Report - www.cjtaobaojie.com/2015xglhc66qtmszt/2018-6-10/dfxjjzjl.html

Report Overview

Visited public
2023-10-02 12:06:57
Tags
URL
www.cjtaobaojie.com/2015xglhc66qtmszt/2018-6-10/dfxjjzjl.html
Finishing URL
www.cjtaobaojie.com/
IP / ASN
142.252.210.181
#18779 EGIHOSTING
Title
beat365手机中文官方网站 - beat365官方登录入口

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.zhu2021.cc	unknown	2021-10-25	2021-10-30 20:04:49	2023-10-01 12:23:58	1.7 kB	2.5 kB	43.243.30.13
www.tu2021.cc	unknown	2021-10-25	2021-10-25 19:42:04	2023-10-01 12:24:00	7.8 kB	1.7 MB	43.243.30.14
push.zhanzhang.baidu.com	57139	1999-10-11	2015-07-22 07:44:02	2023-10-02 04:38:54	332 B	0 B	0.0.0.0
www.cjtaobaojie.com	unknown	2023-08-12	2018-05-15 06:04:47	2023-10-01 15:46:08	25 kB	83 kB	142.252.210.181
js.users.51.la	53024	2005-01-17	2012-05-30 17:10:11	2023-10-02 02:50:23	2.4 kB	17 kB	42.236.73.41
ocsp.trust-provider.cn	unknown	2015-04-09	2022-02-10 09:18:30	2023-10-01 20:00:26	3.7 kB	16 kB	111.13.153.152
www.zhong2021.cc	unknown	2021-10-25	2021-10-30 20:04:49	2023-10-01 12:23:55	822 B	9.4 kB	43.243.30.15
ia.51.la	59607	2005-01-17	2017-10-31 09:01:51	2023-10-02 02:50:26	4.9 kB	1.7 kB	47.246.44.146
chengjiao.hebeu.edu.cn	unknown	unknown	2015-08-18 13:24:03	2023-09-19 15:16:59	438 B	1.3 kB	202.206.160.28

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-10-01	medium	www.cjtaobaojie.com/2015xglhc66qtmszt/2018-6-10/dfxjjzjl.html	Bet365
2023-09-18	medium	www.cjtaobaojie.com/	Bet365
2023-09-18	medium	www.cjtaobaojie.com/	Bet365
2023-09-18	medium	www.cjtaobaojie.com/	Bet365
2023-09-18	medium	www.cjtaobaojie.com/	Bet365
2023-09-18	medium	www.cjtaobaojie.com/	Bet365
2023-09-18	medium	www.cjtaobaojie.com/	Bet365
2023-09-18	medium	www.cjtaobaojie.com/	Bet365
2023-09-18	medium	www.cjtaobaojie.com/	Bet365
2023-09-18	medium	www.cjtaobaojie.com/	Bet365
2023-09-18	medium	www.cjtaobaojie.com/	Bet365
2023-09-18	medium	www.cjtaobaojie.com/	Bet365
2023-09-18	medium	www.cjtaobaojie.com/	Bet365
2023-09-18	medium	www.cjtaobaojie.com/	Bet365
2023-09-18	medium	www.cjtaobaojie.com/	Bet365
2023-09-18	medium	www.cjtaobaojie.com/	Bet365
2023-09-18	medium	www.cjtaobaojie.com/	Bet365
2023-09-18	medium	www.cjtaobaojie.com/	Bet365
2023-09-18	medium	www.cjtaobaojie.com/	Bet365
2023-09-18	medium	www.cjtaobaojie.com/	Bet365
2023-09-18	medium	www.cjtaobaojie.com/	Bet365
2023-09-18	medium	www.cjtaobaojie.com/	Bet365
2023-09-18	medium	www.cjtaobaojie.com/	Bet365
2023-09-18	medium	www.cjtaobaojie.com/	Bet365
2023-09-18	medium	www.cjtaobaojie.com/	Bet365
2023-09-18	medium	www.cjtaobaojie.com/	Bet365
2023-09-18	medium	www.cjtaobaojie.com/	Bet365
2023-09-18	medium	www.cjtaobaojie.com/	Bet365
2023-09-18	medium	www.cjtaobaojie.com/	Bet365
2023-09-18	medium	www.cjtaobaojie.com/	Bet365
2023-09-18	medium	www.cjtaobaojie.com/	Bet365
2023-09-18	medium	www.cjtaobaojie.com/	Bet365
2023-09-18	medium	www.cjtaobaojie.com/	Bet365
2023-09-18	medium	www.cjtaobaojie.com/	Bet365
2023-09-18	medium	www.cjtaobaojie.com/	Bet365

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (35)

	URL	From	Size	First Seen	Last Seen
	www.cjtaobaojie.com/jquery.min.js	ScriptElement	3.8 kB	2023-08-16	2025-05-05
Pretty URL www.cjtaobaojie.com/jquery.min.js IP 142.252.210.181 ASN #18779 EGIHOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-16 23:32 Last Seen2025-05-05 22:37 Times Seen486 Hash 77e024e950ad659c119e9515fcb05d45 7624d1e9898b607465f8abde519b8425840ca7c0 4c42a77c6e30924838b854b1dec7baf0578f857c539ad517644e50bdd843afc1 Loading...

	www.cjtaobaojie.com/	ScriptElement	57 B	2023-03-07	2025-05-11
Pretty URL www.cjtaobaojie.com/ IP 142.252.210.181 ASN #18779 EGIHOSTING Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:19 Last Seen2025-05-11 11:57 Times Seen2803 Hash 2d313be4b5d93e9b681de954aaeb3006 1e0508be1026244daf1812f988033612c3945bdb 9059d0d74efaf0e229d59a9c05ace7b975b42ccacea21e01aa64c56b2157048c Loading...

	js.users.51.la/21749309.js	ScriptElement	4.9 kB	2023-08-25	2024-08-21
Pretty URL js.users.51.la/21749309.js IP 42.236.73.41 ASN #4837 CHINA UNICOM China169 Backbone Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-25 23:06 Last Seen2024-08-21 08:03 Times Seen11 Hash e90c523bbf455485954994cf43247cdd 7914ab8cb5e6539aaf078b7c1e8a60916a8e4b44 83a978597a73bbf186e3857ba3909e9aa198bf10dc563d46da1cb98fcb5d78d1 Loading...

	www.cjtaobaojie.com/	ScriptElement	38 B	2023-08-25	2024-08-21
Pretty URL www.cjtaobaojie.com/ IP 142.252.210.181 ASN #18779 EGIHOSTING Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-25 23:06 Last Seen2024-08-21 08:03 Times Seen9 Hash ffad2af1a63dde90810780c9fa739eba 7db28b5473723d3c184705b7ef1d8dba3cdbcdb9 380b52956ce3f234e725c98adf00b8fb034e33eb1845d17cc7bb513e69046ed2 Loading...

	unknown	Function	6.1 kB	2023-04-12	2025-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 09:52 Last Seen2025-05-05 22:37 Times Seen641 Hash e6e202be3b91024705d88945543c96ea cc4d30c4cdc10aef026a70d2f89af0675de6ca39 5979c89b4cb4844f8e249cb6bf9e2c8bb0b87613b4ffa7bcc49997a6085b21e3 Loading...

	www.cjtaobaojie.com/	ScriptElement	404 B	2023-03-07	2025-05-11
Pretty URL www.cjtaobaojie.com/ IP 142.252.210.181 ASN #18779 EGIHOSTING Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 13:09 Times Seen2995 Hash 91862680df880ab56f799547b01a5900 bd184fe6e0e046873c1a606c89ce2d3eed4b689f 6520359b93c2e43efd5a58f422af308b43c718769a0989344a10f00b345ca0b2 Loading...

	unknown	Function	348 B	2023-04-12	2025-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 09:52 Last Seen2025-05-05 22:37 Times Seen642 Hash fa80ef6b97c7dbc7ff0f4fe3c47db7cd 96fc4fceae35679b08f2b85fc2be8044e3a7b434 ffb656ee5df398dd5cf3ecdb3c61d0f9a2801517d779dc6786737e152e261868 Loading...

	www.zhong2021.cc/jquery.minjs.js	ScriptElement	55 kB	2023-03-07	2025-05-05
Pretty URL www.zhong2021.cc/jquery.minjs.js IP 43.243.30.15 ASN #64050 BGPNET Global ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04 Last Seen2025-05-05 22:37 Times Seen645 Hash 0ae3a0bbe549b4e7470df716754e8c5a 9f52e9fe1886f2d2aaec02af557cd6281d7c0e0a cb53a28d1c0689aa226454348ac90b2f9f0fed2557bf4c586f76b70c35257655 Loading...

	www.cjtaobaojie.com/system/resource/js/openlink.js	ScriptElement	618 B	2023-03-07	2025-04-05
Pretty URL www.cjtaobaojie.com/system/resource/js/openlink.js IP 142.252.210.181 ASN #18779 EGIHOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04 Last Seen2025-04-05 11:47 Times Seen49 Hash 8ba30793e179c0c21442a1c404733ffc cb13f37aa8dd2743643c20617ea9846cc0ff23a4 dabc3915046d821ee48657dafc1e3b1cf45de875bed2c9ed0a923bc9ba1466d1 Loading...

	unknown	Function	2.7 kB	2023-04-12	2025-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 09:52 Last Seen2025-05-05 22:37 Times Seen641 Hash ad0b6f18075e1a85f8e31f0db62f602c 2c2e02f166065372c48dfedf2668d928d5697d87 f918e73feaba5cf55d6e89d952189209086f3f81dea83f612959153cfef533b3 Loading...

	www.cjtaobaojie.com/js/index.js	ScriptElement	1.9 kB	2023-08-25	2023-10-02
Pretty URL www.cjtaobaojie.com/js/index.js IP 142.252.210.181 ASN #18779 EGIHOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-25 23:06 Last Seen2023-10-02 14:07 Times Seen10 Hash 09156d51635833bbc23b744efcdd31e6 a992823ebd055d5fc22bf5a7a27b436ae70bb617 4af817d2e430d3c90748cb6daa35c8b5e559de6e523332e10faf5e380d8f6af1 Loading...

	www.cjtaobaojie.com/_sitegray/_sitegray.js	ScriptElement	91 B	2023-03-07	2025-04-05
Pretty URL www.cjtaobaojie.com/_sitegray/_sitegray.js IP 142.252.210.181 ASN #18779 EGIHOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04 Last Seen2025-04-05 11:47 Times Seen110 Hash 7b8ea1159c99283310ed514ef543026b b90dc9ae9dcf59372f251efa5f680b1b6cb579d2 4203753162ab83a587168249d73517143c96526dd9ff0ea4b9f19e2cffff43dc Loading...

	www.cjtaobaojie.com/system/resource/js/counter.js	ScriptElement	1.3 kB	2023-03-07	2025-04-05
Pretty URL www.cjtaobaojie.com/system/resource/js/counter.js IP 142.252.210.181 ASN #18779 EGIHOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04 Last Seen2025-04-05 11:47 Times Seen72 Hash f0e15593f4ac92837c52def11e96977a dc5ceabc33bb1f6b5aca7b434c4451767e361f68 88e3e43d21ee10abc7e1e1325ae15a0cfc63755d17ad9e0102aa1393ab16fb6d Loading...

	unknown	Function	154 B	2023-04-12	2025-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 09:52 Last Seen2025-05-05 22:37 Times Seen644 Hash 78d264cae48e242715f22678930663b1 5f963ce5cf05cb95e090f51027c6c8dd8a71cc09 c72c003633467d2233040fabafcbd285a75e0ff93800bf2c185b6b16b585c8a6 Loading...

	www.cjtaobaojie.com/system/resource/js/base64.js	ScriptElement	4.6 kB	2023-03-11	2023-12-04
Pretty URL www.cjtaobaojie.com/system/resource/js/base64.js IP 142.252.210.181 ASN #18779 EGIHOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:36 Last Seen2023-12-04 07:37 Times Seen11 Hash d56a17d86305cb55bab1f743eb1e0905 45ec02ef4b5c8c23ad869b5c40380f851eae61ef 050ce33fd881cf997039baaeae926c76ba09b056e05f3dc186c42693762f3789 Loading...

	www.cjtaobaojie.com/	ScriptElement	2.4 kB	2023-08-25	2024-08-21
Pretty URL www.cjtaobaojie.com/ IP 142.252.210.181 ASN #18779 EGIHOSTING Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-25 23:06 Last Seen2024-08-21 08:03 Times Seen9 Hash d6bd3575bdd9f370267c4d343ecafeeb c855743de8efe209d98b915a482da89e21544366 125e69f35fd667423284165676a8fdd3f47a7bfb058953d446d16860ed2f57c7 Loading...

	www.cjtaobaojie.com/	ScriptElement	803 B	2023-08-25	2024-08-21
Pretty URL www.cjtaobaojie.com/ IP 142.252.210.181 ASN #18779 EGIHOSTING Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-25 23:06 Last Seen2024-08-21 08:03 Times Seen9 Hash 7e84f60378fb338096e2086da140cc0f 8a27ac3e41451d5215c64995041619e54ab5f686 12554610d4aa360cd613fe423b84fe082cef377713ce16381f472e13e4be7bf7 Loading...

	www.cjtaobaojie.com/tj.js	ScriptElement	208 B	2023-08-25	2024-08-21
Pretty URL www.cjtaobaojie.com/tj.js IP 142.252.210.181 ASN #18779 EGIHOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-25 23:06 Last Seen2024-08-21 08:03 Times Seen14 Hash a12ec3bef32b2f95374cba4e9d2b68a6 ac669d2986c5e23bfef8d91ff7b2358a1ab4f50a 8fe1b02a503b713d544527e6e22b342970853b959944ac092fb1de51bd9f7cd7 Loading...

	www.cjtaobaojie.com/js/jquery.SuperSlide.2.1.1.js	ScriptElement	11 kB	2023-04-05	2025-05-10
Pretty URL www.cjtaobaojie.com/js/jquery.SuperSlide.2.1.1.js IP 142.252.210.181 ASN #18779 EGIHOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 04:17 Last Seen2025-05-10 11:10 Times Seen796 Hash fd7557b79ce6261f027b3f360ca5fa78 e2975accbbfbb6daf9f4b6f0a48c93b6aa043407 3400defd7bd2f094fbbe42a2449fa23bf573516631e76cc7451da186d14a1e4a Loading...

	www.cjtaobaojie.com/	ScriptElement	169 B	2023-08-25	2024-08-21
Pretty URL www.cjtaobaojie.com/ IP 142.252.210.181 ASN #18779 EGIHOSTING Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-25 23:06 Last Seen2024-08-21 08:03 Times Seen9 Hash 17f72b84e9a8ac51d93240a7afb99294 b743ede7550f9b5aee7ac4efcddc3f06e73b2422 729610d76c92d099a7f41e6810b0b20fc35655a9d31d2809deadc9ce489e0f34 Loading...

	www.cjtaobaojie.com/system/resource/js/formfunc.js	ScriptElement	1.3 kB	2023-03-08	2024-10-14
Pretty URL www.cjtaobaojie.com/system/resource/js/formfunc.js IP 142.252.210.181 ASN #18779 EGIHOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:27 Last Seen2024-10-14 21:58 Times Seen24 Hash 807cbf628c397aa678cbade924204f80 248843ed26f613995b3d5d377a03ac3cbbacd51c 774721990b753f6fdfde906724098547b6928f1d85bec2b804a960a344ee6b36 Loading...

	js.users.51.la/21763327.js	ScriptElement	5.2 kB	2023-08-16	2025-04-13
Pretty URL js.users.51.la/21763327.js IP 42.236.73.41 ASN #4837 CHINA UNICOM China169 Backbone Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-16 23:32 Last Seen2025-04-13 04:56 Times Seen419 Hash ca6da77f0f7fcadae6959c7cb507d43d 5d128ceae4058038dce16dc13d0ac5c86aeb29e6 21cd39717870246ba51b265d6a519ad8c16e8f917a1dd34294d534c1c5fab1c5 Loading...

	www.cjtaobaojie.com/js/jquery1.42.min.js	ScriptElement	94 kB	2023-08-25	2024-08-21
Pretty URL www.cjtaobaojie.com/js/jquery1.42.min.js IP 142.252.210.181 ASN #18779 EGIHOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-25 23:06 Last Seen2024-08-21 08:03 Times Seen10 Hash d572ddb7d04589d7deaae4ff16a7418e 708016240c37925b2933008ae2ec2b1707945c7c 6481f04d185109eeb716830c75e9fd7c210b29b38e4e2eb68c1ef7a6ba692f5a Loading...

	js.users.51.la/21748769.js	ScriptElement	5.2 kB	2023-08-09	2025-01-15
Pretty URL js.users.51.la/21748769.js IP 42.236.73.41 ASN #4837 CHINA UNICOM China169 Backbone Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-09 09:27 Last Seen2025-01-15 01:50 Times Seen25 Hash eb50412385cd647b82c55b7f122a1f09 c3dd9819b7d4b498479877ace31866a4189efd80 dea92b41e6d405db77a675c1150d36870517ce02d13cd0e108915b3496955396 Loading...

	www.cjtaobaojie.com/	ScriptElement	194 B	2023-09-19	2024-08-21
Pretty URL www.cjtaobaojie.com/ IP 142.252.210.181 ASN #18779 EGIHOSTING Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-19 14:25 Last Seen2024-08-21 06:20 Times Seen6 Hash 901aba382f70577ffa3bf3828efd56e9 38e62e2bac736f530f69acea39b5df151c264d8d 1acc1858ba6c4f37debc0542ad3aa1b8d1dc369fed510eed7a7f8231bd93a8c1 Loading...

	www.cjtaobaojie.com/	ScriptElement	69 B	2023-08-25	2024-08-21
Pretty URL www.cjtaobaojie.com/ IP 142.252.210.181 ASN #18779 EGIHOSTING Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-25 23:06 Last Seen2024-08-21 08:03 Times Seen9 Hash 10e0fb7e0df24c7917b1270f183bf67e 4f619f6bfe14daf9e6ccfb9334d705afec662480 bca34fe4cc9b991d6d36c99ac962d12369d8d0ac682125d6c00432a607241d67 Loading...

	www.cjtaobaojie.com/system/resource/js/dynclicks.js	ScriptElement	3.4 kB	2023-03-07	2025-04-05
Pretty URL www.cjtaobaojie.com/system/resource/js/dynclicks.js IP 142.252.210.181 ASN #18779 EGIHOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04 Last Seen2025-04-05 11:47 Times Seen70 Hash 5157382605664ad2c8eec733c257aab8 7f13185959f873bf946289a1449176103919fed2 1b5f20c219d37427be2c6b019f2cc625ef8d8bf5fe13b46c246532428ff5efee Loading...

	www.cjtaobaojie.com/	ScriptElement	194 B	2023-08-25	2024-08-21
Pretty URL www.cjtaobaojie.com/ IP 142.252.210.181 ASN #18779 EGIHOSTING Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-25 23:06 Last Seen2024-08-21 08:03 Times Seen9 Hash c86037552ddc8e462180b5c373ba5f94 0cddddde5e1ecbb28d9d8037d3abfa05a93dd3b0 d40e5c0b99fd66a7548bc1a90f09504c6b1b27d70fd532393c655032d40f7f5b Loading...

