| | 74.65.212.29 | 200 OK | 12 kB |
URL User Request GET HTTP/1.1IP74.65.212.29:80
File typeHTML document, Unicode text, UTF-8 text, with CRLF, LF line terminators Hashd33d6bde93083d3dce2324ad4b9de325 1425ec420f4f94ee1f744a14eda2672fd37737e1 fe06018e0e66052fe675e244e2723d9c0d1d1a2a4bf26f7d4e148a861aef66d3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 74.65.212.29
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/html
Content-Length: 12118
Date: Wed, 08 May 2024 21:16:52 GMT
Server: lighttpd
|
|
| 74.65.212.29/md5.js | 74.65.212.29 | 200 OK | 8.8 kB |
IP74.65.212.29:80
File typeASCII text, with CRLF line terminators Hash2e5d990219ab6b8280eb8330387a8f27 372b93f7c8f9623e93d904fcbff337c0b077ddcc 797675e04f714a8f53a91f2f29c6e6972b9e67dc09845a46ef934d7f4641c883
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /md5.js HTTP/1.1
Host: 74.65.212.29
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://74.65.212.29/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/javascript
Accept-Ranges: bytes
ETag: "1578996819"
Last-Modified: Thu, 09 Aug 2018 09:27:24 GMT
Content-Length: 8825
Date: Wed, 08 May 2024 21:16:52 GMT
Server: lighttpd
|
|
| 74.65.212.29/lang_conf.js?r=6383 | 74.65.212.29 | 200 OK | 3.5 kB |
URL GET HTTP/1.174.65.212.29/lang_conf.js?r=6383 IP74.65.212.29:80
File typeHTML document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators Hasha64b28370f3f2a63b5df078f010b0e4b e36f2606182bb0c3653c0dde058ab982891f10dd 4dd340c86e9afeb10aa4cc61255a475307404cc8162eef2ccc78f9c402dc32d1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /lang_conf.js?r=6383 HTTP/1.1
Host: 74.65.212.29
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://74.65.212.29/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/javascript
Accept-Ranges: bytes
ETag: "213554827"
Last-Modified: Thu, 09 Aug 2018 09:27:24 GMT
Content-Length: 3470
Date: Wed, 08 May 2024 21:16:53 GMT
Server: lighttpd
|
|
| 74.65.212.29/linux.css?r=6383 | 74.65.212.29 | 200 OK | 7.9 kB |
URL GET HTTP/1.174.65.212.29/linux.css?r=6383 IP74.65.212.29:80
File typetroff or preprocessor input, Unicode text, UTF-8 text, with CRLF line terminators Hash356ee4e95fcbab9be9f1a115cec9e2ba e7ee6507c6ecdbd48a71245b021f79f5177b1da8 0ad7569caa4bb6da4f2f585b49da9927946a24f513fed5c68c25b23e03c40cc4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /linux.css?r=6383 HTTP/1.1
Host: 74.65.212.29
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://74.65.212.29/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/css
Accept-Ranges: bytes
ETag: "1180473233"
Last-Modified: Thu, 09 Aug 2018 09:27:24 GMT
Content-Length: 7926
Date: Wed, 08 May 2024 21:16:53 GMT
Server: lighttpd
|
|
| 74.65.212.29/linux.js?r=6383 | 74.65.212.29 | 200 OK | 29 kB |
URL GET HTTP/1.174.65.212.29/linux.js?r=6383 IP74.65.212.29:80
File typeNon-ISO extended-ASCII text, with CRLF, NEL line terminators Hashc4b0a44220c22cf6578b8be281c53a62 29cfb7a06d0036b21cde5c943faaf1602f02afb9 219b43f56b0ac31445f55faadda7c15f9abbb143ff8c26a7f5256911dca24822
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /linux.js?r=6383 HTTP/1.1
Host: 74.65.212.29
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://74.65.212.29/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/javascript
Accept-Ranges: bytes
ETag: "96824392"
Last-Modified: Thu, 09 Aug 2018 09:27:24 GMT
Content-Length: 28979
Date: Wed, 08 May 2024 21:16:53 GMT
Server: lighttpd
|
|
| 74.65.212.29/images/login_bg01.png | 74.65.212.29 | 200 OK | 1.1 kB |
URL GET HTTP/1.174.65.212.29/images/login_bg01.png IP74.65.212.29:80
File typePNG image data, 11 x 15, 8-bit colormap, non-interlaced Hashad99169d7608e012c6acabdb12cc1d9a 3d71a0fbc5527f5b541eadd537c43d940727a7d3 fe87ded3fc54318e6c9f1e531fc6a5572e9dc26903887869cea63f10fb7c5b41
