魔盾安全分析报告

分析类型 开始时间 结束时间 持续时间 分析引擎版本
URL 2018-09-15 19:12:49 2018-09-15 19:15:16 147 秒 1.4-Maldun
虚拟机机器名 标签 虚拟机管理 开机时间 关机时间
win7-sp1-x64-hpdapp03-1 win7-sp1-x64-hpdapp03-1 KVM 2018-09-15 19:12:50 2018-09-15 19:15:15
魔盾分数

1.6

正常的

URL信息

URL http://www.wl666.com/Play/kangweixialvdierji/Vod-0-5.html
VirusTotal VirusTotal无域名信息

特征

魔盾wping.org 域名信誉系统
Neutral: pv.sohu.com
Greylist: cdp1.public-trust.com
魔盾wping.org IP地址信誉系统
Greylist: 23.224.175.54

运行截图

网络分析

访问主机记录

直接访问 IP地址 国家名
101.227.172.62 China
103.224.249.15 Hong Kong
116.211.169.137 China
117.18.237.29 Asia/Pacific Region
220.181.7.190 China
23.224.175.54 United States

域名解析

域名 响应
www.wl666.com A 103.224.249.15
t.cn A 116.211.169.137
pv.sohu.com CNAME gdv.a.sohu.com
A 101.227.172.62
CNAME f7sh2v.a.sohu.com
qq.com-v-qq.com CNAME dy.cdn-789.com
A 145.14.132.187
A 103.103.49.229
A 145.14.132.235
A 198.40.54.253
A 185.173.225.148
A 145.14.132.100
A 145.14.132.251
A 198.40.54.254
A 23.224.175.54
A 103.103.49.230
A 23.224.147.227
A 103.103.49.163
A 103.103.51.206
hm.baidu.com CNAME hm.e.shifen.com
A 220.181.7.190
ocsp.globalsign.com A 180.101.217.164
CNAME globalsign.com.cdn.dnsv1.com
CNAME globalsign.com.s2.cdntip.com
A 58.216.107.33
A 221.228.219.30
A 180.101.217.161
A 221.228.219.33
CNAME global.prd.cdn.globalsign.com
A 221.228.219.32
A 180.101.217.163
A 180.101.217.160
A 58.216.106.164
A 221.228.218.163
A 58.216.106.163
A 58.216.107.34
A 221.228.218.164
cdp1.public-trust.com CNAME crl3.digicert.com
CNAME cs9.wac.phicdn.net
A 117.18.237.29
ocsp.digicert.com

TCP连接

IP地址 端口
101.227.172.62 80
103.224.249.15 80
103.224.249.15 80
103.224.249.15 80
103.224.249.15 80
103.224.249.15 80
103.224.249.15 80
103.224.249.15 80
103.224.249.15 80
103.224.249.15 80
103.224.249.15 80
116.211.169.137 80
117.18.237.29 80
117.18.237.29 80
125.56.201.138 80
180.101.217.163 80
192.168.122.1 53
192.168.122.1 53
205.197.140.170 80
220.181.7.190 443
221.228.219.33 80
23.224.175.54 443
23.224.175.54 443
23.224.175.54 443
23.224.175.54 443
23.32.241.176 80
23.5.251.27 80

UDP连接

IP地址 端口
192.168.122.1 53
192.168.122.1 53
192.168.122.1 53
192.168.122.1 53
192.168.122.1 53
192.168.122.1 53
192.168.122.1 53
192.168.122.1 53
192.168.122.1 53
192.168.122.1 53
192.168.122.1 53
192.168.122.1 53
192.168.122.1 53

