www.cjtaobaojie.com/gy/
1.3 kB IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF, LF line terminators
Hash a0a6902e7faa22e88ddb2fb584b82b41
87d7a48a5f3eeca8a87dfb10144038bd073003e6
bd4e2be2bf42c018482409493594409929c8e859dba59fe39babbdaddb48b32a
Analyzer Verdict Alert OpenPhish phishing Bet365
GET /gy/ HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 00:51:18 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip
www.cjtaobaojie.com/_mobile/resource/js/mobiledevice.js
1.1 kB URL www.cjtaobaojie.com/_mobile/resource/js/mobiledevice.js
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with CRLF, LF line terminators
Hash 71dfe7ed542a2cebe47e04af52083e97
bde00ea4ba3baf634bd298b72b68ff1c7a381ce4
b6dc6a8889fe49b8ab5f00af28d21eabafc7a535cf3bb5a016d40ba3890899ba
Analyzer Verdict Alert OpenPhish phishing Bet365
GET /_mobile/resource/js/mobiledevice.js HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/gy/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 00:51:18 GMT
Content-Type: application/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip
www.cjtaobaojie.com/jquery.min.js
200 OK 704 B URL GET HTTP/1.1 www.cjtaobaojie.com/jquery.min.js
IP
Requested by http://www.cjtaobaojie.com/
File type HTML document, ASCII text, with very long lines (3686)
Hash 77e024e950ad659c119e9515fcb05d45
7624d1e9898b607465f8abde519b8425840ca7c0
4c42a77c6e30924838b854b1dec7baf0578f857c539ad517644e50bdd843afc1
Analyzer Verdict Alert OpenPhish phishing Bet365
NIDS Severity Alert suricata medium ET INFO JJEncode Encoded Script
suricata medium ET INFO JJEncode Encoded Script
GET /jquery.min.js HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/gy/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 00:51:19 GMT
Content-Type: application/javascript
Last-Modified: Tue, 22 Aug 2023 01:31:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"64e40fe8-ed1"
Expires: Mon, 02 Oct 2023 01:51:19 GMT
Cache-Control: max-age=3600
Content-Encoding: gzip
js.users.51.la/21763327.js
200 OK 2.5 kB URL GET HTTP/1.1 js.users.51.la/21763327.js
IP
ASN #4837 CHINA UNICOM China169 Backbone
Requested by http://www.cjtaobaojie.com/
Certificate IssuerGlobalSign nv-sa
Subject*.users.51.la
Fingerprint8E:9F:59:98:28:F2:49:A9:E1:19:45:C2:49:ED:B2:F6:B8:E1:C6:39
ValidityFri, 14 Apr 2023 03:17:41 GMT - Wed, 15 May 2024 03:17:40 GMT
File type HTML document, ASCII text, with very long lines (5207), with no line terminators
Hash ca6da77f0f7fcadae6959c7cb507d43d
5d128ceae4058038dce16dc13d0ac5c86aeb29e6
21cd39717870246ba51b265d6a519ad8c16e8f917a1dd34294d534c1c5fab1c5
GET /21763327.js HTTP/1.1
Host: js.users.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty
Date: Mon, 02 Oct 2023 00:50:24 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: *
Cache-Control: no-store
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
ocsp.trust-provider.cn/
600 B IP
ASN #9808 China Mobile Communications Group Co., Ltd.
Hash 23367a994e78147417aa7e63d9a1c8c5
785b8e147359cc9e51e6970e0b7f958dd2e30e3c
3422b58cd8649d66ebf2f882512a0872dc9c3564a3d834b2e5b2c20fc91dffa2
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: volc-dcdn
Content-Type: application/ocsp-response
Content-Length: 600
Connection: keep-alive
Date: Mon, 02 Oct 2023 00:50:25 GMT
Accept-Ranges: bytes
Age: 1
CF-Cache-Status: MISS
CF-RAY: 80e1d0d9bf7b515b-HKG
ETag: "785b8e147359cc9e51e6970e0b7f958dd2e30e3c"
Expires: Fri, 06 Oct 2023 04:10:20 GMT
Last-Modified: Fri, 29 Sep 2023 04:10:21 GMT
WS-Cache-Status: 0
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
X-Via: 1.1 PSxgHK6no106:2 (Cdn Cache Server V2.0), 1.1 PS-CZX-01Lzq142:15 (Cdn Cache Server V2.0), 1.1 PS-XFN-01HPa31:3 (Cdn Cache Server V2.0)
X-Ws-Request-Id: 651a13d1_PS-XFN-01HPa31_51907-4628
via: n173-091-151.bdcdn-whcm03.ToB
x-request-ip: 91.90.42.154
x-tt-trace-tag: id=5
x-dsa-trace-id: 169620782592a64187af5c32b78b942b215a8633fa
X-Dsa-Origin-Status: 200
server-timing: cdn-cache;desc=MISS, origin;dur=8, edge;dur=0
ocsp.trust-provider.cn/
600 B IP
ASN #9808 China Mobile Communications Group Co., Ltd.
Hash 23367a994e78147417aa7e63d9a1c8c5
785b8e147359cc9e51e6970e0b7f958dd2e30e3c
3422b58cd8649d66ebf2f882512a0872dc9c3564a3d834b2e5b2c20fc91dffa2
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: volc-dcdn
Content-Type: application/ocsp-response
Content-Length: 600
Connection: keep-alive
Date: Mon, 02 Oct 2023 00:50:25 GMT
Accept-Ranges: bytes
Age: 1
CF-Cache-Status: MISS
CF-RAY: 80e1d0d9bf7b515b-HKG
ETag: "785b8e147359cc9e51e6970e0b7f958dd2e30e3c"
Expires: Fri, 06 Oct 2023 04:10:20 GMT
Last-Modified: Fri, 29 Sep 2023 04:10:21 GMT
WS-Cache-Status: 0
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
X-Via: 1.1 PSxgHK6no106:2 (Cdn Cache Server V2.0), 1.1 PS-CZX-01Lzq142:15 (Cdn Cache Server V2.0), 1.1 PS-XFN-01HPa31:3 (Cdn Cache Server V2.0)
X-Ws-Request-Id: 651a13d1_PS-XFN-01J3530_26602-62701
via: n173-091-151.bdcdn-whcm03.ToB
x-request-ip: 91.90.42.154
x-tt-trace-tag: id=5
x-dsa-trace-id: 1696207825e374f32b6086c8e29e19bac6984aabb4
X-Dsa-Origin-Status: 200
server-timing: cdn-cache;desc=MISS, origin;dur=7, edge;dur=0
www.zhong2021.cc/jquery.minjs.js
200 OK 4.3 kB URL GET HTTP/1.1 www.zhong2021.cc/jquery.minjs.js
IP
ASN #64050 BGPNET Global ASN
Requested by http://www.cjtaobaojie.com/
Certificate IssuerTrustAsia Technologies, Inc.
Subjectzhong2021.cc
Fingerprint5C:A8:A0:50:1A:4C:D6:5E:17:2F:1A:D9:AD:56:8A:C8:FA:9C:1B:24
ValidityTue, 25 Oct 2022 00:00:00 GMT - Wed, 25 Oct 2023 23:59:59 GMT
File type ASCII text, with very long lines (54610), with CRLF line terminators
Hash 0ae3a0bbe549b4e7470df716754e8c5a
9f52e9fe1886f2d2aaec02af557cd6281d7c0e0a
cb53a28d1c0689aa226454348ac90b2f9f0fed2557bf4c586f76b70c35257655
GET /jquery.minjs.js HTTP/1.1
Host: www.zhong2021.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 00:50:26 GMT
Content-Type: application/javascript
Last-Modified: Mon, 25 Oct 2021 19:42:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6177089c-d554"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Content-Encoding: gzip
www.cjtaobaojie.com/system/resource/code/auth/images/promptIconP.png
0 B URL www.cjtaobaojie.com/system/resource/code/auth/images/promptIconP.png
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert OpenPhish phishing Bet365
GET /system/resource/code/auth/images/promptIconP.png HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/gy/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696207826658%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696209626658%7D; __51cke__=; __51laig__=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 02 Oct 2023 00:51:22 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: https://chengjiao.hebeu.edu.cn/system/resource/code/auth/images/promptIconP.png
www.cjtaobaojie.com/system/resource/code/auth/images/promptIcon.png
0 B URL www.cjtaobaojie.com/system/resource/code/auth/images/promptIcon.png
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert OpenPhish phishing Bet365
GET /system/resource/code/auth/images/promptIcon.png HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/gy/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696207826658%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696209626658%7D; __51cke__=; __51laig__=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 02 Oct 2023 00:51:22 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: https://chengjiao.hebeu.edu.cn/system/resource/code/auth/images/promptIcon.png
www.cjtaobaojie.com/favicon.ico
9.7 kB URL www.cjtaobaojie.com/favicon.ico
IP
File type MS Windows icon resource - 1 icon, 48x48, 32 bits/pixel\012- data
Hash 1af6c08eb07f675c862fa3cd50640511
bfc9fbddea831a3cae067a570bcb4450280c7f45
7fc7fdb7ea134949cefdbd00ac02724e091e0201c1cee06795f84db28a1586d4
Analyzer Verdict Alert OpenPhish phishing Bet365
GET /favicon.ico HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/gy/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696207826658%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696209626658%7D; __51cke__=; __51laig__=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 00:51:22 GMT
Content-Type: image/x-icon
Content-Length: 9662
Last-Modified: Tue, 22 Aug 2023 01:31:20 GMT
Connection: keep-alive
ETag: "64e40fe8-25be"
Accept-Ranges: bytes
ia.51.la/go1?id=21763327&rt=1696207826658&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=&ing=1&ekc=&sid=1696207826658&tt=beat365%25E6%2589%258B%25E6%259C%25BA%25E4%25B8%25AD%25E6%2596%2587%25E5%25AE%2598%25E6%2596%25B9%25E7%25BD%2591%25E7%25AB%2599%2520-%2520beat365%25E5%25AE%2598%25E6%2596%25B9%25E7%2599%25BB%25E5%25BD%2595%25E5%2585%25A5%25E5%258F%25A3&kw=&cu=http%253A%252F%252Fwww.cjtaobaojie.com%252Fgy%252F&pu=
0 B URL ia.51.la/go1?id=21763327&rt=1696207826658&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=&ing=1&ekc=&sid=1696207826658&tt=beat365%25E6%2589%258B%25E6%259C%25BA%25E4%25B8%25AD%25E6%2596%2587%25E5%25AE%2598%25E6%2596%25B9%25E7%25BD%2591%25E7%25AB%2599%2520-%2520beat365%25E5%25AE%2598%25E6%2596%25B9%25E7%2599%25BB%25E5%25BD%2595%25E5%2585%25A5%25E5%258F%25A3&kw=&cu=http%253A%252F%252Fwww.cjtaobaojie.com%252Fgy%252F&pu=
IP
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go1?id=21763327&rt=1696207826658&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=&ing=1&ekc=&sid=1696207826658&tt=beat365%25E6%2589%258B%25E6%259C%25BA%25E4%25B8%25AD%25E6%2596%2587%25E5%25AE%2598%25E6%2596%25B9%25E7%25BD%2591%25E7%25AB%2599%2520-%2520beat365%25E5%25AE%2598%25E6%2596%25B9%25E7%2599%25BB%25E5%25BD%2595%25E5%2585%25A5%25E5%258F%25A3&kw=&cu=http%253A%252F%252Fwww.cjtaobaojie.com%252Fgy%252F&pu= HTTP/1.1
Host: ia.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Length: 0
Connection: keep-alive
Date: Mon, 02 Oct 2023 00:48:44 GMT
Ali-Swift-Global-Savetime: 1696207827
Via: cache19.l2de2[398,398,200-0,M], cache7.l2de2[399,0], cache1.se1[422,421,200-0,M], cache1.se1[424,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Mon, 02 Oct 2023 00:50:27 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9516962078266817098e
ocsp.trust-provider.cn/
600 B IP
ASN #9808 China Mobile Communications Group Co., Ltd.
