| 118.113.16.182:1100/login | 118.113.16.182 | 200 | 3.6 kB |
URL User Request GET HTTP/1.1118.113.16.182:1100/login IP118.113.16.182:1100
File typeHTML document, Unicode text, UTF-8 text, with CRLF line terminators Hash0e7db288254dc5b4c25da88ac7e44994 8931186df75e80d294d52defc56645a3c413e275 ea7a21070a5a9d98a1e5c66a5b07f6a83b3ffb62b29b9d0494f11de4dca26ca9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /login HTTP/1.1
Host: 118.113.16.182:1100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Content-Type: text/html;charset=UTF-8
Content-Language: zh-CN
Transfer-Encoding: chunked
Date: Fri, 26 Apr 2024 10:34:30 GMT
Keep-Alive: timeout=20
Connection: keep-alive
|
|
| 118.113.16.182:1100/css/font-awesome.min.css | 118.113.16.182 | 200 | 31 kB |
URL GET HTTP/1.1118.113.16.182:1100/css/font-awesome.min.css IP118.113.16.182:1100
Requested byhttp://118.113.16.182:1100/login
File typeASCII text, with very long lines (30837), with CRLF line terminators Hasha0e784c4ca94c271b0338dfb02055be6 88af80502c44cd52ca81ffe7dc7276b7eccb06cf 820e169ce24824066d9973fd4b6561aae9dcd6dbef6435da905d5a1d6482997c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/font-awesome.min.css HTTP/1.1
Host: 118.113.16.182:1100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://118.113.16.182:1100/login
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Wed, 02 Jun 2021 01:21:48 GMT
Accept-Ranges: bytes
Content-Type: text/css
Content-Length: 31004
Date: Fri, 26 Apr 2024 10:34:30 GMT
Keep-Alive: timeout=20
Connection: keep-alive
|
|
| 118.113.16.182:1100/ruoyi/css/ry-ui.css?v=4.6.1 | 118.113.16.182 | 200 | 25 kB |
URL GET HTTP/1.1118.113.16.182:1100/ruoyi/css/ry-ui.css?v=4.6.1 IP118.113.16.182:1100
Requested byhttp://118.113.16.182:1100/login
File typeUnicode text, UTF-8 text, with CRLF line terminators Hash747598deaf5b2c634e38ca4e50b05b98 4c87343cfdccf45ae53c6ac9dcc28c488127814e ccdd74b8851ac1cb8ef5e6f34b2630a9ce505090cb33e88348698c7eb41bc426
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /ruoyi/css/ry-ui.css?v=4.6.1 HTTP/1.1
Host: 118.113.16.182:1100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://118.113.16.182:1100/login
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Tue, 14 Mar 2023 08:19:32 GMT
Accept-Ranges: bytes
Content-Type: text/css
Content-Length: 25324
Date: Fri, 26 Apr 2024 10:34:30 GMT
Keep-Alive: timeout=20
Connection: keep-alive
|
|
| 118.113.16.182:1100/css/bootstrap.min.css | 118.113.16.182 | 200 | 121 kB |
URL GET HTTP/1.1118.113.16.182:1100/css/bootstrap.min.css IP118.113.16.182:1100
Requested byhttp://118.113.16.182:1100/login
File typeASCII text, with very long lines (65367), with CRLF line terminators Size121 kB (121205 bytes) Hash5057f321f0dc85cd8da94a0c5f67a8f4 224c9f9ad11b495358aa61dbd53e838e9b61015b 5a3d8c05785485d36ee5c94d4681e5b1d9e4b94c5be8b5bd7b0f3168fff1bd9a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/bootstrap.min.css HTTP/1.1
Host: 118.113.16.182:1100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://118.113.16.182:1100/login
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Wed, 02 Jun 2021 01:21:48 GMT
Accept-Ranges: bytes
Content-Type: text/css
Content-Length: 121205
Date: Fri, 26 Apr 2024 10:34:30 GMT
Keep-Alive: timeout=20
Connection: keep-alive
|
|
| 118.113.16.182:1100/js/bootstrap.min.js | 118.113.16.182 | 200 | 39 kB |
URL GET HTTP/1.1118.113.16.182:1100/js/bootstrap.min.js IP118.113.16.182:1100
Requested byhttp://118.113.16.182:1100/login
