Report - 122.116.47.137/

Report Overview

Submitted URL
122.116.47.137/
IP
122.116.47.137
ASN
#3462 Data Communication Business Group
Submitted
2024-04-24 21:55:09
Access
public
Website Title
ATHD16C
Final URL
122.116.47.137/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
36

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
122.116.47.137	unknown	unknown	No data	No data	6.5 kB	648 kB	122.116.47.137

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-24	medium	122.116.47.137	Sinkholed
2024-04-24	medium	122.116.47.137	Sinkholed
2024-04-24	medium	122.116.47.137	Sinkholed
2024-04-24	medium	122.116.47.137	Sinkholed
2024-04-24	medium	122.116.47.137	Sinkholed
2024-04-24	medium	122.116.47.137	Sinkholed
2024-04-24	medium	122.116.47.137	Sinkholed
2024-04-24	medium	122.116.47.137	Sinkholed
2024-04-24	medium	122.116.47.137	Sinkholed
2024-04-24	medium	122.116.47.137	Sinkholed
2024-04-24	medium	122.116.47.137	Sinkholed
2024-04-24	medium	122.116.47.137	Sinkholed
2024-04-24	medium	122.116.47.137	Sinkholed
2024-04-24	medium	122.116.47.137	Sinkholed
2024-04-24	medium	122.116.47.137	Sinkholed
2024-04-24	medium	122.116.47.137	Sinkholed
2024-04-24	medium	122.116.47.137	Sinkholed
2024-04-24	medium	122.116.47.137	Sinkholed

ThreatFox

No alerts detected

JavaScript (18)

	URL	Size	First Seen	Last Seen
	122.116.47.137/	21 kB	2023-03-07	2024-04-24
Pretty URL 122.116.47.137/ IP 122.116.47.137 ASN #3462 Data Communication Business Group Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 13:03:30 Last Seen2024-04-24 23:55:15 Times Seen5 Hash c337d20cf8ff3d3d707233180627969e aaf5592003c39289f285eee10321f1fabd1f0747 5ec5d04cdb84f8e08c1fc4147714f3a007c1e170d3d27a65ced13faedcafb900 Loading...

	unknown	7 B	2023-04-19	2024-04-24
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-04-19 15:34:27 Last Seen2024-04-24 23:55:15 Times Seen1255 Hash 11a14410ceda908891eb4923b9873ef2 f7ef531f57eeeff81671f28910b93b40a8bb62a2 7fa0643f559175b8e027c7ed9a91bec853ca77b467ec716d58e9f0c665259f53 Loading...

	122.116.47.137/	18 B	2023-03-07	2024-04-24
Pretty URL 122.116.47.137/ IP 122.116.47.137 ASN #3462 Data Communication Business Group Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:10:39 Last Seen2024-04-24 23:55:15 Times Seen48 Hash 901b4997664fd1ce5cc335cd209fbbb4 c24dfd41210c5298697f5879347b9c3dca701412 a51a08044577aea2b72d4cc39c19035199f2fc6042d2c482d129d66c106a85f2 Loading...

	unknown	19 B	2023-04-19	2024-04-24
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-04-19 15:34:27 Last Seen2024-04-24 23:55:15 Times Seen29 Hash 37d641a9bdced2b84c89ef9e9fac8c2a e53a51a79de3cba8302fd1a45ea2b49e8761ccef 191184c86aa74786d65a58d0584541868a20a2853045ae2e9914878d96f4c361 Loading...

	unknown	413 B	2023-12-18	2024-04-24
Pretty Introduced by domTimer Embedded in HTML false Observations First Seen2023-12-18 04:12:38 Last Seen2024-04-24 23:55:15 Times Seen2 Hash 2b851b7861d199b8d38d90cb7d2e1358 c5fc94a5de8bfd4ba899a69d262eeb1c9495db10 955c4ceb02f5d9b527d5ead255ec773bc7ff9cfb833c95b7eb209623bf849501 Loading...

	122.116.47.137/common/Lang_en.js	382 kB	2023-04-19	2024-04-24
Pretty URL 122.116.47.137/common/Lang_en.js IP 122.116.47.137 ASN #3462 Data Communication Business Group Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-19 15:34:27 Last Seen2024-04-24 23:55:15 Times Seen16 Hash c20b866a8cd5dfaa92760ca95a8bd9ee 1c6ba363a67aef063762f44b47ae1ee5be9d2b76 b670e02eed56c23fe4a0c575b97bbc80c5d04c440e4950fa10785bb51c1fe61e Loading...

