IP180.101.203.215:0 ASN#140292 CHINATELECOM Jiangsu province Suzhou 5G network
File typeHTML document, ASCII text, with CRLF line terminators Hash72fa0fca20c82853e6dbbc1f13c78100 4e9b01e3ad0b56c9409bb02e5700430792fecacd 4555de589ff9b307e20c708d6f112bc47bb377df29ff0a5914f8fb0932926887
GET / HTTP/1.1
Host: s.jiangxiatech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: Tengine
Date: Sun, 05 May 2024 06:23:45 GMT
Content-Type: text/html
Content-Length: 262
Connection: keep-alive
Set-Cookie: acw_tc=b465cb8417148902255311098ee81a5ecff5f25d59668c409f594af185;path=/;HttpOnly;Max-Age=3600
cdn_sec_tc=b465cb8417148902255311098ee81a5ecff5f25d59668c409f594af185;path=/;HttpOnly;Max-Age=3600
Location: https://s.jiangxiatech.com/
Via: kunlun2.cn2528[,0]
Timing-Allow-Origin: *
EagleId: b465cb8417148902255311098e
|
IP180.101.203.215:0 ASN#140292 CHINATELECOM Jiangsu province Suzhou 5G network
File typeHTML document, ASCII text, with CRLF line terminators Hashf9fe2e9a4770fe7ef4eebdbd6385299d f7fa02b5871bbc37c01ef7d10a1612e771cc8eb7 6e1c38d044037281bc69275855c2951880dcf534f456035d0276a244a4a8c81f
GET / HTTP/1.1
Host: s.jiangxiatech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
server: Tengine
content-type: text/html
content-length: 238
set-cookie: acw_tc=b465cb8917148902275382363eab9589effb9cad3da7b00cddafd4eaf9;path=/;HttpOnly;Max-Age=3600
cdn_sec_tc=b465cb8917148902275382363eab9589effb9cad3da7b00cddafd4eaf9;path=/;HttpOnly;Max-Age=3600
date: Sun, 05 May 2024 06:23:47 GMT
x-tengine-error: You are forbidden to list buckets
ali-swift-global-savetime: 1714890227
via: cache74.l2cn3160[25,24,403-1280,M], cache46.l2cn3160[26,0], kunlun10.cn2528[35,34,403-1280,M], kunlun7.cn2528[35,0]
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-error: orig response 4XX error
x-swift-savetime: Sun, 05 May 2024 06:23:47 GMT
x-swift-cachetime: 1
timing-allow-origin: *
eagleid: b465cb8917148902275382363e
X-Firefox-Spdy: h2
|
| s.jiangxiatech.com/jzshipinyasuo/JZVideoCompressIns.exe | 180.101.203.215 | | 42 MB |
URL s.jiangxiatech.com/jzshipinyasuo/JZVideoCompressIns.exe IP180.101.203.215:0 ASN#140292 CHINATELECOM Jiangsu province Suzhou 5G network
File typePE32 executable (GUI) Intel 80386, for MS Windows, Nullsoft Installer self-extracting archive, 5 sections Size42 MB (42268200 bytes) Hash4577fb2603750ba47923ce0640dd054b 022bb7567b3861c432fcae7da210dffb9ceb63e9 9df3b78e505f0affa7e8d71183e80359ac101287ca150527c1f43a87d534c24c
Analyzer | Verdict | Alert | VirusTotal | suspicious | |
GET /jzshipinyasuo/JZVideoCompressIns.exe HTTP/1.1
Host: s.jiangxiatech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Tengine
content-type: application/octet-stream
content-length: 42268200
set-cookie: acw_tc=b465cb8b17148902250184379ea5287a0fb35f2f6eedca7976c4687cf3;path=/;HttpOnly;Max-Age=3600
cdn_sec_tc=b465cb8b17148902250184379ea5287a0fb35f2f6eedca7976c4687cf3;path=/;HttpOnly;Max-Age=3600
date: Fri, 26 Apr 2024 23:39:15 GMT
x-oss-request-id: 662C3B23BEA4593038803B7E
x-oss-cdn-auth: success
accept-ranges: bytes
etag: "4577FB2603750BA47923CE0640DD054B"
last-modified: Thu, 07 Apr 2022 09:29:51 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 9886364239629876982
x-oss-storage-class: Standard
content-md5: RXf7JgN1C6R5I84GQN0FSw==
x-oss-server-time: 44
ali-swift-global-savetime: 1714174755
via: cache73.l2cn3022[0,14,200-0,H], cache31.l2cn3022[17,0], kunlun4.cn2528[0,0,200-0,H], kunlun9.cn2528[2,0]
age: 715470
x-cache: HIT TCP_MEM_HIT dirn:9:78928059
x-swift-savetime: Fri, 03 May 2024 18:54:58 GMT
x-swift-cachetime: 30516257
timing-allow-origin: *
eagleid: b465cb8b17148902250184379e
X-Firefox-Spdy: h2
|