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/login_bg01.png HTTP/1.1
Host: 74.65.212.29
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://74.65.212.29/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: image/png
Accept-Ranges: bytes
ETag: "4052850179"
Last-Modified: Thu, 09 Aug 2018 09:27:24 GMT
Content-Length: 1091
Date: Wed, 08 May 2024 21:16:53 GMT
Server: lighttpd
|
|
| 74.65.212.29/images/login_lang.png | 74.65.212.29 | 200 OK | 1.3 kB |
URL GET HTTP/1.174.65.212.29/images/login_lang.png IP74.65.212.29:80
File typePNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced Hash220a30eb26bda246dbb017db9e31d059 34f40a0f51bf56bf4a8a39b06953b149862ea81d 27aca3d329631295824743b1d2eced18a62027f85b0207afb3891bba1caae659
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/login_lang.png HTTP/1.1
Host: 74.65.212.29
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://74.65.212.29/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: image/png
Accept-Ranges: bytes
ETag: "1431868933"
Last-Modified: Thu, 09 Aug 2018 09:27:24 GMT
Content-Length: 1338
Date: Wed, 08 May 2024 21:16:53 GMT
Server: lighttpd
|
|
| 74.65.212.29/images/login_bg04.png | 74.65.212.29 | 200 OK | 1.1 kB |
URL GET HTTP/1.174.65.212.29/images/login_bg04.png IP74.65.212.29:80
File typePNG image data, 11 x 15, 8-bit colormap, non-interlaced Hash34ae71dcec99e9a7ea2eb31a589dd7dd be136cee06b6f649a24778ccde16c7011d94626f f144ede7a8d092ef2f97457c8c934daf24f1a1b5cb9a00ea19f396ec557094f6
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/login_bg04.png HTTP/1.1
Host: 74.65.212.29
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://74.65.212.29/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: image/png
Accept-Ranges: bytes
ETag: "3986200067"
Last-Modified: Thu, 09 Aug 2018 09:27:24 GMT
Content-Length: 1090
Date: Wed, 08 May 2024 21:16:53 GMT
Server: lighttpd
|
|
| 74.65.212.29/images/login_bg02.png | 74.65.212.29 | 200 OK | 1.1 kB |
URL GET HTTP/1.174.65.212.29/images/login_bg02.png IP74.65.212.29:80
File typePNG image data, 11 x 15, 8-bit colormap, non-interlaced Hash7df8076314884b0e8b4e901ec081743c 076fae39d5799e1f71c4a0a3bb7df8fd8201f736 cbd11391bffac92510981bf5c95691ddbe65d329a797bcdd48cfe2db6b058fa8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/login_bg02.png HTTP/1.1
Host: 74.65.212.29
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://74.65.212.29/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: image/png
Accept-Ranges: bytes
ETag: "3977876995"
Last-Modified: Thu, 09 Aug 2018 09:27:24 GMT
Content-Length: 1091
Date: Wed, 08 May 2024 21:16:53 GMT
Server: lighttpd
|
|
| 74.65.212.29/images/login_bg03.png | 74.65.212.29 | 200 OK | 1.1 kB |
URL GET HTTP/1.174.65.212.29/images/login_bg03.png IP74.65.212.29:80
File typePNG image data, 11 x 15, 8-bit colormap, non-interlaced Hashd217b43f65d33a34862e951bef54fef1 2b54023ed84c0f78a384a800f892c13a42396fec edb5168a5245eba5f23e78960b7dfd381efaa2503786157e9367beeea6f564b9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/login_bg03.png HTTP/1.1
Host: 74.65.212.29
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://74.65.212.29/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: image/png
Accept-Ranges: bytes
ETag: "4028274179"
Last-Modified: Thu, 09 Aug 2018 09:27:24 GMT
Content-Length: 1091
Date: Wed, 08 May 2024 21:16:53 GMT
Server: lighttpd
|
|
| 74.65.212.29/images/space.gif | 74.65.212.29 | 200 OK | 45 B |
URL GET HTTP/1.174.65.212.29/images/space.gif IP74.65.212.29:80
File typeGIF image data, version 89a, 5 x 5 Hash2ae3c8f1f6f6ae7d3bb5dacac38a2243 37fee1af4fb584061dd745aff6e61af0b0bd3238 4c17b5fc0b8aec443c6ff4a4bf28bad201f59a99f571bd63a3618d67a6fa3b89
