分析任务

分析类型 虚拟机标签 开始时间 结束时间 持续时间
URL win7-sp1-x64-hpdapp01-1 2018-11-19 15:06:02 2018-11-19 15:08:26 144 秒

魔盾分数

10.0

危险的

URL详细信息

URL
URL专业沙箱检测 -> http://www.na2.com.cn/portal.php

登录查看威胁特征

运行截图


访问主机纪录 (可点击查询WPING实时安全评级)

直接 IP 安全评级 地理位置
112.74.105.121 未知 中国
180.101.153.11 未知 中国
183.3.226.92 中国
58.216.6.14 未知 中国

域名解析 (可点击查询WPING实时安全评级)

域名 安全评级 响应
www.na2.com.cn 未知 A 112.74.105.121
tcss.qq.com CNAME x2.tcdn.qq.com
A 58.216.96.16
A 58.216.6.14
CNAME x2.tc.qq.com
A 222.186.49.15
CNAME tcss.tc.qq.com
A 180.97.146.144
A 180.101.153.13
A 180.101.153.14
A 180.97.146.145
A 180.97.146.142
A 58.216.6.18
A 180.101.153.16
A 58.216.96.11
A 58.216.6.17
A 180.97.146.143
A 58.216.96.15
A 221.228.67.161
A 180.101.153.11
CNAME tcss.tcdn.qq.com
discuz.gtimg.cn CNAME discuzstatic.tc.qq.com
CNAME discuzstatic.tcdn.qq.com
na2.com.cn
www.naniannatu.com 未知
pingtcss.qq.com 未知 A 183.3.226.92
www.fyjs.cn A 61.155.50.142
www.dingsheng.com 未知
lt.cjdby.net A 106.2.20.107
mitand.taobao.com A 203.119.212.2
CNAME na61-na62.wagbridge.alibaba.taobao.com.gds.alibabadns.com
CNAME shop.taobao.com
CNAME na61-na62.wagbridge.alibaba.taobao.com
natu.joyme.com 未知
www.miitbeian.gov.cn 未知 CNAME 05f7f8f8eaa47bae.cdn.jiashule.com
A 117.21.219.86
A 106.42.25.213
discuz.qq.com 未知 A 0.0.0.1
stats.discuz.qq.com 未知
www.discuz.net 未知 A 101.227.130.115
www.comsenz.com CNAME faq.comsenz.com

摘要

登录查看详细行为信息

WHOIS 信息

Name: None
Country: None
State: None
City: None
ZIP Code: None
Address: None

Orginization: None
Domain Name(s):
    na2.com.cn
Creation Date:
    None
Updated Date:
    None
Expiration Date:
    None
Email(s):
    181500780210@sina.cn

Registrar(s):
    阿里云计算有限公司(万网)
Name Server(s):
    dns9.hichina.com
    dns10.hichina.com
Referral URL(s):
    None
没有防病毒引擎扫描信息!

进程树


firefox.exe, PID: 2632, 上一级进程 PID: 2284

访问主机纪录 (可点击查询WPING实时安全评级)

直接 IP 安全评级 地理位置
112.74.105.121 未知 中国
180.101.153.11 未知 中国
183.3.226.92 中国
58.216.6.14 未知 中国

TCP

源地址 源端口 目标地址 目标端口
192.168.122.201 49164 112.74.105.121 www.na2.com.cn 80
192.168.122.201 59636 112.74.105.121 www.na2.com.cn 80
192.168.122.201 59637 112.74.105.121 www.na2.com.cn 80
192.168.122.201 59638 112.74.105.121 www.na2.com.cn 80
192.168.122.201 59639 112.74.105.121 www.na2.com.cn 80
192.168.122.201 59640 112.74.105.121 www.na2.com.cn 80
192.168.122.201 59641 112.74.105.121 www.na2.com.cn 80
192.168.122.201 59645 112.74.105.121 www.na2.com.cn 80
192.168.122.201 59646 112.74.105.121 www.na2.com.cn 80
192.168.122.201 59647 112.74.105.121 www.na2.com.cn 80
192.168.122.201 59648 112.74.105.121 www.na2.com.cn 80
192.168.122.201 59650 112.74.105.121 www.na2.com.cn 80
192.168.122.201 59652 112.74.105.121 www.na2.com.cn 80
192.168.122.201 59659 112.74.105.121 www.na2.com.cn 80
192.168.122.201 59660 112.74.105.121 www.na2.com.cn 80
192.168.122.201 59661 112.74.105.121 www.na2.com.cn 80
192.168.122.201 59662 112.74.105.121 www.na2.com.cn 80
192.168.122.201 59663 112.74.105.121 www.na2.com.cn 80
192.168.122.201 59664 112.74.105.121 www.na2.com.cn 80
192.168.122.201 59665 112.74.105.121 www.na2.com.cn 80
192.168.122.201 59644 180.101.153.11 tcss.qq.com 80
192.168.122.201 59657 183.3.226.92 pingtcss.qq.com 80
192.168.122.201 53280 192.168.122.1 53
192.168.122.201 59635 192.168.122.1 53
192.168.122.201 59642 58.216.6.14 tcss.qq.com 80
192.168.122.201 59655 58.216.6.14 tcss.qq.com 80
192.168.122.201 59656 58.216.6.14 tcss.qq.com 80

