恶意软件分析 & URL链接扫描免费在线病毒分析平台

分析任务

分析类型	虚拟机标签	开始时间	结束时间	持续时间
URL	win7-sp1-x64-hpdapp01-1	2018-11-19 22:21:26	2018-11-19 22:23:50	144 秒

魔盾分数

0.6

正常的

URL详细信息

URL
URL专业沙箱检测 -> http://ie.75011.net/

登录查看威胁特征

运行截图

访问主机纪录 (可点击查询WPING实时安全评级)

直接	IP	安全评级	地理位置
否	116.211.184.200	中国
否	116.211.185.101	中国
否	118.184.170.37	未知	中国
否	175.6.26.201	未知	中国
否	218.30.103.50	中国
否	221.235.252.210	未知	中国
否	36.110.165.43	未知	中国
否	36.110.171.40	未知	中国
否	47.89.251.215	未知	加拿大
否	58.216.106.208	未知	中国
否	58.216.106.210	未知	中国
否	59.63.237.193	未知	中国

域名解析 (可点击查询WPING实时安全评级)

域名	安全评级	响应
ie.75011.net	A 47.89.251.215
web.sogou.com	A 36.110.164.37 A 36.110.170.48 A 218.30.103.50 A 220.181.125.61 A 106.39.246.42 A 36.110.165.43
upd14.sogoucdn.com	CNAME upd14.sogoucdn.com.cloud.cdntip.com CNAME upd14.sogoucdn.com.cdn.dnsv1.com
upd13.sogoucdn.com	A 116.211.185.101 A 116.211.184.200 CNAME upd13.sogoucdn.com.cloud.cdntip.com A 221.228.218.203 CNAME qcloud.p23.tc.cdntip.com CNAME upd13.sogoucdn.com.cdn.dnsv1.com A 58.216.106.208 A 58.216.106.210 A 221.235.252.210
123p1.sogoucdn.com	CNAME 123p1.sogoucdn.com.cdn.dnsv1.com
123p0.sogoucdn.com	CNAME 123p0.sogoucdn.com.cdn.dnsv1.com
123p3.sogoucdn.com	CNAME 123p3.sogoucdn.com.cdn.dnsv1.com
123p4.sogoucdn.com	CNAME 123p4.sogoucdn.com.cdn.dnsv1.com
123p2.sogoucdn.com	CNAME 123p2.sogoucdn.com.cdn.dnsv1.com
upd10.sogoucdn.com	CNAME upd10.sogoucdn.com.cloud.cdntip.com CNAME upd10.sogoucdn.com.cdn.dnsv1.com
upd12.sogoucdn.com	CNAME upd12.sogoucdn.com.cloud.cdntip.com CNAME upd12.sogoucdn.com.cdn.dnsv1.com
www.sogou.com	A 118.184.170.54 A 118.184.170.37
upd11.sogoucdn.com	CNAME upd11.sogoucdn.com.cloud.cdntip.com CNAME upd11.sogoucdn.com.cdn.dnsv1.com
pb.sogou.com
itoutiao.sogou.com	A 220.181.124.50 A 106.39.246.43 A 106.39.246.41 A 36.110.171.40 A 36.110.147.35 A 36.110.147.36 A 220.181.124.36 A 36.110.171.43
us.sogou.com
img04.sogoucdn.com	A 59.63.237.193 A 125.78.252.115 A 59.63.235.194 A 124.232.162.203 CNAME img04.sogoucdn.com.cdn.dnsv1.com CNAME img.sogoucdn.com.p23.tc.cdntip.com A 117.41.244.111 A 175.6.26.201 A 125.78.252.110 A 27.152.185.199
img02.sogoucdn.com	CNAME img02.sogoucdn.com.cdn.dnsv1.com
m.sogou.com
wap.sogou.com

摘要

登录查看详细行为信息

URL分析
防病毒引擎

WHOIS 信息

Name: None
Country: CN
State: Beijing
City: None
ZIP Code: None
Address: None

Orginization: huangqiuyue
Domain Name(s):
    75011.NET
    75011.net
Creation Date:
    2004-11-27 02:34:24
Updated Date:
    2017-12-14 08:37:55
    2017-12-14 08:37:54
Expiration Date:
    2018-11-27 02:34:24
Email(s):
    abuse@godaddy.com

Registrar(s):
    GoDaddy.com, LLC
Name Server(s):
    F1G1NS1.DNSPOD.NET
    F1G1NS2.DNSPOD.NET
Referral URL(s):
    None

没有防病毒引擎扫描信息!