File typeJavaScript source, ASCII text, with very long lines (38738), with CRLF line terminators Hash93a1f823d90b3c0b0c92c7eaa9669754 c5656ed696219cc6b7dceed19a34bb4d9f6faab1 761b0a0362022aec0c1d121ea530ea547e2773e01aabe56cf3180236973e0af8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/bootstrap.min.js HTTP/1.1
Host: 118.113.16.182:1100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://118.113.16.182:1100/login
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Wed, 02 Jun 2021 01:21:48 GMT
Accept-Ranges: bytes
Content-Type: application/javascript
Content-Length: 38868
Date: Fri, 26 Apr 2024 10:34:30 GMT
Keep-Alive: timeout=20
Connection: keep-alive
|
|
| 118.113.16.182:1100/ajax/libs/validate/jquery.validate.min.js | 118.113.16.182 | 200 | 22 kB |
URL GET HTTP/1.1118.113.16.182:1100/ajax/libs/validate/jquery.validate.min.js IP118.113.16.182:1100
Requested byhttp://118.113.16.182:1100/login
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (21388), with CRLF line terminators Hash0909b4a0efdadf7a2a679e1f43d7d7cf be2ec5f330a7b537b6752283c3d99ea5651116bb f01f5ea5ff71b32da6759fb193943622b2d04e19a8d4017e8528e0bb1f248fde
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /ajax/libs/validate/jquery.validate.min.js HTTP/1.1
Host: 118.113.16.182:1100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://118.113.16.182:1100/login
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Wed, 02 Jun 2021 01:21:48 GMT
Accept-Ranges: bytes
Content-Type: application/javascript
Content-Length: 21530
Date: Fri, 26 Apr 2024 10:34:31 GMT
Keep-Alive: timeout=20
Connection: keep-alive
|
|
| 118.113.16.182:1100/css/login.min.css | 118.113.16.182 | 200 | 2.8 kB |
URL GET HTTP/1.1118.113.16.182:1100/css/login.min.css IP118.113.16.182:1100
Requested byhttp://118.113.16.182:1100/login
File typeASCII text, with very long lines (2820), with no line terminators Hashc5f5e2f2200021892fc8581b447d4ca3 c2567fd4b3b7ae87997f160369ef6e3b365c945c 46591bc61ea57dcdaca2169a0c29cee5165af9d408ef8fd1d48fe032d869a26b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/login.min.css HTTP/1.1
Host: 118.113.16.182:1100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://118.113.16.182:1100/login
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Wed, 02 Jun 2021 01:21:48 GMT
Accept-Ranges: bytes
Content-Type: text/css
Content-Length: 2820
Date: Fri, 26 Apr 2024 10:34:31 GMT
Keep-Alive: timeout=20
Connection: keep-alive
|
|
| 118.113.16.182:1100/css/style.css | 118.113.16.182 | 200 | 139 kB |
URL GET HTTP/1.1118.113.16.182:1100/css/style.css IP118.113.16.182:1100
Requested byhttp://118.113.16.182:1100/login
File typeUnicode text, UTF-8 text, with very long lines (483), with CRLF line terminators Size139 kB (139228 bytes) Hashd0113c9b1d44533e9f2de5bfa17ffa1b 0fbbdea11b83e3fb19c1ec251ea00af8fc6eed6c 254015d7ae40fcd5af4deb26bea51dce006ace415b9aa73b7e3dfa38e63fe967
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/style.css HTTP/1.1
Host: 118.113.16.182:1100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://118.113.16.182:1100/login
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Wed, 02 Jun 2021 01:21:48 GMT
Accept-Ranges: bytes
Content-Type: text/css
Content-Length: 139228
Date: Fri, 26 Apr 2024 10:34:30 GMT
Keep-Alive: timeout=20
Connection: keep-alive
|
|
| 118.113.16.182:1100/ajax/libs/validate/messages_zh.min.js | 118.113.16.182 | 200 | 1.4 kB |
URL GET HTTP/1.1118.113.16.182:1100/ajax/libs/validate/messages_zh.min.js IP118.113.16.182:1100
Requested byhttp://118.113.16.182:1100/login