UDP

源地址 源端口 目标地址 目标端口
192.168.122.201 50077 192.168.122.1 53
192.168.122.201 50471 192.168.122.1 53
192.168.122.201 51691 192.168.122.1 53
192.168.122.201 51759 192.168.122.1 53
192.168.122.201 54827 192.168.122.1 53
192.168.122.201 55782 192.168.122.1 53
192.168.122.201 56018 192.168.122.1 53
192.168.122.201 56796 192.168.122.1 53
192.168.122.201 57029 192.168.122.1 53
192.168.122.201 57190 192.168.122.1 53
192.168.122.201 58105 192.168.122.1 53
192.168.122.201 58473 192.168.122.1 53
192.168.122.201 59076 192.168.122.1 53
192.168.122.201 60226 192.168.122.1 53
192.168.122.201 60336 192.168.122.1 53
192.168.122.201 60891 192.168.122.1 53
192.168.122.201 61263 192.168.122.1 53
192.168.122.201 61320 192.168.122.1 53
192.168.122.201 62114 192.168.122.1 53
192.168.122.201 62240 192.168.122.1 53
192.168.122.201 64363 192.168.122.1 53
192.168.122.201 64888 192.168.122.1 53

域名解析 (可点击查询WPING实时安全评级)

域名 安全评级 响应
www.na2.com.cn 未知 A 112.74.105.121
tcss.qq.com CNAME x2.tcdn.qq.com
A 58.216.96.16
A 58.216.6.14
CNAME x2.tc.qq.com
A 222.186.49.15
CNAME tcss.tc.qq.com
A 180.97.146.144
A 180.101.153.13
A 180.101.153.14
A 180.97.146.145
A 180.97.146.142
A 58.216.6.18
A 180.101.153.16
A 58.216.96.11
A 58.216.6.17
A 180.97.146.143
A 58.216.96.15
A 221.228.67.161
A 180.101.153.11
CNAME tcss.tcdn.qq.com
discuz.gtimg.cn CNAME discuzstatic.tc.qq.com
CNAME discuzstatic.tcdn.qq.com
na2.com.cn
www.naniannatu.com 未知
pingtcss.qq.com 未知 A 183.3.226.92
www.fyjs.cn A 61.155.50.142
www.dingsheng.com 未知
lt.cjdby.net A 106.2.20.107
mitand.taobao.com A 203.119.212.2
CNAME na61-na62.wagbridge.alibaba.taobao.com.gds.alibabadns.com
CNAME shop.taobao.com
CNAME na61-na62.wagbridge.alibaba.taobao.com
natu.joyme.com 未知
www.miitbeian.gov.cn 未知 CNAME 05f7f8f8eaa47bae.cdn.jiashule.com
A 117.21.219.86
A 106.42.25.213
discuz.qq.com 未知 A 0.0.0.1
stats.discuz.qq.com 未知
www.discuz.net 未知 A 101.227.130.115
www.comsenz.com CNAME faq.comsenz.com

