Hm_lpvt_72e65c3cebfb173f62cc0b5533764dc7=1510563927; Hm_lvt_328360645dd8c2ffdf33f4fca180b186=1510563927; Hm_lpvt_328360645dd8c2ffdf33f4fca180b186=1510563927

                                         
                                         104.223.149.199
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Mon, 13 Nov 2017 16:57:59 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075