| www.czzkf.com.cn/ | 45.38.119.3 | | 629 B |
IP45.38.119.3:0
File typeJavaScript source, ISO-8859 text, with CRLF line terminators Hashbd95ac54e37da6b3f1670c48aa9f2c1d e8031401aacefa6f47567f3a9a2e05885626e232 dc2b1e97f478450f55fc95a1ae2a5103f6d5bc831bb4491b608ea47a64ae6b9f
GET / HTTP/1.1
Host: www.czzkf.com.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 18 Apr 2024 07:50:02 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
|
|
| www.czzkf.com.cn/index.php | 45.38.119.3 | 200 OK | 629 B |
URL User Request GET HTTP/1.1www.czzkf.com.cn/index.php IP45.38.119.3:80
File typeJavaScript source, ISO-8859 text, with CRLF line terminators Hashbd95ac54e37da6b3f1670c48aa9f2c1d e8031401aacefa6f47567f3a9a2e05885626e232 dc2b1e97f478450f55fc95a1ae2a5103f6d5bc831bb4491b608ea47a64ae6b9f
GET /index.php HTTP/1.1
Host: www.czzkf.com.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 18 Apr 2024 07:50:03 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
|
|
| sdk.51.la/js-sdk-pro.min.js?id=KNoxgfHFMFbk09Lx&ck=KNoxgfHFMFbk09Lx | 47.246.44.238 | 200 OK | 13 kB |
URL GET HTTP/1.1sdk.51.la/js-sdk-pro.min.js?id=KNoxgfHFMFbk09Lx&ck=KNoxgfHFMFbk09Lx IP47.246.44.238:80 ASN#24429 Zhejiang Taobao Network Co.,Ltd
Requested byhttp://www.czzkf.com.cn/index.php
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (34110) Hash24bb520e9517f2ed3ed987b46aeaf723 846723563d7dd2bff3954f93633b11af0103adc8 d1f1bfe698f2ffb7b3e7a885a301d58f9554d45df0a31c3e8b53c84b33c80d27
GET /js-sdk-pro.min.js?id=KNoxgfHFMFbk09Lx&ck=KNoxgfHFMFbk09Lx HTTP/1.1
Host: sdk.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.czzkf.com.cn/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/javascript
Content-Length: 12846
Connection: keep-alive
Date: Wed, 10 Apr 2024 16:00:58 GMT
Vary: Accept-Encoding
x-oss-request-id: 6616B7BAAF475930316F1507
x-oss-cdn-auth: success
Last-Modified: Thu, 08 Jun 2023 02:24:34 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 5143829838470429443
x-oss-storage-class: Standard
Content-MD5: JLtSDpUX8u0+2Ye0aur3Iw==
x-oss-server-time: 3
Content-Encoding: gzip
Ali-Swift-Global-Savetime: 1712764858
Via: cache8.l2de2[0,0,200-0,H], cache25.l2de2[1,0], ens-cache11.se2[0,0,200-0,H], ens-cache2.se2[1,0]
Age: 661745
X-Cache: HIT TCP_HIT dirn:11:295433862
X-Swift-SaveTime: Wed, 10 Apr 2024 17:53:16 GMT
X-Swift-CacheTime: 1289262
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
EagleId: 2ff62c9617134266034814435e
|
|
| www.czzkf.com.cn/tj.js | 45.38.119.3 | 200 OK | 746 B |
IP45.38.119.3:80
Requested byhttp://www.czzkf.com.cn/index.php
File typeJavaScript source, ASCII text, with very long lines (438), with CRLF line terminators Hash9cc149d3892d7ba7d1178be13d7e70a1 869b741fca8293df8932df83bb68c2763a71a313 50e3f4bf25786d488f962f80947c52fc851a450b2e80a42c48e697d22492afb0
GET /tj.js HTTP/1.1
Host: www.czzkf.com.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.czzkf.com.cn/index.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 18 Apr 2024 07:50:03 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
|
|
| www.czzkf.com.cn/favicon.ico | 45.38.119.3 | 200 OK | 629 B |
URL GET HTTP/1.1www.czzkf.com.cn/favicon.ico IP45.38.119.3:80
Requested byhttp://www.czzkf.com.cn/index.php
File typeJavaScript source, ISO-8859 text, with CRLF line terminators Hashbd95ac54e37da6b3f1670c48aa9f2c1d e8031401aacefa6f47567f3a9a2e05885626e232 dc2b1e97f478450f55fc95a1ae2a5103f6d5bc831bb4491b608ea47a64ae6b9f
GET /favicon.ico HTTP/1.1
Host: www.czzkf.com.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.czzkf.com.cn/index.php
Cookie: __vtins__KNoxgfHFMFbk09Lx=%7B%22sid%22%3A%20%220e1b7166-8821-55db-bbc2-20df9bc17244%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201713428403571%2C%20%22ct%22%3A%201713426603571%7D; __51uvsct__KNoxgfHFMFbk09Lx=1; __51vcke__KNoxgfHFMFbk09Lx=997a6d56-b403-542b-b4bb-12e829d08647; __51vuft__KNoxgfHFMFbk09Lx=1713426603576
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 18 Apr 2024 07:50:04 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
|
|
| collect-v6.51.la/v6/collect?dt=4 | 203.107.86.226 | 406 | 0 B |
URL POST HTTP/1.1collect-v6.51.la/v6/collect?dt=4 IP203.107.86.226:80 ASN#37963 Hangzhou Alibaba Advertising Co.,Ltd.
Requested byhttp://www.czzkf.com.cn/index.php
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v6/collect?dt=4 HTTP/1.1
Host: collect-v6.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Length: 312
Origin: http://www.czzkf.com.cn
DNT: 1
Connection: keep-alive
Referer: http://www.czzkf.com.cn/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 406
Date: Thu, 18 Apr 2024 07:50:04 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: aliyungf_tc=034b6e40f9eb0d0fa0362e0f1a49c993f2bef8e949ece49cea6fd80410b1a8c7; Path=/; HttpOnly
acw_tc=ac11000117134266041462663ec47b2e31d64dd1a046265201108871d44d7a;path=/;HttpOnly;Max-Age=1800
Server: nginx
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Access-Control-Allow-Origin: http://www.czzkf.com.cn
Access-Control-Allow-Credentials: true
|
|
| hm.baidu.com/hm.js?1fff36475c1a279e2330fc7db6f421b3 | 111.45.3.198 | 200 OK | 0 B |
URL GET HTTP/1.1hm.baidu.com/hm.js?1fff36475c1a279e2330fc7db6f421b3 IP111.45.3.198:443 ASN#56040 China Mobile communications corporation
Requested byhttp://www.czzkf.com.cn/index.php CertificateIssuerGlobalSign nv-sa Subjectbaidu.com Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /hm.js?1fff36475c1a279e2330fc7db6f421b3 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.czzkf.com.cn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 0
Date: Thu, 18 Apr 2024 07:50:04 GMT
Server: apache
Strict-Transport-Security: max-age=172800
Content-Type: text/plain; charset=utf-8
|
|
| push.zhanzhang.baidu.com/push.js | 182.61.201.94 | 200 OK | 227 B |
URL GET HTTP/1.1push.zhanzhang.baidu.com/push.js IP182.61.201.94:80 ASN#38365 Beijing Baidu Netcom Science and Technology Co., Ltd.
Requested byhttp://www.czzkf.com.cn/index.php
File typeASCII text, with no line terminators Hash1bb5a3267c9865ad4abe8d937734b62b b5478dd2edb3e64242eced1db2dbd945ef81f592 674bc0c70f98d627b8a7e1d278a1f21ffe33815565f7d5371bf0275da57571b2
GET /push.js HTTP/1.1
Host: push.zhanzhang.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.czzkf.com.cn/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Content-Encoding: gzip
Content-Length: 227
Content-Type: text/javascript
Date: Thu, 18 Apr 2024 07:50:05 GMT
Etag: "4078521116"
Expires: Fri, 18 Apr 2025 07:50:05 GMT
Last-Modified: Wed, 25 Nov 2015 07:47:55 GMT
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: apache
Set-Cookie: BAIDUID=B975C55EEB83E79998D6E1A0AE0FECF5:FG=1; max-age=31536000; expires=Fri, 18-Apr-25 07:50:05 GMT; domain=.baidu.com; path=/; version=1
Vary: Accept-Encoding
|
|
| api.share.baidu.com/s.gif?l=http://www.czzkf.com.cn/index.php | 112.34.113.148 | 200 OK | 0 B |
URL GET HTTP/1.1api.share.baidu.com/s.gif?l=http://www.czzkf.com.cn/index.php IP112.34.113.148:80 ASN#9808 China Mobile Communications Group Co., Ltd.
Requested byhttp://www.czzkf.com.cn/index.php
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s.gif?l=http://www.czzkf.com.cn/index.php HTTP/1.1
Host: api.share.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.czzkf.com.cn/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 0
Content-Type: text/plain; charset=utf-8
Date: Thu, 18 Apr 2024 07:50:05 GMT
|
|
| 103.97.229.123:18902/ | 0.0.0.0 | | 0 B |
IP0.0.0.0:0
Requested byhttp://www.czzkf.com.cn/index.php
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 103.97.229.123:18902
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.czzkf.com.cn/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|
|