		Size	First Seen	Last Seen
	#1 Write - 4384036ea3610ac7157652c7fd33892e	82 B	2023-08-25 23:06	2024-08-21 08:03
Pretty Observations First Seen2023-08-25 23:06 Last Seen2024-08-21 08:03 Times Seen14 Hash 4384036ea3610ac7157652c7fd33892e 4fc1102e8dd16f1712554d384e6b7ae35d72d274 4c1c2c56aa7f613f9f82fc7d08daa9b59231ad4fac8f438219bb7af971a38321 Loading...

	#2 Write - e2a1ddc974e61a9f888d3a30c4e47901	258 B	2023-08-04 09:10	2025-01-15 01:50
Pretty Observations First Seen2023-08-04 09:10 Last Seen2025-01-15 01:50 Times Seen28 Hash e2a1ddc974e61a9f888d3a30c4e47901 ea3774847fde1e38eb4bf9f7192db5f2888a1444 f1924889027ceaad014a7510a686d3bb94c070f84c2df321bbe9fcd65f5de69e Loading...

	#3 Write - dcb3fbe3effe6d9b34200284c5eb0d51	109 B	2023-03-07 12:04	2025-05-05 22:37
Pretty Observations First Seen2023-03-07 12:04 Last Seen2025-05-05 22:37 Times Seen646 Hash dcb3fbe3effe6d9b34200284c5eb0d51 6fdaeb6c9e2f513acca77edc3a4a38982b320d66 b56319d601f26bb1e9c05dd0ea7299d3a44d22149f5702b9a59db4f21b268fc5 Loading...

	#4 Write - e5d7376d826668db1d2f9073d2630d52	82 B	2023-08-16 23:32	2025-05-05 22:37
Pretty Observations First Seen2023-08-16 23:32 Last Seen2025-05-05 22:37 Times Seen484 Hash e5d7376d826668db1d2f9073d2630d52 d0b6b5337b6c25232e8e6eb9836c09acf1409506 5412b78ff8a9402523edf7e9d623ec9ee58ea4056dc9f2f96beda578e8957148 Loading...

	#5 Write - 107a685b26749844b27e72ee2f059d0e	258 B	2023-08-16 23:32	2025-05-05 22:37
Pretty Observations First Seen2023-08-16 23:32 Last Seen2025-05-05 22:37 Times Seen448 Hash 107a685b26749844b27e72ee2f059d0e d4c2198d5384a492e2537005c2fc33afe539b1ea d32969876700cf662c056a987a03375b059e3bb6c0edd37f10489bcf59d72606 Loading...

	#6 Write - 427fac19715ac34791fc242e9705b380	3.0 kB	2023-10-02 13:23	2023-10-03 02:24
Pretty Observations First Seen2023-10-02 13:23 Last Seen2023-10-03 02:24 Times Seen3 Hash 427fac19715ac34791fc242e9705b380 11a42d69e4d65447bade8b66f4e63cdaa6490d25 41de33f6121739e7193b112b032270051a360fa2ae14c2fd5397fe9b699eba1b Loading...

	#7 Write - 7fbed2e60707c12965a61198302df920	82 B	2023-08-04 09:10	2025-01-15 01:50
Pretty Observations First Seen2023-08-04 09:10 Last Seen2025-01-15 01:50 Times Seen28 Hash 7fbed2e60707c12965a61198302df920 66016112c9c7f038d5fc3fb6a78be589e71a0e37 bc61b24485a815c227008823420131fe652d3ec4949e7c515c64c8d9d11bf580 Loading...

HTTP Transactions (81)

URL IP Response Size

www.cjtaobaojie.com/2015xglhc66qtmszt/2018-6-10/dfxjjzjl.html

142.252.210.181

1.1 kB

URL
www.cjtaobaojie.com/2015xglhc66qtmszt/2018-6-10/dfxjjzjl.html
IP
142.252.210.181:0
ASN
#18779 EGIHOSTING

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with CRLF, LF line terminators
Size
1.1 kB (1072 bytes)
Hash
71dfe7ed542a2cebe47e04af52083e97
bde00ea4ba3baf634bd298b72b68ff1c7a381ce4
b6dc6a8889fe49b8ab5f00af28d21eabafc7a535cf3bb5a016d40ba3890899ba

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bet365

HTTP Headers

GET /2015xglhc66qtmszt/2018-6-10/dfxjjzjl.html HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 12:07:34 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip

www.cjtaobaojie.com/jquery.min.js

142.252.210.181

200 OK

704 B

URL GET HTTP/1.1
www.cjtaobaojie.com/jquery.min.js
IP
142.252.210.181:80
ASN
#18779 EGIHOSTING

Requested by
http://www.cjtaobaojie.com/

File type
HTML document, ASCII text, with very long lines (3686)
Size
704 B (704 bytes)
Hash
77e024e950ad659c119e9515fcb05d45
7624d1e9898b607465f8abde519b8425840ca7c0
4c42a77c6e30924838b854b1dec7baf0578f857c539ad517644e50bdd843afc1

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bet365

HTTP Headers

GET /jquery.min.js HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/2015xglhc66qtmszt/2018-6-10/dfxjjzjl.html
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 12:07:35 GMT
Content-Type: application/javascript
Last-Modified: Tue, 22 Aug 2023 01:31:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"64e40fe8-ed1"
Expires: Mon, 02 Oct 2023 13:07:35 GMT
Cache-Control: max-age=3600
Content-Encoding: gzip

js.users.51.la/21763327.js

42.236.73.41

200 OK

2.5 kB

URL GET HTTP/1.1
js.users.51.la/21763327.js
IP
42.236.73.41:443
ASN
#4837 CHINA UNICOM China169 Backbone

Requested by
http://www.cjtaobaojie.com/
Certificate
IssuerGlobalSign nv-sa
Subject*.users.51.la
Fingerprint8E:9F:59:98:28:F2:49:A9:E1:19:45:C2:49:ED:B2:F6:B8:E1:C6:39
ValidityFri, 14 Apr 2023 03:17:41 GMT - Wed, 15 May 2024 03:17:40 GMT

File type
HTML document, ASCII text, with very long lines (5207), with no line terminators
Size
2.5 kB (2507 bytes)
Hash
ca6da77f0f7fcadae6959c7cb507d43d
5d128ceae4058038dce16dc13d0ac5c86aeb29e6
21cd39717870246ba51b265d6a519ad8c16e8f917a1dd34294d534c1c5fab1c5

HTTP Headers

GET /21763327.js HTTP/1.1
Host: js.users.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: openresty
Date: Mon, 02 Oct 2023 12:06:40 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: *
Cache-Control: no-store
Access-Control-Allow-Credentials: true
Content-Encoding: gzip

ocsp.trust-provider.cn/

111.13.153.152

600 B

URL
ocsp.trust-provider.cn/
IP
111.13.153.152:0
ASN
#9808 China Mobile Communications Group Co., Ltd.

File type
data
Size
600 B (600 bytes)
Hash
23367a994e78147417aa7e63d9a1c8c5
785b8e147359cc9e51e6970e0b7f958dd2e30e3c
3422b58cd8649d66ebf2f882512a0872dc9c3564a3d834b2e5b2c20fc91dffa2

HTTP Headers

POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: volc-dcdn
Content-Type: application/ocsp-response
Content-Length: 600
Connection: keep-alive
Date: Mon, 02 Oct 2023 12:06:40 GMT
Accept-Ranges: bytes
Age: 1
CF-Cache-Status: MISS
CF-RAY: 80e1d0d9bf7b515b-HKG
ETag: "785b8e147359cc9e51e6970e0b7f958dd2e30e3c"
Expires: Fri, 06 Oct 2023 04:10:20 GMT
Last-Modified: Fri, 29 Sep 2023 04:10:21 GMT
WS-Cache-Status: 0
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
X-Via: 1.1 PSxgHK6no106:2 (Cdn Cache Server V2.0), 1.1 PS-CZX-01Lzq142:15 (Cdn Cache Server V2.0), 1.1 12A146831:6 (Cdn Cache Server V2.0)
X-Ws-Request-Id: 651ab250_12124589_37473-61367
via: n173-159-129.bdcdn-bjcm.ToB
x-request-ip: 91.90.42.154
x-tt-trace-tag: id=5
x-dsa-trace-id: 169624840058a7988ff7ac0162cfeeace295238cd1
X-Dsa-Origin-Status: 200
server-timing: cdn-cache;desc=MISS, origin;dur=4, edge;dur=0

ocsp.trust-provider.cn/

111.13.153.152

600 B

URL
ocsp.trust-provider.cn/
IP
111.13.153.152:0
ASN
#9808 China Mobile Communications Group Co., Ltd.

File type
data
Size
600 B (600 bytes)
Hash
23367a994e78147417aa7e63d9a1c8c5
785b8e147359cc9e51e6970e0b7f958dd2e30e3c
3422b58cd8649d66ebf2f882512a0872dc9c3564a3d834b2e5b2c20fc91dffa2

HTTP Headers

POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: volc-dcdn
Content-Type: application/ocsp-response
Content-Length: 600
Connection: keep-alive
Date: Mon, 02 Oct 2023 12:06:40 GMT
Accept-Ranges: bytes
Age: 1
CF-Cache-Status: MISS
CF-RAY: 80e1d0d9bf7b515b-HKG
ETag: "785b8e147359cc9e51e6970e0b7f958dd2e30e3c"
Expires: Fri, 06 Oct 2023 04:10:20 GMT
Last-Modified: Fri, 29 Sep 2023 04:10:21 GMT
WS-Cache-Status: 0
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
X-Via: 1.1 PSxgHK6no106:2 (Cdn Cache Server V2.0), 1.1 PS-CZX-01Lzq142:15 (Cdn Cache Server V2.0), 1.1 12A146831:6 (Cdn Cache Server V2.0)
X-Ws-Request-Id: 651ab250_12124589_37692-25209
via: n173-159-130.bdcdn-bjcm.ToB
x-request-ip: 91.90.42.154
x-tt-trace-tag: id=5
x-dsa-trace-id: 1696248400cbc8822aab05525d28ec130491692e39
X-Dsa-Origin-Status: 200
server-timing: cdn-cache;desc=MISS, origin;dur=4, edge;dur=0

www.zhong2021.cc/jquery.minjs.js

43.243.30.15

200 OK

4.3 kB

URL GET HTTP/1.1
www.zhong2021.cc/jquery.minjs.js
IP
43.243.30.15:443
ASN
#64050 BGPNET Global ASN

Requested by
http://www.cjtaobaojie.com/
Certificate
IssuerTrustAsia Technologies, Inc.
Subjectzhong2021.cc
Fingerprint5C:A8:A0:50:1A:4C:D6:5E:17:2F:1A:D9:AD:56:8A:C8:FA:9C:1B:24
ValidityTue, 25 Oct 2022 00:00:00 GMT - Wed, 25 Oct 2023 23:59:59 GMT

File type
ASCII text, with very long lines (54610), with CRLF line terminators
Size
4.3 kB (4278 bytes)
Hash
0ae3a0bbe549b4e7470df716754e8c5a
9f52e9fe1886f2d2aaec02af557cd6281d7c0e0a
cb53a28d1c0689aa226454348ac90b2f9f0fed2557bf4c586f76b70c35257655

HTTP Headers

GET /jquery.minjs.js HTTP/1.1
Host: www.zhong2021.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 12:06:41 GMT
Content-Type: application/javascript
Last-Modified: Mon, 25 Oct 2021 19:42:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6177089c-d554"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Content-Encoding: gzip

www.cjtaobaojie.com/favicon.ico

142.252.210.181

9.7 kB

URL
www.cjtaobaojie.com/favicon.ico
IP
142.252.210.181:0
ASN
#18779 EGIHOSTING

File type
MS Windows icon resource - 1 icon, 48x48, 32 bits/pixel\012- data
Size
9.7 kB (9662 bytes)
Hash
1af6c08eb07f675c862fa3cd50640511
bfc9fbddea831a3cae067a570bcb4450280c7f45
7fc7fdb7ea134949cefdbd00ac02724e091e0201c1cee06795f84db28a1586d4

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bet365

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/2015xglhc66qtmszt/2018-6-10/dfxjjzjl.html
Cookie: __tins__21763327=%7B%22sid%22%3A%201696248401683%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250201683%7D; __51cke__=; __51laig__=1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 12:07:37 GMT
Content-Type: image/x-icon
Content-Length: 9662
Last-Modified: Tue, 22 Aug 2023 01:31:20 GMT
Connection: keep-alive
ETag: "64e40fe8-25be"
Accept-Ranges: bytes

ia.51.la/go1?id=21763327&rt=1696248401683&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=&ing=1&ekc=&sid=1696248401683&tt=beat365%25E6%2589%258B%25E6%259C%25BA%25E4%25B8%25AD%25E6%2596%2587%25E5%25AE%2598%25E6%2596%25B9%25E7%25BD%2591%25E7%25AB%2599%2520-%2520beat365%25E5%25AE%2598%25E6%2596%25B9%25E7%2599%25BB%25E5%25BD%2595%25E5%2585%25A5%25E5%258F%25A3&kw=&cu=http%253A%252F%252Fwww.cjtaobaojie.com%252F2015xglhc66qtmszt%252F2018-6-10%252Fdfxjjzjl.html&pu=

47.246.44.146

0 B

URL
ia.51.la/go1?id=21763327&rt=1696248401683&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=&ing=1&ekc=&sid=1696248401683&tt=beat365%25E6%2589%258B%25E6%259C%25BA%25E4%25B8%25AD%25E6%2596%2587%25E5%25AE%2598%25E6%2596%25B9%25E7%25BD%2591%25E7%25AB%2599%2520-%2520beat365%25E5%25AE%2598%25E6%2596%25B9%25E7%2599%25BB%25E5%25BD%2595%25E5%2585%25A5%25E5%258F%25A3&kw=&cu=http%253A%252F%252Fwww.cjtaobaojie.com%252F2015xglhc66qtmszt%252F2018-6-10%252Fdfxjjzjl.html&pu=
IP
47.246.44.146:0
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /go1?id=21763327&rt=1696248401683&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=&ing=1&ekc=&sid=1696248401683&tt=beat365%25E6%2589%258B%25E6%259C%25BA%25E4%25B8%25AD%25E6%2596%2587%25E5%25AE%2598%25E6%2596%25B9%25E7%25BD%2591%25E7%25AB%2599%2520-%2520beat365%25E5%25AE%2598%25E6%2596%25B9%25E7%2599%25BB%25E5%25BD%2595%25E5%2585%25A5%25E5%258F%25A3&kw=&cu=http%253A%252F%252Fwww.cjtaobaojie.com%252F2015xglhc66qtmszt%252F2018-6-10%252Fdfxjjzjl.html&pu= HTTP/1.1
Host: ia.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Tengine
Content-Length: 0
Connection: keep-alive
Date: Mon, 02 Oct 2023 12:05:56 GMT
Ali-Swift-Global-Savetime: 1696248402
Via: cache11.l2de2[353,353,200-0,M], cache23.l2de2[354,0], cache5.se1[375,375,200-0,M], cache5.se1[376,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Mon, 02 Oct 2023 12:06:41 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9916962484016147135e

ocsp.trust-provider.cn/

111.13.153.152

600 B

URL
ocsp.trust-provider.cn/
IP
111.13.153.152:0
ASN
#9808 China Mobile Communications Group Co., Ltd.