TCP

源地址 源端口 目标地址 目标端口
192.168.122.201 49164 112.74.105.121 www.na2.com.cn 80
192.168.122.201 59636 112.74.105.121 www.na2.com.cn 80
192.168.122.201 59637 112.74.105.121 www.na2.com.cn 80
192.168.122.201 59638 112.74.105.121 www.na2.com.cn 80
192.168.122.201 59639 112.74.105.121 www.na2.com.cn 80
192.168.122.201 59640 112.74.105.121 www.na2.com.cn 80
192.168.122.201 59641 112.74.105.121 www.na2.com.cn 80
192.168.122.201 59645 112.74.105.121 www.na2.com.cn 80
192.168.122.201 59646 112.74.105.121 www.na2.com.cn 80
192.168.122.201 59647 112.74.105.121 www.na2.com.cn 80
192.168.122.201 59648 112.74.105.121 www.na2.com.cn 80
192.168.122.201 59650 112.74.105.121 www.na2.com.cn 80
192.168.122.201 59652 112.74.105.121 www.na2.com.cn 80
192.168.122.201 59659 112.74.105.121 www.na2.com.cn 80
192.168.122.201 59660 112.74.105.121 www.na2.com.cn 80
192.168.122.201 59661 112.74.105.121 www.na2.com.cn 80
192.168.122.201 59662 112.74.105.121 www.na2.com.cn 80
192.168.122.201 59663 112.74.105.121 www.na2.com.cn 80
192.168.122.201 59664 112.74.105.121 www.na2.com.cn 80
192.168.122.201 59665 112.74.105.121 www.na2.com.cn 80
192.168.122.201 59644 180.101.153.11 tcss.qq.com 80
192.168.122.201 59657 183.3.226.92 pingtcss.qq.com 80
192.168.122.201 53280 192.168.122.1 53
192.168.122.201 59635 192.168.122.1 53
192.168.122.201 59642 58.216.6.14 tcss.qq.com 80
192.168.122.201 59655 58.216.6.14 tcss.qq.com 80
192.168.122.201 59656 58.216.6.14 tcss.qq.com 80

UDP

源地址 源端口 目标地址 目标端口
192.168.122.201 50077 192.168.122.1 53
192.168.122.201 50471 192.168.122.1 53
192.168.122.201 51691 192.168.122.1 53
192.168.122.201 51759 192.168.122.1 53
192.168.122.201 54827 192.168.122.1 53
192.168.122.201 55782 192.168.122.1 53
192.168.122.201 56018 192.168.122.1 53
192.168.122.201 56796 192.168.122.1 53
192.168.122.201 57029 192.168.122.1 53
192.168.122.201 57190 192.168.122.1 53
192.168.122.201 58105 192.168.122.1 53
192.168.122.201 58473 192.168.122.1 53
192.168.122.201 59076 192.168.122.1 53
192.168.122.201 60226 192.168.122.1 53
192.168.122.201 60336 192.168.122.1 53
192.168.122.201 60891 192.168.122.1 53
192.168.122.201 61263 192.168.122.1 53
192.168.122.201 61320 192.168.122.1 53
192.168.122.201 62114 192.168.122.1 53
192.168.122.201 62240 192.168.122.1 53
192.168.122.201 64363 192.168.122.1 53
192.168.122.201 64888 192.168.122.1 53

HTTP 请求

URI HTTP数据
URL专业沙箱检测 -> http://www.na2.com.cn/portal.php
GET /portal.php HTTP/1.1
Host: www.na2.com.cn
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:10.0.9) Gecko/20100101 Firefox/10.0.9
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: zh-cn,zh;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive

URL专业沙箱检测 -> http://tcss.qq.com/ping.js?v=1rBm
GET /ping.js?v=1rBm HTTP/1.1
Host: tcss.qq.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:10.0.9) Gecko/20100101 Firefox/10.0.9
Accept: */*
Accept-Language: zh-cn,zh;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.na2.com.cn/portal.php

URL专业沙箱检测 -> http://discuz.gtimg.cn/cloud/scripts/discuz_tips.js?v=1
GET /cloud/scripts/discuz_tips.js?v=1 HTTP/1.1
Host: discuz.gtimg.cn
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:10.0.9) Gecko/20100101 Firefox/10.0.9
Accept: */*
Accept-Language: zh-cn,zh;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.na2.com.cn/portal.php

URL专业沙箱检测 -> http://www.na2.com.cn/data/cache/common.js?rBm
GET /data/cache/common.js?rBm HTTP/1.1
Host: www.na2.com.cn
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:10.0.9) Gecko/20100101 Firefox/10.0.9
Accept: */*
Accept-Language: zh-cn,zh;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.na2.com.cn/portal.php
Cookie: SzsU_2132_saltkey=vJc5h44S; SzsU_2132_lastvisit=1542607604; SzsU_2132_sid=KU373u; SzsU_2132_lastact=1542611204%09portal.php%09

URL专业沙箱检测 -> http://www.na2.com.cn/data/cache/style_1_common.css?rBm
GET /data/cache/style_1_common.css?rBm HTTP/1.1
Host: www.na2.com.cn
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:10.0.9) Gecko/20100101 Firefox/10.0.9
Accept: text/css,*/*;q=0.1
Accept-Language: zh-cn,zh;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.na2.com.cn/portal.php
Cookie: SzsU_2132_saltkey=vJc5h44S; SzsU_2132_lastvisit=1542607604; SzsU_2132_sid=KU373u; SzsU_2132_lastact=1542611204%09portal.php%09