File typeJavaScript source, Unicode text, UTF-8 text, with CRLF line terminators Hash2e53acbf6518a85fcad23b41db2c7425 2d5e7474ba6509a478d6600acab1103db5f07c4b 569a2be4832b1ebf6244b6e2b219daf8705782a2c94d23dd932ceef4d69148c3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /ajax/libs/validate/messages_zh.min.js HTTP/1.1
Host: 118.113.16.182:1100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://118.113.16.182:1100/login
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Wed, 02 Jun 2021 01:21:48 GMT
Accept-Ranges: bytes
Content-Type: application/javascript
Content-Length: 1435
Date: Fri, 26 Apr 2024 10:34:31 GMT
Keep-Alive: timeout=20
Connection: keep-alive
|
|
| 118.113.16.182:1100/ajax/libs/blockUI/jquery.blockUI.js | 118.113.16.182 | 200 | 21 kB |
URL GET HTTP/1.1118.113.16.182:1100/ajax/libs/blockUI/jquery.blockUI.js IP118.113.16.182:1100
Requested byhttp://118.113.16.182:1100/login
File typeJavaScript source, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators Hashd1b570f6154466b04656d6bf82f83334 ff13abea09fce7cac97c9a8799edcdef7b33b998 fe71ac0177ef82f38e030cca3ad8074377479ec82701d38ac6db1e476ea83c8a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /ajax/libs/blockUI/jquery.blockUI.js HTTP/1.1
Host: 118.113.16.182:1100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://118.113.16.182:1100/login
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Wed, 02 Jun 2021 01:21:48 GMT
Accept-Ranges: bytes
Content-Type: application/javascript
Content-Length: 20641
Date: Fri, 26 Apr 2024 10:34:31 GMT
Keep-Alive: timeout=20
Connection: keep-alive
|
|
| 118.113.16.182:1100/ruoyi/login.js | 118.113.16.182 | 200 | 2.8 kB |
URL GET HTTP/1.1118.113.16.182:1100/ruoyi/login.js IP118.113.16.182:1100
Requested byhttp://118.113.16.182:1100/login
File typeJavaScript source, Unicode text, UTF-8 text, with CRLF line terminators Hashccfb14acba829270fe7425103fbe2370 d92d99a5950c8cc94582ef108e0a204361e8aa67 a74cf676470910616e61281f94fc62eede472381bacd1cb5af87abea4c5b753b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /ruoyi/login.js HTTP/1.1
Host: 118.113.16.182:1100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://118.113.16.182:1100/login
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Wed, 02 Jun 2021 01:21:48 GMT
Accept-Ranges: bytes
Content-Type: application/javascript
Content-Length: 2782
Date: Fri, 26 Apr 2024 10:34:31 GMT
Keep-Alive: timeout=20
Connection: keep-alive
|
|
| 118.113.16.182:1100/captcha/captchaImage?type=math | 118.113.16.182 | 200 | 2.7 kB |
URL GET HTTP/1.1118.113.16.182:1100/captcha/captchaImage?type=math IP118.113.16.182:1100
Requested byhttp://118.113.16.182:1100/login
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 160x60, components 3 Hash87a4e36eca3f66ee66a2ac994e56bb8f fc4cdae40495354c44f6a45f972e89c7fc322aec 3603e531abfc441af0ca8feba47608abae31d198516cf772b1b7c1c5f25d5dd9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /captcha/captchaImage?type=math HTTP/1.1
Host: 118.113.16.182:1100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://118.113.16.182:1100/login
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Set-Cookie: JSESSIONID=80a45cd8-f7f9-4d93-9d81-1441eaac55f4; Path=/; HttpOnly; SameSite=lax
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Type: image/jpeg
Transfer-Encoding: chunked
Date: Fri, 26 Apr 2024 10:34:31 GMT
Keep-Alive: timeout=20
Connection: keep-alive
|
|
| 118.113.16.182:1100/img/user.png | 118.113.16.182 | 200 | 1.1 kB |
URL GET HTTP/1.1118.113.16.182:1100/img/user.png IP118.113.16.182:1100