File type
data
Size
600 B (600 bytes)
Hash
a897af2fa59f1c221537593d9906dd66
116482e6d89719905721eb56d90a71c326d98084
0455e85d03e1fecf04f64bb206685aeca22a520631be6bd5614c52fe9f2a7fee

HTTP Headers

POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: volc-dcdn
Content-Type: application/ocsp-response
Content-Length: 600
Connection: keep-alive
Date: Mon, 02 Oct 2023 12:06:42 GMT
Accept-Ranges: bytes
Age: 1
CF-Cache-Status: EXPIRED
CF-RAY: 80fbb59f3f04091b-SEA
ETag: "116482e6d89719905721eb56d90a71c326d98084"
Expires: Mon, 09 Oct 2023 08:16:49 GMT
Last-Modified: Mon, 02 Oct 2023 08:16:50 GMT
WS-Cache-Status: 0
X-CCACDN-Proxy-ID: scdpinlb5
X-Frame-Options: SAMEORIGIN
X-Via: 1.1 PSsxtyyd2os43:14 (Cdn Cache Server V2.0), 1.1 12124589:6 (Cdn Cache Server V2.0)
X-Ws-Request-Id: 651ab252_12A146831_16911-45588
via: n173-159-129.bdcdn-bjcm.ToB
x-request-ip: 91.90.42.154
x-tt-trace-tag: id=5
x-dsa-trace-id: 1696248402df3771332c01f77b24dd63cf46fd4389
X-Dsa-Origin-Status: 200
server-timing: cdn-cache;desc=MISS, origin;dur=4, edge;dur=0

ocsp.trust-provider.cn/

111.13.153.152

600 B

URL
ocsp.trust-provider.cn/
IP
111.13.153.152:0
ASN
#9808 China Mobile Communications Group Co., Ltd.

File type
data
Size
600 B (600 bytes)
Hash
a897af2fa59f1c221537593d9906dd66
116482e6d89719905721eb56d90a71c326d98084
0455e85d03e1fecf04f64bb206685aeca22a520631be6bd5614c52fe9f2a7fee

HTTP Headers

POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: volc-dcdn
Content-Type: application/ocsp-response
Content-Length: 600
Connection: keep-alive
Date: Mon, 02 Oct 2023 12:06:42 GMT
Accept-Ranges: bytes
Age: 1
CF-Cache-Status: EXPIRED
CF-RAY: 80fbb59f3f04091b-SEA
ETag: "116482e6d89719905721eb56d90a71c326d98084"
Expires: Mon, 09 Oct 2023 08:16:49 GMT
Last-Modified: Mon, 02 Oct 2023 08:16:50 GMT
WS-Cache-Status: 0
X-CCACDN-Proxy-ID: scdpinlb5
X-Frame-Options: SAMEORIGIN
X-Via: 1.1 PSsxtyyd2os43:14 (Cdn Cache Server V2.0), 1.1 PSbjyd4hh12:0 (Cdn Cache Server V2.0)
X-Ws-Request-Id: 651ab252_PSbjyd4hh12_21346-33883
via: n173-159-130.bdcdn-bjcm.ToB
x-request-ip: 91.90.42.154
x-tt-trace-tag: id=5
x-dsa-trace-id: 1696248402e2a844e7753999cff0ee7d4aff40037d
X-Dsa-Origin-Status: 200
server-timing: cdn-cache;desc=MISS, origin;dur=6, edge;dur=0

www.zhu2021.cc/hbt/index.php?keyword=beat365%E6%89%8B%E6%9C%BA%E4%B8%AD%E6%96%87%E5%AE%98%E6%96%B9%E7%BD%91%E7%AB%99%20-%20beat365%E5%AE%98%E6%96%B9%E7%99%BB%E5%BD%95%E5%85%A5%E5%8F%A3&from=pc&originurl=http%3A%2F%2Fwww.cjtaobaojie.com%2F2015xglhc66qtmszt%2F2018-6-10%2Fdfxjjzjl.html&referer=&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&v=9392

43.243.30.13

902 B

URL
www.zhu2021.cc/hbt/index.php?keyword=beat365%E6%89%8B%E6%9C%BA%E4%B8%AD%E6%96%87%E5%AE%98%E6%96%B9%E7%BD%91%E7%AB%99%20-%20beat365%E5%AE%98%E6%96%B9%E7%99%BB%E5%BD%95%E5%85%A5%E5%8F%A3&from=pc&originurl=http%3A%2F%2Fwww.cjtaobaojie.com%2F2015xglhc66qtmszt%2F2018-6-10%2Fdfxjjzjl.html&referer=&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&v=9392
IP
43.243.30.13:0
ASN
#64050 BGPNET Global ASN

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (2954), with no line terminators
Size
902 B (902 bytes)
Hash
427fac19715ac34791fc242e9705b380
11a42d69e4d65447bade8b66f4e63cdaa6490d25
41de33f6121739e7193b112b032270051a360fa2ae14c2fd5397fe9b699eba1b

HTTP Headers

GET /hbt/index.php?keyword=beat365%E6%89%8B%E6%9C%BA%E4%B8%AD%E6%96%87%E5%AE%98%E6%96%B9%E7%BD%91%E7%AB%99%20-%20beat365%E5%AE%98%E6%96%B9%E7%99%BB%E5%BD%95%E5%85%A5%E5%8F%A3&from=pc&originurl=http%3A%2F%2Fwww.cjtaobaojie.com%2F2015xglhc66qtmszt%2F2018-6-10%2Fdfxjjzjl.html&referer=&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&v=9392 HTTP/1.1
Host: www.zhu2021.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.cjtaobaojie.com
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 12:06:42 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Content-Encoding: gzip

www.cjtaobaojie.com/tj.js

142.252.210.181

200 OK

208 B

URL GET HTTP/1.1
www.cjtaobaojie.com/tj.js
IP
142.252.210.181:80
ASN
#18779 EGIHOSTING

Requested by
http://www.cjtaobaojie.com/

File type
HTML document, ASCII text, with CRLF line terminators
Size
208 B (208 bytes)
Hash
a12ec3bef32b2f95374cba4e9d2b68a6
ac669d2986c5e23bfef8d91ff7b2358a1ab4f50a
8fe1b02a503b713d544527e6e22b342970853b959944ac092fb1de51bd9f7cd7

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bet365

HTTP Headers

GET /tj.js HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/2015xglhc66qtmszt/2018-6-10/dfxjjzjl.html
Cookie: __tins__21763327=%7B%22sid%22%3A%201696248401683%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250201683%7D; __51cke__=; __51laig__=1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 12:07:39 GMT
Content-Type: application/javascript
Content-Length: 208
Last-Modified: Tue, 22 Aug 2023 01:31:20 GMT
Connection: keep-alive
ETag: "64e40fe8-d0"
Expires: Mon, 02 Oct 2023 13:07:39 GMT
Cache-Control: max-age=3600
Accept-Ranges: bytes

js.users.51.la/21748769.js

42.236.73.41

200 OK

2.5 kB

URL GET HTTP/1.1
js.users.51.la/21748769.js
IP
42.236.73.41:443
ASN
#4837 CHINA UNICOM China169 Backbone

Requested by
http://www.cjtaobaojie.com/
Certificate
IssuerGlobalSign nv-sa
Subject*.users.51.la
Fingerprint8E:9F:59:98:28:F2:49:A9:E1:19:45:C2:49:ED:B2:F6:B8:E1:C6:39
ValidityFri, 14 Apr 2023 03:17:41 GMT - Wed, 15 May 2024 03:17:40 GMT

File type
HTML document, ASCII text, with very long lines (5207), with no line terminators
Size
2.5 kB (2507 bytes)
Hash
eb50412385cd647b82c55b7f122a1f09
c3dd9819b7d4b498479877ace31866a4189efd80
dea92b41e6d405db77a675c1150d36870517ce02d13cd0e108915b3496955396

HTTP Headers

GET /21748769.js HTTP/1.1
Host: js.users.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: openresty
Date: Mon, 02 Oct 2023 12:06:43 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: *
Cache-Control: no-store
Access-Control-Allow-Credentials: true
Content-Encoding: gzip

js.users.51.la/21749309.js

42.236.73.41

200 OK

2.3 kB

URL GET HTTP/1.1
js.users.51.la/21749309.js
IP
42.236.73.41:443
ASN
#4837 CHINA UNICOM China169 Backbone

Requested by
http://www.cjtaobaojie.com/
Certificate
IssuerGlobalSign nv-sa
Subject*.users.51.la
Fingerprint8E:9F:59:98:28:F2:49:A9:E1:19:45:C2:49:ED:B2:F6:B8:E1:C6:39
ValidityFri, 14 Apr 2023 03:17:41 GMT - Wed, 15 May 2024 03:17:40 GMT

File type
ASCII text, with very long lines (4898), with no line terminators
Size
2.3 kB (2307 bytes)
Hash
e90c523bbf455485954994cf43247cdd
7914ab8cb5e6539aaf078b7c1e8a60916a8e4b44
83a978597a73bbf186e3857ba3909e9aa198bf10dc563d46da1cb98fcb5d78d1

HTTP Headers

GET /21749309.js HTTP/1.1
Host: js.users.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: openresty
Date: Mon, 02 Oct 2023 12:06:43 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: *
Cache-Control: no-store
Access-Control-Allow-Credentials: true
Content-Encoding: gzip

ia.51.la/go1?id=21748769&rt=1696248403742&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=&ing=2&ekc=&sid=1696248403742&tt=beat365%25E6%2589%258B%25E6%259C%25BA%25E4%25B8%25AD%25E6%2596%2587%25E5%25AE%2598%25E6%2596%25B9%25E7%25BD%2591%25E7%25AB%2599%2520-%2520beat365%25E5%25AE%2598%25E6%2596%25B9%25E7%2599%25BB%25E5%25BD%2595%25E5%2585%25A5%25E5%258F%25A3&kw=&cu=http%253A%252F%252Fwww.cjtaobaojie.com%252F2015xglhc66qtmszt%252F2018-6-10%252Fdfxjjzjl.html&pu=

47.246.44.146

0 B

URL
ia.51.la/go1?id=21748769&rt=1696248403742&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=&ing=2&ekc=&sid=1696248403742&tt=beat365%25E6%2589%258B%25E6%259C%25BA%25E4%25B8%25AD%25E6%2596%2587%25E5%25AE%2598%25E6%2596%25B9%25E7%25BD%2591%25E7%25AB%2599%2520-%2520beat365%25E5%25AE%2598%25E6%2596%25B9%25E7%2599%25BB%25E5%25BD%2595%25E5%2585%25A5%25E5%258F%25A3&kw=&cu=http%253A%252F%252Fwww.cjtaobaojie.com%252F2015xglhc66qtmszt%252F2018-6-10%252Fdfxjjzjl.html&pu=
IP
47.246.44.146:0
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /go1?id=21748769&rt=1696248403742&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=&ing=2&ekc=&sid=1696248403742&tt=beat365%25E6%2589%258B%25E6%259C%25BA%25E4%25B8%25AD%25E6%2596%2587%25E5%25AE%2598%25E6%2596%25B9%25E7%25BD%2591%25E7%25AB%2599%2520-%2520beat365%25E5%25AE%2598%25E6%2596%25B9%25E7%2599%25BB%25E5%25BD%2595%25E5%2585%25A5%25E5%258F%25A3&kw=&cu=http%253A%252F%252Fwww.cjtaobaojie.com%252F2015xglhc66qtmszt%252F2018-6-10%252Fdfxjjzjl.html&pu= HTTP/1.1
Host: ia.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Tengine
Content-Length: 0
Connection: keep-alive
Date: Mon, 02 Oct 2023 12:02:39 GMT
Ali-Swift-Global-Savetime: 1696248403
Via: cache7.l2fr1[348,347,200-0,M], cache26.l2fr1[349,0], cache1.se1[411,411,200-0,M], cache5.se1[412,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Mon, 02 Oct 2023 12:06:43 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9916962484033412591e

ia.51.la/go1?id=21749309&rt=1696248403996&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=&ing=3&ekc=&sid=1696248403996&tt=beat365%25E6%2589%258B%25E6%259C%25BA%25E4%25B8%25AD%25E6%2596%2587%25E5%25AE%2598%25E6%2596%25B9%25E7%25BD%2591%25E7%25AB%2599%2520-%2520beat365%25E5%25AE%2598%25E6%2596%25B9%25E7%2599%25BB%25E5%25BD%2595%25E5%2585%25A5%25E5%258F%25A3&kw=&cu=http%253A%252F%252Fwww.cjtaobaojie.com%252F2015xglhc66qtmszt%252F2018-6-10%252Fdfxjjzjl.html&pu=

47.246.44.146

0 B

URL
ia.51.la/go1?id=21749309&rt=1696248403996&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=&ing=3&ekc=&sid=1696248403996&tt=beat365%25E6%2589%258B%25E6%259C%25BA%25E4%25B8%25AD%25E6%2596%2587%25E5%25AE%2598%25E6%2596%25B9%25E7%25BD%2591%25E7%25AB%2599%2520-%2520beat365%25E5%25AE%2598%25E6%2596%25B9%25E7%2599%25BB%25E5%25BD%2595%25E5%2585%25A5%25E5%258F%25A3&kw=&cu=http%253A%252F%252Fwww.cjtaobaojie.com%252F2015xglhc66qtmszt%252F2018-6-10%252Fdfxjjzjl.html&pu=
IP
47.246.44.146:0
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /go1?id=21749309&rt=1696248403996&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=&ing=3&ekc=&sid=1696248403996&tt=beat365%25E6%2589%258B%25E6%259C%25BA%25E4%25B8%25AD%25E6%2596%2587%25E5%25AE%2598%25E6%2596%25B9%25E7%25BD%2591%25E7%25AB%2599%2520-%2520beat365%25E5%25AE%2598%25E6%2596%25B9%25E7%2599%25BB%25E5%25BD%2595%25E5%2585%25A5%25E5%258F%25A3&kw=&cu=http%253A%252F%252Fwww.cjtaobaojie.com%252F2015xglhc66qtmszt%252F2018-6-10%252Fdfxjjzjl.html&pu= HTTP/1.1
Host: ia.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Tengine
Content-Length: 0
Connection: keep-alive
Date: Mon, 02 Oct 2023 12:05:01 GMT
Ali-Swift-Global-Savetime: 1696248404
Via: cache3.l2de2[400,400,200-0,M], cache16.l2de2[402,0], cache3.se1[423,422,200-0,M], cache3.se1[424,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Mon, 02 Oct 2023 12:06:44 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9716962484036121498e

ocsp.trust-provider.cn/

36.143.236.7

600 B

URL
ocsp.trust-provider.cn/
IP
36.143.236.7:0
ASN
#24547 Hebei Mobile Communication Company Limited

File type
data
Size
600 B (600 bytes)
Hash
f35471f19d17dfd3049e79966b075df3
c4033bc77a9a625cb5df079a6aba76b827197d4b
824fba0ad828930c825e8aa521b4bea13451035360c83b43bfb6998f30e267d7

HTTP Headers

POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: volc-dcdn
Content-Type: application/ocsp-response
Content-Length: 600
Connection: keep-alive
Date: Mon, 02 Oct 2023 12:06:44 GMT
Accept-Ranges: bytes
Age: 1
CF-Cache-Status: EXPIRED
CF-RAY: 80e4a0859c35c57e-SEA
ETag: "c4033bc77a9a625cb5df079a6aba76b827197d4b"
Expires: Fri, 06 Oct 2023 12:47:28 GMT
Last-Modified: Fri, 29 Sep 2023 12:47:29 GMT
WS-Cache-Status: 0
X-CCACDN-Proxy-ID: scdpinlb1
X-Frame-Options: SAMEORIGIN
X-Via: 1.1 PSzjnbydby45:11 (Cdn Cache Server V2.0), 1.1 PSbjyd4hh12:1 (Cdn Cache Server V2.0)
X-Ws-Request-Id: 651ab254_PSbjyd4dq13_11831-50578
via: n173-145-133.bdcdn-hbcdcm02.ToB
x-request-ip: 91.90.42.154
x-tt-trace-tag: id=5
x-dsa-trace-id: 169624840462c14485b66dcb4918f01ec50306126f
X-Dsa-Origin-Status: 200
server-timing: cdn-cache;desc=MISS, origin;dur=20, edge;dur=0

ocsp.trust-provider.cn/

111.13.153.152

600 B

URL
ocsp.trust-provider.cn/
IP
111.13.153.152:0
ASN
#9808 China Mobile Communications Group Co., Ltd.

