Overview

URL https://baoxiu.jxut.edu.cn/bx/bx/
IP210.35.172.40
ASNAS4538 China Education and Research Network Center
Location China
Report completed2018-04-04 17:46:19 CEST
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2018-04-04 2 baoxiu.jxut.edu.cn/bx/bx/ Malware
2018-04-04 2 baoxiu.jxut.edu.cn/bx/genCode Malware
2018-04-04 2 baoxiu.jxut.edu.cn/bx/js/jquery.validate.js Malware
2018-04-04 2 baoxiu.jxut.edu.cn/bx/js/jquery-1.8.1.min.js Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

No other reports on IP: 210.35.172.40


Last 10 reports on ASN: AS4538 China Education and Research Network Center

Date UQ / IDS / BL URL IP
2018-12-13 11:47:57 +0100
0 - 0 - 1 down2.abckantu.com/install/version/v1.4.0.8/P (...) 58.205.221.246
2018-12-13 11:34:23 +0100
0 - 0 - 1 sp.ulxue.com/Uploads/apk/1/5577/263225.apk 58.205.221.224
2018-12-12 20:42:26 +0100
0 - 0 - 1 download.ruanjian.2345.cc/soft/pipi_3.4.0.3200.exe 222.192.186.38
2018-12-12 18:14:21 +0100
0 - 2 - 0 tpop-hn.7654.com/n/tui/tpop/tpop4/v3.0.9.15/t (...) 222.22.29.98
2018-12-12 17:17:10 +0100
0 - 0 - 1 graduate.ynnu.edu.cn/uploads/xw/20160926gzltj.zip 202.203.225.46
2018-12-12 16:55:56 +0100
0 - 0 - 1 hkxy.edu.cn/jpkc/jjc/xszp/word/word4.doc 59.68.228.250
2018-12-12 16:36:35 +0100
0 - 0 - 1 https://all.cnzz.com.danuoyi.tbcache.com/ 121.194.7.232
2018-12-12 10:40:53 +0100
0 - 0 - 1 graduate.ynnu.edu.cn/uploads/xw/20160926gzltj.zip 202.203.225.46
2018-12-12 09:39:53 +0100
0 - 0 - 1 sj.mummei.com/ 121.194.7.230
2018-12-12 03:58:14 +0100
0 - 0 - 1 xzc.197746.com/com.pandaabc.stu.apk 121.194.7.223

No other reports on domain: jxut.edu.cn



JavaScript

Executed Scripts (4)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (11)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: gn.symcd.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         23.43.139.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx/1.12.2
Content-Length: 1419
Content-Transfer-Encoding: binary
Cache-Control: max-age=449226, public, no-transform, must-revalidate
Last-Modified: Mon, 2 Apr 2018 20:32:53 GMT
Expires: Mon, 9 Apr 2018 20:32:53 GMT
Date: Wed, 04 Apr 2018 15:45:47 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1419
Md5:    3c27efac2fd1484ecf74b1bf2e6546a3
Sha1:   dacb73310672ff72b54135b1692089e37988c3a6
Sha256: 4e53f87fb9e123eb2a30c8d1c78b5e2cdb92c02898960580de7ff0645f10f62a
                                        
                                            GET /bx/bx/ HTTP/1.1 
Host: baoxiu.jxut.edu.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         210.35.172.40
HTTP/1.1 200 OK
Content-Type: text/html;charset=UTF-8
                                        
DrivedBy: WAF-Engine/6.0.0
Date: Wed, 04 Apr 2018 15:40:47 GMT
Transfer-Encoding: chunked
Vary: Accept-Encoding
Server: Apache-Coyote/1.1
Set-Cookie: JSESSIONID=E566B29AA49274516E551BE0A32A0AFD; Path=/bx; Secure
Content-Encoding: gzip
Connection: Keep-alive
Via: 1.1 ID-2445200071765355 uproxy-2


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3563
Md5:    f3a917bc321db029902f30480bc61884
Sha1:   e156d9cc45e7de88afe37548656c7a64462804f4
Sha256: 482cab39117279a4d6ba147a3633140d769959555278b59aeaabcd9aa9a7d68a

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /bx/css/style.css HTTP/1.1 
Host: baoxiu.jxut.edu.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://baoxiu.jxut.edu.cn/bx/bx/
Cookie: JSESSIONID=E566B29AA49274516E551BE0A32A0AFD

                                         
                                         210.35.172.40
HTTP/1.1 200 OK
Content-Type: text/css
                                        
DrivedBy: WAF-Engine/6.0.0
Date: Wed, 04 Apr 2018 15:40:47 GMT
Transfer-Encoding: chunked
Vary: Accept-Encoding
Server: Apache-Coyote/1.1
Etag: W/"8021-1410605206000"
Last-Modified: Sat, 13 Sep 2014 10:46:46 GMT
Content-Encoding: gzip
Connection: Keep-alive
Via: 1.1 ID-2445200071765355 uproxy-2


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2572
Md5:    63feafafed3d3e35927784ff6c9b258a
Sha1:   a5ce7e4df50dfb963914e4d1d0a4252e331e7c9e
Sha256: 13de43f55cdf869848f11183415c5e27a82b7476ea86f5b1c4bb326cba875476
                                        
                                            GET /bx/genCode HTTP/1.1 
Host: baoxiu.jxut.edu.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://baoxiu.jxut.edu.cn/bx/bx/
Cookie: JSESSIONID=E566B29AA49274516E551BE0A32A0AFD

                                         
                                         210.35.172.40
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
DrivedBy: WAF-Engine/6.0.0
Date: Wed, 04 Apr 2018 15:40:48 GMT
Content-Length: 573
Server: Apache-Coyote/1.1
Pragma: No-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Connection: Keep-alive
Via: 1.1 ID-2445200071765355 uproxy-4


--- Additional Info ---
Magic:  PNG image, 150 x 50, 8-bit/color RGB, non-interlaced
Size:   573
Md5:    8c29c2640d39f546b0266726d540c279
Sha1:   d460372095bc0ee74ba51b6932432517192fb199
Sha256: 72372a8bb4fac81a4825bb3f05de710a6400bfc6c48ad8a9071e7ad9cba7ee00

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /bx/js/jquery.validate.js HTTP/1.1 
Host: baoxiu.jxut.edu.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://baoxiu.jxut.edu.cn/bx/bx/
Cookie: JSESSIONID=E566B29AA49274516E551BE0A32A0AFD

                                         
                                         210.35.172.40
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
DrivedBy: WAF-Engine/6.0.0
Date: Wed, 04 Apr 2018 15:40:48 GMT
Transfer-Encoding: chunked
Vary: Accept-Encoding
Server: Apache-Coyote/1.1
Etag: W/"39194-1410605674000"
Last-Modified: Sat, 13 Sep 2014 10:54:34 GMT
Content-Encoding: gzip
Connection: Keep-alive
Via: 1.1 ID-2445200071765355 uproxy-2


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   12195
Md5:    9c49685ddc63a13a5aae9d93ce582999
Sha1:   a97b834d7ef91be5950d766a4208881a01bb6570
Sha256: 4c9fe7db1448c44c7f6b63b48947d22e99994da117fc44b69dc2ef9b7b3efd73

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /bx/image/sys_logo.png HTTP/1.1 
Host: baoxiu.jxut.edu.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://baoxiu.jxut.edu.cn/bx/bx/
Cookie: JSESSIONID=E566B29AA49274516E551BE0A32A0AFD

                                         
                                         210.35.172.40
HTTP/1.1 200 OK
Content-Type: image/png
                                        
DrivedBy: WAF-Engine/6.0.0
Date: Wed, 04 Apr 2018 15:40:48 GMT
Content-Length: 20524
Server: Apache-Coyote/1.1
Accept-Ranges: bytes
Etag: W/"20524-1410590744000"
Last-Modified: Sat, 13 Sep 2014 06:45:44 GMT
Connection: Keep-alive
Via: 1.1 ID-2445200071765355 uproxy-9


--- Additional Info ---
Magic:  PNG image, 483 x 61, 8-bit/color RGBA, non-interlaced
Size:   20524
Md5:    a0bb496ebadf8413bbc22f16ae22e29a
Sha1:   3f4c49b32c88c1816a8a9969aa105f26d66b7d78
Sha256: 9689318a3292cc9fb5f2ec79b9050e3e19ce8ab24ad7364ac2d86c8258733e90
                                        
                                            GET /bx/js/jquery-1.8.1.min.js HTTP/1.1 
Host: baoxiu.jxut.edu.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://baoxiu.jxut.edu.cn/bx/bx/
Cookie: JSESSIONID=E566B29AA49274516E551BE0A32A0AFD

                                         
                                         210.35.172.40
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
DrivedBy: WAF-Engine/6.0.0
Date: Wed, 04 Apr 2018 15:40:48 GMT
Transfer-Encoding: chunked
Vary: Accept-Encoding
Server: Apache-Coyote/1.1
Etag: W/"92792-1393766014000"
Last-Modified: Sun, 02 Mar 2014 13:13:34 GMT
Content-Encoding: gzip
Connection: Keep-alive
Via: 1.1 ID-2445200071765355 uproxy-4


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   38464
Md5:    4a25f4bcfd574816cb4ca54a5a17fae8
Sha1:   665f478872c285145ca08eab5c4c6c185636040a
Sha256: c2c12becaed9e4851827a09a4eb00866d2a0e5da9805cd325dd5367315d3add4

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /bx/images/header.gif HTTP/1.1 
Host: baoxiu.jxut.edu.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://baoxiu.jxut.edu.cn/bx/css/style.css
Cookie: JSESSIONID=E566B29AA49274516E551BE0A32A0AFD

                                         
                                         210.35.172.40
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
DrivedBy: WAF-Engine/6.0.0
Date: Wed, 04 Apr 2018 15:40:53 GMT
Content-Length: 504
Server: Apache-Coyote/1.1
Accept-Ranges: bytes
Etag: W/"504-1390028976000"
Last-Modified: Sat, 18 Jan 2014 07:09:36 GMT
Connection: Keep-alive
Via: 1.1 ID-2445200071765355 uproxy-2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 89
Size:   504
Md5:    89ace1b76ffcb466e94599154948848a
Sha1:   680462707ea1d6a8935bd308a9a36b92c3ce0a48
Sha256: e7e8ad4102736d6c4452d9bf743cf2be5617dba8fc83b32201a5a3c8a02297f4
                                        
                                            GET /bx/images/footer.gif HTTP/1.1 
Host: baoxiu.jxut.edu.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://baoxiu.jxut.edu.cn/bx/bx/
Cookie: JSESSIONID=E566B29AA49274516E551BE0A32A0AFD

                                         
                                         210.35.172.40
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
DrivedBy: WAF-Engine/6.0.0
Date: Wed, 04 Apr 2018 15:40:53 GMT
Content-Length: 268
Server: Apache-Coyote/1.1
Accept-Ranges: bytes
Etag: W/"268-1390028976000"
Last-Modified: Sat, 18 Jan 2014 07:09:36 GMT
Connection: Keep-alive
Via: 1.1 ID-2445200071765355 uproxy-4


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 44
Size:   268
Md5:    3e6f320db0f7cf954bd5bb5fe337bfd6
Sha1:   95d21f1747d9bbeae50527c45a46067ad9992945
Sha256: e00663a1096d52dbc896fc10ee52fb8f889fe75443285fa33ee9f539855cfb96
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: baoxiu.jxut.edu.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         210.35.172.40
HTTP/1.1 404 Not Found
Content-Type: text/html;charset=utf-8
                                        
DrivedBy: WAF-Engine/6.0.0
Date: Wed, 04 Apr 2018 15:40:53 GMT
Content-Length: 973
Server: Apache-Coyote/1.1
Connection: Keep-alive
Via: 1.1 ID-2445200071765355 uproxy-2


--- Additional Info ---
Magic:  HTML document text
Size:   973
Md5:    88a8c849e8060124544f9de8ff9a50b8
Sha1:   0a99211421e6848f4efb67e1f6befd31f5d210ad
Sha256: ede34e39e6825deada7e242690ae9020288fbd2572c16a71a0245a0242aef97d
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: baoxiu.jxut.edu.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         210.35.172.40
HTTP/1.1 404 Not Found
Content-Type: text/html;charset=utf-8
                                        
DrivedBy: WAF-Engine/6.0.0
Date: Wed, 04 Apr 2018 15:40:56 GMT
Content-Length: 973
Server: Apache-Coyote/1.1
Connection: Keep-alive
Via: 1.1 ID-2445200071765355 uproxy-9


--- Additional Info ---
Magic:  HTML document text
Size:   973
Md5:    88a8c849e8060124544f9de8ff9a50b8
Sha1:   0a99211421e6848f4efb67e1f6befd31f5d210ad
Sha256: ede34e39e6825deada7e242690ae9020288fbd2572c16a71a0245a0242aef97d