Requested byhttp://118.113.16.182:1100/login
File typePNG image data, 15 x 15, 8-bit/color RGBA, non-interlaced Hash681dfebf3a20ec9c580d8dc248eb6a6e 46a81ebddfdb1e2e647b711cf896aea3c4557f74 09bbf9c144222134ee6d4f28b25d4b846f8c099d72c4360c7998bfd89715eb45
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /img/user.png HTTP/1.1
Host: 118.113.16.182:1100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://118.113.16.182:1100/css/login.min.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Wed, 02 Jun 2021 01:21:48 GMT
Accept-Ranges: bytes
Content-Type: image/png
Content-Length: 1106
Date: Fri, 26 Apr 2024 10:34:31 GMT
Keep-Alive: timeout=20
Connection: keep-alive
|
|
| 118.113.16.182:1100/img/locked.png | 118.113.16.182 | 200 | 1.1 kB |
URL GET HTTP/1.1118.113.16.182:1100/img/locked.png IP118.113.16.182:1100
Requested byhttp://118.113.16.182:1100/login
File typePNG image data, 15 x 15, 8-bit/color RGBA, non-interlaced Hashf6f30beb72f584e218bfec975eb1109d bf2df8c47190b0643683569dbe42e619186135e3 5d49f096f9957f3b969cdf922469092b26550ec5cfe9c78a86515460c4230cd7
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /img/locked.png HTTP/1.1
Host: 118.113.16.182:1100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://118.113.16.182:1100/css/login.min.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Wed, 02 Jun 2021 01:21:48 GMT
Accept-Ranges: bytes
Content-Type: image/png
Content-Length: 1132
Date: Fri, 26 Apr 2024 10:34:31 GMT
Keep-Alive: timeout=20
Connection: keep-alive
|
|
| 118.113.16.182:1100/ruoyi/js/ry-ui.js?v=4.6.1 | 118.113.16.182 | 200 | 88 kB |
URL GET HTTP/1.1118.113.16.182:1100/ruoyi/js/ry-ui.js?v=4.6.1 IP118.113.16.182:1100
Requested byhttp://118.113.16.182:1100/login
File typeJavaScript source, Unicode text, UTF-8 text, with CRLF line terminators Hashd29178639ba71f6ab801f75abc75c225 99bfb080619e0ccb86f243e2f4380ff05e218f8c 5c6c85070236650f3e05685720022747f018ae05179e07f252bc529694776118
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /ruoyi/js/ry-ui.js?v=4.6.1 HTTP/1.1
Host: 118.113.16.182:1100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://118.113.16.182:1100/login
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Tue, 14 Mar 2023 08:19:32 GMT
Accept-Ranges: bytes
Content-Type: application/javascript
Content-Length: 87866
Date: Fri, 26 Apr 2024 10:34:31 GMT
Keep-Alive: timeout=20
Connection: keep-alive
|
|
| 118.113.16.182:1100/ajax/libs/layer/layer.min.js | 118.113.16.182 | 200 | 23 kB |
URL GET HTTP/1.1118.113.16.182:1100/ajax/libs/layer/layer.min.js IP118.113.16.182:1100
Requested byhttp://118.113.16.182:1100/login
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (22658), with CRLF line terminators Hash917fca87ccec4f980b2a95abbc8909ef 3d48225d489c164ac7d743d00799c8976cb8d511 54670d0f02952b69df89ae0f9bb592aec8121c4f06eb1594f3ddf8a7dfbf6d21
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /ajax/libs/layer/layer.min.js HTTP/1.1
Host: 118.113.16.182:1100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://118.113.16.182:1100/login
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Wed, 02 Jun 2021 01:21:48 GMT
Accept-Ranges: bytes
Content-Type: application/javascript
Content-Length: 22717
Date: Fri, 26 Apr 2024 10:34:32 GMT
Keep-Alive: timeout=20
Connection: keep-alive
|
|
| 118.113.16.182:1100/js/jquery.min.js | 118.113.16.182 | 200 | 131 kB |
URL GET HTTP/1.1118.113.16.182:1100/js/jquery.min.js IP118.113.16.182:1100
Requested byhttp://118.113.16.182:1100/login