File type
data
Size
600 B (600 bytes)
Hash
f35471f19d17dfd3049e79966b075df3
c4033bc77a9a625cb5df079a6aba76b827197d4b
824fba0ad828930c825e8aa521b4bea13451035360c83b43bfb6998f30e267d7

HTTP Headers

POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: volc-dcdn
Content-Type: application/ocsp-response
Content-Length: 600
Connection: keep-alive
Date: Mon, 02 Oct 2023 12:06:44 GMT
Accept-Ranges: bytes
Age: 1
CF-Cache-Status: EXPIRED
CF-RAY: 80e4a0859c35c57e-SEA
ETag: "c4033bc77a9a625cb5df079a6aba76b827197d4b"
Expires: Fri, 06 Oct 2023 12:47:28 GMT
Last-Modified: Fri, 29 Sep 2023 12:47:29 GMT
WS-Cache-Status: 0
X-CCACDN-Proxy-ID: scdpinlb1
X-Frame-Options: SAMEORIGIN
X-Via: 1.1 PSzjnbydby45:11 (Cdn Cache Server V2.0), 1.1 12A146831:6 (Cdn Cache Server V2.0)
X-Ws-Request-Id: 651ab254_12A146831_16641-35255
via: n173-159-129.bdcdn-bjcm.ToB
x-request-ip: 91.90.42.154
x-tt-trace-tag: id=5
x-dsa-trace-id: 169624840490aed5ee381be6ccdbc8c074cc6a7ccd
X-Dsa-Origin-Status: 200
server-timing: cdn-cache;desc=MISS, origin;dur=4, edge;dur=0

ocsp.trust-provider.cn/

111.13.153.152

600 B

URL
ocsp.trust-provider.cn/
IP
111.13.153.152:0
ASN
#9808 China Mobile Communications Group Co., Ltd.

File type
data
Size
600 B (600 bytes)
Hash
f35471f19d17dfd3049e79966b075df3
c4033bc77a9a625cb5df079a6aba76b827197d4b
824fba0ad828930c825e8aa521b4bea13451035360c83b43bfb6998f30e267d7

HTTP Headers

POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: volc-dcdn
Content-Type: application/ocsp-response
Content-Length: 600
Connection: keep-alive
Date: Mon, 02 Oct 2023 12:06:44 GMT
Accept-Ranges: bytes
Age: 1
CF-Cache-Status: EXPIRED
CF-RAY: 80e4a0859c35c57e-SEA
ETag: "c4033bc77a9a625cb5df079a6aba76b827197d4b"
Expires: Fri, 06 Oct 2023 12:47:28 GMT
Last-Modified: Fri, 29 Sep 2023 12:47:29 GMT
WS-Cache-Status: 0
X-CCACDN-Proxy-ID: scdpinlb1
X-Frame-Options: SAMEORIGIN
X-Via: 1.1 PSzjnbydby45:11 (Cdn Cache Server V2.0), 1.1 12A146831:6 (Cdn Cache Server V2.0)
X-Ws-Request-Id: 651ab254_12124589_37356-29526
via: n173-159-130.bdcdn-bjcm.ToB
x-request-ip: 91.90.42.154
x-tt-trace-tag: id=5
x-dsa-trace-id: 16962484040816b4526a9ca1952b402e83aaccddb1
X-Dsa-Origin-Status: 200
server-timing: cdn-cache;desc=MISS, origin;dur=4, edge;dur=0

ocsp.trust-provider.cn/

36.143.236.7

600 B

URL
ocsp.trust-provider.cn/
IP
36.143.236.7:0
ASN
#24547 Hebei Mobile Communication Company Limited

File type
data
Size
600 B (600 bytes)
Hash
f35471f19d17dfd3049e79966b075df3
c4033bc77a9a625cb5df079a6aba76b827197d4b
824fba0ad828930c825e8aa521b4bea13451035360c83b43bfb6998f30e267d7

HTTP Headers

POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: volc-dcdn
Content-Type: application/ocsp-response
Content-Length: 600
Connection: keep-alive
Date: Mon, 02 Oct 2023 12:06:44 GMT
Accept-Ranges: bytes
Age: 1
CF-Cache-Status: EXPIRED
CF-RAY: 80e4a0859c35c57e-SEA
ETag: "c4033bc77a9a625cb5df079a6aba76b827197d4b"
Expires: Fri, 06 Oct 2023 12:47:28 GMT
Last-Modified: Fri, 29 Sep 2023 12:47:29 GMT
WS-Cache-Status: 0
X-CCACDN-Proxy-ID: scdpinlb1
X-Frame-Options: SAMEORIGIN
X-Via: 1.1 PSzjnbydby45:11 (Cdn Cache Server V2.0), 1.1 PSbjyd4hh12:1 (Cdn Cache Server V2.0)
X-Ws-Request-Id: 651ab254_PSbjyd4dq13_11684-61854
via: n173-145-132.bdcdn-hbcdcm02.ToB
x-request-ip: 91.90.42.154
x-tt-trace-tag: id=5
x-dsa-trace-id: 16962484042b5b62662f0574014415522b43dcc624
X-Dsa-Origin-Status: 200
server-timing: cdn-cache;desc=MISS, origin;dur=20, edge;dur=0

ocsp.trust-provider.cn/

36.143.236.7

600 B

URL
ocsp.trust-provider.cn/
IP
36.143.236.7:0
ASN
#24547 Hebei Mobile Communication Company Limited

File type
data
Size
600 B (600 bytes)
Hash
f35471f19d17dfd3049e79966b075df3
c4033bc77a9a625cb5df079a6aba76b827197d4b
824fba0ad828930c825e8aa521b4bea13451035360c83b43bfb6998f30e267d7

HTTP Headers

POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: volc-dcdn
Content-Type: application/ocsp-response
Content-Length: 600
Connection: keep-alive
Date: Mon, 02 Oct 2023 12:06:44 GMT
Accept-Ranges: bytes
CF-Cache-Status: EXPIRED
CF-RAY: 80e4a0859c35c57e-SEA
ETag: "c4033bc77a9a625cb5df079a6aba76b827197d4b"
Expires: Fri, 06 Oct 2023 12:47:28 GMT
Last-Modified: Fri, 29 Sep 2023 12:47:29 GMT
WS-Cache-Status: 0
X-CCACDN-Proxy-ID: scdpinlb1
X-Frame-Options: SAMEORIGIN
X-Via: 1.1 PSzjnbydby45:11 (Cdn Cache Server V2.0), 1.1 PSbjyd4hh12:1 (Cdn Cache Server V2.0)
X-Ws-Request-Id: 651ab254_PSbjyd4dq13_11831-50590
via: n173-145-133.bdcdn-hbcdcm02.ToB
x-request-ip: 91.90.42.154
x-tt-trace-tag: id=5
x-dsa-trace-id: 169624840421983a9b0510649cb00ab63ba86dcd99
X-Dsa-Origin-Status: 200
server-timing: cdn-cache;desc=MISS, origin;dur=20, edge;dur=0

www.tu2021.cc/uploads/fjb8negh3smbqnvwzjptz1bg713i4hxyvo3.jpg

43.243.30.14

200 OK

56 kB

URL GET HTTP/1.1
www.tu2021.cc/uploads/fjb8negh3smbqnvwzjptz1bg713i4hxyvo3.jpg
IP
43.243.30.14:443
ASN
#64050 BGPNET Global ASN

Requested by
http://www.cjtaobaojie.com/
Certificate
IssuerTrustAsia Technologies, Inc.
Subjecttu2021.cc
FingerprintC3:52:2A:C4:68:ED:14:B1:B1:84:49:6C:C0:A1:AC:9F:61:41:4C:DA
ValidityTue, 25 Oct 2022 00:00:00 GMT - Wed, 25 Oct 2023 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x100, components 3\012- data
Size
56 kB (56006 bytes)
Hash
87a9d827f6fd871223024b40b2646b9c
43bcec1633466893da0118ff81ebc1d875392f66
0c4a77dab5f3db9cc2269f073c9d8b182029128598d56c90a7d14b43f9f62947

HTTP Headers

GET /uploads/fjb8negh3smbqnvwzjptz1bg713i4hxyvo3.jpg HTTP/1.1
Host: www.tu2021.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 12:06:44 GMT
Content-Type: image/jpeg
Content-Length: 56006
Last-Modified: Sun, 28 Mar 2021 16:11:41 GMT
Connection: keep-alive
ETag: "6060aabd-dac6"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Accept-Ranges: bytes

www.tu2021.cc/uploads/2w4xbloeayhr2qyrw7r89gb4y0b5mue1kkw.jpg

43.243.30.14

200 OK

57 kB

URL GET HTTP/1.1
www.tu2021.cc/uploads/2w4xbloeayhr2qyrw7r89gb4y0b5mue1kkw.jpg
IP
43.243.30.14:443
ASN
#64050 BGPNET Global ASN

Requested by
http://www.cjtaobaojie.com/
Certificate
IssuerTrustAsia Technologies, Inc.
Subjecttu2021.cc
FingerprintC3:52:2A:C4:68:ED:14:B1:B1:84:49:6C:C0:A1:AC:9F:61:41:4C:DA
ValidityTue, 25 Oct 2022 00:00:00 GMT - Wed, 25 Oct 2023 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x100, components 3\012- data
Size
57 kB (57413 bytes)
Hash
2e599e6d4d3d33ff4de9f6729899c960
ba96b8f555d5907c0b67c723aaeba8250098e61c
3bba9661f9ad5b20934c5a85fdb31b01006948f2dcb27ff7f81cbd958b2c4fb5

HTTP Headers

GET /uploads/2w4xbloeayhr2qyrw7r89gb4y0b5mue1kkw.jpg HTTP/1.1
Host: www.tu2021.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 12:06:44 GMT
Content-Type: image/jpeg
Content-Length: 57413
Last-Modified: Sun, 28 Mar 2021 16:11:36 GMT
Connection: keep-alive
ETag: "6060aab8-e045"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Accept-Ranges: bytes

www.tu2021.cc/uploads/29800tuc0cyqvejurllnadd3n4g776ur4t2.jpg

43.243.30.14

200 OK

50 kB

URL GET HTTP/1.1
www.tu2021.cc/uploads/29800tuc0cyqvejurllnadd3n4g776ur4t2.jpg
IP
43.243.30.14:443
ASN
#64050 BGPNET Global ASN

Requested by
http://www.cjtaobaojie.com/
Certificate
IssuerTrustAsia Technologies, Inc.
Subjecttu2021.cc
FingerprintC3:52:2A:C4:68:ED:14:B1:B1:84:49:6C:C0:A1:AC:9F:61:41:4C:DA
ValidityTue, 25 Oct 2022 00:00:00 GMT - Wed, 25 Oct 2023 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x100, components 3\012- data
Size
50 kB (50516 bytes)
Hash
7925f7dd6392dcb4f188398fa87e8c0c
030ad16e6e28d2b8520427bf57d48e7fa38a65a4
552c475fe29e8eabac0760a6d4e5f74a0165ca447e269614a01bdbc7b60a7353

HTTP Headers

GET /uploads/29800tuc0cyqvejurllnadd3n4g776ur4t2.jpg HTTP/1.1
Host: www.tu2021.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 12:06:45 GMT
Content-Type: image/jpeg
Content-Length: 50516
Last-Modified: Sun, 28 Mar 2021 16:11:40 GMT
Connection: keep-alive
ETag: "6060aabc-c554"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Accept-Ranges: bytes

www.tu2021.cc/uploads/paitzj07zvxugn13378sow5zwetoygu2894.jpg

43.243.30.14

200 OK

122 kB

URL GET HTTP/1.1
www.tu2021.cc/uploads/paitzj07zvxugn13378sow5zwetoygu2894.jpg
IP
43.243.30.14:443
ASN
#64050 BGPNET Global ASN

Requested by
http://www.cjtaobaojie.com/
Certificate
IssuerTrustAsia Technologies, Inc.
Subjecttu2021.cc
FingerprintC3:52:2A:C4:68:ED:14:B1:B1:84:49:6C:C0:A1:AC:9F:61:41:4C:DA
ValidityTue, 25 Oct 2022 00:00:00 GMT - Wed, 25 Oct 2023 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x300, components 3\012- data
Size
122 kB (122448 bytes)
Hash
bdb928b9f05aebbae9e7cf032ac28efd
c32b54c79ac41e763385dec605225ab93f3e0232
ae45a91af40072d1e132cfe05bcf84cf182de0af80d71f52eff96448c5d38835

HTTP Headers

GET /uploads/paitzj07zvxugn13378sow5zwetoygu2894.jpg HTTP/1.1
Host: www.tu2021.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 12:06:44 GMT
Content-Type: image/jpeg
Content-Length: 122448
Last-Modified: Sun, 28 Mar 2021 16:11:43 GMT
Connection: keep-alive
ETag: "6060aabf-1de50"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Accept-Ranges: bytes

www.tu2021.cc/uploads/3819t6tzm6ocdjxzd9lflbkbjw4vqvfe77i.jpg

43.243.30.14

200 OK

53 kB

URL GET HTTP/1.1
www.tu2021.cc/uploads/3819t6tzm6ocdjxzd9lflbkbjw4vqvfe77i.jpg
IP
43.243.30.14:443
ASN
#64050 BGPNET Global ASN

Requested by
http://www.cjtaobaojie.com/
Certificate
IssuerTrustAsia Technologies, Inc.
Subjecttu2021.cc
FingerprintC3:52:2A:C4:68:ED:14:B1:B1:84:49:6C:C0:A1:AC:9F:61:41:4C:DA
ValidityTue, 25 Oct 2022 00:00:00 GMT - Wed, 25 Oct 2023 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x100, components 3\012- data
Size
53 kB (52696 bytes)
Hash
09a9c5e99ec33235f28bdca03b58682e
81d68e1a6bc09d122f9a0984c23dffc01b8d1c1c
0a5fbab46d0fed48a729000dc2c5415bea823742bc19cc2e4118f8844627414b

HTTP Headers

GET /uploads/3819t6tzm6ocdjxzd9lflbkbjw4vqvfe77i.jpg HTTP/1.1
Host: www.tu2021.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 12:06:45 GMT
Content-Type: image/jpeg
Content-Length: 52696
Last-Modified: Sun, 28 Mar 2021 16:11:40 GMT
Connection: keep-alive
ETag: "6060aabc-cdd8"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Accept-Ranges: bytes

www.tu2021.cc/uploads/291wu9ropi8eyj8ngdzh8b0ygl9d7d5cvek.jpg

43.243.30.14

200 OK

62 kB

URL GET HTTP/1.1
www.tu2021.cc/uploads/291wu9ropi8eyj8ngdzh8b0ygl9d7d5cvek.jpg
IP
43.243.30.14:443
ASN
#64050 BGPNET Global ASN

Requested by
http://www.cjtaobaojie.com/
Certificate
IssuerTrustAsia Technologies, Inc.
Subjecttu2021.cc
FingerprintC3:52:2A:C4:68:ED:14:B1:B1:84:49:6C:C0:A1:AC:9F:61:41:4C:DA
ValidityTue, 25 Oct 2022 00:00:00 GMT - Wed, 25 Oct 2023 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x100, components 3\012- data
Size
62 kB (62211 bytes)
Hash
c8e43ccc9c88624a86c0c190719d55ba
c273eba44ea68dbccaf44c36ef5d4c24cfdaee26
c34da23b1f8b51d2f0799b39e06ea1342347e7d4b32f39bbd94fa4cfb0cc1cfb

HTTP Headers

GET /uploads/291wu9ropi8eyj8ngdzh8b0ygl9d7d5cvek.jpg HTTP/1.1
Host: www.tu2021.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 12:06:45 GMT
Content-Type: image/jpeg
Content-Length: 62211
Last-Modified: Sun, 28 Mar 2021 16:11:39 GMT
Connection: keep-alive
ETag: "6060aabb-f303"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Accept-Ranges: bytes

www.tu2021.cc/uploads/x0jcb56nn6282jrj23pacjr8pmcarekhkh3.jpg

43.243.30.14

200 OK

57 kB

URL GET HTTP/1.1
www.tu2021.cc/uploads/x0jcb56nn6282jrj23pacjr8pmcarekhkh3.jpg
IP
43.243.30.14:443
ASN
#64050 BGPNET Global ASN