Hash ad37c7ffb6e23033125976a36a4b7367
025f40a05bbc4ebfc7806546fca1a424d075489f
b5203b9ac695e2eaec756a587b1760a1a7f40a226025166177a80a84fc99ca01
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: volc-dcdn
Content-Type: application/ocsp-response
Content-Length: 600
Connection: keep-alive
Date: Mon, 02 Oct 2023 00:50:27 GMT
Accept-Ranges: bytes
Age: 1
CF-Cache-Status: HIT
CF-RAY: 80da9ee2c90f15f5-SJC
ETag: "025f40a05bbc4ebfc7806546fca1a424d075489f"
Expires: Thu, 05 Oct 2023 07:06:30 GMT
Last-Modified: Thu, 28 Sep 2023 07:06:31 GMT
WS-Cache-Status: 0
X-CCACDN-Proxy-ID: scdpinlb4
X-Frame-Options: SAMEORIGIN
X-Via: 1.1 PS-CZX-01Lzq142:3 (Cdn Cache Server V2.0), 1.1 PS-XFN-01tMr57:1 (Cdn Cache Server V2.0)
X-Ws-Request-Id: 651a13d3_PS-XFN-01mWo59_54452-47361
via: n173-091-151.bdcdn-whcm03.ToB
x-request-ip: 91.90.42.154
x-tt-trace-tag: id=5
x-dsa-trace-id: 1696207827c1aa3cf0c1aed5114c4f36418f02cdb5
X-Dsa-Origin-Status: 200
server-timing: cdn-cache;desc=MISS, origin;dur=7, edge;dur=0
ocsp.trust-provider.cn/
600 B IP
ASN #9808 China Mobile Communications Group Co., Ltd.
Hash ad37c7ffb6e23033125976a36a4b7367
025f40a05bbc4ebfc7806546fca1a424d075489f
b5203b9ac695e2eaec756a587b1760a1a7f40a226025166177a80a84fc99ca01
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: volc-dcdn
Content-Type: application/ocsp-response
Content-Length: 600
Connection: keep-alive
Date: Mon, 02 Oct 2023 00:50:27 GMT
Accept-Ranges: bytes
Age: 1
CF-Cache-Status: HIT
CF-RAY: 80da9ee2c90f15f5-SJC
ETag: "025f40a05bbc4ebfc7806546fca1a424d075489f"
Expires: Thu, 05 Oct 2023 07:06:30 GMT
Last-Modified: Thu, 28 Sep 2023 07:06:31 GMT
WS-Cache-Status: 0
X-CCACDN-Proxy-ID: scdpinlb4
X-Frame-Options: SAMEORIGIN
X-Via: 1.1 PS-CZX-01Lzq142:3 (Cdn Cache Server V2.0), 1.1 PS-XFN-01tMr57:1 (Cdn Cache Server V2.0)
X-Ws-Request-Id: 651a13d3_PS-XFN-01wMW58_3018-13117
via: n173-091-151.bdcdn-whcm03.ToB
x-request-ip: 91.90.42.154
x-tt-trace-tag: id=5
x-dsa-trace-id: 1696207827db2eb7618d7bd7c8e904b9c6f1b81b89
X-Dsa-Origin-Status: 200
server-timing: cdn-cache;desc=MISS, origin;dur=9, edge;dur=0
ocsp.trust-provider.cn/
600 B IP
ASN #4837 CHINA UNICOM China169 Backbone
Hash ad37c7ffb6e23033125976a36a4b7367
025f40a05bbc4ebfc7806546fca1a424d075489f
b5203b9ac695e2eaec756a587b1760a1a7f40a226025166177a80a84fc99ca01
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: volc-dcdn
Content-Type: application/ocsp-response
Content-Length: 600
Connection: keep-alive
Date: Mon, 02 Oct 2023 00:50:27 GMT
Accept-Ranges: bytes
Age: 1
CF-Cache-Status: EXPIRED
CF-RAY: 80da53307a85232c-SJC
ETag: "025f40a05bbc4ebfc7806546fca1a424d075489f"
Expires: Thu, 05 Oct 2023 07:06:30 GMT
Last-Modified: Thu, 28 Sep 2023 07:06:31 GMT
WS-Cache-Status: 0
X-CCACDN-Proxy-ID: scdpinlb5
X-Frame-Options: SAMEORIGIN
X-Via: 1.1 CS-000-01hW9188:1 (Cdn Cache Server V2.0), 1.1 PS-000-01fG29:13 (Cdn Cache Server V2.0)
X-Ws-Request-Id: 651a13d3_PS-000-01fG29_11815-29983
via: n173-114-140.bdcdn-hbxtcu.ToB
x-request-ip: 91.90.42.154
x-tt-trace-tag: id=5
x-dsa-trace-id: 1696207827247c095ab00d4bc66d35aa1bda753e91
X-Dsa-Origin-Status: 200
server-timing: cdn-cache;desc=MISS, origin;dur=7, edge;dur=0
ocsp.trust-provider.cn/
600 B IP
ASN #4837 CHINA UNICOM China169 Backbone
Hash 9ee40ba73b99e34dfba0a700ae55d745
8042fad5ce022dca8aaf22ffe740eff831df96d0
77b4820d023a2f2a229a29b8325ca73b9f51a7fdc95fbe1ed6d12f6fec1a5b91
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: volc-dcdn
Content-Type: application/ocsp-response
Content-Length: 600
Connection: keep-alive
Date: Mon, 02 Oct 2023 00:50:27 GMT
Accept-Ranges: bytes
CF-Cache-Status: HIT
CF-RAY: 80f84f7c8a8c1995-HKG
ETag: "8042fad5ce022dca8aaf22ffe740eff831df96d0"
Expires: Sun, 08 Oct 2023 22:00:13 GMT
Last-Modified: Sun, 01 Oct 2023 22:00:14 GMT
WS-Cache-Status: 0
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
X-Via: 1.1 PSxgHK6wy101:6 (Cdn Cache Server V2.0), 1.1 CS-000-01hW9188:1 (Cdn Cache Server V2.0), 1.1 PS-000-01fG29:13 (Cdn Cache Server V2.0)
X-Ws-Request-Id: 651a13d3_PS-000-01VkG8_13566-36073
via: n173-114-140.bdcdn-hbxtcu.ToB
x-request-ip: 91.90.42.154
x-tt-trace-tag: id=5
x-dsa-trace-id: 1696207827344cdc30fe59780e38ba369e41b6d064
X-Dsa-Origin-Status: 200
server-timing: cdn-cache;desc=MISS, origin;dur=7, edge;dur=0
chengjiao.hebeu.edu.cn/system/resource/code/auth/images/promptIconP.png
1.1 kB URL chengjiao.hebeu.edu.cn/system/resource/code/auth/images/promptIconP.png
IP
ASN #4538 China Education and Research Network Center
File type PNG image data, 6 x 6, 8-bit/color RGB, non-interlaced\012- data
Hash d14a5646be3f09b7bf20eaa38095e48e
4a340437b8c73865392bdbc059a6c513f1d2895f
b2f1c75056e99dda0dbdea2ced6d6978947490dd0c5c0a9a2b01f4e660205bd1
GET /system/resource/code/auth/images/promptIconP.png HTTP/1.1
Host: chengjiao.hebeu.edu.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.cjtaobaojie.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 02 Oct 2023 00:50:27 GMT
Server: *********
X-Frame-Options: SAMEORIGIN
Last-Modified: Thu, 30 Jul 2015 02:23:11 GMT
Accept-Ranges: bytes
Content-Length: 1055
Cache-Control: max-age=3600
Expires: Mon, 02 Oct 2023 01:50:27 GMT
ETag: "41f-51c0e627c81c0-gzip"
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
Content-Language: zh-CN
chengjiao.hebeu.edu.cn/system/resource/code/auth/images/promptIcon.png
2.9 kB URL chengjiao.hebeu.edu.cn/system/resource/code/auth/images/promptIcon.png
IP
ASN #4538 China Education and Research Network Center
File type PNG image data, 41 x 40, 8-bit/color RGB, non-interlaced\012- data
Hash b3607c0e0e8a4f45df22a0c0702c7f47
ee19c611ef6ef89ea6b72b32caa327313bef2e66
cab6859b61b4a104b70b019bff98f75400839eef267c5b1abbd9fed02c210afc
GET /system/resource/code/auth/images/promptIcon.png HTTP/1.1
Host: chengjiao.hebeu.edu.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.cjtaobaojie.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 02 Oct 2023 00:50:27 GMT
Server: *********
X-Frame-Options: SAMEORIGIN
Last-Modified: Thu, 30 Jul 2015 02:23:11 GMT
Accept-Ranges: bytes
Content-Length: 2890
Cache-Control: max-age=3600
Expires: Mon, 02 Oct 2023 01:50:27 GMT
ETag: "b4a-51c0e627c81c0-gzip"
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
Content-Language: zh-CN
ocsp.trust-provider.cn/
600 B IP
ASN #9808 China Mobile Communications Group Co., Ltd.