	122.116.47.137/common/ParseLang.js	880 B	2023-03-07	2024-04-24
Pretty URL 122.116.47.137/common/ParseLang.js IP 122.116.47.137 ASN #3462 Data Communication Business Group Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:39 Last Seen2024-04-24 23:55:15 Times Seen48 Hash d14c321236e073cd4e50f35bed33e266 ee4654ffc0d03d66634373f78395a9fee1d1d9dd 45fca621c7ba23c55a2dc7833de13110f439962924647d80666e8fc602ff3652 Loading...

	unknown	0 B	2023-03-07	2024-05-04
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-04 09:51:08 Times Seen37332938 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	122.116.47.137/common/Jq/jquery.alphanumeric.js	1.5 kB	2023-03-07	2024-04-24
Pretty URL 122.116.47.137/common/Jq/jquery.alphanumeric.js IP 122.116.47.137 ASN #3462 Data Communication Business Group Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:39 Last Seen2024-04-24 23:55:15 Times Seen50 Hash 7f13ae03da525004995550031dd09e56 148b60ddbc48fc533f708a07237db5900e75390a 2de3e61670ca7228c5255cf379ab059bf7a43b71bdcaf3800388a6d2e6f6d696 Loading...

	122.116.47.137/common/Jq/jquery-1.6.2.min.js	92 kB	2023-03-07	2024-05-04
Pretty URL 122.116.47.137/common/Jq/jquery-1.6.2.min.js IP 122.116.47.137 ASN #3462 Data Communication Business Group Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:14 Last Seen2024-05-04 09:09:40 Times Seen7125 Hash a1a8cb16a060f6280a767187fd22e037 7622c9ac2335be6dcd3ab8b47132e94089cef931 d16d07a0353405fcec95f7efc50a2621bc7425f9a5e8895078396fb0dc460c4f Loading...

	122.116.47.137/common/Vlc/plugin_detect.js	5.5 kB	2023-03-07	2024-04-24
Pretty URL 122.116.47.137/common/Vlc/plugin_detect.js IP 122.116.47.137 ASN #3462 Data Communication Business Group Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:39 Last Seen2024-04-24 23:55:15 Times Seen47 Hash 44ea1c20ad86a289ccccf54d9148f10d c6611a6e2020cb3e0f0f01b28eaa4c741dda1e68 51e29444420644f52522fbc81ee25fc31e123b462feb660849f35b557b7b9fe9 Loading...

	unknown	50 B	2023-04-19	2024-04-24
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-19 15:34:27 Last Seen2024-04-24 23:55:15 Times Seen146 Hash f20e6303bdc4e1cec13e19a3004e99b4 b1a46e8f841e7536bb20d0d2a0a983ac3bfdbdff c36fd88ed0eec88f12e867b5ff7073729fc08938af0adf39a4cc8ca71dd179de Loading...

	122.116.47.137/common/DTL_formatFinder.js	3.3 kB	2023-03-07	2024-04-24
Pretty URL 122.116.47.137/common/DTL_formatFinder.js IP 122.116.47.137 ASN #3462 Data Communication Business Group Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:39 Last Seen2024-04-24 23:55:15 Times Seen42 Hash 7f1c84799400e39f30d41b781e4a83a5 4ddab071b667ab9066a62555da3681d47fce3f7b edb8d07d3a94ba6c252720c4779287bc040d0170ba8400910b60c70465290d5c Loading...

	122.116.47.137/	19 B	2023-03-07	2024-04-24
Pretty URL 122.116.47.137/ IP 122.116.47.137 ASN #3462 Data Communication Business Group Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:10:39 Last Seen2024-04-24 23:55:15 Times Seen48 Hash 0b07371eebdb6577a60a1cc8381bc103 ce8f6a25fc3125ad93e3740be12e75e6b9d8cfa8 c24b924e9e7000e544c9aeade1f27a9528dc03c5361ff2635b028a6c3daabd75 Loading...