Requested by
http://www.cjtaobaojie.com/
Certificate
IssuerTrustAsia Technologies, Inc.
Subjecttu2021.cc
FingerprintC3:52:2A:C4:68:ED:14:B1:B1:84:49:6C:C0:A1:AC:9F:61:41:4C:DA
ValidityTue, 25 Oct 2022 00:00:00 GMT - Wed, 25 Oct 2023 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x100, components 3\012- data
Size
57 kB (56884 bytes)
Hash
795fdd629261bbfff623483c6cb6f160
deca291d31bff5e123c3e192d7404976b2192ec5
8e948fa556ac4998fe70fd5eb00c0c14988c884e83d204f711bb5f59c444fdff

HTTP Headers

GET /uploads/x0jcb56nn6282jrj23pacjr8pmcarekhkh3.jpg HTTP/1.1
Host: www.tu2021.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 12:06:46 GMT
Content-Type: image/jpeg
Content-Length: 56884
Last-Modified: Sun, 28 Mar 2021 16:11:46 GMT
Connection: keep-alive
ETag: "6060aac2-de34"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Accept-Ranges: bytes

www.cjtaobaojie.com/

142.252.210.181

200 OK

6.8 kB

URL User Request GET HTTP/1.1
www.cjtaobaojie.com/
IP
142.252.210.181:80
ASN
#18779 EGIHOSTING

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with CRLF, LF line terminators
Size
6.8 kB (6848 bytes)
Hash
78771eee56a5633cd34df599a55b1d66
ba08da305c467ec7d8c7acbcf39dd9f96ea15dd0
24eb147054f7f7185fe5f66a8ed6731043132d49261391b26dbae29b3c8d20d6

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bet365

HTTP Headers

GET / HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.cjtaobaojie.com/2015xglhc66qtmszt/2018-6-10/dfxjjzjl.html
DNT: 1
Connection: keep-alive
Cookie: __tins__21763327=%7B%22sid%22%3A%201696248401683%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250201683%7D; __51cke__=; __51laig__=3; __tins__21748769=%7B%22sid%22%3A%201696248403742%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203742%7D; __tins__21749309=%7B%22sid%22%3A%201696248403996%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203996%7D
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 12:07:42 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip

www.cjtaobaojie.com/jquery.min.js

142.252.210.181

200 OK

704 B

URL GET HTTP/1.1
www.cjtaobaojie.com/jquery.min.js
IP
142.252.210.181:80
ASN
#18779 EGIHOSTING

Requested by
http://www.cjtaobaojie.com/

File type
HTML document, ASCII text, with very long lines (3686)
Size
704 B (704 bytes)
Hash
77e024e950ad659c119e9515fcb05d45
7624d1e9898b607465f8abde519b8425840ca7c0
4c42a77c6e30924838b854b1dec7baf0578f857c539ad517644e50bdd843afc1

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bet365

HTTP Headers

GET /jquery.min.js HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696248401683%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250201683%7D; __51cke__=; __51laig__=3; __tins__21748769=%7B%22sid%22%3A%201696248403742%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203742%7D; __tins__21749309=%7B%22sid%22%3A%201696248403996%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203996%7D
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 12:07:43 GMT
Content-Type: application/javascript
Last-Modified: Tue, 22 Aug 2023 01:31:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"64e40fe8-ed1"
Expires: Mon, 02 Oct 2023 13:07:43 GMT
Cache-Control: max-age=3600
Content-Encoding: gzip

www.cjtaobaojie.com/js/jquery.SuperSlide.2.1.1.js

142.252.210.181

200 OK

3.9 kB

URL GET HTTP/1.1
www.cjtaobaojie.com/js/jquery.SuperSlide.2.1.1.js
IP
142.252.210.181:80
ASN
#18779 EGIHOSTING

Requested by
http://www.cjtaobaojie.com/

File type
Unicode text, UTF-8 text, with very long lines (11013)
Size
3.9 kB (3940 bytes)
Hash
169167b16256501954e8b27ae2f717c4
a55a5b630b037452bb1ade6e02599977320239a2
e0b29895b573e456b8fa3c7fe7380425b20fcb36c511b50b60cffc23ffcf2b0f

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bet365

HTTP Headers

GET /js/jquery.SuperSlide.2.1.1.js HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696248401683%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250201683%7D; __51cke__=; __51laig__=3; __tins__21748769=%7B%22sid%22%3A%201696248403742%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203742%7D; __tins__21749309=%7B%22sid%22%3A%201696248403996%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203996%7D
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 12:07:43 GMT
Content-Type: application/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip

www.cjtaobaojie.com/js/index.js

142.252.210.181

200 OK

639 B

URL GET HTTP/1.1
www.cjtaobaojie.com/js/index.js
IP
142.252.210.181:80
ASN
#18779 EGIHOSTING

Requested by
http://www.cjtaobaojie.com/

File type
Unicode text, UTF-8 text
Size
639 B (639 bytes)
Hash
09156d51635833bbc23b744efcdd31e6
a992823ebd055d5fc22bf5a7a27b436ae70bb617
4af817d2e430d3c90748cb6daa35c8b5e559de6e523332e10faf5e380d8f6af1

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bet365

HTTP Headers

GET /js/index.js HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696248401683%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250201683%7D; __51cke__=; __51laig__=3; __tins__21748769=%7B%22sid%22%3A%201696248403742%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203742%7D; __tins__21749309=%7B%22sid%22%3A%201696248403996%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203996%7D
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 12:07:43 GMT
Content-Type: application/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip

www.cjtaobaojie.com/_sitegray/_sitegray.js

142.252.210.181

200 OK

98 B

URL GET HTTP/1.1
www.cjtaobaojie.com/_sitegray/_sitegray.js
IP
142.252.210.181:80
ASN
#18779 EGIHOSTING

Requested by
http://www.cjtaobaojie.com/

File type
ASCII text
Size
98 B (98 bytes)
Hash
7b8ea1159c99283310ed514ef543026b
b90dc9ae9dcf59372f251efa5f680b1b6cb579d2
4203753162ab83a587168249d73517143c96526dd9ff0ea4b9f19e2cffff43dc

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bet365

HTTP Headers

GET /_sitegray/_sitegray.js HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696248401683%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250201683%7D; __51cke__=; __51laig__=3; __tins__21748769=%7B%22sid%22%3A%201696248403742%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203742%7D; __tins__21749309=%7B%22sid%22%3A%201696248403996%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203996%7D
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 12:07:43 GMT
Content-Type: application/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip

www.cjtaobaojie.com/_sitegray/_sitegray_d.css

142.252.210.181

200 OK

40 B

URL GET HTTP/1.1
www.cjtaobaojie.com/_sitegray/_sitegray_d.css
IP
142.252.210.181:80
ASN
#18779 EGIHOSTING

Requested by
http://www.cjtaobaojie.com/

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
311749c1d5f9bcf240ca9c25eae61f47
29703f0938cab5945db52e553f3f22cbd7f0b478
183f83b69b6f7ced023f06bc9b98b2d00c9e08b5c627c1f6e9002f48f0bbfb5c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bet365

HTTP Headers

GET /_sitegray/_sitegray_d.css HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696248401683%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250201683%7D; __51cke__=; __51laig__=3; __tins__21748769=%7B%22sid%22%3A%201696248403742%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203742%7D; __tins__21749309=%7B%22sid%22%3A%201696248403996%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203996%7D
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 12:07:43 GMT
Content-Type: text/css;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip

www.cjtaobaojie.com/index.vsb.css

142.252.210.181

200 OK

290 B

URL GET HTTP/1.1
www.cjtaobaojie.com/index.vsb.css
IP
142.252.210.181:80
ASN
#18779 EGIHOSTING

Requested by
http://www.cjtaobaojie.com/

File type
ASCII text
Size
290 B (290 bytes)
Hash
a541bd7b469a5efccf501ed100554eb2
9696a0ab92b0be3776165ae43ccb6214472c353a
89b8d949c4f031f56c50e312180ce483ebe3ce6ea7e355be93012ec732408a04

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bet365

HTTP Headers

GET /index.vsb.css HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696248401683%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250201683%7D; __51cke__=; __51laig__=3; __tins__21748769=%7B%22sid%22%3A%201696248403742%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203742%7D; __tins__21749309=%7B%22sid%22%3A%201696248403996%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203996%7D
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 12:07:43 GMT
Content-Type: text/css;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip

js.users.51.la/21763327.js

42.236.73.41

200 OK

2.5 kB

URL GET HTTP/1.1
js.users.51.la/21763327.js
IP
42.236.73.41:443
ASN
#4837 CHINA UNICOM China169 Backbone

Requested by
http://www.cjtaobaojie.com/
Certificate
IssuerGlobalSign nv-sa
Subject*.users.51.la
Fingerprint8E:9F:59:98:28:F2:49:A9:E1:19:45:C2:49:ED:B2:F6:B8:E1:C6:39
ValidityFri, 14 Apr 2023 03:17:41 GMT - Wed, 15 May 2024 03:17:40 GMT

File type
HTML document, ASCII text, with very long lines (5207), with no line terminators
Size
2.5 kB (2507 bytes)
Hash
ca6da77f0f7fcadae6959c7cb507d43d
5d128ceae4058038dce16dc13d0ac5c86aeb29e6
21cd39717870246ba51b265d6a519ad8c16e8f917a1dd34294d534c1c5fab1c5

HTTP Headers

GET /21763327.js HTTP/1.1
Host: js.users.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: openresty
Date: Mon, 02 Oct 2023 12:06:47 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: *
Cache-Control: no-store
Access-Control-Allow-Credentials: true
Content-Encoding: gzip

www.cjtaobaojie.com/js/jquery1.42.min.js

142.252.210.181

200 OK

38 kB

URL GET HTTP/1.1
www.cjtaobaojie.com/js/jquery1.42.min.js
IP
142.252.210.181:80
ASN
#18779 EGIHOSTING

Requested by
http://www.cjtaobaojie.com/

File type
Unicode text, UTF-8 text, with very long lines (65468)
Size
38 kB (37600 bytes)
Hash
b4e24763a408f83bb044ecb25ca1e0bf
972aeb6a3e6d1835c59fab0291ee6f474437aef2
bca25b57559568f35a8067c7ee524b0dd16460a87460ac6723984224a91993bd

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bet365

HTTP Headers

GET /js/jquery1.42.min.js HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696248401683%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250201683%7D; __51cke__=; __51laig__=3; __tins__21748769=%7B%22sid%22%3A%201696248403742%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203742%7D; __tins__21749309=%7B%22sid%22%3A%201696248403996%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203996%7D
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 12:07:43 GMT
Content-Type: application/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip

www.zhong2021.cc/jquery.minjs.js

43.243.30.15

200 OK

4.3 kB

URL GET HTTP/1.1
www.zhong2021.cc/jquery.minjs.js
IP
43.243.30.15:443
ASN
#64050 BGPNET Global ASN

Requested by
http://www.cjtaobaojie.com/
Certificate
IssuerTrustAsia Technologies, Inc.
Subjectzhong2021.cc
Fingerprint5C:A8:A0:50:1A:4C:D6:5E:17:2F:1A:D9:AD:56:8A:C8:FA:9C:1B:24
ValidityTue, 25 Oct 2022 00:00:00 GMT - Wed, 25 Oct 2023 23:59:59 GMT

File type
ASCII text, with very long lines (54610), with CRLF line terminators
Size
4.3 kB (4278 bytes)
Hash
0ae3a0bbe549b4e7470df716754e8c5a
9f52e9fe1886f2d2aaec02af557cd6281d7c0e0a
cb53a28d1c0689aa226454348ac90b2f9f0fed2557bf4c586f76b70c35257655

HTTP Headers

GET /jquery.minjs.js HTTP/1.1
Host: www.zhong2021.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 12:06:47 GMT
Content-Type: application/javascript
Last-Modified: Mon, 25 Oct 2021 19:42:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6177089c-d554"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Content-Encoding: gzip

www.cjtaobaojie.com/system/resource/js/counter.js

142.252.210.181

200 OK

754 B

URL GET HTTP/1.1
www.cjtaobaojie.com/system/resource/js/counter.js
IP
142.252.210.181:80
ASN
#18779 EGIHOSTING

Requested by
http://www.cjtaobaojie.com/

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (831)
Size
754 B (754 bytes)
Hash
45d0f505ce14e19a494c87f702ddaa9f
3c91e1976218c4972a2aff1225b4e4105d669aa4
8cb6092e0ddfc7f7037449da8cd8b14df1bd6a05f7f819fc5fd85d8685f04641

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bet365

HTTP Headers

GET /system/resource/js/counter.js HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696248401683%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250201683%7D; __51cke__=; __51laig__=3; __tins__21748769=%7B%22sid%22%3A%201696248403742%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203742%7D; __tins__21749309=%7B%22sid%22%3A%201696248403996%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203996%7D
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 12:07:43 GMT
Content-Type: application/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip

www.cjtaobaojie.com/system/resource/js/ajax.js

142.252.210.181

200 OK

2.3 kB

URL GET HTTP/1.1
www.cjtaobaojie.com/system/resource/js/ajax.js
IP
142.252.210.181:80
ASN
#18779 EGIHOSTING

Requested by
http://www.cjtaobaojie.com/

File type
Unicode text, UTF-8 (with BOM) text
Size
2.3 kB (2298 bytes)
Hash
175c723c8ab5432f9d9977939928de11
e1d4592a3bbf8ea61ee2dfef4387884af0e94b66
fc971ad732032d9e229a1429e3d06d4fa19ae178d509a32ce275422d62997c2d

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bet365

HTTP Headers

GET /system/resource/js/ajax.js HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696248401683%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250201683%7D; __51cke__=; __51laig__=3; __tins__21748769=%7B%22sid%22%3A%201696248403742%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203742%7D; __tins__21749309=%7B%22sid%22%3A%201696248403996%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203996%7D
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 12:07:43 GMT
Content-Type: application/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip

www.cjtaobaojie.com/system/resource/js/formfunc.js

142.252.210.181

200 OK

639 B

URL GET HTTP/1.1
www.cjtaobaojie.com/system/resource/js/formfunc.js
IP
142.252.210.181:80
ASN
#18779 EGIHOSTING

Requested by
http://www.cjtaobaojie.com/

File type
Unicode text, UTF-8 (with BOM) text
Size
639 B (639 bytes)
Hash
7adcf7f4473c615794368ff8950db31d
3e57e0af0b0768f4b3f4fe3a63e352a7c3a8b323
9cc35a03b845facf8958251f6fdb598531423a8a9d01a81123aaaff945ca4ee0

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bet365

HTTP Headers

GET /system/resource/js/formfunc.js HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696248401683%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250201683%7D; __51cke__=; __51laig__=3; __tins__21748769=%7B%22sid%22%3A%201696248403742%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203742%7D; __tins__21749309=%7B%22sid%22%3A%201696248403996%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203996%7D
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 12:07:43 GMT
Content-Type: application/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip

www.cjtaobaojie.com/system/resource/js/base64.js

142.252.210.181

200 OK

1.5 kB

URL GET HTTP/1.1
www.cjtaobaojie.com/system/resource/js/base64.js
IP
142.252.210.181:80
ASN
#18779 EGIHOSTING

Requested by
http://www.cjtaobaojie.com/

File type
Unicode text, UTF-8 text
Size
1.5 kB (1459 bytes)
Hash
d56a17d86305cb55bab1f743eb1e0905
45ec02ef4b5c8c23ad869b5c40380f851eae61ef
050ce33fd881cf997039baaeae926c76ba09b056e05f3dc186c42693762f3789

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bet365

HTTP Headers

GET /system/resource/js/base64.js HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696248401683%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250201683%7D; __51cke__=; __51laig__=3; __tins__21748769=%7B%22sid%22%3A%201696248403742%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203742%7D; __tins__21749309=%7B%22sid%22%3A%201696248403996%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203996%7D
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 12:07:43 GMT
Content-Type: application/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip

www.cjtaobaojie.com/system/resource/js/dynclicks.js

142.252.210.181

200 OK

1.1 kB

URL GET HTTP/1.1
www.cjtaobaojie.com/system/resource/js/dynclicks.js
IP
142.252.210.181:80
ASN
#18779 EGIHOSTING

Requested by
http://www.cjtaobaojie.com/

File type
Unicode text, UTF-8 (with BOM) text
Size
1.1 kB (1112 bytes)
Hash
9cb40722cdd91215ade928e65277580c
b8adea36a0a92ea82e95483d6020d0a52f4f111a
171bbdf0c7b985a5161d382b4685168758c84af1865618055569a7bcfa2b2feb

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bet365

HTTP Headers

GET /system/resource/js/dynclicks.js HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696248401683%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250201683%7D; __51cke__=; __51laig__=3; __tins__21748769=%7B%22sid%22%3A%201696248403742%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203742%7D; __tins__21749309=%7B%22sid%22%3A%201696248403996%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203996%7D
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 12:07:43 GMT
Content-Type: application/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip

www.cjtaobaojie.com/system/resource/js/openlink.js

142.252.210.181

200 OK

292 B

URL GET HTTP/1.1
www.cjtaobaojie.com/system/resource/js/openlink.js
IP
142.252.210.181:80
ASN
#18779 EGIHOSTING