HTTP请求

URL HTTP数据
http://www.wl666.com/Play/kangweixialvdierji/Vod-0-5.html 
GET /Play/kangweixialvdierji/Vod-0-5.html HTTP/1.1
Accept: */*
Accept-Language: zh-cn
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: www.wl666.com
Connection: Keep-Alive
http://www.wl666.com/template/film/images/index.css 
GET /template/film/images/index.css HTTP/1.1
Accept: */*
Referer: http://www.wl666.com/Play/kangweixialvdierji/Vod-0-5.html
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: www.wl666.com
Connection: Keep-Alive
http://www.wl666.com/bofangqi/play.js 
GET /bofangqi/play.js HTTP/1.1
Accept: */*
Referer: http://www.wl666.com/Play/kangweixialvdierji/Vod-0-5.html
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: www.wl666.com
Connection: Keep-Alive
http://www.wl666.com/playdata/20/45332.js?41343.93 
GET /playdata/20/45332.js?41343.93 HTTP/1.1
Accept: */*
Referer: http://www.wl666.com/Play/kangweixialvdierji/Vod-0-5.html
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: www.wl666.com
Connection: Keep-Alive
http://www.wl666.com/js/wlvod/tongji.js 
GET /js/wlvod/tongji.js HTTP/1.1
Accept: */*
Referer: http://www.wl666.com/Play/kangweixialvdierji/Vod-0-5.html
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: www.wl666.com
Connection: Keep-Alive
http://www.wl666.com/js/wlvod/play-2.js 
GET /js/wlvod/play-2.js HTTP/1.1
Accept: */*
Referer: http://www.wl666.com/Play/kangweixialvdierji/Vod-0-5.html
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: www.wl666.com
Connection: Keep-Alive
http://www.wl666.com/js/wlvod/top-960.js 
GET /js/wlvod/top-960.js HTTP/1.1
Accept: */*
Referer: http://www.wl666.com/Play/kangweixialvdierji/Vod-0-5.html
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: www.wl666.com
Connection: Keep-Alive
http://www.wl666.com/template/film/images/new1.gif 
GET /template/film/images/new1.gif HTTP/1.1
Accept: */*
Referer: http://www.wl666.com/Play/kangweixialvdierji/Vod-0-5.html
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: www.wl666.com
Connection: Keep-Alive
http://www.wl666.com/template/film/images/logo.gif 
GET /template/film/images/logo.gif HTTP/1.1
Accept: */*
Referer: http://www.wl666.com/Play/kangweixialvdierji/Vod-0-5.html
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: www.wl666.com
Connection: Keep-Alive
http://www.wl666.com/template/film/images/f4.gif 
GET /template/film/images/f4.gif HTTP/1.1
Accept: */*
Referer: http://www.wl666.com/Play/kangweixialvdierji/Vod-0-5.html
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: www.wl666.com
Connection: Keep-Alive
http://www.wl666.com/template/film/images/but1.gif 
GET /template/film/images/but1.gif HTTP/1.1
Accept: */*
Referer: http://www.wl666.com/Play/kangweixialvdierji/Vod-0-5.html
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: www.wl666.com
Connection: Keep-Alive
http://www.wl666.com/template/film/images/topbg.gif 
GET /template/film/images/topbg.gif HTTP/1.1
Accept: */*
Referer: http://www.wl666.com/Play/kangweixialvdierji/Vod-0-5.html
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: www.wl666.com
Connection: Keep-Alive
http://www.wl666.com/template/film/images/ybg.gif 
GET /template/film/images/ybg.gif HTTP/1.1
Accept: */*
Referer: http://www.wl666.com/Play/kangweixialvdierji/Vod-0-5.html
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: www.wl666.com
Connection: Keep-Alive
http://www.wl666.com/playdata/10/9022.js?ef=2 
GET /playdata/10/9022.js?ef=2 HTTP/1.1
Accept: */*
Referer: http://www.wl666.com/Play/kangweixialvdierji/Vod-0-5.html
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: www.wl666.com
Connection: Keep-Alive