	122.116.47.137/login.html	8.7 kB	2023-03-07	2024-04-24
Pretty URL 122.116.47.137/login.html IP 122.116.47.137 ASN #3462 Data Communication Business Group Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 13:03:30 Last Seen2024-04-24 23:55:15 Times Seen23 Hash 8dbb6a2b0d8988060edcd80a3d9e9ec4 5b921b2829ee162a5774adec55d21955fffc0bd6 bebd333f41853df4b24f498caf9a4a7adbf49f705cb6fa74ce96d9107ffe5ef0 Loading...

		Size	First Seen	Last Seen
	#1 Write - 1b4e3042e189a6176bcb153ec8a6e35f	140 B	2023-03-07	2024-04-24
Pretty Observations First Seen2023-03-07 13:03:30 Last Seen2024-04-24 23:55:15 Times Seen14 Hash 1b4e3042e189a6176bcb153ec8a6e35f cf80c5e66898d94fc50ab3b312df9e945e2032da 4da9f13cecf67dc7f7ac182d1b8935f84b6261ce91e183e1379bd43e0694454f Loading...

	#2 Write - ab3a2f8094840841f949a325a85d949c	10 B	2023-03-07	2024-04-24
Pretty Observations First Seen2023-03-07 01:10:39 Last Seen2024-04-24 23:55:15 Times Seen48 Hash ab3a2f8094840841f949a325a85d949c c026c405bce52a1a24ed7c355babe50cf3cddb32 4af04c3cdc75c30fafd71d1a3b1b0389d578d514724c7b5a92f8fb94840191c8 Loading...

	#3 Write - 4bc0e2470b85088d815a73ef2fa92379	190 B	2023-03-07	2024-04-24
Pretty Observations First Seen2023-03-07 13:03:30 Last Seen2024-04-24 23:55:15 Times Seen13 Hash 4bc0e2470b85088d815a73ef2fa92379 38ed57f87ab3641697d9026308b96beb6c9fbd25 882ae28bb3c5c43177c5aa09e24dbdea60e6fe93caf38c5588b8b6b585de8a57 Loading...

HTTP Transactions (18)

URL IP Response Size

122.116.47.137/common/Jq/jquery-1.6.2.min.js

122.116.47.137

200 OK

92 kB

URL GET HTTP/1.1
122.116.47.137/common/Jq/jquery-1.6.2.min.js
IP
122.116.47.137:80
ASN
#3462 Data Communication Business Group

Requested by
http://122.116.47.137/

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (32764)
Size
92 kB (91647 bytes)
Hash
74549a38a258f702c8bacf1506b9ceda
fa7d1e4e21a467c042f50ef954b2f2bc50468e18
0ed08e556d1d14d423bac619236037f1fa5310c50b04bbc2740690eef00e94e3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /common/Jq/jquery-1.6.2.min.js HTTP/1.1
Host: 122.116.47.137
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://122.116.47.137/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 06:09:55 GMT
Last-Modified: Tue, 16 Sep 2014 14:04:02 GMT
Content-Type: application/x-javascript
Cache-Control: no-cache
Connection: close

122.116.47.137/common/Lang_en.js

122.116.47.137

200 OK

389 kB

URL GET HTTP/1.1
122.116.47.137/common/Lang_en.js
IP
122.116.47.137:80
ASN
#3462 Data Communication Business Group

Requested by
http://122.116.47.137/

File type
CSV text
Size
389 kB (388625 bytes)
Hash
eb5003d25a10cff82faeae0fdd7c2001
97d06c72d8da556bd1da3dd6cff1d856611d81fb
cecb6eea6b188e284a2a3fa5ded58ec4b8af919b582dfbd82205256bcca350ab

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /common/Lang_en.js HTTP/1.1
Host: 122.116.47.137
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://122.116.47.137/login.html
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 06:09:58 GMT
Last-Modified: Fri, 21 Apr 2017 16:33:52 GMT
Content-Type: application/x-javascript
Cache-Control: no-cache
Connection: close

122.116.47.137/common/Vlc/plugin_detect.js

122.116.47.137

200 OK

12 kB

URL GET HTTP/1.1
122.116.47.137/common/Vlc/plugin_detect.js
IP
122.116.47.137:80
ASN
#3462 Data Communication Business Group

Requested by
http://122.116.47.137/login.html

File type
data
Size
12 kB (12185 bytes)
Hash
31c187d609ab49166f2f44f8fbaf8f24
4cd7f18743acf4ee771452737df99e0c59b16e80
9d1cd694f09b6e4f25445d7af87e9b0ad36b63d6edf920d28ad361b0971b27b7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /common/Vlc/plugin_detect.js HTTP/1.1
Host: 122.116.47.137
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://122.116.47.137/login.html
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 06:09:58 GMT
Last-Modified: Tue, 16 Sep 2014 14:04:04 GMT
Content-Type: application/x-javascript
Cache-Control: no-cache
Connection: close