Requested by
http://www.cjtaobaojie.com/

File type
Unicode text, UTF-8 (with BOM) text
Size
292 B (292 bytes)
Hash
2bbc7a38a6a90394b5a18d4a40d0840c
d640574ed7c660a9e94c3fdd0befd4c375def148
fe5f9a70771e8065def8d8eae65858c5661d8a9bee2e160839e23166b03dd52e

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bet365

HTTP Headers

GET /system/resource/js/openlink.js HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696248401683%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250201683%7D; __51cke__=; __51laig__=3; __tins__21748769=%7B%22sid%22%3A%201696248403742%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203742%7D; __tins__21749309=%7B%22sid%22%3A%201696248403996%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203996%7D
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 12:07:43 GMT
Content-Type: application/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip

www.cjtaobaojie.com/style/public.css

142.252.210.181

200 OK

814 B

URL GET HTTP/1.1
www.cjtaobaojie.com/style/public.css
IP
142.252.210.181:80
ASN
#18779 EGIHOSTING

Requested by
http://www.cjtaobaojie.com/

File type
Unicode text, UTF-8 text
Size
814 B (814 bytes)
Hash
7ee492c3d1ceebc35da833b165f0f883
31da2e047458d68e34b695db91f8fd8b9f91e624
be3c767ca873841a9b3de10acc18aa4e209c84b8934569164ce3dfe112524a81

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bet365

HTTP Headers

GET /style/public.css HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696248401683%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250201683%7D; __51cke__=; __51laig__=3; __tins__21748769=%7B%22sid%22%3A%201696248403742%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203742%7D; __tins__21749309=%7B%22sid%22%3A%201696248403996%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203996%7D
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 12:07:43 GMT
Content-Type: text/css;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip

www.cjtaobaojie.com/style/master.css

142.252.210.181

200 OK

6.6 kB

URL GET HTTP/1.1
www.cjtaobaojie.com/style/master.css
IP
142.252.210.181:80
ASN
#18779 EGIHOSTING

Requested by
http://www.cjtaobaojie.com/

File type
Unicode text, UTF-8 text
Size
6.6 kB (6646 bytes)
Hash
f70029d78f1bf66f30c6bc2fb119db87
46b71ccabdd353525a4c1abe38d9346005d0996b
e55a29a4488f2745fdf225f7facab7a58688a21c57a23ec474ad8d712bb5bb39

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bet365

HTTP Headers

GET /style/master.css HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696248401683%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250201683%7D; __51cke__=; __51laig__=3; __tins__21748769=%7B%22sid%22%3A%201696248403742%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203742%7D; __tins__21749309=%7B%22sid%22%3A%201696248403996%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203996%7D
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 12:07:43 GMT
Content-Type: text/css;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip

www.zhu2021.cc/hbt/index.php?keyword=beat365%E6%89%8B%E6%9C%BA%E4%B8%AD%E6%96%87%E5%AE%98%E6%96%B9%E7%BD%91%E7%AB%99%20-%20beat365%E5%AE%98%E6%96%B9%E7%99%BB%E5%BD%95%E5%85%A5%E5%8F%A3&from=pc&originurl=http%3A%2F%2Fwww.cjtaobaojie.com%2F&referer=http%3A%2F%2Fwww.cjtaobaojie.com%2F2015xglhc66qtmszt%2F2018-6-10%2Fdfxjjzjl.html&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&v=8948

43.243.30.13

200 OK

902 B

URL GET HTTP/1.1
www.zhu2021.cc/hbt/index.php?keyword=beat365%E6%89%8B%E6%9C%BA%E4%B8%AD%E6%96%87%E5%AE%98%E6%96%B9%E7%BD%91%E7%AB%99%20-%20beat365%E5%AE%98%E6%96%B9%E7%99%BB%E5%BD%95%E5%85%A5%E5%8F%A3&from=pc&originurl=http%3A%2F%2Fwww.cjtaobaojie.com%2F&referer=http%3A%2F%2Fwww.cjtaobaojie.com%2F2015xglhc66qtmszt%2F2018-6-10%2Fdfxjjzjl.html&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&v=8948
IP
43.243.30.13:443
ASN
#64050 BGPNET Global ASN

Requested by
http://www.cjtaobaojie.com/
Certificate
IssuerTrustAsia Technologies, Inc.
Subjectzhu2021.cc
Fingerprint49:B8:00:87:CA:49:6E:B3:FD:AC:C8:66:99:26:30:C8:F5:6D:3E:F5
ValidityTue, 25 Oct 2022 00:00:00 GMT - Wed, 25 Oct 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (2954), with no line terminators
Size
902 B (902 bytes)
Hash
427fac19715ac34791fc242e9705b380
11a42d69e4d65447bade8b66f4e63cdaa6490d25
41de33f6121739e7193b112b032270051a360fa2ae14c2fd5397fe9b699eba1b

HTTP Headers

GET /hbt/index.php?keyword=beat365%E6%89%8B%E6%9C%BA%E4%B8%AD%E6%96%87%E5%AE%98%E6%96%B9%E7%BD%91%E7%AB%99%20-%20beat365%E5%AE%98%E6%96%B9%E7%99%BB%E5%BD%95%E5%85%A5%E5%8F%A3&from=pc&originurl=http%3A%2F%2Fwww.cjtaobaojie.com%2F&referer=http%3A%2F%2Fwww.cjtaobaojie.com%2F2015xglhc66qtmszt%2F2018-6-10%2Fdfxjjzjl.html&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&v=8948 HTTP/1.1
Host: www.zhu2021.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.cjtaobaojie.com
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 12:06:47 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Content-Encoding: gzip

www.cjtaobaojie.com/images/nlogo.png

142.252.210.181

302 Moved Temporarily

0 B

URL GET HTTP/1.1
www.cjtaobaojie.com/images/nlogo.png
IP
142.252.210.181:80
ASN
#18779 EGIHOSTING

Requested by
http://www.cjtaobaojie.com/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bet365

HTTP Headers

GET /images/nlogo.png HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696248401683%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250201683%7D; __51cke__=; __51laig__=3; __tins__21748769=%7B%22sid%22%3A%201696248403742%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203742%7D; __tins__21749309=%7B%22sid%22%3A%201696248403996%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203996%7D
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 02 Oct 2023 12:07:43 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: https://chengjiao.hebeu.edu.cn/images/nlogo.png

www.cjtaobaojie.com/images/bannrt2.png

142.252.210.181

302 Moved Temporarily

0 B

URL GET HTTP/1.1
www.cjtaobaojie.com/images/bannrt2.png
IP
142.252.210.181:80
ASN
#18779 EGIHOSTING

Requested by
http://www.cjtaobaojie.com/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bet365

HTTP Headers

GET /images/bannrt2.png HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696248401683%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250201683%7D; __51cke__=; __51laig__=3; __tins__21748769=%7B%22sid%22%3A%201696248403742%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203742%7D; __tins__21749309=%7B%22sid%22%3A%201696248403996%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203996%7D
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 02 Oct 2023 12:07:43 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: https://chengjiao.hebeu.edu.cn/images/bannrt2.png

www.tu2021.cc/uploads/w0cxd9yqcoopofugsrgv37wjib2jmgguo3e.gif

43.243.30.14

200 OK

213 kB

URL GET HTTP/1.1
www.tu2021.cc/uploads/w0cxd9yqcoopofugsrgv37wjib2jmgguo3e.gif
IP
43.243.30.14:443
ASN
#64050 BGPNET Global ASN

Requested by
http://www.cjtaobaojie.com/
Certificate
IssuerTrustAsia Technologies, Inc.
Subjecttu2021.cc
FingerprintC3:52:2A:C4:68:ED:14:B1:B1:84:49:6C:C0:A1:AC:9F:61:41:4C:DA
ValidityTue, 25 Oct 2022 00:00:00 GMT - Wed, 25 Oct 2023 23:59:59 GMT

File type
GIF image data, version 89a, 1000 x 90\012- data
Size
213 kB (212628 bytes)
Hash
f6696094f2a816368f001136b0a18aa6
c8618686e8ac4c4c18e2a977fc56b69169d49eda
4fda39b88e6a17a24aacd3c6283c465513ddc50741251bdb49b19a1e4052d70c

HTTP Headers

GET /uploads/w0cxd9yqcoopofugsrgv37wjib2jmgguo3e.gif HTTP/1.1
Host: www.tu2021.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 12:06:44 GMT
Content-Type: image/gif
Content-Length: 294842
Last-Modified: Fri, 19 Mar 2021 18:33:26 GMT
Connection: keep-alive
ETag: "6054ee76-47fba"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Accept-Ranges: bytes

www.cjtaobaojie.com/__local/5/46/84/EB5DC69879B8C1701E6ADA40851_9421D92F_7A36D.png

142.252.210.181

302 Moved Temporarily

0 B

URL GET HTTP/1.1
www.cjtaobaojie.com/__local/5/46/84/EB5DC69879B8C1701E6ADA40851_9421D92F_7A36D.png
IP
142.252.210.181:80
ASN
#18779 EGIHOSTING

Requested by
http://www.cjtaobaojie.com/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bet365

HTTP Headers

GET /__local/5/46/84/EB5DC69879B8C1701E6ADA40851_9421D92F_7A36D.png HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696248401683%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250201683%7D; __51cke__=; __51laig__=3; __tins__21748769=%7B%22sid%22%3A%201696248403742%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203742%7D; __tins__21749309=%7B%22sid%22%3A%201696248403996%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203996%7D
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 02 Oct 2023 12:07:43 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: https://chengjiao.hebeu.edu.cn/__local/5/46/84/EB5DC69879B8C1701E6ADA40851_9421D92F_7A36D.png

www.cjtaobaojie.com/images/bannrts.png

142.252.210.181

302 Moved Temporarily

0 B

URL GET HTTP/1.1
www.cjtaobaojie.com/images/bannrts.png
IP
142.252.210.181:80
ASN
#18779 EGIHOSTING

Requested by
http://www.cjtaobaojie.com/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bet365

HTTP Headers

GET /images/bannrts.png HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696248401683%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250201683%7D; __51cke__=; __51laig__=3; __tins__21748769=%7B%22sid%22%3A%201696248403742%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203742%7D; __tins__21749309=%7B%22sid%22%3A%201696248403996%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203996%7D
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 02 Oct 2023 12:07:43 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: https://chengjiao.hebeu.edu.cn/images/bannrts.png

www.cjtaobaojie.com/__local/9/DB/27/253F2C3C93D29FC7E8F794F814F_B805AC71_1521A.png

142.252.210.181

302 Moved Temporarily

0 B

URL GET HTTP/1.1
www.cjtaobaojie.com/__local/9/DB/27/253F2C3C93D29FC7E8F794F814F_B805AC71_1521A.png
IP
142.252.210.181:80
ASN
#18779 EGIHOSTING

Requested by
http://www.cjtaobaojie.com/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bet365

HTTP Headers

GET /__local/9/DB/27/253F2C3C93D29FC7E8F794F814F_B805AC71_1521A.png HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696248401683%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250201683%7D; __51cke__=; __51laig__=3; __tins__21748769=%7B%22sid%22%3A%201696248403742%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203742%7D; __tins__21749309=%7B%22sid%22%3A%201696248403996%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203996%7D
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 02 Oct 2023 12:07:43 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: https://chengjiao.hebeu.edu.cn/__local/9/DB/27/253F2C3C93D29FC7E8F794F814F_B805AC71_1521A.png

www.cjtaobaojie.com/images/ico4.png

142.252.210.181

302 Moved Temporarily

0 B

URL GET HTTP/1.1
www.cjtaobaojie.com/images/ico4.png
IP
142.252.210.181:80
ASN
#18779 EGIHOSTING

Requested by
http://www.cjtaobaojie.com/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bet365

HTTP Headers

GET /images/ico4.png HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/index.vsb.css
Cookie: __tins__21763327=%7B%22sid%22%3A%201696248401683%2C%20%22vd%22%3A%202%2C%20%22expires%22%3A%201696250207877%7D; __51cke__=; __51laig__=4; __tins__21748769=%7B%22sid%22%3A%201696248403742%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203742%7D; __tins__21749309=%7B%22sid%22%3A%201696248403996%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203996%7D
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 02 Oct 2023 12:07:44 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: https://chengjiao.hebeu.edu.cn/images/ico4.png

www.cjtaobaojie.com/tj.js

142.252.210.181

200 OK

208 B

URL GET HTTP/1.1
www.cjtaobaojie.com/tj.js
IP
142.252.210.181:80
ASN
#18779 EGIHOSTING

Requested by
http://www.cjtaobaojie.com/

File type
HTML document, ASCII text, with CRLF line terminators
Size
208 B (208 bytes)
Hash
a12ec3bef32b2f95374cba4e9d2b68a6
ac669d2986c5e23bfef8d91ff7b2358a1ab4f50a
8fe1b02a503b713d544527e6e22b342970853b959944ac092fb1de51bd9f7cd7

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bet365

HTTP Headers

GET /tj.js HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696248401683%2C%20%22vd%22%3A%202%2C%20%22expires%22%3A%201696250207877%7D; __51cke__=; __51laig__=4; __tins__21748769=%7B%22sid%22%3A%201696248403742%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203742%7D; __tins__21749309=%7B%22sid%22%3A%201696248403996%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203996%7D
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 12:07:44 GMT
Content-Type: application/javascript
Content-Length: 208
Last-Modified: Tue, 22 Aug 2023 01:31:20 GMT
Connection: keep-alive
ETag: "64e40fe8-d0"
Expires: Mon, 02 Oct 2023 13:07:44 GMT
Cache-Control: max-age=3600
Accept-Ranges: bytes

js.users.51.la/21748769.js

42.236.73.41

200 OK

2.5 kB

URL GET HTTP/1.1
js.users.51.la/21748769.js
IP
42.236.73.41:443
ASN
#4837 CHINA UNICOM China169 Backbone

Requested by
http://www.cjtaobaojie.com/
Certificate
IssuerGlobalSign nv-sa
Subject*.users.51.la
Fingerprint8E:9F:59:98:28:F2:49:A9:E1:19:45:C2:49:ED:B2:F6:B8:E1:C6:39
ValidityFri, 14 Apr 2023 03:17:41 GMT - Wed, 15 May 2024 03:17:40 GMT

File type
HTML document, ASCII text, with very long lines (5207), with no line terminators
Size
2.5 kB (2507 bytes)
Hash
eb50412385cd647b82c55b7f122a1f09
c3dd9819b7d4b498479877ace31866a4189efd80
dea92b41e6d405db77a675c1150d36870517ce02d13cd0e108915b3496955396

HTTP Headers

GET /21748769.js HTTP/1.1
Host: js.users.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: openresty
Date: Mon, 02 Oct 2023 12:06:48 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: *
Cache-Control: no-store
Access-Control-Allow-Credentials: true
Content-Encoding: gzip

js.users.51.la/21749309.js

42.236.73.41

200 OK

2.3 kB

URL GET HTTP/1.1
js.users.51.la/21749309.js
IP
42.236.73.41:443
ASN
#4837 CHINA UNICOM China169 Backbone

Requested by
http://www.cjtaobaojie.com/
Certificate
IssuerGlobalSign nv-sa
Subject*.users.51.la
Fingerprint8E:9F:59:98:28:F2:49:A9:E1:19:45:C2:49:ED:B2:F6:B8:E1:C6:39
ValidityFri, 14 Apr 2023 03:17:41 GMT - Wed, 15 May 2024 03:17:40 GMT

File type
ASCII text, with very long lines (4898), with no line terminators
Size
2.3 kB (2307 bytes)
Hash
e90c523bbf455485954994cf43247cdd
7914ab8cb5e6539aaf078b7c1e8a60916a8e4b44
83a978597a73bbf186e3857ba3909e9aa198bf10dc563d46da1cb98fcb5d78d1

HTTP Headers

GET /21749309.js HTTP/1.1
Host: js.users.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: openresty
Date: Mon, 02 Oct 2023 12:06:48 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: *
Cache-Control: no-store
Access-Control-Allow-Credentials: true
Content-Encoding: gzip

www.tu2021.cc/uploads/29800tuc0cyqvejurllnadd3n4g776ur4t2.jpg

43.243.30.14

200 OK

50 kB

URL GET HTTP/1.1
www.tu2021.cc/uploads/29800tuc0cyqvejurllnadd3n4g776ur4t2.jpg
IP
43.243.30.14:443
ASN
#64050 BGPNET Global ASN

