URL User Request GET HTTP/1.1IP 123.6.18.4:80
ASN#4837 CHINA UNICOM China169 Backbone
File typeHTML document, Unicode text, UTF-8 text Hash384586c946c047eb86bba1a545888c2d 5103ddcf25ddefcc1673726f1467602b5d2273c5 62c22f3fde89bff5dbb9ce174a1e98023dc20becf2729fd4d53268af1b294875
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 123.6.18.4
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 410 Gone
Server: NgxFence
Date: Fri, 10 May 2024 13:16:57 GMT
Content-Type: text/html
Content-Length: 4303
Connection: close
|
IP123.6.18.4:80 ASN#4837 CHINA UNICOM China169 Backbone
File typeHTML document, ASCII text, with CRLF line terminators Hash9fc869ee0dd9b2338a9e832f5a9721be c47ed8e229ac81bef67251091647e752df42b380 d3bb3879af12470dbae7e58ec1c95c3623c0b2ab92501b76313b9e504108d747
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: 123.6.18.4
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://123.6.18.4/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Server: NgxFence
Date: Fri, 10 May 2024 13:16:58 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip
|
| libs.jshub.com/font-awesome/5.10.0-12/webfonts/fa-solid-900.woff2 |  122.10.221.10 | 200 OK | 75 kB |
URL GET HTTP/2libs.jshub.com/font-awesome/5.10.0-12/webfonts/fa-solid-900.woff2 IP122.10.221.10:443
CertificateIssuerLet's Encrypt Subject*.jshub.com Fingerprint2A:B5:A6:3F:54:15:4E:99:04:81:3F:B8:AB:2E:50:7F:A0:E7:A5:DC ValidityThu, 22 Feb 2024 05:17:22 GMT - Wed, 22 May 2024 05:17:21 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 75388, version 330.15728 Hash8c4c207eb242cc9e1812d2b87671d720 94d5d0723d5407fa263d2c9d09a53b619c8fd239 f2949cd5ce820f0cef3fb73e4e500de19bf07d37ba16e3cdead66009758896a1
GET /font-awesome/5.10.0-12/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: libs.jshub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://123.6.18.4
DNT: 1
Connection: keep-alive
Referer: https://libs.jshub.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: NgxFence
date: Fri, 10 May 2024 13:16:59 GMT
content-type: application/octet-stream
content-length: 75388
last-modified: Sat, 08 May 2021 06:52:50 GMT
etag: "60963542-1267c"
expires: Mon, 08 Apr 2024 10:25:38 GMT
cache-control: max-age=604800
access-control-allow-origin: *
timing-allow-origin: *
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
| libs.jshub.com/font-awesome/5.10.0-12/css/fontawesome.min.css | 122.10.221.10 | 200 OK | 55 kB |
URL GET HTTP/2libs.jshub.com/font-awesome/5.10.0-12/css/fontawesome.min.css IP122.10.221.10:443
CertificateIssuerLet's Encrypt Subject*.jshub.com Fingerprint2A:B5:A6:3F:54:15:4E:99:04:81:3F:B8:AB:2E:50:7F:A0:E7:A5:DC ValidityThu, 22 Feb 2024 05:17:22 GMT - Wed, 22 May 2024 05:17:21 GMT
File typeASCII text, with very long lines (54863) Hash5c045b693ba1a430cf485edb1ed18001 d76ec28f4513960890693c7fb00dd753d4af48cd 30b1069dd2957763248b73c6f2bb82794e1b22a625cd4084537a41c70373042f
GET /font-awesome/5.10.0-12/css/fontawesome.min.css HTTP/1.1
Host: libs.jshub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://123.6.18.4/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: NgxFence
date: Fri, 10 May 2024 13:16:58 GMT
content-type: text/css
last-modified: Sat, 08 May 2021 06:52:50 GMT
etag: W/"60963542-d70c"
expires: Mon, 08 Apr 2024 10:25:37 GMT
cache-control: max-age=604800
access-control-allow-origin: *
timing-allow-origin: *
x-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
|
| libs.jshub.com/font-awesome/5.10.0-12/css/solid.min.css | 122.10.221.10 | 200 OK | 671 B |
URL GET HTTP/2libs.jshub.com/font-awesome/5.10.0-12/css/solid.min.css IP122.10.221.10:443
CertificateIssuerLet's Encrypt Subject*.jshub.com Fingerprint2A:B5:A6:3F:54:15:4E:99:04:81:3F:B8:AB:2E:50:7F:A0:E7:A5:DC ValidityThu, 22 Feb 2024 05:17:22 GMT - Wed, 22 May 2024 05:17:21 GMT
File typeASCII text, with very long lines (689), with no line terminators Hash8c61015bad8efc53e686b7836a359ddc 725319cd18a0ac061b6af880aed2d705921152d9 a281f967e4a9f7361ebe8dd09ef0ae530ccd5034ff64b21a510820775a6bed52
GET /font-awesome/5.10.0-12/css/solid.min.css HTTP/1.1
Host: libs.jshub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://123.6.18.4/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: NgxFence
date: Fri, 10 May 2024 13:16:58 GMT
content-type: text/css
last-modified: Sat, 08 May 2021 06:52:50 GMT
etag: W/"60963542-29f"
expires: Mon, 08 Apr 2024 10:25:37 GMT
cache-control: max-age=604800
access-control-allow-origin: *
timing-allow-origin: *
x-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
|