File typeJavaScript source, ASCII text, with very long lines (65452), with CRLF line terminators Size131 kB (131400 bytes) Hash8045b1884c4a1035f216784a1d5b3e28 26aefa7db786b9062979be779efd2490e1b0c66d 98695b5a8a17d891aa4151ad94999db99b2177b15bf9ad4161f6d7d22389bf87
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/jquery.min.js HTTP/1.1
Host: 118.113.16.182:1100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://118.113.16.182:1100/login
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Wed, 02 Jun 2021 01:21:48 GMT
Accept-Ranges: bytes
Content-Type: application/javascript
Content-Length: 131400
Date: Fri, 26 Apr 2024 10:34:31 GMT
Keep-Alive: timeout=20
Connection: keep-alive
|
|
| 118.113.16.182:1100/img/login-background.jpg | 118.113.16.182 | 200 | 143 kB |
URL GET HTTP/1.1118.113.16.182:1100/img/login-background.jpg IP118.113.16.182:1100
Requested byhttp://118.113.16.182:1100/login
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5 Windows, datetime=2014:06:30 11:40:52], baseline, precision 8, 1440x900, components 3 Size143 kB (142718 bytes) Hash31e21fdea575697a651cf4572562e398 822687d31ccd83c82ae0847afbee5e69a81db222 d16abd743d889ab710e5171f3c99509ff24f7cfd4e3aa2f23c55883d1503a081
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /img/login-background.jpg HTTP/1.1
Host: 118.113.16.182:1100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://118.113.16.182:1100/css/login.min.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Wed, 02 Jun 2021 01:21:48 GMT
Accept-Ranges: bytes
Content-Type: image/jpeg
Content-Length: 142718
Date: Fri, 26 Apr 2024 10:34:31 GMT
Keep-Alive: timeout=20
Connection: keep-alive
|
|
| 118.113.16.182:1100/ajax/libs/layer/theme/default/layer.css?v=3.5.0 | 118.113.16.182 | 200 | 16 kB |
URL GET HTTP/1.1118.113.16.182:1100/ajax/libs/layer/theme/default/layer.css?v=3.5.0 IP118.113.16.182:1100
Requested byhttp://118.113.16.182:1100/login
File typeUnicode text, UTF-8 text, with very long lines (966), with CRLF line terminators Hashee72afc27efea1f8666117a566a01ad7 4beb4716bc365f96849d5b4b7f1c778220529009 0387f33a167042d50307f667fd50c2520953e0c079c2779ab8cebbbed4c61b8c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /ajax/libs/layer/theme/default/layer.css?v=3.5.0 HTTP/1.1
Host: 118.113.16.182:1100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://118.113.16.182:1100/login
Cookie: JSESSIONID=80a45cd8-f7f9-4d93-9d81-1441eaac55f4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Wed, 02 Jun 2021 01:21:48 GMT
Accept-Ranges: bytes
Content-Type: text/css
Content-Length: 16531
Date: Fri, 26 Apr 2024 10:34:33 GMT
Keep-Alive: timeout=20
Connection: keep-alive
|
|
| 118.113.16.182:1100/favicon.ico | 118.113.16.182 | 200 | 17 kB |
URL GET HTTP/1.1118.113.16.182:1100/favicon.ico IP118.113.16.182:1100
Requested byhttp://118.113.16.182:1100/login
File typeMS Windows icon resource - 1 icon, 64x64, 32 bits/pixel Hashe49fd30ea870c7a820464ca56a113e6e 38ccc3603a8bc74ed3f7491222c9d50e73aa421a 148ce319907e947199c93f77c9317c0b166bc17d77d6cf6378f8374e8d2fb1a2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: 118.113.16.182:1100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://118.113.16.182:1100/login
Cookie: JSESSIONID=80a45cd8-f7f9-4d93-9d81-1441eaac55f4
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Wed, 02 Jun 2021 01:21:48 GMT
Accept-Ranges: bytes
Content-Type: image/x-icon
Content-Length: 16958
Date: Fri, 26 Apr 2024 10:34:34 GMT
Keep-Alive: timeout=20
Connection: keep-alive
|
|