Hash 18dd3ce90cdc16da50a8b32490662a28
f21c568d0c8dfa3b8b282504aec35cefb07efa7a
dfd439bed298bf0b7cd370876e86b307b87e10632f8077cd84f0759eff7cf799
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: volc-dcdn
Content-Type: application/ocsp-response
Content-Length: 600
Connection: keep-alive
Date: Mon, 02 Oct 2023 00:50:27 GMT
Accept-Ranges: bytes
Age: 1
CF-Cache-Status: EXPIRED
CF-RAY: 80de3e2f2db8eb73-SEA
ETag: "f21c568d0c8dfa3b8b282504aec35cefb07efa7a"
Expires: Thu, 05 Oct 2023 18:43:35 GMT
Last-Modified: Thu, 28 Sep 2023 18:43:36 GMT
WS-Cache-Status: 0
X-CCACDN-Proxy-ID: scdpinlb6
X-Frame-Options: SAMEORIGIN
X-Via: 1.1 PSsxtyyd2os43:14 (Cdn Cache Server V2.0), 1.1 PS-XFN-01J3530:11 (Cdn Cache Server V2.0)
X-Ws-Request-Id: 651a13d3_PS-XFN-01J3530_26776-48231
via: n173-091-151.bdcdn-whcm03.ToB
x-request-ip: 91.90.42.154
x-tt-trace-tag: id=5
x-dsa-trace-id: 1696207827e9a76d80eb7060c37f83131ff3bb3574
X-Dsa-Origin-Status: 200
server-timing: cdn-cache;desc=MISS, origin;dur=9, edge;dur=0
ocsp.trust-provider.cn/
600 B IP
ASN #9808 China Mobile Communications Group Co., Ltd.
Hash 18dd3ce90cdc16da50a8b32490662a28
f21c568d0c8dfa3b8b282504aec35cefb07efa7a
dfd439bed298bf0b7cd370876e86b307b87e10632f8077cd84f0759eff7cf799
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: volc-dcdn
Content-Type: application/ocsp-response
Content-Length: 600
Connection: keep-alive
Date: Mon, 02 Oct 2023 00:50:28 GMT
Accept-Ranges: bytes
Age: 1
CF-Cache-Status: EXPIRED
CF-RAY: 80de3e2f2db8eb73-SEA
ETag: "f21c568d0c8dfa3b8b282504aec35cefb07efa7a"
Expires: Thu, 05 Oct 2023 18:43:35 GMT
Last-Modified: Thu, 28 Sep 2023 18:43:36 GMT
WS-Cache-Status: 0
X-CCACDN-Proxy-ID: scdpinlb6
X-Frame-Options: SAMEORIGIN
X-Via: 1.1 PSsxtyyd2os43:14 (Cdn Cache Server V2.0), 1.1 PS-XFN-01J3530:11 (Cdn Cache Server V2.0)
X-Ws-Request-Id: 651a13d4_PS-XFN-01J3530_27659-22581
via: n173-091-151.bdcdn-whcm03.ToB
x-request-ip: 91.90.42.154
x-tt-trace-tag: id=5
x-dsa-trace-id: 16962078283e40a9e51d854469e8b7fc72beece25b
X-Dsa-Origin-Status: 200
server-timing: cdn-cache;desc=MISS, origin;dur=8, edge;dur=0
200 OK 6.8 kB URL User Request GET HTTP/1.1 IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with CRLF, LF line terminators
Hash 78771eee56a5633cd34df599a55b1d66
ba08da305c467ec7d8c7acbcf39dd9f96ea15dd0
24eb147054f7f7185fe5f66a8ed6731043132d49261391b26dbae29b3c8d20d6
Analyzer Verdict Alert OpenPhish phishing Bet365
GET / HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.cjtaobaojie.com/gy/
DNT: 1
Connection: keep-alive
Cookie: __tins__21763327=%7B%22sid%22%3A%201696207826658%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696209626658%7D; __51cke__=; __51laig__=1
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 00:51:24 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip
www.cjtaobaojie.com/jquery.min.js
200 OK 704 B URL GET HTTP/1.1 www.cjtaobaojie.com/jquery.min.js
IP
Requested by http://www.cjtaobaojie.com/
File type HTML document, ASCII text, with very long lines (3686)
Hash 77e024e950ad659c119e9515fcb05d45
7624d1e9898b607465f8abde519b8425840ca7c0
4c42a77c6e30924838b854b1dec7baf0578f857c539ad517644e50bdd843afc1
Analyzer Verdict Alert OpenPhish phishing Bet365
NIDS Severity Alert suricata medium ET INFO JJEncode Encoded Script
suricata medium ET INFO JJEncode Encoded Script
GET /jquery.min.js HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696207826658%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696209626658%7D; __51cke__=; __51laig__=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 00:51:24 GMT
Content-Type: application/javascript
Last-Modified: Tue, 22 Aug 2023 01:31:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"64e40fe8-ed1"
Expires: Mon, 02 Oct 2023 01:51:24 GMT
Cache-Control: max-age=3600
Content-Encoding: gzip
www.cjtaobaojie.com/style/public.css
200 OK 814 B URL GET HTTP/1.1 www.cjtaobaojie.com/style/public.css
IP
Requested by http://www.cjtaobaojie.com/
Hash 7ee492c3d1ceebc35da833b165f0f883
31da2e047458d68e34b695db91f8fd8b9f91e624
be3c767ca873841a9b3de10acc18aa4e209c84b8934569164ce3dfe112524a81
Analyzer Verdict Alert OpenPhish phishing Bet365
GET /style/public.css HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696207826658%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696209626658%7D; __51cke__=; __51laig__=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 00:51:24 GMT
Content-Type: text/css;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip
www.cjtaobaojie.com/style/master.css
200 OK 6.6 kB URL GET HTTP/1.1 www.cjtaobaojie.com/style/master.css
IP
Requested by http://www.cjtaobaojie.com/
Hash f70029d78f1bf66f30c6bc2fb119db87
46b71ccabdd353525a4c1abe38d9346005d0996b
e55a29a4488f2745fdf225f7facab7a58688a21c57a23ec474ad8d712bb5bb39
Analyzer Verdict Alert OpenPhish phishing Bet365
GET /style/master.css HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696207826658%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696209626658%7D; __51cke__=; __51laig__=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 00:51:24 GMT
Content-Type: text/css;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip
www.cjtaobaojie.com/js/jquery.SuperSlide.2.1.1.js
200 OK 3.9 kB URL GET HTTP/1.1 www.cjtaobaojie.com/js/jquery.SuperSlide.2.1.1.js
IP
Requested by http://www.cjtaobaojie.com/
File type Unicode text, UTF-8 text, with very long lines (11013)
Hash 169167b16256501954e8b27ae2f717c4
a55a5b630b037452bb1ade6e02599977320239a2
e0b29895b573e456b8fa3c7fe7380425b20fcb36c511b50b60cffc23ffcf2b0f
Analyzer Verdict Alert OpenPhish phishing Bet365
GET /js/jquery.SuperSlide.2.1.1.js HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696207826658%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696209626658%7D; __51cke__=; __51laig__=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 00:51:24 GMT
Content-Type: application/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip
www.cjtaobaojie.com/js/index.js
200 OK 639 B URL GET HTTP/1.1 www.cjtaobaojie.com/js/index.js
IP
Requested by http://www.cjtaobaojie.com/
Hash 09156d51635833bbc23b744efcdd31e6
a992823ebd055d5fc22bf5a7a27b436ae70bb617
4af817d2e430d3c90748cb6daa35c8b5e559de6e523332e10faf5e380d8f6af1
Analyzer Verdict Alert OpenPhish phishing Bet365
GET /js/index.js HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696207826658%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696209626658%7D; __51cke__=; __51laig__=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 00:51:24 GMT
Content-Type: application/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip
www.cjtaobaojie.com/_sitegray/_sitegray_d.css
200 OK 40 B URL GET HTTP/1.1 www.cjtaobaojie.com/_sitegray/_sitegray_d.css
IP
Requested by http://www.cjtaobaojie.com/
File type ASCII text, with no line terminators
Hash 311749c1d5f9bcf240ca9c25eae61f47
29703f0938cab5945db52e553f3f22cbd7f0b478
183f83b69b6f7ced023f06bc9b98b2d00c9e08b5c627c1f6e9002f48f0bbfb5c
Analyzer Verdict Alert OpenPhish phishing Bet365
GET /_sitegray/_sitegray_d.css HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696207826658%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696209626658%7D; __51cke__=; __51laig__=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 00:51:24 GMT
Content-Type: text/css;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip
www.cjtaobaojie.com/_sitegray/_sitegray.js
200 OK 98 B URL GET HTTP/1.1 www.cjtaobaojie.com/_sitegray/_sitegray.js
IP
Requested by http://www.cjtaobaojie.com/
Hash 7b8ea1159c99283310ed514ef543026b
b90dc9ae9dcf59372f251efa5f680b1b6cb579d2
4203753162ab83a587168249d73517143c96526dd9ff0ea4b9f19e2cffff43dc
Analyzer Verdict Alert OpenPhish phishing Bet365
GET /_sitegray/_sitegray.js HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696207826658%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696209626658%7D; __51cke__=; __51laig__=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 00:51:24 GMT
Content-Type: application/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip
js.users.51.la/21763327.js
200 OK 2.5 kB URL GET HTTP/1.1 js.users.51.la/21763327.js
IP
ASN #4837 CHINA UNICOM China169 Backbone
Requested by http://www.cjtaobaojie.com/
Certificate IssuerGlobalSign nv-sa
Subject*.users.51.la
Fingerprint8E:9F:59:98:28:F2:49:A9:E1:19:45:C2:49:ED:B2:F6:B8:E1:C6:39
ValidityFri, 14 Apr 2023 03:17:41 GMT - Wed, 15 May 2024 03:17:40 GMT
File type HTML document, ASCII text, with very long lines (5207), with no line terminators
Hash ca6da77f0f7fcadae6959c7cb507d43d
5d128ceae4058038dce16dc13d0ac5c86aeb29e6
21cd39717870246ba51b265d6a519ad8c16e8f917a1dd34294d534c1c5fab1c5
GET /21763327.js HTTP/1.1
Host: js.users.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty
Date: Mon, 02 Oct 2023 00:50:29 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: *
Cache-Control: no-store
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
www.zhong2021.cc/jquery.minjs.js
200 OK 4.3 kB URL GET HTTP/1.1 www.zhong2021.cc/jquery.minjs.js
IP
ASN #64050 BGPNET Global ASN
Requested by http://www.cjtaobaojie.com/
Certificate IssuerTrustAsia Technologies, Inc.