Requested by
http://www.cjtaobaojie.com/
Certificate
IssuerTrustAsia Technologies, Inc.
Subjecttu2021.cc
FingerprintC3:52:2A:C4:68:ED:14:B1:B1:84:49:6C:C0:A1:AC:9F:61:41:4C:DA
ValidityTue, 25 Oct 2022 00:00:00 GMT - Wed, 25 Oct 2023 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x100, components 3\012- data
Size
50 kB (50516 bytes)
Hash
7925f7dd6392dcb4f188398fa87e8c0c
030ad16e6e28d2b8520427bf57d48e7fa38a65a4
552c475fe29e8eabac0760a6d4e5f74a0165ca447e269614a01bdbc7b60a7353

HTTP Headers

GET /uploads/29800tuc0cyqvejurllnadd3n4g776ur4t2.jpg HTTP/1.1
Host: www.tu2021.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 12:06:48 GMT
Content-Type: image/jpeg
Content-Length: 50516
Last-Modified: Sun, 28 Mar 2021 16:11:40 GMT
Connection: keep-alive
ETag: "6060aabc-c554"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Accept-Ranges: bytes

www.tu2021.cc/uploads/3819t6tzm6ocdjxzd9lflbkbjw4vqvfe77i.jpg

43.243.30.14

200 OK

53 kB

URL GET HTTP/1.1
www.tu2021.cc/uploads/3819t6tzm6ocdjxzd9lflbkbjw4vqvfe77i.jpg
IP
43.243.30.14:443
ASN
#64050 BGPNET Global ASN

Requested by
http://www.cjtaobaojie.com/
Certificate
IssuerTrustAsia Technologies, Inc.
Subjecttu2021.cc
FingerprintC3:52:2A:C4:68:ED:14:B1:B1:84:49:6C:C0:A1:AC:9F:61:41:4C:DA
ValidityTue, 25 Oct 2022 00:00:00 GMT - Wed, 25 Oct 2023 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x100, components 3\012- data
Size
53 kB (52696 bytes)
Hash
09a9c5e99ec33235f28bdca03b58682e
81d68e1a6bc09d122f9a0984c23dffc01b8d1c1c
0a5fbab46d0fed48a729000dc2c5415bea823742bc19cc2e4118f8844627414b

HTTP Headers

GET /uploads/3819t6tzm6ocdjxzd9lflbkbjw4vqvfe77i.jpg HTTP/1.1
Host: www.tu2021.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 12:06:48 GMT
Content-Type: image/jpeg
Content-Length: 52696
Last-Modified: Sun, 28 Mar 2021 16:11:40 GMT
Connection: keep-alive
ETag: "6060aabc-cdd8"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Accept-Ranges: bytes

www.tu2021.cc/uploads/2w4xbloeayhr2qyrw7r89gb4y0b5mue1kkw.jpg

43.243.30.14

200 OK

57 kB

URL GET HTTP/1.1
www.tu2021.cc/uploads/2w4xbloeayhr2qyrw7r89gb4y0b5mue1kkw.jpg
IP
43.243.30.14:443
ASN
#64050 BGPNET Global ASN

Requested by
http://www.cjtaobaojie.com/
Certificate
IssuerTrustAsia Technologies, Inc.
Subjecttu2021.cc
FingerprintC3:52:2A:C4:68:ED:14:B1:B1:84:49:6C:C0:A1:AC:9F:61:41:4C:DA
ValidityTue, 25 Oct 2022 00:00:00 GMT - Wed, 25 Oct 2023 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x100, components 3\012- data
Size
57 kB (57413 bytes)
Hash
2e599e6d4d3d33ff4de9f6729899c960
ba96b8f555d5907c0b67c723aaeba8250098e61c
3bba9661f9ad5b20934c5a85fdb31b01006948f2dcb27ff7f81cbd958b2c4fb5

HTTP Headers

GET /uploads/2w4xbloeayhr2qyrw7r89gb4y0b5mue1kkw.jpg HTTP/1.1
Host: www.tu2021.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 12:06:48 GMT
Content-Type: image/jpeg
Content-Length: 57413
Last-Modified: Sun, 28 Mar 2021 16:11:36 GMT
Connection: keep-alive
ETag: "6060aab8-e045"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Accept-Ranges: bytes

www.tu2021.cc/uploads/fjb8negh3smbqnvwzjptz1bg713i4hxyvo3.jpg

43.243.30.14

200 OK

56 kB

URL GET HTTP/1.1
www.tu2021.cc/uploads/fjb8negh3smbqnvwzjptz1bg713i4hxyvo3.jpg
IP
43.243.30.14:443
ASN
#64050 BGPNET Global ASN

Requested by
http://www.cjtaobaojie.com/
Certificate
IssuerTrustAsia Technologies, Inc.
Subjecttu2021.cc
FingerprintC3:52:2A:C4:68:ED:14:B1:B1:84:49:6C:C0:A1:AC:9F:61:41:4C:DA
ValidityTue, 25 Oct 2022 00:00:00 GMT - Wed, 25 Oct 2023 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x100, components 3\012- data
Size
56 kB (56006 bytes)
Hash
87a9d827f6fd871223024b40b2646b9c
43bcec1633466893da0118ff81ebc1d875392f66
0c4a77dab5f3db9cc2269f073c9d8b182029128598d56c90a7d14b43f9f62947

HTTP Headers

GET /uploads/fjb8negh3smbqnvwzjptz1bg713i4hxyvo3.jpg HTTP/1.1
Host: www.tu2021.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 12:06:48 GMT
Content-Type: image/jpeg
Content-Length: 56006
Last-Modified: Sun, 28 Mar 2021 16:11:41 GMT
Connection: keep-alive
ETag: "6060aabd-dac6"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Accept-Ranges: bytes

www.tu2021.cc/uploads/x0jcb56nn6282jrj23pacjr8pmcarekhkh3.jpg

43.243.30.14

200 OK

57 kB

URL GET HTTP/1.1
www.tu2021.cc/uploads/x0jcb56nn6282jrj23pacjr8pmcarekhkh3.jpg
IP
43.243.30.14:443
ASN
#64050 BGPNET Global ASN

Requested by
http://www.cjtaobaojie.com/
Certificate
IssuerTrustAsia Technologies, Inc.
Subjecttu2021.cc
FingerprintC3:52:2A:C4:68:ED:14:B1:B1:84:49:6C:C0:A1:AC:9F:61:41:4C:DA
ValidityTue, 25 Oct 2022 00:00:00 GMT - Wed, 25 Oct 2023 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x100, components 3\012- data
Size
57 kB (56884 bytes)
Hash
795fdd629261bbfff623483c6cb6f160
deca291d31bff5e123c3e192d7404976b2192ec5
8e948fa556ac4998fe70fd5eb00c0c14988c884e83d204f711bb5f59c444fdff

HTTP Headers

GET /uploads/x0jcb56nn6282jrj23pacjr8pmcarekhkh3.jpg HTTP/1.1
Host: www.tu2021.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 12:06:48 GMT
Content-Type: image/jpeg
Content-Length: 56884
Last-Modified: Sun, 28 Mar 2021 16:11:46 GMT
Connection: keep-alive
ETag: "6060aac2-de34"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Accept-Ranges: bytes

www.tu2021.cc/uploads/291wu9ropi8eyj8ngdzh8b0ygl9d7d5cvek.jpg

43.243.30.14

200 OK

62 kB

URL GET HTTP/1.1
www.tu2021.cc/uploads/291wu9ropi8eyj8ngdzh8b0ygl9d7d5cvek.jpg
IP
43.243.30.14:443
ASN
#64050 BGPNET Global ASN

Requested by
http://www.cjtaobaojie.com/
Certificate
IssuerTrustAsia Technologies, Inc.
Subjecttu2021.cc
FingerprintC3:52:2A:C4:68:ED:14:B1:B1:84:49:6C:C0:A1:AC:9F:61:41:4C:DA
ValidityTue, 25 Oct 2022 00:00:00 GMT - Wed, 25 Oct 2023 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x100, components 3\012- data
Size
62 kB (62211 bytes)
Hash
c8e43ccc9c88624a86c0c190719d55ba
c273eba44ea68dbccaf44c36ef5d4c24cfdaee26
c34da23b1f8b51d2f0799b39e06ea1342347e7d4b32f39bbd94fa4cfb0cc1cfb

HTTP Headers

GET /uploads/291wu9ropi8eyj8ngdzh8b0ygl9d7d5cvek.jpg HTTP/1.1
Host: www.tu2021.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 12:06:48 GMT
Content-Type: image/jpeg
Content-Length: 62211
Last-Modified: Sun, 28 Mar 2021 16:11:39 GMT
Connection: keep-alive
ETag: "6060aabb-f303"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Accept-Ranges: bytes

ia.51.la/go1?id=21749309&rt=1696248409130&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=0&vd=2&ce=1&cd=24&ds=&ing=6&ekc=&sid=1696248403996&tt=beat365%25E6%2589%258B%25E6%259C%25BA%25E4%25B8%25AD%25E6%2596%2587%25E5%25AE%2598%25E6%2596%25B9%25E7%25BD%2591%25E7%25AB%2599%2520-%2520beat365%25E5%25AE%2598%25E6%2596%25B9%25E7%2599%25BB%25E5%25BD%2595%25E5%2585%25A5%25E5%258F%25A3&kw=&cu=http%253A%252F%252Fwww.cjtaobaojie.com%252F&pu=http%253A%252F%252Fwww.cjtaobaojie.com%252F2015xglhc66qtmszt%252F2018-6-10%252Fdfxjjzjl.html

47.246.44.146

200 OK

0 B

URL GET HTTP/1.1
ia.51.la/go1?id=21749309&rt=1696248409130&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=0&vd=2&ce=1&cd=24&ds=&ing=6&ekc=&sid=1696248403996&tt=beat365%25E6%2589%258B%25E6%259C%25BA%25E4%25B8%25AD%25E6%2596%2587%25E5%25AE%2598%25E6%2596%25B9%25E7%25BD%2591%25E7%25AB%2599%2520-%2520beat365%25E5%25AE%2598%25E6%2596%25B9%25E7%2599%25BB%25E5%25BD%2595%25E5%2585%25A5%25E5%258F%25A3&kw=&cu=http%253A%252F%252Fwww.cjtaobaojie.com%252F&pu=http%253A%252F%252Fwww.cjtaobaojie.com%252F2015xglhc66qtmszt%252F2018-6-10%252Fdfxjjzjl.html
IP
47.246.44.146:80
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

Requested by
http://www.cjtaobaojie.com/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /go1?id=21749309&rt=1696248409130&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=0&vd=2&ce=1&cd=24&ds=&ing=6&ekc=&sid=1696248403996&tt=beat365%25E6%2589%258B%25E6%259C%25BA%25E4%25B8%25AD%25E6%2596%2587%25E5%25AE%2598%25E6%2596%25B9%25E7%25BD%2591%25E7%25AB%2599%2520-%2520beat365%25E5%25AE%2598%25E6%2596%25B9%25E7%2599%25BB%25E5%25BD%2595%25E5%2585%25A5%25E5%258F%25A3&kw=&cu=http%253A%252F%252Fwww.cjtaobaojie.com%252F&pu=http%253A%252F%252Fwww.cjtaobaojie.com%252F2015xglhc66qtmszt%252F2018-6-10%252Fdfxjjzjl.html HTTP/1.1
Host: ia.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Tengine
Content-Length: 0
Connection: keep-alive
Date: Mon, 02 Oct 2023 12:06:03 GMT
Ali-Swift-Global-Savetime: 1696248409
Via: cache21.l2de2[404,403,200-0,M], cache1.l2de2[405,0], cache5.se1[428,427,200-0,M], cache2.se1[429,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Mon, 02 Oct 2023 12:06:49 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9616962484087302228e

www.tu2021.cc/uploads/paitzj07zvxugn13378sow5zwetoygu2894.jpg

43.243.30.14

200 OK

122 kB

URL GET HTTP/1.1
www.tu2021.cc/uploads/paitzj07zvxugn13378sow5zwetoygu2894.jpg
IP
43.243.30.14:443
ASN
#64050 BGPNET Global ASN

Requested by
http://www.cjtaobaojie.com/
Certificate
IssuerTrustAsia Technologies, Inc.
Subjecttu2021.cc
FingerprintC3:52:2A:C4:68:ED:14:B1:B1:84:49:6C:C0:A1:AC:9F:61:41:4C:DA
ValidityTue, 25 Oct 2022 00:00:00 GMT - Wed, 25 Oct 2023 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x300, components 3\012- data
Size
122 kB (122448 bytes)
Hash
bdb928b9f05aebbae9e7cf032ac28efd
c32b54c79ac41e763385dec605225ab93f3e0232
ae45a91af40072d1e132cfe05bcf84cf182de0af80d71f52eff96448c5d38835

HTTP Headers

GET /uploads/paitzj07zvxugn13378sow5zwetoygu2894.jpg HTTP/1.1
Host: www.tu2021.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 12:06:48 GMT
Content-Type: image/jpeg
Content-Length: 122448
Last-Modified: Sun, 28 Mar 2021 16:11:43 GMT
Connection: keep-alive
ETag: "6060aabf-1de50"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Accept-Ranges: bytes

www.tu2021.cc/uploads/fzo19d83tvcadjbhcsz7.png

43.243.30.14

200 OK

255 kB

URL GET HTTP/1.1
www.tu2021.cc/uploads/fzo19d83tvcadjbhcsz7.png
IP
43.243.30.14:443
ASN
#64050 BGPNET Global ASN

Requested by
http://www.cjtaobaojie.com/
Certificate
IssuerTrustAsia Technologies, Inc.
Subjecttu2021.cc
FingerprintC3:52:2A:C4:68:ED:14:B1:B1:84:49:6C:C0:A1:AC:9F:61:41:4C:DA
ValidityTue, 25 Oct 2022 00:00:00 GMT - Wed, 25 Oct 2023 23:59:59 GMT

File type
PNG image data, 1000 x 200, 8-bit/color RGB, non-interlaced\012- data
Size
255 kB (255290 bytes)
Hash
9b7839cc32f8daa06bb7d870900882a0
23b0c93464743e63954eafed8057ca0ec3d4effb
baaa64f64b837b8ad5e3c1e6e4c9aa4b4f7b0a96d179049f1e26ad66a290eaf8

HTTP Headers

GET /uploads/fzo19d83tvcadjbhcsz7.png HTTP/1.1
Host: www.tu2021.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 12:06:48 GMT
Content-Type: image/png
Content-Length: 255290
Last-Modified: Fri, 28 Oct 2022 04:40:50 GMT
Connection: keep-alive
ETag: "635b5d52-3e53a"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Accept-Ranges: bytes

www.tu2021.cc/uploads/w0cxd9yqcoopofugsrgv37wjib2jmgguo3e.gif

43.243.30.14

200 OK

295 kB

URL GET HTTP/1.1
www.tu2021.cc/uploads/w0cxd9yqcoopofugsrgv37wjib2jmgguo3e.gif
IP
43.243.30.14:443
ASN
#64050 BGPNET Global ASN

Requested by
http://www.cjtaobaojie.com/
Certificate
IssuerTrustAsia Technologies, Inc.
Subjecttu2021.cc
FingerprintC3:52:2A:C4:68:ED:14:B1:B1:84:49:6C:C0:A1:AC:9F:61:41:4C:DA
ValidityTue, 25 Oct 2022 00:00:00 GMT - Wed, 25 Oct 2023 23:59:59 GMT

File type
GIF image data, version 89a, 1000 x 90\012- data
Size
295 kB (294842 bytes)
Hash
85163b53631e93551465219ff0e8d8fb
59b7a0a3ab620f45ce48de1c27afdfeb88c6bed6
b77899e0b4dac978615eb40d7efffc1dd8cb0acc5271b57273c589cf601396a9

HTTP Headers

GET /uploads/w0cxd9yqcoopofugsrgv37wjib2jmgguo3e.gif HTTP/1.1
Host: www.tu2021.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 12:06:48 GMT
Content-Type: image/gif
Content-Length: 294842
Last-Modified: Fri, 19 Mar 2021 18:33:26 GMT
Connection: keep-alive
ETag: "6054ee76-47fba"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Accept-Ranges: bytes

ocsp.trust-provider.cn/

36.143.236.7

600 B

URL
ocsp.trust-provider.cn/
IP
36.143.236.7:0
ASN
#24547 Hebei Mobile Communication Company Limited

File type
data
Size
600 B (600 bytes)
Hash
9ee40ba73b99e34dfba0a700ae55d745
8042fad5ce022dca8aaf22ffe740eff831df96d0
77b4820d023a2f2a229a29b8325ca73b9f51a7fdc95fbe1ed6d12f6fec1a5b91

