Report - cdn.yz168.cc

Report Overview

Visited public
2025-03-26 09:29:05
Tags
URL
cdn.yz168.cc
Finishing URL
cdn.yz168.cc/
IP / ASN
116.196.137.78
#131516 Jinhua Weian InfoTech Co., Ltd
Title
系统发生错误

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cdn.yz168.cc	unknown	2015-05-22	2015-08-19	2025-03-25	1.2 kB	5.2 kB	116.196.137.78

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2025-03-26 09:28:46	medium	116.196.137.78	Client IP	ET INFO Referrer-Policy set to unsafe-url

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (0)

HTTP Transactions (3)

URL IP Response Size

cdn.yz168.cc/

116.196.137.78

400 Bad Request

1.3 kB

URL User Request GET
cdn.yz168.cc/
IP
116.196.137.78:443
ASN
#131516 Jinhua Weian InfoTech Co., Ltd

Certificate
IssuerLet's Encrypt
Subject*.yz168.cc
Fingerprint16:1A:D4:B6:EE:81:0B:61:72:BA:19:2C:8F:DA:63:67:E2:4C:65:58
ValidityTue, 18 Feb 2025 01:00:27 GMT - Mon, 19 May 2025 01:00:26 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (1266), with no line terminators
Size
1.3 kB (1284 bytes)
Hash
325315817d3d14677e5a5ceb9fac8fa0
d9323a03ef3ef9a56961a135f5b6472b890b01d8
80e335b16289c7c514ca2406474650dab499cce12762afb67d3984df170d930c

HTTP Headers

GET / HTTP/1.1
Host: cdn.yz168.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 400 Bad Request
content-type: text/html; charset=UTF-8
content-length: 730
date: Wed, 26 Mar 2025 09:28:43 GMT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-permitted-cross-domain-policies: none
content-security-policy: default-src 'self' data: http: https: ws: wss:; script-src 'unsafe-inline' 'unsafe-eval' http: https:; style-src 'unsafe-inline' 'unsafe-eval' http: https:; frame-ancestors 'self';
x-frame-options: SAMEORIGIN
x-download-options: noopen
access-control-allow-origin: https://cdn.yz168.cc:8080
access-control-allow-credentials: true
content-encoding: gzip
p3p: CP="IDC DSP COR NID CUR OUR NOR" policyref="/p3p.xml"
backend: yz-web-1
x-ws-request-id: 67e3c8cb_PS-TNA-01wYM62_13740-58286
x-via: 1.1 PS-000-010LQ177 [BYPASS], 2.0 PS-TNA-01wYM62 [BYPASS]
x-cache-status: BYPASS
server: nginx
X-Firefox-Spdy: h2

cdn.yz168.cc/

116.196.137.78

400 Bad Request

1.3 kB

URL User Request GET
cdn.yz168.cc/
IP
116.196.137.78:80
ASN
#131516 Jinhua Weian InfoTech Co., Ltd

File type
HTML document, Unicode text, UTF-8 text, with very long lines (1200), with no line terminators
Size
1.3 kB (1251 bytes)
Hash
25badaf87618ef2d1d709c8e8f7f597e
63a9dc11dda96c36474d484c283b8a41bea227a7
8134fd4bbe6ba26c170acb9e7ff463b71ba44a1b5e50336bcdc158ed89cb126a

HTTP Headers

GET / HTTP/1.1
Host: cdn.yz168.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 400 Bad Request
Content-Type: text/html; charset=UTF-8
Content-Length: 726
Connection: keep-alive
Keep-Alive: timeout=30
Date: Wed, 26 Mar 2025 09:28:45 GMT
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
X-Permitted-Cross-Domain-Policies: none
Content-Security-Policy: default-src 'self' data: http: https: ws: wss:; script-src 'unsafe-inline' 'unsafe-eval' http: https:; style-src 'unsafe-inline' 'unsafe-eval' http: https:; frame-ancestors 'self';
X-Frame-Options: SAMEORIGIN
X-Download-Options: noopen
Access-Control-Allow-Origin: http://cdn.yz168.cc:8080
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
P3P: CP="IDC DSP COR NID CUR OUR NOR" policyref="/p3p.xml"
Backend: yz-web-3
x-ws-request-id: 67e3c8cc_PS-TNA-012d088_20929-62388
X-Via: 1.1 PS-000-01DCx174 [BYPASS], 1.1 PS-TNA-012d088 [BYPASS]
X-Cache-Status: BYPASS
Server: nginx

cdn.yz168.cc/favicon.ico

116.196.137.78

404 UrlLimitFilter Blocked

11 B

URL GET
cdn.yz168.cc/favicon.ico
IP
116.196.137.78:80
ASN
#131516 Jinhua Weian InfoTech Co., Ltd

Requested by
http://cdn.yz168.cc/

File type
ASCII text, with no line terminators
Size
11 B (11 bytes)
Hash
04a993e0f28cced3ddbd874b86a96804
2a4e7e3dd7a8fc8064393ff12cf0f471e95ce527
0f186fd8cebe2c6f84f7319104929258945154af0fef134552c74657431ed8c1

Detections

NIDS	Severity	Alert
suricata	medium	ET INFO Referrer-Policy set to unsafe-url

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: cdn.yz168.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://cdn.yz168.cc/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 UrlLimitFilter Blocked
Content-Type: text/html;charset=utf-8
Content-Length: 11
Connection: keep-alive
Keep-Alive: timeout=30
Date: Wed, 26 Mar 2025 09:28:46 GMT
X-Filter: UrlLimitFilter
X-Xss-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: unsafe-url
X-Permitted-Cross-Domain-Policies: none
Content-Security-Policy: default-src 'self' data: http: https: ws: wss:; script-src 'unsafe-inline' 'unsafe-eval' http: https:; style-src 'unsafe-inline' 'unsafe-eval' http: https:;
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Expires: Wed, 26 Mar 2025 08:28:46 GMT
X-Server: WafProxy
P3P: CP="IDC DSP COR NID CUR OUR NOR" policyref="/p3p.xml"
x-ws-request-id: 67e3c8ce_PS-TNA-012d088_20929-62676
X-Via: 1.1 PS-000-01DCx174 [MISS], 1.1 PS-TNA-012d088 [MISS]
X-Cache-Status: MISS
Server: nginx

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (0)

HTTP Transactions (3)

URL User Request GET

IP

ASN

Certificate

File type

Size

Hash

HTTP Headers

URL User Request GET

IP

ASN

File type

Size

Hash

HTTP Headers

URL GET

IP

ASN

Requested by

File type

Size

Hash

Detections

HTTP Headers