http://www.wl666.com/bofangqi/player.html 
GET /bofangqi/player.html HTTP/1.1
Accept: application/x-ms-application, image/jpeg, application/xaml+xml, image/gif, image/pjpeg, application/x-ms-xbap, application/vnd.ms-excel, application/vnd.ms-powerpoint, application/msword, */*
Referer: http://www.wl666.com/Play/kangweixialvdierji/Vod-0-5.html
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: www.wl666.com
Connection: Keep-Alive
http://www.wl666.com/bofangqi/css.css 
GET /bofangqi/css.css HTTP/1.1
Accept: */*
Referer: http://www.wl666.com/bofangqi/player.html
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: www.wl666.com
Connection: Keep-Alive
http://www.wl666.com/bofangqi/player.js 
GET /bofangqi/player.js HTTP/1.1
Accept: */*
Referer: http://www.wl666.com/bofangqi/player.html
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: www.wl666.com
Connection: Keep-Alive
http://t.cn/qcMYa 
GET /qcMYa HTTP/1.1
Accept: */*
Referer: http://www.wl666.com/Play/kangweixialvdierji/Vod-0-5.html
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: t.cn
Connection: Keep-Alive
http://www.wl666.com/js/loading.html 
GET /js/loading.html HTTP/1.1
Accept: application/x-ms-application, image/jpeg, application/xaml+xml, image/gif, image/pjpeg, application/x-ms-xbap, application/vnd.ms-excel, application/vnd.ms-powerpoint, application/msword, */*
Referer: http://www.wl666.com/bofangqi/player.html
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: www.wl666.com
Connection: Keep-Alive
http://www.wl666.com/bofangqi/playload.html 
GET /bofangqi/playload.html HTTP/1.1
Accept: application/x-ms-application, image/jpeg, application/xaml+xml, image/gif, image/pjpeg, application/x-ms-xbap, application/vnd.ms-excel, application/vnd.ms-powerpoint, application/msword, */*
Referer: http://www.wl666.com/bofangqi/player.html
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: www.wl666.com
Connection: Keep-Alive
http://www.wl666.com/bofangqi/playdy/kuyun.html 
GET /bofangqi/playdy/kuyun.html HTTP/1.1
Accept: application/x-ms-application, image/jpeg, application/xaml+xml, image/gif, image/pjpeg, application/x-ms-xbap, application/vnd.ms-excel, application/vnd.ms-powerpoint, application/msword, */*
Referer: http://www.wl666.com/bofangqi/player.html
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: www.wl666.com
Connection: Keep-Alive
http://pv.sohu.com/cityjson 
GET /cityjson HTTP/1.1
Accept: */*
Referer: http://www.wl666.com/Play/kangweixialvdierji/Vod-0-5.html
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Host: pv.sohu.com
http://www.wl666.com/pic/vloading.gif 
GET /pic/vloading.gif HTTP/1.1
Accept: */*
Referer: http://www.wl666.com/js/loading.html
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: www.wl666.com
Connection: Keep-Alive
http://www.wl666.com/template/film/images/anquan.gif 
GET /template/film/images/anquan.gif HTTP/1.1
Accept: */*
Referer: http://www.wl666.com/Play/kangweixialvdierji/Vod-0-5.html
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: www.wl666.com
Connection: Keep-Alive
http://www.wl666.com/template/film/images/new.gif 
GET /template/film/images/new.gif HTTP/1.1
Accept: */*
Referer: http://www.wl666.com/Play/kangweixialvdierji/Vod-0-5.html
Accept-Language: zh-CN
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)
Accept-Encoding: gzip, deflate
Host: www.wl666.com
Connection: Keep-Alive
http://ocsp.globalsign.com/rootr1/MEwwSjBIMEYwRDAJBgUrDgMCGgUABBS3V7W2nAf4FiMTjpDJKg6%2BMgGqMQQUYHtmGkUNl8qJUC99BM00qP%2F8%2FUsCCwQAAAAAAURO8EJH 
GET /rootr1/MEwwSjBIMEYwRDAJBgUrDgMCGgUABBS3V7W2nAf4FiMTjpDJKg6%2BMgGqMQQUYHtmGkUNl8qJUC99BM00qP%2F8%2FUsCCwQAAAAAAURO8EJH HTTP/1.1