下载PCAP包

访问主机纪录 (可点击查询WPING实时安全评级)

直接	IP	安全评级	地理位置
否	116.211.184.200	中国
否	116.211.185.101	中国
否	118.184.170.37	未知	中国
否	175.6.26.201	未知	中国
否	218.30.103.50	中国
否	221.235.252.210	未知	中国
否	36.110.165.43	未知	中国
否	36.110.171.40	未知	中国
否	47.89.251.215	未知	加拿大
否	58.216.106.208	未知	中国
否	58.216.106.210	未知	中国
否	59.63.237.193	未知	中国

TCP

源地址	源端口	目标地址	目标端口
192.168.122.201	49187	116.211.184.200 upd13.sogoucdn.com	443
192.168.122.201	49188	116.211.184.200 upd13.sogoucdn.com	443
192.168.122.201	49189	116.211.184.200 upd13.sogoucdn.com	443
192.168.122.201	49190	116.211.184.200 upd13.sogoucdn.com	443
192.168.122.201	49191	116.211.184.200 upd13.sogoucdn.com	443
192.168.122.201	49192	116.211.184.200 upd13.sogoucdn.com	443
192.168.122.201	49195	116.211.184.200 upd13.sogoucdn.com	443
192.168.122.201	49202	116.211.184.200 upd13.sogoucdn.com	443
192.168.122.201	49204	116.211.184.200 upd13.sogoucdn.com	443
192.168.122.201	49207	116.211.184.200 upd13.sogoucdn.com	443
192.168.122.201	49209	116.211.184.200 upd13.sogoucdn.com	443
192.168.122.201	49219	116.211.184.200 upd13.sogoucdn.com	443
192.168.122.201	49194	116.211.185.101 upd13.sogoucdn.com	443
192.168.122.201	49196	118.184.170.37 www.sogou.com	443
192.168.122.201	49230	118.184.170.37 www.sogou.com	443
192.168.122.201	49236	118.184.170.37 www.sogou.com	443
192.168.122.201	49237	118.184.170.37 www.sogou.com	443
192.168.122.201	49235	175.6.26.201 img04.sogoucdn.com	443
192.168.122.201	49160	218.30.103.50 web.sogou.com	443
192.168.122.201	49228	218.30.103.50 web.sogou.com	443
192.168.122.201	49229	218.30.103.50 web.sogou.com	443
192.168.122.201	49165	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49166	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49168	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49169	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49170	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49172	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49173	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49174	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49175	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49176	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49177	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49178	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49182	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49183	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49184	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49185	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49186	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49193	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49199	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49200	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49201	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49203	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49205	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49206	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49210	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49211	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49212	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49213	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49214	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49215	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49216	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49217	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49218	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49223	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49224	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49239	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49225	36.110.165.43 web.sogou.com	443
192.168.122.201	49231	36.110.165.43 web.sogou.com	443
192.168.122.201	49232	36.110.165.43 web.sogou.com	443
192.168.122.201	49234	36.110.165.43 web.sogou.com	443
192.168.122.201	49227	36.110.171.40 itoutiao.sogou.com	443
192.168.122.201	49159	47.89.251.215 ie.75011.net	80
192.168.122.201	49238	47.89.251.215 ie.75011.net	80
192.168.122.201	49161	58.216.106.208 upd13.sogoucdn.com	443
192.168.122.201	49180	58.216.106.208 upd13.sogoucdn.com	443
192.168.122.201	49222	58.216.106.208 upd13.sogoucdn.com	443
192.168.122.201	49162	58.216.106.210 upd13.sogoucdn.com	443
192.168.122.201	49163	58.216.106.210 upd13.sogoucdn.com	443
192.168.122.201	49164	58.216.106.210 upd13.sogoucdn.com	443
192.168.122.201	49167	58.216.106.210 upd13.sogoucdn.com	443
192.168.122.201	49171	58.216.106.210 upd13.sogoucdn.com	443
192.168.122.201	49179	58.216.106.210 upd13.sogoucdn.com	443
192.168.122.201	49181	58.216.106.210 upd13.sogoucdn.com	443
192.168.122.201	49197	58.216.106.210 upd13.sogoucdn.com	443
192.168.122.201	49198	58.216.106.210 upd13.sogoucdn.com	443
192.168.122.201	49208	58.216.106.210 upd13.sogoucdn.com	443
192.168.122.201	49220	58.216.106.210 upd13.sogoucdn.com	443
192.168.122.201	49221	58.216.106.210 upd13.sogoucdn.com	443
192.168.122.201	49240	58.216.106.210 upd13.sogoucdn.com	443
192.168.122.201	49241	58.216.106.210 upd13.sogoucdn.com	443
192.168.122.201	49233	59.63.237.193 img04.sogoucdn.com	443