URL专业沙箱检测 -> http://www.na2.com.cn/data/cache/portal.js?rBm
GET /data/cache/portal.js?rBm HTTP/1.1
Host: www.na2.com.cn
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:10.0.9) Gecko/20100101 Firefox/10.0.9
Accept: */*
Accept-Language: zh-cn,zh;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.na2.com.cn/portal.php
Cookie: SzsU_2132_saltkey=vJc5h44S; SzsU_2132_lastvisit=1542607604; SzsU_2132_sid=KU373u; SzsU_2132_lastact=1542611204%09portal.php%09

URL专业沙箱检测 -> http://www.na2.com.cn/static/image/common/logo.png
GET /static/image/common/logo.png HTTP/1.1
Host: www.na2.com.cn
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:10.0.9) Gecko/20100101 Firefox/10.0.9
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: zh-cn,zh;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.na2.com.cn/portal.php
Cookie: SzsU_2132_saltkey=vJc5h44S; SzsU_2132_lastvisit=1542607604; SzsU_2132_sid=KU373u; SzsU_2132_lastact=1542611204%09portal.php%09

URL专业沙箱检测 -> http://www.na2.com.cn/data/cache/logging.js?rBm
GET /data/cache/logging.js?rBm HTTP/1.1
Host: www.na2.com.cn
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:10.0.9) Gecko/20100101 Firefox/10.0.9
Accept: */*
Accept-Language: zh-cn,zh;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.na2.com.cn/portal.php
Cookie: SzsU_2132_saltkey=vJc5h44S; SzsU_2132_lastvisit=1542607604; SzsU_2132_sid=KU373u; SzsU_2132_lastact=1542611204%09portal.php%09

URL专业沙箱检测 -> http://www.na2.com.cn/static/image/common/qq_login.gif
GET /static/image/common/qq_login.gif HTTP/1.1
Host: www.na2.com.cn
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:10.0.9) Gecko/20100101 Firefox/10.0.9
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: zh-cn,zh;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.na2.com.cn/portal.php
Cookie: SzsU_2132_saltkey=vJc5h44S; SzsU_2132_lastvisit=1542607604; SzsU_2132_sid=KU373u; SzsU_2132_lastact=1542611204%09portal.php%09

URL专业沙箱检测 -> http://www.na2.com.cn/source/plugin/returntop/template/css/029.css
GET /source/plugin/returntop/template/css/029.css HTTP/1.1
Host: www.na2.com.cn
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:10.0.9) Gecko/20100101 Firefox/10.0.9
Accept: text/css,*/*;q=0.1
Accept-Language: zh-cn,zh;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.na2.com.cn/portal.php
Cookie: SzsU_2132_saltkey=vJc5h44S; SzsU_2132_lastvisit=1542607604; SzsU_2132_sid=KU373u; SzsU_2132_lastact=1542611204%09portal.php%09

URL专业沙箱检测 -> http://www.na2.com.cn/source/plugin/returntop/template/js/jquery.js
GET /source/plugin/returntop/template/js/jquery.js HTTP/1.1
Host: www.na2.com.cn
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:10.0.9) Gecko/20100101 Firefox/10.0.9
Accept: */*
Accept-Language: zh-cn,zh;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.na2.com.cn/portal.php
Cookie: SzsU_2132_saltkey=vJc5h44S; SzsU_2132_lastvisit=1542607604; SzsU_2132_sid=KU373u; SzsU_2132_lastact=1542611204%09portal.php%09

URL专业沙箱检测 -> http://www.na2.com.cn/home.php?mod=misc&ac=sendmail&rand=1542611204
GET /home.php?mod=misc&ac=sendmail&rand=1542611204 HTTP/1.1
Host: www.na2.com.cn
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:10.0.9) Gecko/20100101 Firefox/10.0.9
Accept: */*
Accept-Language: zh-cn,zh;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.na2.com.cn/portal.php
Cookie: SzsU_2132_saltkey=vJc5h44S; SzsU_2132_lastvisit=1542607604; SzsU_2132_sid=KU373u; SzsU_2132_lastact=1542611204%09portal.php%09

URL专业沙箱检测 -> http://www.na2.com.cn/data/attachment/block/6c/6c95fca08e2b56c6626b3002a3531bd2.jpg
GET /data/attachment/block/6c/6c95fca08e2b56c6626b3002a3531bd2.jpg HTTP/1.1
Host: www.na2.com.cn
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:10.0.9) Gecko/20100101 Firefox/10.0.9
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: zh-cn,zh;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.na2.com.cn/portal.php
Cookie: SzsU_2132_saltkey=vJc5h44S; SzsU_2132_lastvisit=1542607604; SzsU_2132_sid=KU373u; SzsU_2132_lastact=1542611204%09portal.php%09

URL专业沙箱检测 -> http://www.na2.com.cn/data/attachment/block/e3/e39578e7f5f7fe77adf9fe3f1e7c893f.jpg
GET /data/attachment/block/e3/e39578e7f5f7fe77adf9fe3f1e7c893f.jpg HTTP/1.1
Host: www.na2.com.cn
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:10.0.9) Gecko/20100101 Firefox/10.0.9
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: zh-cn,zh;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.na2.com.cn/portal.php
Cookie: SzsU_2132_saltkey=vJc5h44S; SzsU_2132_lastvisit=1542607604; SzsU_2132_sid=KU373u; SzsU_2132_lastact=1542611204%09portal.php%09

URL专业沙箱检测 -> http://www.na2.com.cn/data/attachment/block/e9/e9cddd4129b8e784a2bb77f797d1e975.jpg
GET /data/attachment/block/e9/e9cddd4129b8e784a2bb77f797d1e975.jpg HTTP/1.1
Host: www.na2.com.cn
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:10.0.9) Gecko/20100101 Firefox/10.0.9
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: zh-cn,zh;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.na2.com.cn/portal.php
Cookie: SzsU_2132_saltkey=vJc5h44S; SzsU_2132_lastvisit=1542607604; SzsU_2132_sid=KU373u; SzsU_2132_lastact=1542611204%09portal.php%09

URL专业沙箱检测 -> http://www.na2.com.cn/data/attachment/block/02/0282ed113ae766c07a80e3d2909ce444.jpg
GET /data/attachment/block/02/0282ed113ae766c07a80e3d2909ce444.jpg HTTP/1.1
Host: www.na2.com.cn
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:10.0.9) Gecko/20100101 Firefox/10.0.9
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: zh-cn,zh;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.na2.com.cn/portal.php
Cookie: SzsU_2132_saltkey=vJc5h44S; SzsU_2132_lastvisit=1542607604; SzsU_2132_sid=KU373u; SzsU_2132_lastact=1542611204%09portal.php%09

URL专业沙箱检测 -> http://www.na2.com.cn/data/attachment/block/68/684f67f0a15e5a1d4e76a6b687fe7b5e.jpg
GET /data/attachment/block/68/684f67f0a15e5a1d4e76a6b687fe7b5e.jpg HTTP/1.1
Host: www.na2.com.cn
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:10.0.9) Gecko/20100101 Firefox/10.0.9
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: zh-cn,zh;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.na2.com.cn/portal.php
Cookie: SzsU_2132_saltkey=vJc5h44S; SzsU_2132_lastvisit=1542607604; SzsU_2132_sid=KU373u; SzsU_2132_lastact=1542611204%09portal.php%09

URL专业沙箱检测 -> http://www.na2.com.cn/data/attachment/block/32/329af0a2f3c6d288dc521cfb7d54dec5.jpg
GET /data/attachment/block/32/329af0a2f3c6d288dc521cfb7d54dec5.jpg HTTP/1.1
Host: www.na2.com.cn
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:10.0.9) Gecko/20100101 Firefox/10.0.9
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: zh-cn,zh;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.na2.com.cn/portal.php
Cookie: SzsU_2132_saltkey=vJc5h44S; SzsU_2132_lastvisit=1542607604; SzsU_2132_sid=KU373u; SzsU_2132_lastact=1542611204%09portal.php%09

URL专业沙箱检测 -> http://www.na2.com.cn/data/attachment/block/63/635ff7af5caf3a30aa1cc3e53c469196.jpg
GET /data/attachment/block/63/635ff7af5caf3a30aa1cc3e53c469196.jpg HTTP/1.1
Host: www.na2.com.cn
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:10.0.9) Gecko/20100101 Firefox/10.0.9
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: zh-cn,zh;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.na2.com.cn/portal.php
Cookie: SzsU_2132_saltkey=vJc5h44S; SzsU_2132_lastvisit=1542607604; SzsU_2132_sid=KU373u; SzsU_2132_lastact=1542611204%09portal.php%09