Connection: Keep-Alive
Accept: */*
If-Modified-Since: Sat, 01 Sep 2018 00:29:03 GMT
If-None-Match: "1480bfa43edc451651e279ba0f6dc69348c58eec"
User-Agent: Microsoft-CryptoAPI/6.1
Host: ocsp.globalsign.com
http://ocsp.usertrust.com/MFEwTzBNMEswSTAJBgUrDgMCGgUABBR8sWZUnKvbRO5iJhat9GV793rVlAQUrb2YejS0Jvf6xCZU7wO94CTLVBoCECdm7lbrSfOOq9dwovyE3iI%3D 
GET /MFEwTzBNMEswSTAJBgUrDgMCGgUABBR8sWZUnKvbRO5iJhat9GV793rVlAQUrb2YejS0Jvf6xCZU7wO94CTLVBoCECdm7lbrSfOOq9dwovyE3iI%3D HTTP/1.1
Cache-Control: max-age = 163163
Connection: Keep-Alive
Accept: */*
If-Modified-Since: Sun, 26 Aug 2018 23:00:19 GMT
User-Agent: Microsoft-CryptoAPI/6.1
Host: ocsp.usertrust.com
http://ocsp2.globalsign.com/gsorganizationvalsha2g2/ME0wSzBJMEcwRTAJBgUrDgMCGgUABBQMnk2cPe3vhNiR6XLHz4QGvBl7BwQUlt5h8b0cFilTHMDMfTuDAEDmGnwCDHFB6lHS315kGvj29g%3D%3D 
GET /gsorganizationvalsha2g2/ME0wSzBJMEcwRTAJBgUrDgMCGgUABBQMnk2cPe3vhNiR6XLHz4QGvBl7BwQUlt5h8b0cFilTHMDMfTuDAEDmGnwCDHFB6lHS315kGvj29g%3D%3D HTTP/1.1
Connection: Keep-Alive
Accept: */*
User-Agent: Microsoft-CryptoAPI/6.1
Host: ocsp2.globalsign.com
http://ocsp.comodoca.com/MFEwTzBNMEswSTAJBgUrDgMCGgUABBReAhtobFzTvhaRmVeJ38QUchY9AwQUu69%2BAj36pvE8hI6t7jiY7NkyMtQCECsuburZdTZsFIpu26N8jAc%3D 
GET /MFEwTzBNMEswSTAJBgUrDgMCGgUABBReAhtobFzTvhaRmVeJ38QUchY9AwQUu69%2BAj36pvE8hI6t7jiY7NkyMtQCECsuburZdTZsFIpu26N8jAc%3D HTTP/1.1
Cache-Control: max-age = 163216
Connection: Keep-Alive
Accept: */*
If-Modified-Since: Sun, 26 Aug 2018 23:00:19 GMT
User-Agent: Microsoft-CryptoAPI/6.1
Host: ocsp.comodoca.com
http://ocsp.comodoca.com/MFEwTzBNMEswSTAJBgUrDgMCGgUABBR64T7ooMQqLLQoy%2BemBUYZQOKh6QQUkK9qOpRaC9iQ6hJWc99DtDoo2ucCEEUtHCzqfUgKLl%2FmH%2FTAFRs%3D 
GET /MFEwTzBNMEswSTAJBgUrDgMCGgUABBR64T7ooMQqLLQoy%2BemBUYZQOKh6QQUkK9qOpRaC9iQ6hJWc99DtDoo2ucCEEUtHCzqfUgKLl%2FmH%2FTAFRs%3D HTTP/1.1
Connection: Keep-Alive
Accept: */*
User-Agent: Microsoft-CryptoAPI/6.1
Host: ocsp.comodoca.com
http://cdp1.public-trust.com/CRL/Omniroot2025.crl 
GET /CRL/Omniroot2025.crl HTTP/1.1
Cache-Control: max-age = 172800
Connection: Keep-Alive
Accept: */*
If-Modified-Since: Tue, 21 Aug 2018 20:59:15 GMT
If-None-Match: "2057461361"
User-Agent: Microsoft-CryptoAPI/6.1
Host: cdp1.public-trust.com
http://crl.microsoft.com/pki/crl/products/tspca.crl 
GET /pki/crl/products/tspca.crl HTTP/1.1
Cache-Control: max-age = 900
Connection: Keep-Alive
Accept: */*
If-Modified-Since: Sat, 24 May 2014 05:04:54 GMT
If-None-Match: "8ab194b3d77cf1:0"
User-Agent: Microsoft-CryptoAPI/6.1
Host: crl.microsoft.com
http://ocsp.digicert.com/MFEwTzBNMEswSTAJBgUrDgMCGgUABBTBL0V27RVZ7LBduom%2FnYB45SPUEwQU5Z1ZMIJHWMys%2BghUNoZ7OrUETfACEAiIzVJfGSRETRSlgpHeuVI%3D 
GET /MFEwTzBNMEswSTAJBgUrDgMCGgUABBTBL0V27RVZ7LBduom%2FnYB45SPUEwQU5Z1ZMIJHWMys%2BghUNoZ7OrUETfACEAiIzVJfGSRETRSlgpHeuVI%3D HTTP/1.1
Cache-Control: max-age = 172072
Connection: Keep-Alive
Accept: */*
If-Modified-Since: Fri, 31 Aug 2018 21:45:22 GMT
If-None-Match: "5b89b6f2-1d7"
User-Agent: Microsoft-CryptoAPI/6.1
Host: ocsp.digicert.com
http://sc.symcd.com/MFEwTzBNMEswSTAJBgUrDgMCGgUABBQckPwgwK2Thdm9JYVwXQ4ERz3XDQQUo47PGUI9MeGrIYmEbcvZeaKysloCEHqjyY%2FZZ0CXL8%2BHJTc%2FPlA%3D 
GET /MFEwTzBNMEswSTAJBgUrDgMCGgUABBQckPwgwK2Thdm9JYVwXQ4ERz3XDQQUo47PGUI9MeGrIYmEbcvZeaKysloCEHqjyY%2FZZ0CXL8%2BHJTc%2FPlA%3D HTTP/1.1
Cache-Control: max-age = 385006
Connection: Keep-Alive
Accept: */*
If-Modified-Since: Wed, 29 Aug 2018 12:28:23 GMT
User-Agent: Microsoft-CryptoAPI/6.1
Host: sc.symcd.com

投放文件

无信息

行为分析

互斥量(Mutexes) 无信息
执行的命令 无信息
创建的服务 无信息
启动的服务 无信息

进程

iexplore.exe PID: 2620, 上一级进程 PID: 2380

访问的文件 无信息
读取的文件 无信息
修改的文件 无信息
删除的文件 无信息
注册表键 无信息
读取的注册表键 无信息
修改的注册表键 无信息
删除的注册表键 无信息
API解析 无信息