122.116.47.137/css/login.css

122.116.47.137

200 OK

399 B

URL GET HTTP/1.1
122.116.47.137/css/login.css
IP
122.116.47.137:80
ASN
#3462 Data Communication Business Group

Requested by
http://122.116.47.137/login.html

File type
ASCII text, with very long lines (461), with no line terminators
Size
399 B (399 bytes)
Hash
c2e3a84291fdbf5b38d20c197ad99141
d00e2cf40f596ef06e48fa0ac968363a05d27a24
2aca81dd63e1f7e11e6c161c8ca00d7a1fb85271239fd27d26ce9aee46cc0501

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/login.css HTTP/1.1
Host: 122.116.47.137
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://122.116.47.137/login.html
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 06:09:58 GMT
Last-Modified: Tue, 07 Mar 2017 10:14:32 GMT
Content-Type: text/css
Cache-Control: no-cache
Connection: close

122.116.47.137/common/DTL_formatFinder.js

122.116.47.137

200 OK

3.3 kB

URL GET HTTP/1.1
122.116.47.137/common/DTL_formatFinder.js
IP
122.116.47.137:80
ASN
#3462 Data Communication Business Group

Requested by
http://122.116.47.137/login.html

File type
ASCII text, with very long lines (4220), with no line terminators
Size
3.3 kB (3337 bytes)
Hash
53d517f5a1ae2836524c32560f53f169
89c67014e45c45466bac3b552da4292913458766
4f0f4f67856cf0f9fee3a66b137e4033b90406e3756de3045ca3fb60d3fb6da5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /common/DTL_formatFinder.js HTTP/1.1
Host: 122.116.47.137
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://122.116.47.137/login.html
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 06:09:58 GMT
Last-Modified: Tue, 16 Sep 2014 14:04:02 GMT
Content-Type: application/x-javascript
Cache-Control: no-cache
Connection: close

122.116.47.137/device_info.xml

122.116.47.137

200 OK

5.7 kB

URL GET HTTP/1.1
122.116.47.137/device_info.xml
IP
122.116.47.137:80
ASN
#3462 Data Communication Business Group

Requested by
http://122.116.47.137/

File type
ASCII text, with very long lines (6517), with no line terminators
Size
5.7 kB (5725 bytes)
Hash
d7cca0b7e8b4de6786c4155728d15bb6
595a742a7ad6fb5ccea490ab28a8c0443743aa6e
233b4b44bddb66c24b872679d51f498aea8f39e50605105de80f079c9b7cc914

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /device_info.xml HTTP/1.1
Host: 122.116.47.137
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: text/xml
DNT: 1
Connection: keep-alive
Referer: http://122.116.47.137/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 06:10:03 GMT
Last-Modified: Fri, 19 Aug 2022 03:31:31 GMT
Content-Type: text/xml
Cache-Control: no-cache
Connection: close

122.116.47.137/favicon.ico

122.116.47.137

404 Not Found

91 B

URL GET HTTP/1.1
122.116.47.137/favicon.ico
IP
122.116.47.137:80
ASN
#3462 Data Communication Business Group

Requested by
http://122.116.47.137/

File type
HTML document, ASCII text, with no line terminators
Size
91 B (91 bytes)
Hash
568dce84b1ae1612432f391cd2ee7ce5
68fa8654a8b08f591947eae472d842e1f3d8f37c
32bf4504dd4ce27661c243703910171bf85e25e777ef48520725b6f1995a73d1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: 122.116.47.137
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://122.116.47.137/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Thu, 25 Apr 2024 06:09:57 GMT
Content-type: text/html
Content-Length: 91
Connection: close

122.116.47.137/login.html

122.116.47.137

200 OK

13 kB

URL GET HTTP/1.1
122.116.47.137/login.html
IP
122.116.47.137:80
ASN
#3462 Data Communication Business Group