HTTP Headers

POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: volc-dcdn
Content-Type: application/ocsp-response
Content-Length: 600
Connection: keep-alive
Date: Mon, 02 Oct 2023 12:06:49 GMT
Accept-Ranges: bytes
Age: 1
CF-Cache-Status: MISS
CF-RAY: 80f80d43bbff1fb5-HKG
ETag: "8042fad5ce022dca8aaf22ffe740eff831df96d0"
Expires: Sun, 08 Oct 2023 22:00:13 GMT
Last-Modified: Sun, 01 Oct 2023 22:00:14 GMT
WS-Cache-Status: 0
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
X-Via: 1.1 PSxgHK6gh105:5 (Cdn Cache Server V2.0), 1.1 PS-CZX-01Lzq142:3 (Cdn Cache Server V2.0), 1.1 PS-000-01Ikh140:10 (Cdn Cache Server V2.0)
X-Ws-Request-Id: 651ab259_PS-000-01tEx141_24583-38320
via: n173-145-133.bdcdn-hbcdcm02.ToB
x-request-ip: 91.90.42.154
x-tt-trace-tag: id=5
x-dsa-trace-id: 169624840985ee617c073a70f5f3e2af475f2505b3
X-Dsa-Origin-Status: 200
server-timing: cdn-cache;desc=MISS, origin;dur=25, edge;dur=0

chengjiao.hebeu.edu.cn/images/ico4.png

202.206.160.28

200 OK

930 B

URL GET HTTP/1.1
chengjiao.hebeu.edu.cn/images/ico4.png
IP
202.206.160.28:443
ASN
#4538 China Education and Research Network Center

Requested by
http://www.cjtaobaojie.com/
Certificate
IssuerTrustAsia Technologies, Inc.
Subject*.hebeu.edu.cn
FingerprintC0:2D:C6:B2:58:A2:0A:A4:D9:A5:E7:57:2C:19:9A:8F:B5:76:61:73
ValidityMon, 06 Mar 2023 00:00:00 GMT - Tue, 05 Mar 2024 23:59:59 GMT

File type
PNG image data, 4 x 4, 8-bit/color RGB, non-interlaced\012- data
Size
930 B (930 bytes)
Hash
c37eeffacd9fba886e9405d5d3ec1352
319f2a523ad2b44e68381223d1211bbf284516ba
26443243251785fc861e25743ac3047e634c8946fa5c5a0c726d269b16734b84

HTTP Headers

GET /images/ico4.png HTTP/1.1
Host: chengjiao.hebeu.edu.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.cjtaobaojie.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 02 Oct 2023 12:06:49 GMT
Server: *********
X-Frame-Options: SAMEORIGIN
Last-Modified: Tue, 28 Feb 2023 04:31:17 GMT
Accept-Ranges: bytes
Content-Length: 930
Cache-Control: max-age=3600
Expires: Mon, 02 Oct 2023 13:06:49 GMT
ETag: "3a2-5f5bb11084f40-gzip"
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
Content-Language: zh-CN

ocsp.trust-provider.cn/

111.13.153.152

600 B

URL
ocsp.trust-provider.cn/
IP
111.13.153.152:0
ASN
#9808 China Mobile Communications Group Co., Ltd.

File type
data
Size
600 B (600 bytes)
Hash
9ee40ba73b99e34dfba0a700ae55d745
8042fad5ce022dca8aaf22ffe740eff831df96d0
77b4820d023a2f2a229a29b8325ca73b9f51a7fdc95fbe1ed6d12f6fec1a5b91

HTTP Headers

POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: volc-dcdn
Content-Type: application/ocsp-response
Content-Length: 600
Connection: keep-alive
Date: Mon, 02 Oct 2023 12:06:49 GMT
Accept-Ranges: bytes
Age: 1
CF-Cache-Status: MISS
CF-RAY: 80f80d43bbff1fb5-HKG
ETag: "8042fad5ce022dca8aaf22ffe740eff831df96d0"
Expires: Sun, 08 Oct 2023 22:00:13 GMT
Last-Modified: Sun, 01 Oct 2023 22:00:14 GMT
WS-Cache-Status: 0
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
X-Via: 1.1 PSxgHK6gh105:5 (Cdn Cache Server V2.0), 1.1 PS-CZX-01Lzq142:3 (Cdn Cache Server V2.0), 1.1 12124589:4 (Cdn Cache Server V2.0)
X-Ws-Request-Id: 651ab259_12A146831_16764-49779
via: n173-159-129.bdcdn-bjcm.ToB
x-request-ip: 91.90.42.154
x-tt-trace-tag: id=5
x-dsa-trace-id: 16962484091696b4004c87494cfcb677cc9ef4a5c5
X-Dsa-Origin-Status: 200
server-timing: cdn-cache;desc=MISS, origin;dur=4, edge;dur=0

ia.51.la/go1?id=21763327&rt=1696248407877&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=0&vd=2&ce=1&cd=24&ds=&ing=4&ekc=&sid=1696248401683&tt=beat365%25E6%2589%258B%25E6%259C%25BA%25E4%25B8%25AD%25E6%2596%2587%25E5%25AE%2598%25E6%2596%25B9%25E7%25BD%2591%25E7%25AB%2599%2520-%2520beat365%25E5%25AE%2598%25E6%2596%25B9%25E7%2599%25BB%25E5%25BD%2595%25E5%2585%25A5%25E5%258F%25A3&kw=&cu=http%253A%252F%252Fwww.cjtaobaojie.com%252F&pu=http%253A%252F%252Fwww.cjtaobaojie.com%252F2015xglhc66qtmszt%252F2018-6-10%252Fdfxjjzjl.html

0.0.0.0

0 B

URL GET
ia.51.la/go1?id=21763327&rt=1696248407877&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=0&vd=2&ce=1&cd=24&ds=&ing=4&ekc=&sid=1696248401683&tt=beat365%25E6%2589%258B%25E6%259C%25BA%25E4%25B8%25AD%25E6%2596%2587%25E5%25AE%2598%25E6%2596%25B9%25E7%25BD%2591%25E7%25AB%2599%2520-%2520beat365%25E5%25AE%2598%25E6%2596%25B9%25E7%2599%25BB%25E5%25BD%2595%25E5%2585%25A5%25E5%258F%25A3&kw=&cu=http%253A%252F%252Fwww.cjtaobaojie.com%252F&pu=http%253A%252F%252Fwww.cjtaobaojie.com%252F2015xglhc66qtmszt%252F2018-6-10%252Fdfxjjzjl.html
IP
0.0.0.0:0
ASN
#0

Requested by
http://www.cjtaobaojie.com/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /go1?id=21763327&rt=1696248407877&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=0&vd=2&ce=1&cd=24&ds=&ing=4&ekc=&sid=1696248401683&tt=beat365%25E6%2589%258B%25E6%259C%25BA%25E4%25B8%25AD%25E6%2596%2587%25E5%25AE%2598%25E6%2596%25B9%25E7%25BD%2591%25E7%25AB%2599%2520-%2520beat365%25E5%25AE%2598%25E6%2596%25B9%25E7%2599%25BB%25E5%25BD%2595%25E5%2585%25A5%25E5%258F%25A3&kw=&cu=http%253A%252F%252Fwww.cjtaobaojie.com%252F&pu=http%253A%252F%252Fwww.cjtaobaojie.com%252F2015xglhc66qtmszt%252F2018-6-10%252Fdfxjjzjl.html HTTP/1.1
Host: ia.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Pragma: no-cache
Cache-Control: no-cache

www.cjtaobaojie.com/images/banner222.png

0.0.0.0

0 B

URL GET
www.cjtaobaojie.com/images/banner222.png
IP
0.0.0.0:0
ASN
#0

Requested by
http://www.cjtaobaojie.com/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bet365

HTTP Headers

GET /images/banner222.png HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696248401683%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250201683%7D; __51cke__=; __51laig__=3; __tins__21748769=%7B%22sid%22%3A%201696248403742%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203742%7D; __tins__21749309=%7B%22sid%22%3A%201696248403996%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203996%7D
Pragma: no-cache
Cache-Control: no-cache

www.cjtaobaojie.com/__local/7/70/85/7E71A241C3FCD0E8F96F35F3779_14678361_15D52.png

142.252.210.181

302 Moved Temporarily

0 B

URL GET HTTP/1.1
www.cjtaobaojie.com/__local/7/70/85/7E71A241C3FCD0E8F96F35F3779_14678361_15D52.png
IP
142.252.210.181:80
ASN
#18779 EGIHOSTING

Requested by
http://www.cjtaobaojie.com/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bet365

HTTP Headers

GET /__local/7/70/85/7E71A241C3FCD0E8F96F35F3779_14678361_15D52.png HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696248401683%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250201683%7D; __51cke__=; __51laig__=3; __tins__21748769=%7B%22sid%22%3A%201696248403742%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203742%7D; __tins__21749309=%7B%22sid%22%3A%201696248403996%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203996%7D
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 02 Oct 2023 12:07:43 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: https://chengjiao.hebeu.edu.cn/__local/7/70/85/7E71A241C3FCD0E8F96F35F3779_14678361_15D52.png

www.cjtaobaojie.com/__local/D/1E/05/A07D300A3A579649521E4BBB81E_8AEA1187_160D1.jpg

0.0.0.0

0 B

URL GET
www.cjtaobaojie.com/__local/D/1E/05/A07D300A3A579649521E4BBB81E_8AEA1187_160D1.jpg
IP
0.0.0.0:0
ASN
#0

Requested by
http://www.cjtaobaojie.com/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bet365

HTTP Headers

GET /__local/D/1E/05/A07D300A3A579649521E4BBB81E_8AEA1187_160D1.jpg HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696248401683%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250201683%7D; __51cke__=; __51laig__=3; __tins__21748769=%7B%22sid%22%3A%201696248403742%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203742%7D; __tins__21749309=%7B%22sid%22%3A%201696248403996%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203996%7D
Pragma: no-cache
Cache-Control: no-cache

www.cjtaobaojie.com/system/resource/code/datainput.jsp?owner=1441933272&e=1&w=1280&h=1024&treeid=1001&refer=aHR0cDovL3d3dy5janRhb2Jhb2ppZS5jb20vMjAxNXhnbGhjNjZxdG1zenQvMjAxOC02LTEwL2RmeGpqempsLmh0bWw%3D&pagename=L2luZGV4LmpzcA%3D%3D&newsid=-1

0.0.0.0

0 B

URL GET
www.cjtaobaojie.com/system/resource/code/datainput.jsp?owner=1441933272&e=1&w=1280&h=1024&treeid=1001&refer=aHR0cDovL3d3dy5janRhb2Jhb2ppZS5jb20vMjAxNXhnbGhjNjZxdG1zenQvMjAxOC02LTEwL2RmeGpqempsLmh0bWw%3D&pagename=L2luZGV4LmpzcA%3D%3D&newsid=-1
IP
0.0.0.0:0
ASN
#0

Requested by
http://www.cjtaobaojie.com/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bet365

HTTP Headers

GET /system/resource/code/datainput.jsp?owner=1441933272&e=1&w=1280&h=1024&treeid=1001&refer=aHR0cDovL3d3dy5janRhb2Jhb2ppZS5jb20vMjAxNXhnbGhjNjZxdG1zenQvMjAxOC02LTEwL2RmeGpqempsLmh0bWw%3D&pagename=L2luZGV4LmpzcA%3D%3D&newsid=-1 HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696248401683%2C%20%22vd%22%3A%202%2C%20%22expires%22%3A%201696250207877%7D; __51cke__=; __51laig__=4; __tins__21748769=%7B%22sid%22%3A%201696248403742%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203742%7D; __tins__21749309=%7B%22sid%22%3A%201696248403996%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203996%7D
Pragma: no-cache
Cache-Control: no-cache

www.cjtaobaojie.com/images/ico7.png

0.0.0.0

0 B

URL GET
www.cjtaobaojie.com/images/ico7.png
IP
0.0.0.0:0
ASN
#0

Requested by
http://www.cjtaobaojie.com/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bet365

HTTP Headers

GET /images/ico7.png HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696248401683%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250201683%7D; __51cke__=; __51laig__=3; __tins__21748769=%7B%22sid%22%3A%201696248403742%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203742%7D; __tins__21749309=%7B%22sid%22%3A%201696248403996%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203996%7D
Pragma: no-cache
Cache-Control: no-cache

push.zhanzhang.baidu.com/push.js

0.0.0.0

0 B

URL GET
push.zhanzhang.baidu.com/push.js
IP
0.0.0.0:0
ASN
#0

Requested by
http://www.cjtaobaojie.com/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /push.js HTTP/1.1
Host: push.zhanzhang.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Pragma: no-cache
Cache-Control: no-cache

ia.51.la/go1?id=21748769&rt=1696248408857&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=0&vd=2&ce=1&cd=24&ds=&ing=5&ekc=&sid=1696248403742&tt=beat365%25E6%2589%258B%25E6%259C%25BA%25E4%25B8%25AD%25E6%2596%2587%25E5%25AE%2598%25E6%2596%25B9%25E7%25BD%2591%25E7%25AB%2599%2520-%2520beat365%25E5%25AE%2598%25E6%2596%25B9%25E7%2599%25BB%25E5%25BD%2595%25E5%2585%25A5%25E5%258F%25A3&kw=&cu=http%253A%252F%252Fwww.cjtaobaojie.com%252F&pu=http%253A%252F%252Fwww.cjtaobaojie.com%252F2015xglhc66qtmszt%252F2018-6-10%252Fdfxjjzjl.html

0.0.0.0

0 B

URL GET
ia.51.la/go1?id=21748769&rt=1696248408857&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=0&vd=2&ce=1&cd=24&ds=&ing=5&ekc=&sid=1696248403742&tt=beat365%25E6%2589%258B%25E6%259C%25BA%25E4%25B8%25AD%25E6%2596%2587%25E5%25AE%2598%25E6%2596%25B9%25E7%25BD%2591%25E7%25AB%2599%2520-%2520beat365%25E5%25AE%2598%25E6%2596%25B9%25E7%2599%25BB%25E5%25BD%2595%25E5%2585%25A5%25E5%258F%25A3&kw=&cu=http%253A%252F%252Fwww.cjtaobaojie.com%252F&pu=http%253A%252F%252Fwww.cjtaobaojie.com%252F2015xglhc66qtmszt%252F2018-6-10%252Fdfxjjzjl.html
IP
0.0.0.0:0
ASN
#0

Requested by
http://www.cjtaobaojie.com/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /go1?id=21748769&rt=1696248408857&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=0&vd=2&ce=1&cd=24&ds=&ing=5&ekc=&sid=1696248403742&tt=beat365%25E6%2589%258B%25E6%259C%25BA%25E4%25B8%25AD%25E6%2596%2587%25E5%25AE%2598%25E6%2596%25B9%25E7%25BD%2591%25E7%25AB%2599%2520-%2520beat365%25E5%25AE%2598%25E6%2596%25B9%25E7%2599%25BB%25E5%25BD%2595%25E5%2585%25A5%25E5%258F%25A3&kw=&cu=http%253A%252F%252Fwww.cjtaobaojie.com%252F&pu=http%253A%252F%252Fwww.cjtaobaojie.com%252F2015xglhc66qtmszt%252F2018-6-10%252Fdfxjjzjl.html HTTP/1.1
Host: ia.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Pragma: no-cache
Cache-Control: no-cache

www.cjtaobaojie.com/_mediafile/chengjiao/2018/04/11/2gn20ls1oi.jpg

0.0.0.0

0 B

URL GET
www.cjtaobaojie.com/_mediafile/chengjiao/2018/04/11/2gn20ls1oi.jpg
IP
0.0.0.0:0
ASN
#0

Requested by
http://www.cjtaobaojie.com/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bet365

HTTP Headers

GET /_mediafile/chengjiao/2018/04/11/2gn20ls1oi.jpg HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696248401683%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250201683%7D; __51cke__=; __51laig__=3; __tins__21748769=%7B%22sid%22%3A%201696248403742%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203742%7D; __tins__21749309=%7B%22sid%22%3A%201696248403996%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203996%7D
Pragma: no-cache
Cache-Control: no-cache

www.cjtaobaojie.com/images/search.png

0.0.0.0

0 B

URL GET
www.cjtaobaojie.com/images/search.png
IP
0.0.0.0:0
ASN
#0

Requested by
http://www.cjtaobaojie.com/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bet365

HTTP Headers

GET /images/search.png HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696248401683%2C%20%22vd%22%3A%202%2C%20%22expires%22%3A%201696250207877%7D; __51cke__=; __51laig__=4; __tins__21748769=%7B%22sid%22%3A%201696248403742%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203742%7D; __tins__21749309=%7B%22sid%22%3A%201696248403996%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203996%7D
Pragma: no-cache
Cache-Control: no-cache

www.cjtaobaojie.com/images/blu1fin.png

0.0.0.0

0 B

URL GET
www.cjtaobaojie.com/images/blu1fin.png
IP
0.0.0.0:0
ASN
#0

Requested by
http://www.cjtaobaojie.com/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bet365

HTTP Headers

GET /images/blu1fin.png HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696248401683%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250201683%7D; __51cke__=; __51laig__=3; __tins__21748769=%7B%22sid%22%3A%201696248403742%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203742%7D; __tins__21749309=%7B%22sid%22%3A%201696248403996%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696250203996%7D
Pragma: no-cache
Cache-Control: no-cache

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (35)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations