Overview

URL jyylsz.com/html/sybz.html
IP104.223.149.45
ASNAS46573 Global Frag Networks
Location United States
Report completed2018-12-27 12:25:17 CET
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2018-12-27 2 jyylsz.com/yesads.js Malware
2018-12-27 2 jyylsz.com/html/sybz.html Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 104.223.149.45

Date UQ / IDS / BL URL IP
2019-02-18 17:19:09 +0100
0 - 0 - 1 cdxsgz.com/html/html2013shuxue_0722100.html 104.223.149.45
2019-01-20 15:26:03 +0100
0 - 0 - 2 cdxsgz.com/html/teacher-1_0-3454-3464.html 104.223.149.45
2019-01-18 21:53:52 +0100
0 - 0 - 2 cdxsgz.com/html/html2013yingyu_0817187.html 104.223.149.45
2018-12-30 02:49:41 +0100
0 - 0 - 2 cdxsgz.com/html/index.phpmcontent 104.223.149.45
2018-12-27 21:31:48 +0100
0 - 4 - 2 cdxsgz.com/htmlgaokaogaosan.html 104.223.149.45
2018-12-27 12:58:39 +0100
0 - 4 - 2 cdxsgz.com/html/html2013huaxue_0717401.html 104.223.149.45
2018-12-27 09:48:57 +0100
0 - 4 - 2 cdxsgz.com/html/teacher-1_0-0-3462.html 104.223.149.45
2018-12-04 18:06:26 +0100
0 - 4 - 2 cdxsgz.com/html/html2013shuxue_1108722.html 104.223.149.45
2018-12-03 06:50:25 +0100
0 - 0 - 2 cdxsgz.com/htmlxiaoshengchuwunianjiyingyu.html 104.223.149.45
2018-12-02 18:40:26 +0100
0 - 3 - 2 cdxsgz.com/html/teacher-1_0-0-3466.html 104.223.149.45

Last 10 reports on ASN: AS46573 Global Frag Networks

Date UQ / IDS / BL URL IP
2019-06-10 18:25:41 +0200
0 - 0 - 1 lcxunjie.cn/html/hdxzxstd86190.html 107.179.119.78
2019-06-10 18:25:19 +0200
0 - 0 - 1 sdvmj.cn/html/info345....xbjjxbjj.html 107.179.119.158
2019-06-10 18:25:02 +0200
0 - 0 - 1 jxylmuye.cn/html/bmgkjgsz.html 107.179.119.198
2019-06-10 18:24:57 +0200
0 - 0 - 1 phyxgs.com.cn/html/zsjz14252847496.html 107.179.119.182
2019-06-10 17:50:47 +0200
0 - 0 - 1 lylhf.com.cn/html/jiuyebaozhanghezuodanwei201 (...) 107.179.119.197
2019-06-10 17:50:45 +0200
0 - 0 - 1 jensmay.cn/html/.tztg201611....hysqk.html 107.179.119.216
2019-06-10 17:50:11 +0200
0 - 0 - 1 lyjiuhua136.cn/html/hyzx7641.html 107.179.119.198
2019-06-10 17:49:34 +0200
0 - 0 - 1 jinaotanye.com.cn/htmlzt2016bkhpc_hashaymnR1.html 107.179.119.16
2019-06-10 17:49:17 +0200
0 - 0 - 2 lczhggwz.com.cn/xzzxxwbgzl.html 107.179.119.77
2019-06-10 17:48:36 +0200
0 - 0 - 2 lczhggwz.com.cn/html/jxsw234404.html 107.179.119.77

Last 2 reports on domain: jyylsz.com

Date UQ / IDS / BL URL IP
2018-10-10 07:28:45 +0200
0 - 0 - 2 jyylsz.com/ 104.223.149.45
2018-06-11 06:08:29 +0200
0 - 4 - 7 jyylsz.com/ 104.223.149.45


JavaScript

Executed Scripts (2)


Executed Evals (0)


Executed Writes (1)

#1 JavaScript::Write (size: 87, repeated: 1) - SHA256: a72b285b9287c1181927cd290a6f6c08d519ebc6754bc9f04fce904ca106945e

                                        < script src = 'https://s95.b9823852351323h.com/by/dz.js'
type = 'text/javascript' > < /script>
                                    


HTTP Transactions (13)


Request Response
                                        
                                            GET /html/jjy.vsb.css HTTP/1.1 
Host: jyylsz.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://jyylsz.com/html/sybz.html

                                         
                                         104.223.149.45
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 27 Dec 2018 11:24:47 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075
                                        
                                            GET /images/_sitegray_sitegray_dcss.css HTTP/1.1 
Host: jyylsz.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://jyylsz.com/html/sybz.html

                                         
                                         104.223.149.45
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Length: 20
Last-Modified: Sat, 26 Nov 2016 23:13:59 GMT
Accept-Ranges: bytes
Etag: "f08dc5c43a48d21:106e0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 27 Dec 2018 11:24:47 GMT


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   20
Md5:    311749c1d5f9bcf240ca9c25eae61f47
Sha1:   29703f0938cab5945db52e553f3f22cbd7f0b478
Sha256: 183f83b69b6f7ced023f06bc9b98b2d00c9e08b5c627c1f6e9002f48f0bbfb5c
                                        
                                            GET /images/imagesicss.css HTTP/1.1 
Host: jyylsz.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://jyylsz.com/html/sybz.html

                                         
                                         104.223.149.45
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Length: 2236
Last-Modified: Sat, 26 Nov 2016 23:13:58 GMT
Accept-Ranges: bytes
Etag: "fc7d74c43a48d21:106e0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 27 Dec 2018 11:24:47 GMT


--- Additional Info ---
Magic:  UTF-8 Unicode text, with CRLF line terminators
Size:   2236
Md5:    b99a7bad19aad26d7ba5851ab8cc3d17
Sha1:   a60cf372f85776d9f4fc66d2e8341906cc9dd05e
Sha256: 427beb025893b5b592f055db93886c6ebfd7c89cccdcc73ed457e3b4fcc1bbbf
                                        
                                            GET /yesads.js HTTP/1.1 
Host: jyylsz.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://jyylsz.com/html/sybz.html

                                         
                                         104.223.149.45
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 106
Last-Modified: Thu, 13 Apr 2017 15:53:10 GMT
Accept-Ranges: bytes
Etag: "2c6326d6eb4d21:106e0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 27 Dec 2018 11:24:47 GMT


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   106
Md5:    17a8754edf85068082f8b1ac1519d80e
Sha1:   33a9c0cccfe3d299c1ebb6d77fc4e0097b35f5a9
Sha256: 85965e1cee169e6ea1129285cafdd3c90f4e7b046207290c9ad9bc51bc58afdf

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/imageslogo.jpg HTTP/1.1 
Host: jyylsz.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://jyylsz.com/html/sybz.html

                                         
                                         104.223.149.45
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 11195
Last-Modified: Sat, 26 Nov 2016 23:09:31 GMT
Accept-Ranges: bytes
Etag: "98d45d253a48d21:106e0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 27 Dec 2018 11:24:47 GMT


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   11195
Md5:    ccf1ca48d5d39591c68b543dcc4d3382
Sha1:   d45b55fd80e66b80a1db848173b001310945ebdb
Sha256: 39664b1a9526300af1e94c5129c23403447ae19a7d648846e74c3b6cdd4687a3
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.16
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Tue, 25 Dec 2018 02:28:39 GMT
Etag: 331351A0491FCCD730F0ECF01328B1656963E8DA
X-OCSP-Responder-ID: (null)
Content-Length: 471
Cache-Control: public, no-transform, must-revalidate, max-age=399232
Expires: Tue, 01 Jan 2019 02:18:38 GMT
Date: Thu, 27 Dec 2018 11:24:46 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   471
Md5:    1939d0b94db5975c93979e46edb9264b
Sha1:   331351a0491fccd730f0ecf01328b1656963e8da
Sha256: 44f7f8d27b10b498bb30ac1ad989a47f0caadabea5c1a668879221e54550e219
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.16
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Sun, 23 Dec 2018 00:16:54 GMT
Etag: FFBE822F7435E66F009E9D642D1B6372E129750A
X-OCSP-Responder-ID: (null)
Content-Length: 727
Cache-Control: public, no-transform, must-revalidate, max-age=218527
Expires: Sun, 30 Dec 2018 00:06:53 GMT
Date: Thu, 27 Dec 2018 11:24:46 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   727
Md5:    2733ac97030bdc9ee89ccb9701481fb9
Sha1:   ffbe822f7435e66f009e9d642d1b6372e129750a
Sha256: 6f72c51c8ecdceeb900dd25e14909f7f161b76f469a97732496b8765c11d2aa9
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Sun, 23 Dec 2018 00:16:54 GMT
Etag: 6A5D95EFC5C071B12022CA34FF507B2CD51C6F84
X-OCSP-Responder-ID: (null)
Content-Length: 471
Cache-Control: public, no-transform, must-revalidate, max-age=218555
Expires: Sun, 30 Dec 2018 00:07:21 GMT
Date: Thu, 27 Dec 2018 11:24:46 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   471
Md5:    ed2bd9e514e4a04b08ecd2258c719f90
Sha1:   6a5d95efc5c071b12022ca34ff507b2cd51c6f84
Sha256: 5bd53d76338daaa336630f4b3e04c4d011c63233be485ed05fbd9095e798201b
                                        
                                            GET /images/imagesyizhan.png HTTP/1.1 
Host: jyylsz.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://jyylsz.com/html/sybz.html

                                         
                                         104.223.149.45
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Content-Length: 38193
Last-Modified: Sat, 26 Nov 2016 23:09:44 GMT
Accept-Ranges: bytes
Etag: "3a3f32d3a48d21:106e0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 27 Dec 2018 11:24:47 GMT


--- Additional Info ---
Magic:  PNG image, 160 x 50, 8-bit/color RGBA, non-interlaced
Size:   38193
Md5:    fa27aaf298b0919341fdc6e803ed06c1
Sha1:   a764a38cc012d1438ff0d5fae2f1e439d20253c8
Sha256: c768533758990e7b0d157b3dc9c47d255e836e3401285c3508c7e5cf585cca09
                                        
                                            GET /html/sybz.html HTTP/1.1 
Host: jyylsz.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         104.223.149.45
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Content-Length: 115524
Last-Modified: Sat, 04 Aug 2018 02:47:24 GMT
Accept-Ranges: bytes
Etag: "76369799d2bd41:106e0"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 27 Dec 2018 11:24:47 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   115524
Md5:    00fcf322dc4ce60731e7b7a5129b607a
Sha1:   107da0a5b8120457ec1c63ee3a237d9d99e007b4
Sha256: 150cbcdad835f1d89f5aec38aca1e23040b8e808b293c24db3ac14839adabee7

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: jyylsz.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         104.223.149.45
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 27 Dec 2018 11:24:49 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: jyylsz.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         104.223.149.45
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 27 Dec 2018 11:24:52 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075
                                        
                                            GET /by/dz.js HTTP/1.1 
Host: s95.b9823852351323h.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://jyylsz.com/html/sybz.html

                                         
                                         0.0.0.0
                                        


--- Additional Info ---