UDP

源地址	源端口	目标地址	目标端口
192.168.122.201	50077	192.168.122.1	53
192.168.122.201	50471	192.168.122.1	53
192.168.122.201	51691	192.168.122.1	53
192.168.122.201	51759	192.168.122.1	53
192.168.122.201	54827	192.168.122.1	53
192.168.122.201	55782	192.168.122.1	53
192.168.122.201	56018	192.168.122.1	53
192.168.122.201	56796	192.168.122.1	53
192.168.122.201	57190	192.168.122.1	53
192.168.122.201	58105	192.168.122.1	53
192.168.122.201	59076	192.168.122.1	53
192.168.122.201	60226	192.168.122.1	53
192.168.122.201	60336	192.168.122.1	53
192.168.122.201	60891	192.168.122.1	53
192.168.122.201	61263	192.168.122.1	53
192.168.122.201	61320	192.168.122.1	53
192.168.122.201	62114	192.168.122.1	53
192.168.122.201	62240	192.168.122.1	53
192.168.122.201	64363	192.168.122.1	53
192.168.122.201	64888	192.168.122.1	53

域名解析 (可点击查询WPING实时安全评级)

域名	安全评级	响应
ie.75011.net	A 47.89.251.215
web.sogou.com	A 36.110.164.37 A 36.110.170.48 A 218.30.103.50 A 220.181.125.61 A 106.39.246.42 A 36.110.165.43
upd14.sogoucdn.com	CNAME upd14.sogoucdn.com.cloud.cdntip.com CNAME upd14.sogoucdn.com.cdn.dnsv1.com
upd13.sogoucdn.com	A 116.211.185.101 A 116.211.184.200 CNAME upd13.sogoucdn.com.cloud.cdntip.com A 221.228.218.203 CNAME qcloud.p23.tc.cdntip.com CNAME upd13.sogoucdn.com.cdn.dnsv1.com A 58.216.106.208 A 58.216.106.210 A 221.235.252.210
123p1.sogoucdn.com	CNAME 123p1.sogoucdn.com.cdn.dnsv1.com
123p0.sogoucdn.com	CNAME 123p0.sogoucdn.com.cdn.dnsv1.com
123p3.sogoucdn.com	CNAME 123p3.sogoucdn.com.cdn.dnsv1.com
123p4.sogoucdn.com	CNAME 123p4.sogoucdn.com.cdn.dnsv1.com
123p2.sogoucdn.com	CNAME 123p2.sogoucdn.com.cdn.dnsv1.com
upd10.sogoucdn.com	CNAME upd10.sogoucdn.com.cloud.cdntip.com CNAME upd10.sogoucdn.com.cdn.dnsv1.com
upd12.sogoucdn.com	CNAME upd12.sogoucdn.com.cloud.cdntip.com CNAME upd12.sogoucdn.com.cdn.dnsv1.com
www.sogou.com	A 118.184.170.54 A 118.184.170.37
upd11.sogoucdn.com	CNAME upd11.sogoucdn.com.cloud.cdntip.com CNAME upd11.sogoucdn.com.cdn.dnsv1.com
pb.sogou.com
itoutiao.sogou.com	A 220.181.124.50 A 106.39.246.43 A 106.39.246.41 A 36.110.171.40 A 36.110.147.35 A 36.110.147.36 A 220.181.124.36 A 36.110.171.43
us.sogou.com
img04.sogoucdn.com	A 59.63.237.193 A 125.78.252.115 A 59.63.235.194 A 124.232.162.203 CNAME img04.sogoucdn.com.cdn.dnsv1.com CNAME img.sogoucdn.com.p23.tc.cdntip.com A 117.41.244.111 A 175.6.26.201 A 125.78.252.110 A 27.152.185.199
img02.sogoucdn.com	CNAME img02.sogoucdn.com.cdn.dnsv1.com
m.sogou.com
wap.sogou.com

TCP

源地址	源端口	目标地址	目标端口
192.168.122.201	49187	116.211.184.200 upd13.sogoucdn.com	443
192.168.122.201	49188	116.211.184.200 upd13.sogoucdn.com	443
192.168.122.201	49189	116.211.184.200 upd13.sogoucdn.com	443
192.168.122.201	49190	116.211.184.200 upd13.sogoucdn.com	443
192.168.122.201	49191	116.211.184.200 upd13.sogoucdn.com	443
192.168.122.201	49192	116.211.184.200 upd13.sogoucdn.com	443
192.168.122.201	49195	116.211.184.200 upd13.sogoucdn.com	443
192.168.122.201	49202	116.211.184.200 upd13.sogoucdn.com	443
192.168.122.201	49204	116.211.184.200 upd13.sogoucdn.com	443
192.168.122.201	49207	116.211.184.200 upd13.sogoucdn.com	443
192.168.122.201	49209	116.211.184.200 upd13.sogoucdn.com	443
192.168.122.201	49219	116.211.184.200 upd13.sogoucdn.com	443
192.168.122.201	49194	116.211.185.101 upd13.sogoucdn.com	443
192.168.122.201	49196	118.184.170.37 www.sogou.com	443
192.168.122.201	49230	118.184.170.37 www.sogou.com	443
192.168.122.201	49236	118.184.170.37 www.sogou.com	443
192.168.122.201	49237	118.184.170.37 www.sogou.com	443
192.168.122.201	49235	175.6.26.201 img04.sogoucdn.com	443
192.168.122.201	49160	218.30.103.50 web.sogou.com	443
192.168.122.201	49228	218.30.103.50 web.sogou.com	443
192.168.122.201	49229	218.30.103.50 web.sogou.com	443
192.168.122.201	49165	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49166	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49168	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49169	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49170	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49172	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49173	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49174	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49175	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49176	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49177	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49178	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49182	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49183	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49184	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49185	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49186	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49193	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49199	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49200	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49201	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49203	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49205	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49206	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49210	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49211	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49212	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49213	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49214	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49215	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49216	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49217	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49218	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49223	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49224	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49239	221.235.252.210 upd13.sogoucdn.com	443
192.168.122.201	49225	36.110.165.43 web.sogou.com	443
192.168.122.201	49231	36.110.165.43 web.sogou.com	443
192.168.122.201	49232	36.110.165.43 web.sogou.com	443
192.168.122.201	49234	36.110.165.43 web.sogou.com	443
192.168.122.201	49227	36.110.171.40 itoutiao.sogou.com	443
192.168.122.201	49159	47.89.251.215 ie.75011.net	80
192.168.122.201	49238	47.89.251.215 ie.75011.net	80
192.168.122.201	49161	58.216.106.208 upd13.sogoucdn.com	443
192.168.122.201	49180	58.216.106.208 upd13.sogoucdn.com	443
192.168.122.201	49222	58.216.106.208 upd13.sogoucdn.com	443
192.168.122.201	49162	58.216.106.210 upd13.sogoucdn.com	443
192.168.122.201	49163	58.216.106.210 upd13.sogoucdn.com	443
192.168.122.201	49164	58.216.106.210 upd13.sogoucdn.com	443
192.168.122.201	49167	58.216.106.210 upd13.sogoucdn.com	443
192.168.122.201	49171	58.216.106.210 upd13.sogoucdn.com	443
192.168.122.201	49179	58.216.106.210 upd13.sogoucdn.com	443
192.168.122.201	49181	58.216.106.210 upd13.sogoucdn.com	443
192.168.122.201	49197	58.216.106.210 upd13.sogoucdn.com	443
192.168.122.201	49198	58.216.106.210 upd13.sogoucdn.com	443
192.168.122.201	49208	58.216.106.210 upd13.sogoucdn.com	443
192.168.122.201	49220	58.216.106.210 upd13.sogoucdn.com	443
192.168.122.201	49221	58.216.106.210 upd13.sogoucdn.com	443
192.168.122.201	49240	58.216.106.210 upd13.sogoucdn.com	443
192.168.122.201	49241	58.216.106.210 upd13.sogoucdn.com	443
192.168.122.201	49233	59.63.237.193 img04.sogoucdn.com	443