Requested by
http://122.116.47.137/

File type
HTML document, ASCII text, with CRLF line terminators
Size
13 kB (12989 bytes)
Hash
3f5338c8d9fa5a541337df8af0b605de
82c8a644ba81f832073bb37179119d19c8023635
e66a5ebf457deb8aa03f093934777bd1894b2cd7ba1aaf144d0e741292c1c8cc

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /login.html HTTP/1.1
Host: 122.116.47.137
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://122.116.47.137/
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 06:09:57 GMT
Last-Modified: Tue, 07 Mar 2017 10:14:34 GMT
Content-Type: text/html
Cache-Control: no-cache
Connection: close

122.116.47.137/image/menu/apply_up1.png

122.116.47.137

200 OK

504 B

URL GET HTTP/1.1
122.116.47.137/image/menu/apply_up1.png
IP
122.116.47.137:80
ASN
#3462 Data Communication Business Group

Requested by
http://122.116.47.137/login.html

File type
PNG image data, 106 x 24, 8-bit/color RGBA, non-interlaced
Size
504 B (504 bytes)
Hash
6ee30c5284e0d7c6825ef2b6febcbe6b
0f6882a5d77e3d90d442a67bcb9355deaf7b04ad
49023c06319344068635ba9c0488eade717227aff15d68ff3c427cfd78215e9a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /image/menu/apply_up1.png HTTP/1.1
Host: 122.116.47.137
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://122.116.47.137/login.html
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 06:10:01 GMT
Last-Modified: Tue, 07 Mar 2017 10:14:22 GMT
Content-Type: image/png
Connection: close

122.116.47.137/common/ParseLang.js

122.116.47.137

200 OK

883 B

URL GET HTTP/1.1
122.116.47.137/common/ParseLang.js
IP
122.116.47.137:80
ASN
#3462 Data Communication Business Group

Requested by
http://122.116.47.137/login.html

File type
ASCII text, with very long lines (1068), with no line terminators
Size
883 B (883 bytes)
Hash
25b22f522099dc4096f43aa6e5eda499
78ce48982f0718bc6baf628164d124a654248602
b290413713ed544c3e600c207057ade4ff1ef3f3c0efdf4bb8fd6dfb568a9ffb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /common/ParseLang.js HTTP/1.1
Host: 122.116.47.137
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://122.116.47.137/login.html
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 06:09:58 GMT
Last-Modified: Tue, 16 Sep 2014 14:04:04 GMT
Content-Type: application/x-javascript
Cache-Control: no-cache
Connection: close

122.116.47.137/device_info.xml

122.116.47.137

200 OK

5.7 kB

URL GET HTTP/1.1
122.116.47.137/device_info.xml
IP
122.116.47.137:80
ASN
#3462 Data Communication Business Group

Requested by
http://122.116.47.137/

File type
ASCII text, with very long lines (6517), with no line terminators
Size
5.7 kB (5725 bytes)
Hash
d7cca0b7e8b4de6786c4155728d15bb6
595a742a7ad6fb5ccea490ab28a8c0443743aa6e
233b4b44bddb66c24b872679d51f498aea8f39e50605105de80f079c9b7cc914

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /device_info.xml HTTP/1.1
Host: 122.116.47.137
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: text/xml
DNT: 1
Connection: keep-alive
Referer: http://122.116.47.137/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 06:10:04 GMT
Last-Modified: Fri, 19 Aug 2022 03:31:31 GMT
Content-Type: text/xml
Cache-Control: no-cache
Connection: close

122.116.47.137/device_info.xml

122.116.47.137

200 OK

5.7 kB

URL GET HTTP/1.1
122.116.47.137/device_info.xml
IP
122.116.47.137:80
ASN
#3462 Data Communication Business Group

Requested by
http://122.116.47.137/

File type
ASCII text, with very long lines (6517), with no line terminators
Size
5.7 kB (5725 bytes)
Hash
d7cca0b7e8b4de6786c4155728d15bb6
595a742a7ad6fb5ccea490ab28a8c0443743aa6e
233b4b44bddb66c24b872679d51f498aea8f39e50605105de80f079c9b7cc914

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /device_info.xml HTTP/1.1
Host: 122.116.47.137
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: text/xml
DNT: 1
Connection: keep-alive
Referer: http://122.116.47.137/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 06:10:15 GMT
Last-Modified: Fri, 19 Aug 2022 03:31:31 GMT
Content-Type: text/xml
Cache-Control: no-cache
Connection: close

122.116.47.137/

122.116.47.137

200 OK

23 kB

URL User Request GET HTTP/1.1
122.116.47.137/
IP
122.116.47.137:80
ASN
#3462 Data Communication Business Group

File type

Size
23 kB (22698 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: 122.116.47.137
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 06:09:55 GMT
Last-Modified: Mon, 25 Jun 2018 16:40:34 GMT
Content-Type: text/html
Cache-Control: no-cache
Connection: close

122.116.47.137/css/index.css

122.116.47.137

200 OK

241 B

URL GET HTTP/1.1
122.116.47.137/css/index.css
IP
122.116.47.137:80
ASN
#3462 Data Communication Business Group

Requested by
http://122.116.47.137/

File type
ASCII text, with no line terminators
Size
241 B (241 bytes)
Hash
82582ec703120c3f6f3b2067be55d342
0b3361fe79afe23d9489d1f067a61da777efa4b4
9d326e7a8e6a1c4d57c9e8a108ad11077c3c12e26b95e9e3caad9f0dc80f515b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/index.css HTTP/1.1
Host: 122.116.47.137
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://122.116.47.137/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 06:09:55 GMT
Last-Modified: Tue, 07 Mar 2017 10:14:32 GMT
Content-Type: text/css
Cache-Control: no-cache
Connection: close

122.116.47.137/common/ParseLang.js

122.116.47.137

200 OK

883 B

URL GET HTTP/1.1
122.116.47.137/common/ParseLang.js
IP
122.116.47.137:80
ASN
#3462 Data Communication Business Group

Requested by
http://122.116.47.137/

File type
ASCII text, with very long lines (1068), with no line terminators
Size
883 B (883 bytes)
Hash
25b22f522099dc4096f43aa6e5eda499
78ce48982f0718bc6baf628164d124a654248602
b290413713ed544c3e600c207057ade4ff1ef3f3c0efdf4bb8fd6dfb568a9ffb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /common/ParseLang.js HTTP/1.1
Host: 122.116.47.137
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://122.116.47.137/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 06:09:55 GMT
Last-Modified: Tue, 16 Sep 2014 14:04:04 GMT
Content-Type: application/x-javascript
Cache-Control: no-cache
Connection: close

122.116.47.137/common/Jq/jquery.alphanumeric.js

122.116.47.137

200 OK

1.5 kB

URL GET HTTP/1.1
122.116.47.137/common/Jq/jquery.alphanumeric.js
IP
122.116.47.137:80
ASN
#3462 Data Communication Business Group

Requested by
http://122.116.47.137/login.html

File type
JavaScript source, ASCII text, with very long lines (1841), with no line terminators
Size
1.5 kB (1455 bytes)
Hash
b84eb80cf75cdca63df4cb5cb5099c30
a7af52ebfb9680302223b697f8dc5d2c6ffba2a4
1ace32bfbec1076f9ae7017088d643100d44431681fa0346f867707d09211247

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /common/Jq/jquery.alphanumeric.js HTTP/1.1
Host: 122.116.47.137
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://122.116.47.137/login.html
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 06:09:58 GMT
Last-Modified: Tue, 16 Sep 2014 14:04:04 GMT
Content-Type: application/x-javascript
Cache-Control: no-cache
Connection: close

122.116.47.137/image/newUI/login_main.png

122.116.47.137

200 OK

92 kB

URL GET HTTP/1.1
122.116.47.137/image/newUI/login_main.png
IP
122.116.47.137:80
ASN
#3462 Data Communication Business Group

Requested by
http://122.116.47.137/login.html

File type
PNG image data, 544 x 343, 8-bit/color RGBA, non-interlaced
Size
92 kB (92352 bytes)
Hash
f4b2861ce743e061879a502f1297e783
5ab0045d6e3d8000a2b7b9dce06b799a35972289
bf33a334e6f7b70070421e4cb8ada5e5d0922f9166d466a61eb83a65d7e6c3e8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /image/newUI/login_main.png HTTP/1.1
Host: 122.116.47.137
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://122.116.47.137/login.html
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 06:10:01 GMT
Last-Modified: Tue, 07 Mar 2017 10:14:32 GMT
Content-Type: image/png
Connection: close

122.116.47.137/

0.0.0.0

0 B

URL User Request GET
122.116.47.137/
IP
0.0.0.0:0
ASN
#0

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: 122.116.47.137
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (18)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN