Overview

URL https://baoxiu.jxut.edu.cn/bx/bx/
IP210.35.172.40
ASNAS4538 China Education and Research Network Center
Location China
Report completed2018-04-04 17:46:19 CEST
StatusLoading report..
urlQuery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2018-04-04 2 baoxiu.jxut.edu.cn/bx/bx/ Malware
2018-04-04 2 baoxiu.jxut.edu.cn/bx/genCode Malware
2018-04-04 2 baoxiu.jxut.edu.cn/bx/js/jquery.validate.js Malware
2018-04-04 2 baoxiu.jxut.edu.cn/bx/js/jquery-1.8.1.min.js Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

No other reports on IP: 210.35.172.40


Last 10 reports on ASN: AS4538 China Education and Research Network Center

Date UQ / IDS / BL URL IP
2018-09-26 03:57:19 +0200
0 - 0 - 1 hkxy.edu.cn/jpkc/xfjj/jiaoan.html 59.68.228.250
2018-09-26 01:42:42 +0200
0 - 0 - 2 hkxy.edu.cn/Article/textbook/201412/201412021 (...) 59.68.228.250
2018-09-26 00:01:12 +0200
0 - 0 - 1 www.zhzhu.edu.cn/nbxwtz.jsp?urltype=tree.Tree (...) 211.67.107.72
2018-09-25 15:50:34 +0200
0 - 0 - 10 www.aao.cdut.edu.cn/ 202.115.128.52
2018-09-25 07:52:10 +0200
0 - 0 - 1 sp.ulxue.com/Uploads/apk/1/5577/132291.apk 222.22.29.94
2018-09-25 01:57:39 +0200
0 - 1 - 1 jwc.seu.edu.cn/_upload/article/33/d7/f5527eb5 (...) 121.248.63.93
2018-09-24 23:05:51 +0200
0 - 0 - 2 bsccnu.net.cn/article/professor/201412/201412 (...) 59.68.228.250
2018-09-24 19:38:18 +0200
0 - 1 - 1 dlxy.jxnu.edu.cn/picture/article/49/09/67/ef6 (...) 219.229.249.6
2018-09-24 18:13:34 +0200
0 - 0 - 1 geoe.chd.edu.cn/cai/wenjian/s5/s5-401.htm 202.117.64.101
2018-09-24 17:31:27 +0200
0 - 0 - 1 dl.elevensky.net/apkf/3rdapk2/M00/01/C6/wKhkl (...) 121.194.7.8

No other reports on domain: jxut.edu.cn



JavaScript

Executed Scripts (4)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (11)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: gn.symcd.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         23.43.139.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx/1.12.2
Content-Length: 1419
Content-Transfer-Encoding: binary
Cache-Control: max-age=449226, public, no-transform, must-revalidate
Last-Modified: Mon, 2 Apr 2018 20:32:53 GMT
Expires: Mon, 9 Apr 2018 20:32:53 GMT
Date: Wed, 04 Apr 2018 15:45:47 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1419
Md5:    3c27efac2fd1484ecf74b1bf2e6546a3
Sha1:   dacb73310672ff72b54135b1692089e37988c3a6
Sha256: 4e53f87fb9e123eb2a30c8d1c78b5e2cdb92c02898960580de7ff0645f10f62a
                                        
                                            GET /bx/bx/ HTTP/1.1 
Host: baoxiu.jxut.edu.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         210.35.172.40
HTTP/1.1 200 OK
Content-Type: text/html;charset=UTF-8
                                        
DrivedBy: WAF-Engine/6.0.0
Date: Wed, 04 Apr 2018 15:40:47 GMT
Transfer-Encoding: chunked
Vary: Accept-Encoding
Server: Apache-Coyote/1.1
Set-Cookie: JSESSIONID=E566B29AA49274516E551BE0A32A0AFD; Path=/bx; Secure
Content-Encoding: gzip
Connection: Keep-alive
Via: 1.1 ID-2445200071765355 uproxy-2


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3563
Md5:    f3a917bc321db029902f30480bc61884
Sha1:   e156d9cc45e7de88afe37548656c7a64462804f4
Sha256: 482cab39117279a4d6ba147a3633140d769959555278b59aeaabcd9aa9a7d68a

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /bx/css/style.css HTTP/1.1 
Host: baoxiu.jxut.edu.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://baoxiu.jxut.edu.cn/bx/bx/
Cookie: JSESSIONID=E566B29AA49274516E551BE0A32A0AFD

                                         
                                         210.35.172.40
HTTP/1.1 200 OK
Content-Type: text/css
                                        
DrivedBy: WAF-Engine/6.0.0
Date: Wed, 04 Apr 2018 15:40:47 GMT
Transfer-Encoding: chunked
Vary: Accept-Encoding
Server: Apache-Coyote/1.1
Etag: W/"8021-1410605206000"
Last-Modified: Sat, 13 Sep 2014 10:46:46 GMT
Content-Encoding: gzip
Connection: Keep-alive
Via: 1.1 ID-2445200071765355 uproxy-2


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2572
Md5:    63feafafed3d3e35927784ff6c9b258a
Sha1:   a5ce7e4df50dfb963914e4d1d0a4252e331e7c9e
Sha256: 13de43f55cdf869848f11183415c5e27a82b7476ea86f5b1c4bb326cba875476
                                        
                                            GET /bx/genCode HTTP/1.1 
Host: baoxiu.jxut.edu.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://baoxiu.jxut.edu.cn/bx/bx/
Cookie: JSESSIONID=E566B29AA49274516E551BE0A32A0AFD

                                         
                                         210.35.172.40
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
DrivedBy: WAF-Engine/6.0.0
Date: Wed, 04 Apr 2018 15:40:48 GMT
Content-Length: 573
Server: Apache-Coyote/1.1
Pragma: No-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Connection: Keep-alive
Via: 1.1 ID-2445200071765355 uproxy-4


--- Additional Info ---
Magic:  PNG image, 150 x 50, 8-bit/color RGB, non-interlaced
Size:   573
Md5:    8c29c2640d39f546b0266726d540c279
Sha1:   d460372095bc0ee74ba51b6932432517192fb199
Sha256: 72372a8bb4fac81a4825bb3f05de710a6400bfc6c48ad8a9071e7ad9cba7ee00

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /bx/js/jquery.validate.js HTTP/1.1 
Host: baoxiu.jxut.edu.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://baoxiu.jxut.edu.cn/bx/bx/
Cookie: JSESSIONID=E566B29AA49274516E551BE0A32A0AFD

                                         
                                         210.35.172.40
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
DrivedBy: WAF-Engine/6.0.0
Date: Wed, 04 Apr 2018 15:40:48 GMT
Transfer-Encoding: chunked
Vary: Accept-Encoding
Server: Apache-Coyote/1.1
Etag: W/"39194-1410605674000"
Last-Modified: Sat, 13 Sep 2014 10:54:34 GMT
Content-Encoding: gzip
Connection: Keep-alive
Via: 1.1 ID-2445200071765355 uproxy-2


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   12195
Md5:    9c49685ddc63a13a5aae9d93ce582999
Sha1:   a97b834d7ef91be5950d766a4208881a01bb6570
Sha256: 4c9fe7db1448c44c7f6b63b48947d22e99994da117fc44b69dc2ef9b7b3efd73

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /bx/image/sys_logo.png HTTP/1.1 
Host: baoxiu.jxut.edu.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://baoxiu.jxut.edu.cn/bx/bx/
Cookie: JSESSIONID=E566B29AA49274516E551BE0A32A0AFD

                                         
                                         210.35.172.40
HTTP/1.1 200 OK
Content-Type: image/png
                                        
DrivedBy: WAF-Engine/6.0.0
Date: Wed, 04 Apr 2018 15:40:48 GMT
Content-Length: 20524
Server: Apache-Coyote/1.1
Accept-Ranges: bytes
Etag: W/"20524-1410590744000"
Last-Modified: Sat, 13 Sep 2014 06:45:44 GMT
Connection: Keep-alive
Via: 1.1 ID-2445200071765355 uproxy-9


--- Additional Info ---
Magic:  PNG image, 483 x 61, 8-bit/color RGBA, non-interlaced
Size:   20524
Md5:    a0bb496ebadf8413bbc22f16ae22e29a
Sha1:   3f4c49b32c88c1816a8a9969aa105f26d66b7d78
Sha256: 9689318a3292cc9fb5f2ec79b9050e3e19ce8ab24ad7364ac2d86c8258733e90
                                        
                                            GET /bx/js/jquery-1.8.1.min.js HTTP/1.1 
Host: baoxiu.jxut.edu.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://baoxiu.jxut.edu.cn/bx/bx/
Cookie: JSESSIONID=E566B29AA49274516E551BE0A32A0AFD

                                         
                                         210.35.172.40
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
DrivedBy: WAF-Engine/6.0.0
Date: Wed, 04 Apr 2018 15:40:48 GMT
Transfer-Encoding: chunked
Vary: Accept-Encoding
Server: Apache-Coyote/1.1
Etag: W/"92792-1393766014000"
Last-Modified: Sun, 02 Mar 2014 13:13:34 GMT
Content-Encoding: gzip
Connection: Keep-alive
Via: 1.1 ID-2445200071765355 uproxy-4


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   38464
Md5:    4a25f4bcfd574816cb4ca54a5a17fae8
Sha1:   665f478872c285145ca08eab5c4c6c185636040a
Sha256: c2c12becaed9e4851827a09a4eb00866d2a0e5da9805cd325dd5367315d3add4

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /bx/images/header.gif HTTP/1.1 
Host: baoxiu.jxut.edu.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://baoxiu.jxut.edu.cn/bx/css/style.css
Cookie: JSESSIONID=E566B29AA49274516E551BE0A32A0AFD

                                         
                                         210.35.172.40
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
DrivedBy: WAF-Engine/6.0.0
Date: Wed, 04 Apr 2018 15:40:53 GMT
Content-Length: 504
Server: Apache-Coyote/1.1
Accept-Ranges: bytes
Etag: W/"504-1390028976000"
Last-Modified: Sat, 18 Jan 2014 07:09:36 GMT
Connection: Keep-alive
Via: 1.1 ID-2445200071765355 uproxy-2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 89
Size:   504
Md5:    89ace1b76ffcb466e94599154948848a
Sha1:   680462707ea1d6a8935bd308a9a36b92c3ce0a48
Sha256: e7e8ad4102736d6c4452d9bf743cf2be5617dba8fc83b32201a5a3c8a02297f4
                                        
                                            GET /bx/images/footer.gif HTTP/1.1 
Host: baoxiu.jxut.edu.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://baoxiu.jxut.edu.cn/bx/bx/
Cookie: JSESSIONID=E566B29AA49274516E551BE0A32A0AFD

                                         
                                         210.35.172.40
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
DrivedBy: WAF-Engine/6.0.0
Date: Wed, 04 Apr 2018 15:40:53 GMT
Content-Length: 268
Server: Apache-Coyote/1.1
Accept-Ranges: bytes
Etag: W/"268-1390028976000"
Last-Modified: Sat, 18 Jan 2014 07:09:36 GMT
Connection: Keep-alive
Via: 1.1 ID-2445200071765355 uproxy-4


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 44
Size:   268
Md5:    3e6f320db0f7cf954bd5bb5fe337bfd6
Sha1:   95d21f1747d9bbeae50527c45a46067ad9992945
Sha256: e00663a1096d52dbc896fc10ee52fb8f889fe75443285fa33ee9f539855cfb96
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: baoxiu.jxut.edu.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         210.35.172.40
HTTP/1.1 404 Not Found
Content-Type: text/html;charset=utf-8
                                        
DrivedBy: WAF-Engine/6.0.0
Date: Wed, 04 Apr 2018 15:40:53 GMT
Content-Length: 973
Server: Apache-Coyote/1.1
Connection: Keep-alive
Via: 1.1 ID-2445200071765355 uproxy-2


--- Additional Info ---
Magic:  HTML document text
Size:   973
Md5:    88a8c849e8060124544f9de8ff9a50b8
Sha1:   0a99211421e6848f4efb67e1f6befd31f5d210ad
Sha256: ede34e39e6825deada7e242690ae9020288fbd2572c16a71a0245a0242aef97d
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: baoxiu.jxut.edu.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         210.35.172.40
HTTP/1.1 404 Not Found
Content-Type: text/html;charset=utf-8
                                        
DrivedBy: WAF-Engine/6.0.0
Date: Wed, 04 Apr 2018 15:40:56 GMT
Content-Length: 973
Server: Apache-Coyote/1.1
Connection: Keep-alive
Via: 1.1 ID-2445200071765355 uproxy-9


--- Additional Info ---
Magic:  HTML document text
Size:   973
Md5:    88a8c849e8060124544f9de8ff9a50b8
Sha1:   0a99211421e6848f4efb67e1f6befd31f5d210ad
Sha256: ede34e39e6825deada7e242690ae9020288fbd2572c16a71a0245a0242aef97d