UDP

源地址	源端口	目标地址	目标端口
192.168.122.201	50077	192.168.122.1	53
192.168.122.201	50471	192.168.122.1	53
192.168.122.201	51691	192.168.122.1	53
192.168.122.201	51759	192.168.122.1	53
192.168.122.201	54827	192.168.122.1	53
192.168.122.201	55782	192.168.122.1	53
192.168.122.201	56018	192.168.122.1	53
192.168.122.201	56796	192.168.122.1	53
192.168.122.201	57190	192.168.122.1	53
192.168.122.201	58105	192.168.122.1	53
192.168.122.201	59076	192.168.122.1	53
192.168.122.201	60226	192.168.122.1	53
192.168.122.201	60336	192.168.122.1	53
192.168.122.201	60891	192.168.122.1	53
192.168.122.201	61263	192.168.122.1	53
192.168.122.201	61320	192.168.122.1	53
192.168.122.201	62114	192.168.122.1	53
192.168.122.201	62240	192.168.122.1	53
192.168.122.201	64363	192.168.122.1	53
192.168.122.201	64888	192.168.122.1	53

HTTP 请求

URI	HTTP数据
URL专业沙箱检测 -> http://ie.75011.net/	GET / HTTP/1.1 Accept: / Accept-Language: zh-cn User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E) Accept-Encoding: gzip, deflate Host: ie.75011.net Connection: Keep-Alive
URL专业沙箱检测 -> http://ie.75011.net/favicon.ico	GET /favicon.ico HTTP/1.1 Accept: / Accept-Encoding: gzip, deflate User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E) Host: ie.75011.net Connection: Keep-Alive

URI

HTTP数据

URL专业沙箱检测 -> http://ie.75011.net/

GET / HTTP/1.1
Accept: */*
Accept-Language: zh-cn
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: ie.75011.net
Connection: Keep-Alive

URL专业沙箱检测 -> http://ie.75011.net/favicon.ico

GET /favicon.ico HTTP/1.1
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Host: ie.75011.net
Connection: Keep-Alive

SMTP 流量

无SMTP流量.

IRC 流量

无IRC请求.