URL专业沙箱检测 -> http://www.na2.com.cn/data/attachment/block/26/26fa3110c956fa291157c1872370f119.jpg
GET /data/attachment/block/26/26fa3110c956fa291157c1872370f119.jpg HTTP/1.1
Host: www.na2.com.cn
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:10.0.9) Gecko/20100101 Firefox/10.0.9
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: zh-cn,zh;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.na2.com.cn/portal.php
Cookie: SzsU_2132_saltkey=vJc5h44S; SzsU_2132_lastvisit=1542607604; SzsU_2132_sid=KU373u; SzsU_2132_lastact=1542611204%09portal.php%09

URL专业沙箱检测 -> http://www.na2.com.cn/data/attachment/block/ce/ceebe7f4251361dd89a0ec738367b725.jpg
GET /data/attachment/block/ce/ceebe7f4251361dd89a0ec738367b725.jpg HTTP/1.1
Host: www.na2.com.cn
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:10.0.9) Gecko/20100101 Firefox/10.0.9
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: zh-cn,zh;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.na2.com.cn/portal.php
Cookie: SzsU_2132_saltkey=vJc5h44S; SzsU_2132_lastvisit=1542607604; SzsU_2132_sid=KU373u; SzsU_2132_lastact=1542611204%09portal.php%09

URL专业沙箱检测 -> http://www.na2.com.cn/data/attachment/block/fe/feac54130542a85b9d02594fdcbfda1d.jpg
GET /data/attachment/block/fe/feac54130542a85b9d02594fdcbfda1d.jpg HTTP/1.1
Host: www.na2.com.cn
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:10.0.9) Gecko/20100101 Firefox/10.0.9
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: zh-cn,zh;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.na2.com.cn/portal.php
Cookie: SzsU_2132_saltkey=vJc5h44S; SzsU_2132_lastvisit=1542607604; SzsU_2132_sid=KU373u; SzsU_2132_lastact=1542611204%09portal.php%09

URL专业沙箱检测 -> http://www.na2.com.cn/static/image/common/security.png
GET /static/image/common/security.png HTTP/1.1
Host: www.na2.com.cn
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:10.0.9) Gecko/20100101 Firefox/10.0.9
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: zh-cn,zh;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.na2.com.cn/portal.php
Cookie: SzsU_2132_saltkey=vJc5h44S; SzsU_2132_lastvisit=1542607604; SzsU_2132_sid=KU373u; SzsU_2132_lastact=1542611204%09portal.php%09

URL专业沙箱检测 -> http://www.na2.com.cn/data/cache/common_extra.js?rBm
GET /data/cache/common_extra.js?rBm HTTP/1.1
Host: www.na2.com.cn
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:10.0.9) Gecko/20100101 Firefox/10.0.9
Accept: */*
Accept-Language: zh-cn,zh;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.na2.com.cn/portal.php
Cookie: SzsU_2132_saltkey=vJc5h44S; SzsU_2132_lastvisit=1542607604; SzsU_2132_sid=KU373u; SzsU_2132_lastact=1542611211%09home.php%09misc; SzsU_2132_sendmail=1

URL专业沙箱检测 -> http://www.naniannatu.com/static/image/common/titlebgp.png
GET /static/image/common/titlebgp.png HTTP/1.1
Host: www.naniannatu.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:10.0.9) Gecko/20100101 Firefox/10.0.9
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: zh-cn,zh;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.na2.com.cn/portal.php

URL专业沙箱检测 -> http://tcss.qq.com/icon/toss_11.gif
GET /icon/toss_11.gif HTTP/1.1
Host: tcss.qq.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:10.0.9) Gecko/20100101 Firefox/10.0.9
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: zh-cn,zh;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.na2.com.cn/portal.php

URL专业沙箱检测 -> http://tcss.qq.com/heatmap/0/MA==.js?rand=1600940548
GET /heatmap/0/MA==.js?rand=1600940548 HTTP/1.1
Host: tcss.qq.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:10.0.9) Gecko/20100101 Firefox/10.0.9
Accept: */*
Accept-Language: zh-cn,zh;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.na2.com.cn/portal.php

URL专业沙箱检测 -> http://pingtcss.qq.com/pingd?dm=www.na2.com.cn&url=/portal.php&arg=-&rdm=-&rurl=-&adt=-&rarg=-&pvi=911749250&si=s7273037150&ui=0&ty=1&rt=portal&pn=1&qq=000&r2=0&scr=800x600&scl=24-bit&lg=zh-cn&jv=1&pf=Win32&tz=-8&fl=20.0%20r0&ct=-&ext=bc=0;adid=&r3=8193123
GET /pingd?dm=www.na2.com.cn&url=/portal.php&arg=-&rdm=-&rurl=-&adt=-&rarg=-&pvi=911749250&si=s7273037150&ui=0&ty=1&rt=portal&pn=1&qq=000&r2=0&scr=800x600&scl=24-bit&lg=zh-cn&jv=1&pf=Win32&tz=-8&fl=20.0%20r0&ct=-&ext=bc=0;adid=&r3=8193123 HTTP/1.1
Host: pingtcss.qq.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:10.0.9) Gecko/20100101 Firefox/10.0.9
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: zh-cn,zh;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.na2.com.cn/portal.php

URL专业沙箱检测 -> http://na2.com.cn/static/image/common/newarow.gif
GET /static/image/common/newarow.gif HTTP/1.1
Host: na2.com.cn
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:10.0.9) Gecko/20100101 Firefox/10.0.9
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: zh-cn,zh;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.na2.com.cn/data/cache/style_1_common.css?rBm

URL专业沙箱检测 -> http://na2.com.cn/static/image/common/nv.png
GET /static/image/common/nv.png HTTP/1.1
Host: na2.com.cn
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:10.0.9) Gecko/20100101 Firefox/10.0.9
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: zh-cn,zh;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.na2.com.cn/data/cache/style_1_common.css?rBm

URL专业沙箱检测 -> http://na2.com.cn/static/image/common/px.png
GET /static/image/common/px.png HTTP/1.1
Host: na2.com.cn
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:10.0.9) Gecko/20100101 Firefox/10.0.9
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: zh-cn,zh;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.na2.com.cn/data/cache/style_1_common.css?rBm

URL专业沙箱检测 -> http://na2.com.cn/static/image/common/background.png
GET /static/image/common/background.png HTTP/1.1
Host: na2.com.cn
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:10.0.9) Gecko/20100101 Firefox/10.0.9
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: zh-cn,zh;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.na2.com.cn/data/cache/style_1_common.css?rBm

URL专业沙箱检测 -> http://na2.com.cn/static/image/common/pn.png
GET /static/image/common/pn.png HTTP/1.1
Host: na2.com.cn
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:10.0.9) Gecko/20100101 Firefox/10.0.9
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: zh-cn,zh;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.na2.com.cn/data/cache/style_1_common.css?rBm

URL专业沙箱检测 -> http://na2.com.cn/static/image/common/qmenu.png
GET /static/image/common/qmenu.png HTTP/1.1
Host: na2.com.cn
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:10.0.9) Gecko/20100101 Firefox/10.0.9
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: zh-cn,zh;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.na2.com.cn/data/cache/style_1_common.css?rBm

URL专业沙箱检测 -> http://na2.com.cn/static/image/common/nv_a.png
GET /static/image/common/nv_a.png HTTP/1.1
Host: na2.com.cn
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:10.0.9) Gecko/20100101 Firefox/10.0.9
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: zh-cn,zh;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.na2.com.cn/data/cache/style_1_common.css?rBm

URL专业沙箱检测 -> http://na2.com.cn/static/image/common/search.png
GET /static/image/common/search.png HTTP/1.1
Host: na2.com.cn
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:10.0.9) Gecko/20100101 Firefox/10.0.9
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: zh-cn,zh;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.na2.com.cn/data/cache/style_1_common.css?rBm

URL专业沙箱检测 -> http://na2.com.cn/static/image/common/dot.gif
GET /static/image/common/dot.gif HTTP/1.1
Host: na2.com.cn
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:10.0.9) Gecko/20100101 Firefox/10.0.9
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: zh-cn,zh;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.na2.com.cn/data/cache/style_1_common.css?rBm

URL专业沙箱检测 -> http://na2.com.cn/static/image/common/scrolltop.png
GET /static/image/common/scrolltop.png HTTP/1.1
Host: na2.com.cn
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:10.0.9) Gecko/20100101 Firefox/10.0.9
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: zh-cn,zh;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.na2.com.cn/data/cache/style_1_common.css?rBm
Cookie: pgv_pvi=911749250; pgv_info=ssi=s7273037150

URL专业沙箱检测 -> http://www.na2.com.cn/static/image/common/titlebgp.png
GET /static/image/common/titlebgp.png HTTP/1.1
Host: www.na2.com.cn
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:10.0.9) Gecko/20100101 Firefox/10.0.9
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: zh-cn,zh;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.na2.com.cn/portal.php
Cookie: SzsU_2132_saltkey=vJc5h44S; SzsU_2132_lastvisit=1542607604; SzsU_2132_sid=KU373u; SzsU_2132_lastact=1542611211%09home.php%09misc; pgv_pvi=911749250; pgv_info=ssi=s7273037150

URL专业沙箱检测 -> http://www.na2.com.cn/favicon.ico
GET /favicon.ico HTTP/1.1
Host: www.na2.com.cn
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:10.0.9) Gecko/20100101 Firefox/10.0.9
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: zh-cn,zh;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Cookie: SzsU_2132_saltkey=vJc5h44S; SzsU_2132_lastvisit=1542607604; SzsU_2132_sid=KU373u; SzsU_2132_lastact=1542611211%09home.php%09misc; pgv_pvi=911749250; pgv_info=ssi=s7273037150

SMTP 流量

无SMTP流量.

IRC 流量

无IRC请求.

ICMP 流量

无ICMP流量.

CIF 报告

无 CIF 结果

网络警报

无警报

TLS

No TLS

Suricata HTTP

No Suricata HTTP

未发现网络提取文件
抱歉! 没有任何文件投放。
HTML 总结报告
(需15-60分钟同步)
下载

Processing ( 36.814 seconds )

  • 23.154 NetworkAnalysis
  • 11.947 Suricata
  • 1.445 BehaviorAnalysis
  • 0.134 Static
  • 0.09 AnalysisInfo
  • 0.039 Debug
  • 0.005 Memory

Signatures ( 3.979 seconds )

  • 3.142 md_url_bl
  • 0.273 md_bad_drop
  • 0.078 api_spamming
  • 0.072 stealth_timeout
  • 0.07 md_domain_bl
  • 0.027 antiav_detectreg
  • 0.026 stealth_file
  • 0.021 antiav_detectfile
  • 0.016 infostealer_ftp
  • 0.015 bootkit
  • 0.015 mimics_filetime
  • 0.015 stealth_network
  • 0.014 infostealer_bitcoin
  • 0.01 hawkeye_behavior
  • 0.01 virus
  • 0.01 infostealer_im
  • 0.01 ransomware_extensions
  • 0.009 antivm_vbox_files
  • 0.009 ransomware_files
  • 0.008 anomaly_persistence_autorun
  • 0.008 antivm_generic_disk
  • 0.008 geodo_banking_trojan
  • 0.007 shifu_behavior
  • 0.007 securityxploded_modules
  • 0.006 ransomware_message
  • 0.006 sets_autoconfig_url
  • 0.006 kazybot_behavior
  • 0.006 infostealer_mail
  • 0.005 dridex_behavior
  • 0.005 ipc_namedpipe
  • 0.004 network_torgateway
  • 0.003 tinba_behavior
  • 0.003 rat_nanocore
  • 0.003 disables_spdy
  • 0.003 disables_wfp
  • 0.003 cerber_behavior
  • 0.003 disables_browser_warn
  • 0.003 rat_pcclient
  • 0.002 network_tor
  • 0.002 network_anomaly
  • 0.002 kelihos_behavior
  • 0.002 betabot_behavior
  • 0.002 kibex_behavior
  • 0.002 ispy_behavior
  • 0.002 hancitor_behavior
  • 0.002 browser_security
  • 0.001 stack_pivot
  • 0.001 ursnif_behavior
  • 0.001 ransomeware_modifies_desktop_wallpaper
  • 0.001 antivm_generic_scsi
  • 0.001 infostealer_browser_password
  • 0.001 sniffer_winpcap
  • 0.001 antivm_generic_diskreg
  • 0.001 antivm_parallels_keys
  • 0.001 antivm_vmware_files
  • 0.001 antivm_xen_keys
  • 0.001 banker_zeus_mutex
  • 0.001 bot_drive
  • 0.001 bot_drive2
  • 0.001 browser_addon
  • 0.001 disables_system_restore
  • 0.001 disables_windows_defender
  • 0.001 codelux_behavior
  • 0.001 darkcomet_regkeys
  • 0.001 targeted_flame
  • 0.001 ie_martian_children
  • 0.001 maldun_blacklist
  • 0.001 recon_checkip
  • 0.001 recon_fingerprint
  • 0.001 stealth_modify_uac_prompt

Reporting ( 0.0 seconds )

Task ID 215015
Mongo ID 5bf2619d2e06334ae56c88d9
Cuckoo release 1.4-Maldun