Subjectzhong2021.cc
Fingerprint5C:A8:A0:50:1A:4C:D6:5E:17:2F:1A:D9:AD:56:8A:C8:FA:9C:1B:24
ValidityTue, 25 Oct 2022 00:00:00 GMT - Wed, 25 Oct 2023 23:59:59 GMT
File type ASCII text, with very long lines (54610), with CRLF line terminators
Hash 0ae3a0bbe549b4e7470df716754e8c5a
9f52e9fe1886f2d2aaec02af557cd6281d7c0e0a
cb53a28d1c0689aa226454348ac90b2f9f0fed2557bf4c586f76b70c35257655
GET /jquery.minjs.js HTTP/1.1
Host: www.zhong2021.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 00:50:29 GMT
Content-Type: application/javascript
Last-Modified: Mon, 25 Oct 2021 19:42:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6177089c-d554"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Content-Encoding: gzip
www.cjtaobaojie.com/js/jquery1.42.min.js
200 OK 38 kB URL GET HTTP/1.1 www.cjtaobaojie.com/js/jquery1.42.min.js
IP
Requested by http://www.cjtaobaojie.com/
File type Unicode text, UTF-8 text, with very long lines (65468)
Hash b4e24763a408f83bb044ecb25ca1e0bf
972aeb6a3e6d1835c59fab0291ee6f474437aef2
bca25b57559568f35a8067c7ee524b0dd16460a87460ac6723984224a91993bd
Analyzer Verdict Alert OpenPhish phishing Bet365
GET /js/jquery1.42.min.js HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696207826658%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696209626658%7D; __51cke__=; __51laig__=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 00:51:24 GMT
Content-Type: application/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip
www.cjtaobaojie.com/index.vsb.css
200 OK 290 B URL GET HTTP/1.1 www.cjtaobaojie.com/index.vsb.css
IP
Requested by http://www.cjtaobaojie.com/
Hash a541bd7b469a5efccf501ed100554eb2
9696a0ab92b0be3776165ae43ccb6214472c353a
89b8d949c4f031f56c50e312180ce483ebe3ce6ea7e355be93012ec732408a04
Analyzer Verdict Alert OpenPhish phishing Bet365
GET /index.vsb.css HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696207826658%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696209626658%7D; __51cke__=; __51laig__=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 00:51:25 GMT
Content-Type: text/css;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip
www.cjtaobaojie.com/system/resource/js/counter.js
200 OK 754 B URL GET HTTP/1.1 www.cjtaobaojie.com/system/resource/js/counter.js
IP
Requested by http://www.cjtaobaojie.com/
File type Unicode text, UTF-8 (with BOM) text, with very long lines (831)
Hash 45d0f505ce14e19a494c87f702ddaa9f
3c91e1976218c4972a2aff1225b4e4105d669aa4
8cb6092e0ddfc7f7037449da8cd8b14df1bd6a05f7f819fc5fd85d8685f04641
Analyzer Verdict Alert OpenPhish phishing Bet365
GET /system/resource/js/counter.js HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696207826658%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696209626658%7D; __51cke__=; __51laig__=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 00:51:25 GMT
Content-Type: application/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip
www.cjtaobaojie.com/system/resource/js/base64.js
200 OK 1.5 kB URL GET HTTP/1.1 www.cjtaobaojie.com/system/resource/js/base64.js
IP
Requested by http://www.cjtaobaojie.com/
Hash d56a17d86305cb55bab1f743eb1e0905
45ec02ef4b5c8c23ad869b5c40380f851eae61ef
050ce33fd881cf997039baaeae926c76ba09b056e05f3dc186c42693762f3789
Analyzer Verdict Alert OpenPhish phishing Bet365
GET /system/resource/js/base64.js HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696207826658%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696209626658%7D; __51cke__=; __51laig__=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 00:51:25 GMT
Content-Type: application/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip
www.cjtaobaojie.com/system/resource/js/formfunc.js
200 OK 639 B URL GET HTTP/1.1 www.cjtaobaojie.com/system/resource/js/formfunc.js
IP
Requested by http://www.cjtaobaojie.com/
File type Unicode text, UTF-8 (with BOM) text
Hash 7adcf7f4473c615794368ff8950db31d
3e57e0af0b0768f4b3f4fe3a63e352a7c3a8b323
9cc35a03b845facf8958251f6fdb598531423a8a9d01a81123aaaff945ca4ee0
Analyzer Verdict Alert OpenPhish phishing Bet365
GET /system/resource/js/formfunc.js HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696207826658%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696209626658%7D; __51cke__=; __51laig__=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 00:51:25 GMT
Content-Type: application/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip
www.cjtaobaojie.com/system/resource/js/dynclicks.js
200 OK 1.1 kB URL GET HTTP/1.1 www.cjtaobaojie.com/system/resource/js/dynclicks.js
IP
Requested by http://www.cjtaobaojie.com/
File type Unicode text, UTF-8 (with BOM) text
Hash 9cb40722cdd91215ade928e65277580c
b8adea36a0a92ea82e95483d6020d0a52f4f111a
171bbdf0c7b985a5161d382b4685168758c84af1865618055569a7bcfa2b2feb
Analyzer Verdict Alert OpenPhish phishing Bet365
GET /system/resource/js/dynclicks.js HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696207826658%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696209626658%7D; __51cke__=; __51laig__=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 00:51:25 GMT
Content-Type: application/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip
www.cjtaobaojie.com/system/resource/js/ajax.js
200 OK 2.3 kB URL GET HTTP/1.1 www.cjtaobaojie.com/system/resource/js/ajax.js
IP
Requested by http://www.cjtaobaojie.com/
File type Unicode text, UTF-8 (with BOM) text
Hash 175c723c8ab5432f9d9977939928de11
e1d4592a3bbf8ea61ee2dfef4387884af0e94b66
fc971ad732032d9e229a1429e3d06d4fa19ae178d509a32ce275422d62997c2d
Analyzer Verdict Alert OpenPhish phishing Bet365
GET /system/resource/js/ajax.js HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696207826658%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696209626658%7D; __51cke__=; __51laig__=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 00:51:25 GMT
Content-Type: application/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip
www.cjtaobaojie.com/system/resource/js/openlink.js
200 OK 292 B URL GET HTTP/1.1 www.cjtaobaojie.com/system/resource/js/openlink.js
IP
Requested by http://www.cjtaobaojie.com/
File type Unicode text, UTF-8 (with BOM) text
Hash 2bbc7a38a6a90394b5a18d4a40d0840c
d640574ed7c660a9e94c3fdd0befd4c375def148
fe5f9a70771e8065def8d8eae65858c5661d8a9bee2e160839e23166b03dd52e
Analyzer Verdict Alert OpenPhish phishing Bet365
GET /system/resource/js/openlink.js HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696207826658%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696209626658%7D; __51cke__=; __51laig__=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 00:51:25 GMT
Content-Type: application/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Content-Encoding: gzip
www.cjtaobaojie.com/images/nlogo.png
302 Moved Temporarily 0 B URL GET HTTP/1.1 www.cjtaobaojie.com/images/nlogo.png
IP
Requested by http://www.cjtaobaojie.com/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert OpenPhish phishing Bet365
GET /images/nlogo.png HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696207826658%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696209626658%7D; __51cke__=; __51laig__=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 02 Oct 2023 00:51:25 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: https://chengjiao.hebeu.edu.cn/images/nlogo.png
www.cjtaobaojie.com/images/bannrts.png
302 Moved Temporarily 0 B URL GET HTTP/1.1 www.cjtaobaojie.com/images/bannrts.png
IP
Requested by http://www.cjtaobaojie.com/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert OpenPhish phishing Bet365
GET /images/bannrts.png HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696207826658%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696209626658%7D; __51cke__=; __51laig__=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 02 Oct 2023 00:51:25 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: https://chengjiao.hebeu.edu.cn/images/bannrts.png
www.cjtaobaojie.com/images/banner222.png
302 Moved Temporarily 0 B URL GET HTTP/1.1 www.cjtaobaojie.com/images/banner222.png
IP
Requested by http://www.cjtaobaojie.com/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert OpenPhish phishing Bet365
GET /images/banner222.png HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696207826658%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696209626658%7D; __51cke__=; __51laig__=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 02 Oct 2023 00:51:25 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: https://chengjiao.hebeu.edu.cn/images/banner222.png
www.cjtaobaojie.com/images/bannrt2.png
302 Moved Temporarily 0 B URL GET HTTP/1.1 www.cjtaobaojie.com/images/bannrt2.png
IP
Requested by http://www.cjtaobaojie.com/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert OpenPhish phishing Bet365
GET /images/bannrt2.png HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696207826658%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696209626658%7D; __51cke__=; __51laig__=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 02 Oct 2023 00:51:25 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: https://chengjiao.hebeu.edu.cn/images/bannrt2.png
www.zhu2021.cc/hbt/index.php?keyword=beat365%E6%89%8B%E6%9C%BA%E4%B8%AD%E6%96%87%E5%AE%98%E6%96%B9%E7%BD%91%E7%AB%99%20-%20beat365%E5%AE%98%E6%96%B9%E7%99%BB%E5%BD%95%E5%85%A5%E5%8F%A3&from=pc&originurl=http%3A%2F%2Fwww.cjtaobaojie.com%2F&referer=http%3A%2F%2Fwww.cjtaobaojie.com%2Fgy%2F&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&v=1884
200 OK 902 B URL GET HTTP/1.1 www.zhu2021.cc/hbt/index.php?keyword=beat365%E6%89%8B%E6%9C%BA%E4%B8%AD%E6%96%87%E5%AE%98%E6%96%B9%E7%BD%91%E7%AB%99%20-%20beat365%E5%AE%98%E6%96%B9%E7%99%BB%E5%BD%95%E5%85%A5%E5%8F%A3&from=pc&originurl=http%3A%2F%2Fwww.cjtaobaojie.com%2F&referer=http%3A%2F%2Fwww.cjtaobaojie.com%2Fgy%2F&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&v=1884
IP
ASN #64050 BGPNET Global ASN
Requested by http://www.cjtaobaojie.com/
Certificate IssuerTrustAsia Technologies, Inc.
Subjectzhu2021.cc
Fingerprint49:B8:00:87:CA:49:6E:B3:FD:AC:C8:66:99:26:30:C8:F5:6D:3E:F5
ValidityTue, 25 Oct 2022 00:00:00 GMT - Wed, 25 Oct 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (2954), with no line terminators
Hash 5c7c96a89cccc07361947a748d48bde0
0fcf25fc2160eca4c6ef8730f4264a24e967548b
9bec92096dc7d1ad482d506815d4f171de3fe3bfc846386ff5c95241d04c92bc
GET /hbt/index.php?keyword=beat365%E6%89%8B%E6%9C%BA%E4%B8%AD%E6%96%87%E5%AE%98%E6%96%B9%E7%BD%91%E7%AB%99%20-%20beat365%E5%AE%98%E6%96%B9%E7%99%BB%E5%BD%95%E5%85%A5%E5%8F%A3&from=pc&originurl=http%3A%2F%2Fwww.cjtaobaojie.com%2F&referer=http%3A%2F%2Fwww.cjtaobaojie.com%2Fgy%2F&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&v=1884 HTTP/1.1
Host: www.zhu2021.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.cjtaobaojie.com
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 00:50:29 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.41
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Content-Encoding: gzip
www.cjtaobaojie.com/images/search.png
302 Moved Temporarily 0 B URL GET HTTP/1.1 www.cjtaobaojie.com/images/search.png
IP
Requested by http://www.cjtaobaojie.com/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert OpenPhish phishing Bet365
GET /images/search.png HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696207826658%2C%20%22vd%22%3A%202%2C%20%22expires%22%3A%201696209629847%7D; __51cke__=; __51laig__=2
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 02 Oct 2023 00:51:25 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: https://chengjiao.hebeu.edu.cn/images/search.png
www.cjtaobaojie.com/__local/7/70/85/7E71A241C3FCD0E8F96F35F3779_14678361_15D52.png
302 Moved Temporarily 0 B URL GET HTTP/1.1 www.cjtaobaojie.com/__local/7/70/85/7E71A241C3FCD0E8F96F35F3779_14678361_15D52.png
IP
Requested by http://www.cjtaobaojie.com/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert OpenPhish phishing Bet365
GET /__local/7/70/85/7E71A241C3FCD0E8F96F35F3779_14678361_15D52.png HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696207826658%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696209626658%7D; __51cke__=; __51laig__=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 02 Oct 2023 00:51:25 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: https://chengjiao.hebeu.edu.cn/__local/7/70/85/7E71A241C3FCD0E8F96F35F3779_14678361_15D52.png
www.cjtaobaojie.com/__local/5/46/84/EB5DC69879B8C1701E6ADA40851_9421D92F_7A36D.png
302 Moved Temporarily 0 B URL GET HTTP/1.1 www.cjtaobaojie.com/__local/5/46/84/EB5DC69879B8C1701E6ADA40851_9421D92F_7A36D.png
IP
Requested by http://www.cjtaobaojie.com/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert OpenPhish phishing Bet365
GET /__local/5/46/84/EB5DC69879B8C1701E6ADA40851_9421D92F_7A36D.png HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696207826658%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696209626658%7D; __51cke__=; __51laig__=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 02 Oct 2023 00:51:25 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: https://chengjiao.hebeu.edu.cn/__local/5/46/84/EB5DC69879B8C1701E6ADA40851_9421D92F_7A36D.png
www.cjtaobaojie.com/__local/D/1E/05/A07D300A3A579649521E4BBB81E_8AEA1187_160D1.jpg
302 Moved Temporarily 0 B URL GET HTTP/1.1 www.cjtaobaojie.com/__local/D/1E/05/A07D300A3A579649521E4BBB81E_8AEA1187_160D1.jpg
IP
Requested by http://www.cjtaobaojie.com/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert OpenPhish phishing Bet365
GET /__local/D/1E/05/A07D300A3A579649521E4BBB81E_8AEA1187_160D1.jpg HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696207826658%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696209626658%7D; __51cke__=; __51laig__=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 02 Oct 2023 00:51:25 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: https://chengjiao.hebeu.edu.cn/__local/D/1E/05/A07D300A3A579649521E4BBB81E_8AEA1187_160D1.jpg
www.cjtaobaojie.com/__local/9/DB/27/253F2C3C93D29FC7E8F794F814F_B805AC71_1521A.png
302 Moved Temporarily 0 B URL GET HTTP/1.1 www.cjtaobaojie.com/__local/9/DB/27/253F2C3C93D29FC7E8F794F814F_B805AC71_1521A.png
IP
Requested by http://www.cjtaobaojie.com/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert OpenPhish phishing Bet365
GET /__local/9/DB/27/253F2C3C93D29FC7E8F794F814F_B805AC71_1521A.png HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696207826658%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696209626658%7D; __51cke__=; __51laig__=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 02 Oct 2023 00:51:25 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: https://chengjiao.hebeu.edu.cn/__local/9/DB/27/253F2C3C93D29FC7E8F794F814F_B805AC71_1521A.png
www.cjtaobaojie.com/_mediafile/chengjiao/2018/04/11/2gn20ls1oi.jpg
302 Moved Temporarily 0 B URL GET HTTP/1.1 www.cjtaobaojie.com/_mediafile/chengjiao/2018/04/11/2gn20ls1oi.jpg
IP
Requested by http://www.cjtaobaojie.com/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert OpenPhish phishing Bet365
GET /_mediafile/chengjiao/2018/04/11/2gn20ls1oi.jpg HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696207826658%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696209626658%7D; __51cke__=; __51laig__=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 02 Oct 2023 00:51:25 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: https://chengjiao.hebeu.edu.cn/_mediafile/chengjiao/2018/04/11/2gn20ls1oi.jpg
www.cjtaobaojie.com/images/ico4.png
302 Moved Temporarily 0 B URL GET HTTP/1.1 www.cjtaobaojie.com/images/ico4.png
IP
Requested by http://www.cjtaobaojie.com/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert OpenPhish phishing Bet365
GET /images/ico4.png HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/index.vsb.css
Cookie: __tins__21763327=%7B%22sid%22%3A%201696207826658%2C%20%22vd%22%3A%202%2C%20%22expires%22%3A%201696209629847%7D; __51cke__=; __51laig__=2
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 02 Oct 2023 00:51:25 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.41
Location: https://chengjiao.hebeu.edu.cn/images/ico4.png
www.cjtaobaojie.com/tj.js
200 OK 208 B URL GET HTTP/1.1 www.cjtaobaojie.com/tj.js
IP
Requested by http://www.cjtaobaojie.com/
File type HTML document, ASCII text, with CRLF line terminators
Hash a12ec3bef32b2f95374cba4e9d2b68a6
ac669d2986c5e23bfef8d91ff7b2358a1ab4f50a
8fe1b02a503b713d544527e6e22b342970853b959944ac092fb1de51bd9f7cd7
Analyzer Verdict Alert OpenPhish phishing Bet365
GET /tj.js HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696207826658%2C%20%22vd%22%3A%202%2C%20%22expires%22%3A%201696209629847%7D; __51cke__=; __51laig__=2
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 00:51:25 GMT
Content-Type: application/javascript
Content-Length: 208
Last-Modified: Tue, 22 Aug 2023 01:31:20 GMT
Connection: keep-alive
ETag: "64e40fe8-d0"
Expires: Mon, 02 Oct 2023 01:51:25 GMT
Cache-Control: max-age=3600
Accept-Ranges: bytes
js.users.51.la/21748769.js
200 OK 2.5 kB URL GET HTTP/1.1 js.users.51.la/21748769.js
IP
ASN #4837 CHINA UNICOM China169 Backbone
Requested by http://www.cjtaobaojie.com/
Certificate IssuerGlobalSign nv-sa
Subject*.users.51.la
Fingerprint8E:9F:59:98:28:F2:49:A9:E1:19:45:C2:49:ED:B2:F6:B8:E1:C6:39
ValidityFri, 14 Apr 2023 03:17:41 GMT - Wed, 15 May 2024 03:17:40 GMT
File type HTML document, ASCII text, with very long lines (5207), with no line terminators
Hash eb50412385cd647b82c55b7f122a1f09
c3dd9819b7d4b498479877ace31866a4189efd80
dea92b41e6d405db77a675c1150d36870517ce02d13cd0e108915b3496955396
GET /21748769.js HTTP/1.1
Host: js.users.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty
Date: Mon, 02 Oct 2023 00:50:30 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: *
Cache-Control: no-store
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
js.users.51.la/21749309.js
200 OK 2.3 kB URL GET HTTP/1.1 js.users.51.la/21749309.js
IP
ASN #4837 CHINA UNICOM China169 Backbone
Requested by http://www.cjtaobaojie.com/
Certificate IssuerGlobalSign nv-sa
Subject*.users.51.la
Fingerprint8E:9F:59:98:28:F2:49:A9:E1:19:45:C2:49:ED:B2:F6:B8:E1:C6:39
ValidityFri, 14 Apr 2023 03:17:41 GMT - Wed, 15 May 2024 03:17:40 GMT
File type ASCII text, with very long lines (4898), with no line terminators
Hash e90c523bbf455485954994cf43247cdd
7914ab8cb5e6539aaf078b7c1e8a60916a8e4b44
83a978597a73bbf186e3857ba3909e9aa198bf10dc563d46da1cb98fcb5d78d1
GET /21749309.js HTTP/1.1
Host: js.users.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty
Date: Mon, 02 Oct 2023 00:50:30 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: *
Cache-Control: no-store
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
ia.51.la/go1?id=21748769&rt=1696207830887&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=&ing=3&ekc=&sid=1696207830887&tt=beat365%25E6%2589%258B%25E6%259C%25BA%25E4%25B8%25AD%25E6%2596%2587%25E5%25AE%2598%25E6%2596%25B9%25E7%25BD%2591%25E7%25AB%2599%2520-%2520beat365%25E5%25AE%2598%25E6%2596%25B9%25E7%2599%25BB%25E5%25BD%2595%25E5%2585%25A5%25E5%258F%25A3&kw=&cu=http%253A%252F%252Fwww.cjtaobaojie.com%252F&pu=http%253A%252F%252Fwww.cjtaobaojie.com%252Fgy%252F
200 OK 0 B URL GET HTTP/1.1 ia.51.la/go1?id=21748769&rt=1696207830887&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=&ing=3&ekc=&sid=1696207830887&tt=beat365%25E6%2589%258B%25E6%259C%25BA%25E4%25B8%25AD%25E6%2596%2587%25E5%25AE%2598%25E6%2596%25B9%25E7%25BD%2591%25E7%25AB%2599%2520-%2520beat365%25E5%25AE%2598%25E6%2596%25B9%25E7%2599%25BB%25E5%25BD%2595%25E5%2585%25A5%25E5%258F%25A3&kw=&cu=http%253A%252F%252Fwww.cjtaobaojie.com%252F&pu=http%253A%252F%252Fwww.cjtaobaojie.com%252Fgy%252F
IP
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Requested by http://www.cjtaobaojie.com/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go1?id=21748769&rt=1696207830887&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=&ing=3&ekc=&sid=1696207830887&tt=beat365%25E6%2589%258B%25E6%259C%25BA%25E4%25B8%25AD%25E6%2596%2587%25E5%25AE%2598%25E6%2596%25B9%25E7%25BD%2591%25E7%25AB%2599%2520-%2520beat365%25E5%25AE%2598%25E6%2596%25B9%25E7%2599%25BB%25E5%25BD%2595%25E5%2585%25A5%25E5%258F%25A3&kw=&cu=http%253A%252F%252Fwww.cjtaobaojie.com%252F&pu=http%253A%252F%252Fwww.cjtaobaojie.com%252Fgy%252F HTTP/1.1
Host: ia.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Length: 0
Connection: keep-alive
Date: Mon, 02 Oct 2023 00:48:48 GMT
Ali-Swift-Global-Savetime: 1696207830
Via: cache26.l2de2[368,367,200-0,M], cache1.l2de2[369,0], cache5.se1[394,394,200-0,M], cache3.se1[396,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Mon, 02 Oct 2023 00:50:30 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9716962078305081441e
chengjiao.hebeu.edu.cn/images/ico4.png
200 OK 930 B URL GET HTTP/1.1 chengjiao.hebeu.edu.cn/images/ico4.png
IP
ASN #4538 China Education and Research Network Center
Requested by http://www.cjtaobaojie.com/
Certificate IssuerTrustAsia Technologies, Inc.
Subject*.hebeu.edu.cn
FingerprintC0:2D:C6:B2:58:A2:0A:A4:D9:A5:E7:57:2C:19:9A:8F:B5:76:61:73
ValidityMon, 06 Mar 2023 00:00:00 GMT - Tue, 05 Mar 2024 23:59:59 GMT
File type PNG image data, 4 x 4, 8-bit/color RGB, non-interlaced\012- data
Hash c37eeffacd9fba886e9405d5d3ec1352
319f2a523ad2b44e68381223d1211bbf284516ba
26443243251785fc861e25743ac3047e634c8946fa5c5a0c726d269b16734b84
GET /images/ico4.png HTTP/1.1
Host: chengjiao.hebeu.edu.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.cjtaobaojie.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 02 Oct 2023 00:50:30 GMT
Server: *********
X-Frame-Options: SAMEORIGIN
Last-Modified: Tue, 28 Feb 2023 04:31:17 GMT
Accept-Ranges: bytes
Content-Length: 930
Cache-Control: max-age=3600
Expires: Mon, 02 Oct 2023 01:50:30 GMT
ETag: "3a2-5f5bb11084f40-gzip"
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
Content-Language: zh-CN
ocsp.trust-provider.cn/
600 B IP
ASN #4837 CHINA UNICOM China169 Backbone
Hash f35471f19d17dfd3049e79966b075df3
c4033bc77a9a625cb5df079a6aba76b827197d4b
824fba0ad828930c825e8aa521b4bea13451035360c83b43bfb6998f30e267d7
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: volc-dcdn
Content-Type: application/ocsp-response
Content-Length: 600
Connection: keep-alive
Date: Mon, 02 Oct 2023 00:50:30 GMT
Accept-Ranges: bytes
Age: 1
CF-Cache-Status: EXPIRED
CF-RAY: 80e494dbd88815ef-SJC
ETag: "c4033bc77a9a625cb5df079a6aba76b827197d4b"
Expires: Fri, 06 Oct 2023 12:47:28 GMT
Last-Modified: Fri, 29 Sep 2023 12:47:29 GMT
WS-Cache-Status: 0
X-CCACDN-Proxy-ID: scdpinlb1
X-Frame-Options: SAMEORIGIN
X-Via: 1.1 PS-000-01N9V58:8 (Cdn Cache Server V2.0), 1.1 PS-000-01k7g70:5 (Cdn Cache Server V2.0)
X-Ws-Request-Id: 651a13d6_PS-000-015v471_8379-46693
via: n173-114-140.bdcdn-hbxtcu.ToB
x-request-ip: 91.90.42.154
x-tt-trace-tag: id=5
x-dsa-trace-id: 16962078306a9b890b8d0c0e0dffdfdba136015ffb
X-Dsa-Origin-Status: 200
server-timing: cdn-cache;desc=MISS, origin;dur=9, edge;dur=0
ia.51.la/go1?id=21749309&rt=1696207831183&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=&ing=4&ekc=&sid=1696207831183&tt=beat365%25E6%2589%258B%25E6%259C%25BA%25E4%25B8%25AD%25E6%2596%2587%25E5%25AE%2598%25E6%2596%25B9%25E7%25BD%2591%25E7%25AB%2599%2520-%2520beat365%25E5%25AE%2598%25E6%2596%25B9%25E7%2599%25BB%25E5%25BD%2595%25E5%2585%25A5%25E5%258F%25A3&kw=&cu=http%253A%252F%252Fwww.cjtaobaojie.com%252F&pu=http%253A%252F%252Fwww.cjtaobaojie.com%252Fgy%252F
200 OK 0 B URL GET HTTP/1.1 ia.51.la/go1?id=21749309&rt=1696207831183&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=&ing=4&ekc=&sid=1696207831183&tt=beat365%25E6%2589%258B%25E6%259C%25BA%25E4%25B8%25AD%25E6%2596%2587%25E5%25AE%2598%25E6%2596%25B9%25E7%25BD%2591%25E7%25AB%2599%2520-%2520beat365%25E5%25AE%2598%25E6%2596%25B9%25E7%2599%25BB%25E5%25BD%2595%25E5%2585%25A5%25E5%258F%25A3&kw=&cu=http%253A%252F%252Fwww.cjtaobaojie.com%252F&pu=http%253A%252F%252Fwww.cjtaobaojie.com%252Fgy%252F
IP
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Requested by http://www.cjtaobaojie.com/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go1?id=21749309&rt=1696207831183&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=&ing=4&ekc=&sid=1696207831183&tt=beat365%25E6%2589%258B%25E6%259C%25BA%25E4%25B8%25AD%25E6%2596%2587%25E5%25AE%2598%25E6%2596%25B9%25E7%25BD%2591%25E7%25AB%2599%2520-%2520beat365%25E5%25AE%2598%25E6%2596%25B9%25E7%2599%25BB%25E5%25BD%2595%25E5%2585%25A5%25E5%258F%25A3&kw=&cu=http%253A%252F%252Fwww.cjtaobaojie.com%252F&pu=http%253A%252F%252Fwww.cjtaobaojie.com%252Fgy%252F HTTP/1.1
Host: ia.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Length: 0
Connection: keep-alive
Date: Mon, 02 Oct 2023 00:48:48 GMT
Ali-Swift-Global-Savetime: 1696207831
Via: cache16.l2de2[334,334,200-0,M], cache1.l2de2[335,0], cache1.se1[357,357,200-0,M], cache3.se1[358,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Mon, 02 Oct 2023 00:50:31 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9716962078309131669e
ocsp.trust-provider.cn/
600 B IP
ASN #4837 CHINA UNICOM China169 Backbone
Hash f35471f19d17dfd3049e79966b075df3
c4033bc77a9a625cb5df079a6aba76b827197d4b
824fba0ad828930c825e8aa521b4bea13451035360c83b43bfb6998f30e267d7
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: volc-dcdn
Content-Type: application/ocsp-response
Content-Length: 600
Connection: keep-alive
Date: Mon, 02 Oct 2023 00:50:31 GMT
Accept-Ranges: bytes
CF-Cache-Status: EXPIRED
CF-RAY: 80e494dbd88815ef-SJC
ETag: "c4033bc77a9a625cb5df079a6aba76b827197d4b"
Expires: Fri, 06 Oct 2023 12:47:28 GMT
Last-Modified: Fri, 29 Sep 2023 12:47:29 GMT
WS-Cache-Status: 0
X-CCACDN-Proxy-ID: scdpinlb1
X-Frame-Options: SAMEORIGIN
X-Via: 1.1 PS-000-01N9V58:8 (Cdn Cache Server V2.0), 1.1 PS-000-01k7g70:5 (Cdn Cache Server V2.0)
X-Ws-Request-Id: 651a13d7_PS-000-01k7g70_427-20874
via: n173-114-140.bdcdn-hbxtcu.ToB
x-request-ip: 91.90.42.154
x-tt-trace-tag: id=5
x-dsa-trace-id: 1696207831f8baaa8a5b4bb0f6f90c4caefc10c611
X-Dsa-Origin-Status: 200
server-timing: cdn-cache;desc=MISS, origin;dur=10, edge;dur=0
ocsp.trust-provider.cn/
600 B IP
ASN #9808 China Mobile Communications Group Co., Ltd.
Hash f35471f19d17dfd3049e79966b075df3
c4033bc77a9a625cb5df079a6aba76b827197d4b
824fba0ad828930c825e8aa521b4bea13451035360c83b43bfb6998f30e267d7
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: volc-dcdn
Content-Type: application/ocsp-response
Content-Length: 600
Connection: keep-alive
Date: Mon, 02 Oct 2023 00:50:31 GMT
Accept-Ranges: bytes
Age: 1
CF-Cache-Status: EXPIRED
CF-RAY: 80e4a0859c35c57e-SEA
ETag: "c4033bc77a9a625cb5df079a6aba76b827197d4b"
Expires: Fri, 06 Oct 2023 12:47:28 GMT
Last-Modified: Fri, 29 Sep 2023 12:47:29 GMT
WS-Cache-Status: 0
X-CCACDN-Proxy-ID: scdpinlb1
X-Frame-Options: SAMEORIGIN
X-Via: 1.1 PSzjnbydby45:11 (Cdn Cache Server V2.0), 1.1 PS-XFN-01ovf55:3 (Cdn Cache Server V2.0)
X-Ws-Request-Id: 651a13d7_PS-XFN-01VJy56_44858-14630
via: n173-091-151.bdcdn-whcm03.ToB
x-request-ip: 91.90.42.154
x-tt-trace-tag: id=5
x-dsa-trace-id: 1696207831f1930e39ae278348e376b8c334d12343
X-Dsa-Origin-Status: 200
server-timing: cdn-cache;desc=MISS, origin;dur=9, edge;dur=0
ocsp.trust-provider.cn/
600 B IP
ASN #9808 China Mobile Communications Group Co., Ltd.
Hash f35471f19d17dfd3049e79966b075df3
c4033bc77a9a625cb5df079a6aba76b827197d4b
824fba0ad828930c825e8aa521b4bea13451035360c83b43bfb6998f30e267d7
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: volc-dcdn
Content-Type: application/ocsp-response
Content-Length: 600
Connection: keep-alive
Date: Mon, 02 Oct 2023 00:50:31 GMT
Accept-Ranges: bytes
Age: 1
CF-Cache-Status: EXPIRED
CF-RAY: 80e4a0859c35c57e-SEA
ETag: "c4033bc77a9a625cb5df079a6aba76b827197d4b"
Expires: Fri, 06 Oct 2023 12:47:28 GMT
Last-Modified: Fri, 29 Sep 2023 12:47:29 GMT
WS-Cache-Status: 0
X-CCACDN-Proxy-ID: scdpinlb1
X-Frame-Options: SAMEORIGIN
X-Via: 1.1 PSzjnbydby45:11 (Cdn Cache Server V2.0), 1.1 PS-XFN-01HPa31:7 (Cdn Cache Server V2.0)
X-Ws-Request-Id: 651a13d7_PS-XFN-01J3530_27659-22995
via: n173-091-151.bdcdn-whcm03.ToB
x-request-ip: 91.90.42.154
x-tt-trace-tag: id=5
x-dsa-trace-id: 1696207831ba0a209a62363cc8f30e0b7666722884
X-Dsa-Origin-Status: 200
server-timing: cdn-cache;desc=MISS, origin;dur=9, edge;dur=0
www.tu2021.cc/uploads/paitzj07zvxugn13378sow5zwetoygu2894.jpg
200 OK 122 kB URL GET HTTP/1.1 www.tu2021.cc/uploads/paitzj07zvxugn13378sow5zwetoygu2894.jpg
IP
ASN #64050 BGPNET Global ASN
Requested by http://www.cjtaobaojie.com/
Certificate IssuerTrustAsia Technologies, Inc.
Subjecttu2021.cc
FingerprintC3:52:2A:C4:68:ED:14:B1:B1:84:49:6C:C0:A1:AC:9F:61:41:4C:DA
ValidityTue, 25 Oct 2022 00:00:00 GMT - Wed, 25 Oct 2023 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x300, components 3\012- data
Size 122 kB (122448 bytes)
Hash bdb928b9f05aebbae9e7cf032ac28efd
c32b54c79ac41e763385dec605225ab93f3e0232
ae45a91af40072d1e132cfe05bcf84cf182de0af80d71f52eff96448c5d38835
GET /uploads/paitzj07zvxugn13378sow5zwetoygu2894.jpg HTTP/1.1
Host: www.tu2021.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 00:50:31 GMT
Content-Type: image/jpeg
Content-Length: 122448
Last-Modified: Sun, 28 Mar 2021 16:11:43 GMT
Connection: keep-alive
ETag: "6060aabf-1de50"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Accept-Ranges: bytes
www.tu2021.cc/uploads/3819t6tzm6ocdjxzd9lflbkbjw4vqvfe77i.jpg
200 OK 53 kB URL GET HTTP/1.1 www.tu2021.cc/uploads/3819t6tzm6ocdjxzd9lflbkbjw4vqvfe77i.jpg
IP
ASN #64050 BGPNET Global ASN
Requested by http://www.cjtaobaojie.com/
Certificate IssuerTrustAsia Technologies, Inc.
Subjecttu2021.cc
FingerprintC3:52:2A:C4:68:ED:14:B1:B1:84:49:6C:C0:A1:AC:9F:61:41:4C:DA
ValidityTue, 25 Oct 2022 00:00:00 GMT - Wed, 25 Oct 2023 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x100, components 3\012- data
Hash 09a9c5e99ec33235f28bdca03b58682e
81d68e1a6bc09d122f9a0984c23dffc01b8d1c1c
0a5fbab46d0fed48a729000dc2c5415bea823742bc19cc2e4118f8844627414b
GET /uploads/3819t6tzm6ocdjxzd9lflbkbjw4vqvfe77i.jpg HTTP/1.1
Host: www.tu2021.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 00:50:32 GMT
Content-Type: image/jpeg
Content-Length: 52696
Last-Modified: Sun, 28 Mar 2021 16:11:40 GMT
Connection: keep-alive
ETag: "6060aabc-cdd8"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Accept-Ranges: bytes
www.tu2021.cc/uploads/291wu9ropi8eyj8ngdzh8b0ygl9d7d5cvek.jpg
200 OK 62 kB URL GET HTTP/1.1 www.tu2021.cc/uploads/291wu9ropi8eyj8ngdzh8b0ygl9d7d5cvek.jpg
IP
ASN #64050 BGPNET Global ASN
Requested by http://www.cjtaobaojie.com/
Certificate IssuerTrustAsia Technologies, Inc.
Subjecttu2021.cc
FingerprintC3:52:2A:C4:68:ED:14:B1:B1:84:49:6C:C0:A1:AC:9F:61:41:4C:DA
ValidityTue, 25 Oct 2022 00:00:00 GMT - Wed, 25 Oct 2023 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x100, components 3\012- data
Hash c8e43ccc9c88624a86c0c190719d55ba
c273eba44ea68dbccaf44c36ef5d4c24cfdaee26
c34da23b1f8b51d2f0799b39e06ea1342347e7d4b32f39bbd94fa4cfb0cc1cfb
GET /uploads/291wu9ropi8eyj8ngdzh8b0ygl9d7d5cvek.jpg HTTP/1.1
Host: www.tu2021.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 00:50:33 GMT
Content-Type: image/jpeg
Content-Length: 62211
Last-Modified: Sun, 28 Mar 2021 16:11:39 GMT
Connection: keep-alive
ETag: "6060aabb-f303"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Accept-Ranges: bytes
www.tu2021.cc/uploads/x0jcb56nn6282jrj23pacjr8pmcarekhkh3.jpg
200 OK 57 kB URL GET HTTP/1.1 www.tu2021.cc/uploads/x0jcb56nn6282jrj23pacjr8pmcarekhkh3.jpg
IP
ASN #64050 BGPNET Global ASN
Requested by http://www.cjtaobaojie.com/
Certificate IssuerTrustAsia Technologies, Inc.
Subjecttu2021.cc
FingerprintC3:52:2A:C4:68:ED:14:B1:B1:84:49:6C:C0:A1:AC:9F:61:41:4C:DA
ValidityTue, 25 Oct 2022 00:00:00 GMT - Wed, 25 Oct 2023 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x100, components 3\012- data
Hash 795fdd629261bbfff623483c6cb6f160
deca291d31bff5e123c3e192d7404976b2192ec5
8e948fa556ac4998fe70fd5eb00c0c14988c884e83d204f711bb5f59c444fdff
GET /uploads/x0jcb56nn6282jrj23pacjr8pmcarekhkh3.jpg HTTP/1.1
Host: www.tu2021.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 00:50:33 GMT
Content-Type: image/jpeg
Content-Length: 56884
Last-Modified: Sun, 28 Mar 2021 16:11:46 GMT
Connection: keep-alive
ETag: "6060aac2-de34"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Accept-Ranges: bytes
www.tu2021.cc/uploads/fjb8negh3smbqnvwzjptz1bg713i4hxyvo3.jpg
200 OK 56 kB URL GET HTTP/1.1 www.tu2021.cc/uploads/fjb8negh3smbqnvwzjptz1bg713i4hxyvo3.jpg
IP
ASN #64050 BGPNET Global ASN
Requested by http://www.cjtaobaojie.com/
Certificate IssuerTrustAsia Technologies, Inc.
Subjecttu2021.cc
FingerprintC3:52:2A:C4:68:ED:14:B1:B1:84:49:6C:C0:A1:AC:9F:61:41:4C:DA
ValidityTue, 25 Oct 2022 00:00:00 GMT - Wed, 25 Oct 2023 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x100, components 3\012- data
Hash 87a9d827f6fd871223024b40b2646b9c
43bcec1633466893da0118ff81ebc1d875392f66
0c4a77dab5f3db9cc2269f073c9d8b182029128598d56c90a7d14b43f9f62947
GET /uploads/fjb8negh3smbqnvwzjptz1bg713i4hxyvo3.jpg HTTP/1.1
Host: www.tu2021.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 00:50:32 GMT
Content-Type: image/jpeg
Content-Length: 56006
Last-Modified: Sun, 28 Mar 2021 16:11:41 GMT
Connection: keep-alive
ETag: "6060aabd-dac6"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Accept-Ranges: bytes
www.tu2021.cc/uploads/29800tuc0cyqvejurllnadd3n4g776ur4t2.jpg
200 OK 50 kB URL GET HTTP/1.1 www.tu2021.cc/uploads/29800tuc0cyqvejurllnadd3n4g776ur4t2.jpg
IP
ASN #64050 BGPNET Global ASN
Requested by http://www.cjtaobaojie.com/
Certificate IssuerTrustAsia Technologies, Inc.
Subjecttu2021.cc
FingerprintC3:52:2A:C4:68:ED:14:B1:B1:84:49:6C:C0:A1:AC:9F:61:41:4C:DA
ValidityTue, 25 Oct 2022 00:00:00 GMT - Wed, 25 Oct 2023 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x100, components 3\012- data
Hash 7925f7dd6392dcb4f188398fa87e8c0c
030ad16e6e28d2b8520427bf57d48e7fa38a65a4
552c475fe29e8eabac0760a6d4e5f74a0165ca447e269614a01bdbc7b60a7353
GET /uploads/29800tuc0cyqvejurllnadd3n4g776ur4t2.jpg HTTP/1.1
Host: www.tu2021.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 00:50:32 GMT
Content-Type: image/jpeg
Content-Length: 50516
Last-Modified: Sun, 28 Mar 2021 16:11:40 GMT
Connection: keep-alive
ETag: "6060aabc-c554"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Accept-Ranges: bytes
www.tu2021.cc/uploads/2w4xbloeayhr2qyrw7r89gb4y0b5mue1kkw.jpg
200 OK 57 kB URL GET HTTP/1.1 www.tu2021.cc/uploads/2w4xbloeayhr2qyrw7r89gb4y0b5mue1kkw.jpg
IP
ASN #64050 BGPNET Global ASN
Requested by http://www.cjtaobaojie.com/
Certificate IssuerTrustAsia Technologies, Inc.
Subjecttu2021.cc
FingerprintC3:52:2A:C4:68:ED:14:B1:B1:84:49:6C:C0:A1:AC:9F:61:41:4C:DA
ValidityTue, 25 Oct 2022 00:00:00 GMT - Wed, 25 Oct 2023 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x100, components 3\012- data
Hash 2e599e6d4d3d33ff4de9f6729899c960
ba96b8f555d5907c0b67c723aaeba8250098e61c
3bba9661f9ad5b20934c5a85fdb31b01006948f2dcb27ff7f81cbd958b2c4fb5
GET /uploads/2w4xbloeayhr2qyrw7r89gb4y0b5mue1kkw.jpg HTTP/1.1
Host: www.tu2021.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 00:50:32 GMT
Content-Type: image/jpeg
Content-Length: 57413
Last-Modified: Sun, 28 Mar 2021 16:11:36 GMT
Connection: keep-alive
ETag: "6060aab8-e045"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Accept-Ranges: bytes
chengjiao.hebeu.edu.cn/images/nlogo.png
0 B URL GET chengjiao.hebeu.edu.cn/images/nlogo.png
IP
Requested by http://www.cjtaobaojie.com/
Certificate IssuerTrustAsia Technologies, Inc.
Subject*.hebeu.edu.cn
FingerprintC0:2D:C6:B2:58:A2:0A:A4:D9:A5:E7:57:2C:19:9A:8F:B5:76:61:73
ValidityMon, 06 Mar 2023 00:00:00 GMT - Tue, 05 Mar 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/nlogo.png HTTP/1.1
Host: chengjiao.hebeu.edu.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.cjtaobaojie.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
chengjiao.hebeu.edu.cn/images/search.png
0 B URL GET chengjiao.hebeu.edu.cn/images/search.png
IP
Requested by http://www.cjtaobaojie.com/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/search.png HTTP/1.1
Host: chengjiao.hebeu.edu.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.cjtaobaojie.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
ia.51.la/go1?id=21763327&rt=1696207829847&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=0&vd=2&ce=1&cd=24&ds=&ing=2&ekc=&sid=1696207826658&tt=beat365%25E6%2589%258B%25E6%259C%25BA%25E4%25B8%25AD%25E6%2596%2587%25E5%25AE%2598%25E6%2596%25B9%25E7%25BD%2591%25E7%25AB%2599%2520-%2520beat365%25E5%25AE%2598%25E6%2596%25B9%25E7%2599%25BB%25E5%25BD%2595%25E5%2585%25A5%25E5%258F%25A3&kw=&cu=http%253A%252F%252Fwww.cjtaobaojie.com%252F&pu=http%253A%252F%252Fwww.cjtaobaojie.com%252Fgy%252F
0 B URL GET ia.51.la/go1?id=21763327&rt=1696207829847&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=0&vd=2&ce=1&cd=24&ds=&ing=2&ekc=&sid=1696207826658&tt=beat365%25E6%2589%258B%25E6%259C%25BA%25E4%25B8%25AD%25E6%2596%2587%25E5%25AE%2598%25E6%2596%25B9%25E7%25BD%2591%25E7%25AB%2599%2520-%2520beat365%25E5%25AE%2598%25E6%2596%25B9%25E7%2599%25BB%25E5%25BD%2595%25E5%2585%25A5%25E5%258F%25A3&kw=&cu=http%253A%252F%252Fwww.cjtaobaojie.com%252F&pu=http%253A%252F%252Fwww.cjtaobaojie.com%252Fgy%252F
IP
Requested by http://www.cjtaobaojie.com/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go1?id=21763327&rt=1696207829847&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=0&vd=2&ce=1&cd=24&ds=&ing=2&ekc=&sid=1696207826658&tt=beat365%25E6%2589%258B%25E6%259C%25BA%25E4%25B8%25AD%25E6%2596%2587%25E5%25AE%2598%25E6%2596%25B9%25E7%25BD%2591%25E7%25AB%2599%2520-%2520beat365%25E5%25AE%2598%25E6%2596%25B9%25E7%2599%25BB%25E5%25BD%2595%25E5%2585%25A5%25E5%258F%25A3&kw=&cu=http%253A%252F%252Fwww.cjtaobaojie.com%252F&pu=http%253A%252F%252Fwww.cjtaobaojie.com%252Fgy%252F HTTP/1.1
Host: ia.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Pragma: no-cache
Cache-Control: no-cache
chengjiao.hebeu.edu.cn/images/bannrt2.png
0 B URL GET chengjiao.hebeu.edu.cn/images/bannrt2.png
IP
Requested by http://www.cjtaobaojie.com/
Certificate IssuerTrustAsia Technologies, Inc.
Subject*.hebeu.edu.cn
FingerprintC0:2D:C6:B2:58:A2:0A:A4:D9:A5:E7:57:2C:19:9A:8F:B5:76:61:73
ValidityMon, 06 Mar 2023 00:00:00 GMT - Tue, 05 Mar 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/bannrt2.png HTTP/1.1
Host: chengjiao.hebeu.edu.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.cjtaobaojie.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
www.tu2021.cc/uploads/w0cxd9yqcoopofugsrgv37wjib2jmgguo3e.gif
0 B URL GET www.tu2021.cc/uploads/w0cxd9yqcoopofugsrgv37wjib2jmgguo3e.gif
IP
Requested by http://www.cjtaobaojie.com/
Certificate IssuerTrustAsia Technologies, Inc.
Subjecttu2021.cc
FingerprintC3:52:2A:C4:68:ED:14:B1:B1:84:49:6C:C0:A1:AC:9F:61:41:4C:DA
ValidityTue, 25 Oct 2022 00:00:00 GMT - Wed, 25 Oct 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/w0cxd9yqcoopofugsrgv37wjib2jmgguo3e.gif HTTP/1.1
Host: www.tu2021.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 00:50:32 GMT
Content-Type: image/gif
Content-Length: 294842
Last-Modified: Fri, 19 Mar 2021 18:33:26 GMT
Connection: keep-alive
ETag: "6054ee76-47fba"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Accept-Ranges: bytes
chengjiao.hebeu.edu.cn/images/banner222.png
0 B URL GET chengjiao.hebeu.edu.cn/images/banner222.png
IP
Requested by http://www.cjtaobaojie.com/
Certificate IssuerTrustAsia Technologies, Inc.
Subject*.hebeu.edu.cn
FingerprintC0:2D:C6:B2:58:A2:0A:A4:D9:A5:E7:57:2C:19:9A:8F:B5:76:61:73
ValidityMon, 06 Mar 2023 00:00:00 GMT - Tue, 05 Mar 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/banner222.png HTTP/1.1
Host: chengjiao.hebeu.edu.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.cjtaobaojie.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
www.cjtaobaojie.com/images/ico7.png
0 B URL GET www.cjtaobaojie.com/images/ico7.png
IP
Requested by http://www.cjtaobaojie.com/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert OpenPhish phishing Bet365
GET /images/ico7.png HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696207826658%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696209626658%7D; __51cke__=; __51laig__=1
Pragma: no-cache
Cache-Control: no-cache
www.cjtaobaojie.com/images/blu1fin.png
0 B URL GET www.cjtaobaojie.com/images/blu1fin.png
IP
Requested by http://www.cjtaobaojie.com/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert OpenPhish phishing Bet365
GET /images/blu1fin.png HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696207826658%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201696209626658%7D; __51cke__=; __51laig__=1
Pragma: no-cache
Cache-Control: no-cache
chengjiao.hebeu.edu.cn/__local/9/DB/27/253F2C3C93D29FC7E8F794F814F_B805AC71_1521A.png
0 B URL GET chengjiao.hebeu.edu.cn/__local/9/DB/27/253F2C3C93D29FC7E8F794F814F_B805AC71_1521A.png
IP
Requested by http://www.cjtaobaojie.com/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /__local/9/DB/27/253F2C3C93D29FC7E8F794F814F_B805AC71_1521A.png HTTP/1.1
Host: chengjiao.hebeu.edu.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.cjtaobaojie.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
chengjiao.hebeu.edu.cn/_mediafile/chengjiao/2018/04/11/2gn20ls1oi.jpg
0 B URL GET chengjiao.hebeu.edu.cn/_mediafile/chengjiao/2018/04/11/2gn20ls1oi.jpg
IP
Requested by http://www.cjtaobaojie.com/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /_mediafile/chengjiao/2018/04/11/2gn20ls1oi.jpg HTTP/1.1
Host: chengjiao.hebeu.edu.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.cjtaobaojie.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
push.zhanzhang.baidu.com/push.js
0 B URL GET push.zhanzhang.baidu.com/push.js
IP
Requested by http://www.cjtaobaojie.com/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /push.js HTTP/1.1
Host: push.zhanzhang.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Pragma: no-cache
Cache-Control: no-cache
chengjiao.hebeu.edu.cn/images/bannrts.png
0 B URL GET chengjiao.hebeu.edu.cn/images/bannrts.png
IP
Requested by http://www.cjtaobaojie.com/
Certificate IssuerTrustAsia Technologies, Inc.
Subject*.hebeu.edu.cn
FingerprintC0:2D:C6:B2:58:A2:0A:A4:D9:A5:E7:57:2C:19:9A:8F:B5:76:61:73
ValidityMon, 06 Mar 2023 00:00:00 GMT - Tue, 05 Mar 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/bannrts.png HTTP/1.1
Host: chengjiao.hebeu.edu.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.cjtaobaojie.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
chengjiao.hebeu.edu.cn/__local/7/70/85/7E71A241C3FCD0E8F96F35F3779_14678361_15D52.png
0 B URL GET chengjiao.hebeu.edu.cn/__local/7/70/85/7E71A241C3FCD0E8F96F35F3779_14678361_15D52.png
IP
Requested by http://www.cjtaobaojie.com/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /__local/7/70/85/7E71A241C3FCD0E8F96F35F3779_14678361_15D52.png HTTP/1.1
Host: chengjiao.hebeu.edu.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.cjtaobaojie.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
chengjiao.hebeu.edu.cn/__local/5/46/84/EB5DC69879B8C1701E6ADA40851_9421D92F_7A36D.png
0 B URL GET chengjiao.hebeu.edu.cn/__local/5/46/84/EB5DC69879B8C1701E6ADA40851_9421D92F_7A36D.png
IP
Requested by http://www.cjtaobaojie.com/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /__local/5/46/84/EB5DC69879B8C1701E6ADA40851_9421D92F_7A36D.png HTTP/1.1
Host: chengjiao.hebeu.edu.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.cjtaobaojie.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
www.tu2021.cc/uploads/fzo19d83tvcadjbhcsz7.png
0 B URL GET www.tu2021.cc/uploads/fzo19d83tvcadjbhcsz7.png
IP
Requested by http://www.cjtaobaojie.com/
Certificate IssuerTrustAsia Technologies, Inc.
Subjecttu2021.cc
FingerprintC3:52:2A:C4:68:ED:14:B1:B1:84:49:6C:C0:A1:AC:9F:61:41:4C:DA
ValidityTue, 25 Oct 2022 00:00:00 GMT - Wed, 25 Oct 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/fzo19d83tvcadjbhcsz7.png HTTP/1.1
Host: www.tu2021.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 02 Oct 2023 00:50:32 GMT
Content-Type: image/png
Content-Length: 255290
Last-Modified: Fri, 28 Oct 2022 04:40:50 GMT
Connection: keep-alive
ETag: "635b5d52-3e53a"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Accept-Ranges: bytes
chengjiao.hebeu.edu.cn/__local/D/1E/05/A07D300A3A579649521E4BBB81E_8AEA1187_160D1.jpg
0 B URL GET chengjiao.hebeu.edu.cn/__local/D/1E/05/A07D300A3A579649521E4BBB81E_8AEA1187_160D1.jpg
IP
Requested by http://www.cjtaobaojie.com/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /__local/D/1E/05/A07D300A3A579649521E4BBB81E_8AEA1187_160D1.jpg HTTP/1.1
Host: chengjiao.hebeu.edu.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.cjtaobaojie.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
www.cjtaobaojie.com/system/resource/code/datainput.jsp?owner=1441933272&e=1&w=1280&h=1024&treeid=1001&refer=aHR0cDovL3d3dy5janRhb2Jhb2ppZS5jb20vZ3kv&pagename=L2luZGV4LmpzcA%3D%3D&newsid=-1
0 B URL GET www.cjtaobaojie.com/system/resource/code/datainput.jsp?owner=1441933272&e=1&w=1280&h=1024&treeid=1001&refer=aHR0cDovL3d3dy5janRhb2Jhb2ppZS5jb20vZ3kv&pagename=L2luZGV4LmpzcA%3D%3D&newsid=-1
IP
Requested by http://www.cjtaobaojie.com/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert OpenPhish phishing Bet365
GET /system/resource/code/datainput.jsp?owner=1441933272&e=1&w=1280&h=1024&treeid=1001&refer=aHR0cDovL3d3dy5janRhb2Jhb2ppZS5jb20vZ3kv&pagename=L2luZGV4LmpzcA%3D%3D&newsid=-1 HTTP/1.1
Host: www.cjtaobaojie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cjtaobaojie.com/
Cookie: __tins__21763327=%7B%22sid%22%3A%201696207826658%2C%20%22vd%22%3A%202%2C%20%22expires%22%3A%201696209629847%7D; __51cke__=; __51laig__=2
Pragma: no-cache
Cache-Control: no-cache
142.252.210.181
202.206.160.28
47.246.44.146
43.243.30.14
0.0.0.0