ICMP 流量

源地址	目标地址	ICMP类型	数据
192.168.20.254	192.168.122.201	3

CIF 报告

无 CIF 结果

网络警报

无警报

TLS

Timestamp	Source IP	Source Port	Destination IP	Destination Port	Version	Issuer	Subject	Fingerprint
2018-11-19 22:21:51.357619+0800	192.168.122.201	49160	218.30.103.50	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogou.com	4d:85:e3:eb:32:88:21:90:0a:3b:ce:07:1e:6b:f9:8c:a4:49:d4:97
2018-11-19 22:21:53.030335+0800	192.168.122.201	49179	58.216.106.210	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:21:53.022623+0800	192.168.122.201	49164	58.216.106.210	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:21:53.132755+0800	192.168.122.201	49177	221.235.252.210	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:21:53.026933+0800	192.168.122.201	49167	58.216.106.210	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:21:53.144194+0800	192.168.122.201	49184	221.235.252.210	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:21:53.027857+0800	192.168.122.201	49171	58.216.106.210	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:21:53.149107+0800	192.168.122.201	49183	221.235.252.210	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:21:53.168316+0800	192.168.122.201	49194	116.211.185.101	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:21:53.150340+0800	192.168.122.201	49191	116.211.184.200	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:21:53.310868+0800	192.168.122.201	49196	118.184.170.37	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogou.com	4d:85:e3:eb:32:88:21:90:0a:3b:ce:07:1e:6b:f9:8c:a4:49:d4:97
2018-11-19 22:21:53.174372+0800	192.168.122.201	49195	116.211.184.200	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:21:53.124071+0800	192.168.122.201	49165	221.235.252.210	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:21:53.152384+0800	192.168.122.201	49182	221.235.252.210	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:21:53.041584+0800	192.168.122.201	49181	58.216.106.210	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:21:53.026734+0800	192.168.122.201	49162	58.216.106.210	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:21:53.133020+0800	192.168.122.201	49168	221.235.252.210	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:21:53.114662+0800	192.168.122.201	49166	221.235.252.210	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:21:53.140482+0800	192.168.122.201	49175	221.235.252.210	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:21:53.135827+0800	192.168.122.201	49174	221.235.252.210	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:21:53.033314+0800	192.168.122.201	49180	58.216.106.208	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:21:53.025047+0800	192.168.122.201	49161	58.216.106.208	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:21:53.131320+0800	192.168.122.201	49169	221.235.252.210	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:21:53.146500+0800	192.168.122.201	49188	116.211.184.200	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:21:53.135678+0800	192.168.122.201	49172	221.235.252.210	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:21:53.078497+0800	192.168.122.201	49163	58.216.106.210	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:21:53.132891+0800	192.168.122.201	49170	221.235.252.210	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:21:53.139625+0800	192.168.122.201	49192	116.211.184.200	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:21:53.134744+0800	192.168.122.201	49178	221.235.252.210	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:21:53.139955+0800	192.168.122.201	49189	116.211.184.200	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:21:53.524372+0800	192.168.122.201	49197	58.216.106.210	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:21:53.139799+0800	192.168.122.201	49176	221.235.252.210	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:21:53.142627+0800	192.168.122.201	49187	116.211.184.200	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:21:53.140105+0800	192.168.122.201	49173	221.235.252.210	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:21:53.142902+0800	192.168.122.201	49190	116.211.184.200	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:21:53.155395+0800	192.168.122.201	49186	221.235.252.210	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:21:54.218765+0800	192.168.122.201	49198	58.216.106.210	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:21:54.300678+0800	192.168.122.201	49199	221.235.252.210	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:21:53.157711+0800	192.168.122.201	49193	221.235.252.210	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:21:54.431806+0800	192.168.122.201	49201	221.235.252.210	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:21:54.407990+0800	192.168.122.201	49200	221.235.252.210	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:21:53.161646+0800	192.168.122.201	49185	221.235.252.210	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:21:54.626790+0800	192.168.122.201	49208	58.216.106.210	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:21:54.657282+0800	192.168.122.201	49205	221.235.252.210	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:21:54.589510+0800	192.168.122.201	49203	221.235.252.210	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:21:54.657623+0800	192.168.122.201	49207	116.211.184.200	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:21:54.711020+0800	192.168.122.201	49206	221.235.252.210	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:21:54.763143+0800	192.168.122.201	49215	221.235.252.210	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:21:54.788268+0800	192.168.122.201	49213	221.235.252.210	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:21:54.774998+0800	192.168.122.201	49212	221.235.252.210	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:21:54.835938+0800	192.168.122.201	49218	221.235.252.210	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:21:54.791974+0800	192.168.122.201	49216	221.235.252.210	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:21:54.824037+0800	192.168.122.201	49217	221.235.252.210	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:21:57.024333+0800	192.168.122.201	49219	116.211.184.200	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:21:57.061533+0800	192.168.122.201	49220	58.216.106.210	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:21:58.530886+0800	192.168.122.201	49224	221.235.252.210	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:21:57.142313+0800	192.168.122.201	49222	58.216.106.208	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:22:01.238246+0800	192.168.122.201	49225	36.110.165.43	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogou.com	4d:85:e3:eb:32:88:21:90:0a:3b:ce:07:1e:6b:f9:8c:a4:49:d4:97
2018-11-19 22:21:57.284271+0800	192.168.122.201	49223	221.235.252.210	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:22:04.262765+0800	192.168.122.201	49227	36.110.171.40	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogou.com	4d:85:e3:eb:32:88:21:90:0a:3b:ce:07:1e:6b:f9:8c:a4:49:d4:97
2018-11-19 22:22:04.746527+0800	192.168.122.201	49236	118.184.170.37	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogou.com	4d:85:e3:eb:32:88:21:90:0a:3b:ce:07:1e:6b:f9:8c:a4:49:d4:97
2018-11-19 22:22:04.767669+0800	192.168.122.201	49237	118.184.170.37	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogou.com	4d:85:e3:eb:32:88:21:90:0a:3b:ce:07:1e:6b:f9:8c:a4:49:d4:97
2018-11-19 22:22:06.725588+0800	192.168.122.201	49240	58.216.106.210	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:22:06.774589+0800	192.168.122.201	49239	221.235.252.210	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:22:06.735141+0800	192.168.122.201	49241	58.216.106.210	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:22:04.262325+0800	192.168.122.201	49228	218.30.103.50	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogou.com	4d:85:e3:eb:32:88:21:90:0a:3b:ce:07:1e:6b:f9:8c:a4:49:d4:97
2018-11-19 22:22:04.691764+0800	192.168.122.201	49233	59.63.237.193	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd
2018-11-19 22:22:04.764448+0800	192.168.122.201	49235	175.6.26.201	443	TLS 1.2	C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2	C=CN, ST=Beijing, L=Beijing, OU=Technology and Engineering Department, O=Beijing Sogou Technology Development Co., Ltd., CN=*.sogoucdn.com	5d:d4:0f:00:4d:04:f7:ea:7c:85:93:da:09:6b:e4:88:eb:ca:ed:cd

Suricata HTTP

No Suricata HTTP

未发现网络提取文件

抱歉! 没有任何文件投放。

HTML 总结报告 (需15-60分钟同步)	下载

Processing ( 38.116 seconds )

21.331 NetworkAnalysis
12.451 Suricata
4.229 Static
0.049 AnalysisInfo
0.046 Debug
0.005 BehaviorAnalysis
0.005 Memory

Signatures ( 2.477 seconds )

1.973 md_url_bl
0.297 md_bad_drop
0.086 md_domain_bl
0.02 antiav_detectreg
0.012 anomaly_persistence_autorun
0.009 antiav_detectfile
0.007 infostealer_ftp
0.006 geodo_banking_trojan
0.006 ransomware_files
0.005 infostealer_im
0.005 network_torgateway
0.005 ransomware_extensions
0.004 tinba_behavior
0.004 infostealer_bitcoin
0.003 rat_nanocore
0.003 cerber_behavior
0.003 antivm_vbox_files
0.003 disables_browser_warn
0.003 infostealer_mail
0.002 betabot_behavior
0.002 browser_security
0.001 network_tor
0.001 anomaly_persistence_bootexecute
0.001 ursnif_behavior
0.001 kazybot_behavior
0.001 kibex_behavior
0.001 shifu_behavior
0.001 antivm_parallels_keys
0.001 antivm_xen_keys
0.001 banker_zeus_mutex
0.001 bot_drive
0.001 bot_drive2
0.001 browser_addon
0.001 disables_system_restore
0.001 disables_windows_defender
0.001 ie_martian_children
0.001 maldun_blacklist
0.001 recon_checkip
0.001 stealth_modify_uac_prompt
0.001 whois_create

Reporting ( 0.0 seconds )


Task ID	215116
Mongo ID	5bf2c7a62e06334ad06c88ba
Cuckoo release	1.4-Maldun