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/space.gif HTTP/1.1
Host: 74.65.212.29
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://74.65.212.29/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: image/gif
Accept-Ranges: bytes
ETag: "3910881017"
Last-Modified: Thu, 09 Aug 2018 09:27:24 GMT
Content-Length: 45
Date: Wed, 08 May 2024 21:16:53 GMT
Server: lighttpd
|
|
| 74.65.212.29/images/login_passwd.png | 74.65.212.29 | 200 OK | 1.1 kB |
URL GET HTTP/1.174.65.212.29/images/login_passwd.png IP74.65.212.29:80
File typePNG image data, 18 x 20, 8-bit/color RGBA, non-interlaced Hash1ace4306385ffd1eb7629540bf26e6a1 26d746e38c24691d9bfa5cf5862d1c6464ebf454 dfe545596a3db17b28e58bf3e7d99834d1e0fca0b12b852f2a45bdd50f336448
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/login_passwd.png HTTP/1.1
Host: 74.65.212.29
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://74.65.212.29/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: image/png
Accept-Ranges: bytes
ETag: "2136839681"
Last-Modified: Thu, 09 Aug 2018 09:27:24 GMT
Content-Length: 1105
Date: Wed, 08 May 2024 21:16:53 GMT
Server: lighttpd
|
|
| 74.65.212.29/lang2_en.js?r=GetRandomn | 74.65.212.29 | 200 OK | 28 kB |
URL GET HTTP/1.174.65.212.29/lang2_en.js?r=GetRandomn IP74.65.212.29:80
File typeHTML document, ASCII text, with very long lines (480), with CRLF line terminators Hashfe32eebf18af6948dcafc22607b21dc3 c9fe7829b3cb9a675cc6051b7a5c904a08fd3ddf 1a9a50e4c90b4f9305439306478ac71b90ac5196476983fd9159d67630f78d99
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /lang2_en.js?r=GetRandomn HTTP/1.1
Host: 74.65.212.29
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://74.65.212.29/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/javascript
Accept-Ranges: bytes
ETag: "1141206098"
Last-Modified: Thu, 09 Aug 2018 09:27:24 GMT
Content-Length: 28433
Date: Wed, 08 May 2024 21:16:53 GMT
Server: lighttpd
|
|
| 74.65.212.29/images/STANDARD-logo.png | 74.65.212.29 | 200 OK | 1.0 kB |
URL GET HTTP/1.174.65.212.29/images/STANDARD-logo.png IP74.65.212.29:80
File typePNG image data, 167 x 131, 4-bit colormap, non-interlaced Hash36e668975161f622b1f64220a37ee585 0c811e25b3400a905050691a6506af66f170d227 98aea1f992ddfe7b95f11fb89387900ae46050f864d8314ffef2cea7660d3988
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/STANDARD-logo.png HTTP/1.1
Host: 74.65.212.29
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://74.65.212.29/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: image/png
Accept-Ranges: bytes
ETag: "1388156419"
Last-Modified: Thu, 09 Aug 2018 09:27:24 GMT
Content-Length: 1036
Date: Wed, 08 May 2024 21:16:53 GMT
Server: lighttpd
|
|
| 74.65.212.29/images/JETSTREAM-logo.gif | 74.65.212.29 | 200 OK | 2.1 kB |
URL GET HTTP/1.174.65.212.29/images/JETSTREAM-logo.gif IP74.65.212.29:80
File typePNG image data, 218 x 44, 8-bit/color RGBA, non-interlaced Hashd8a24c673b94c42a00021cb06afc4cc1 214e22e646c1e5b730a7d97d5928404fecf991d7 47f88a175990a946418420ac1451e80b15e41db6fb33ad3140d89294c1521776
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/JETSTREAM-logo.gif HTTP/1.1
Host: 74.65.212.29
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://74.65.212.29/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: image/gif
Accept-Ranges: bytes
ETag: "1409193665"
Last-Modified: Thu, 09 Aug 2018 09:27:24 GMT
Content-Length: 2134
Date: Wed, 08 May 2024 21:16:53 GMT
Server: lighttpd
|
|
| 74.65.212.29/images/shouye_1_02_02.jpg | 74.65.212.29 | 200 OK | 17 kB |
URL GET HTTP/1.174.65.212.29/images/shouye_1_02_02.jpg IP74.65.212.29:80
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 640x1033, components 3 Hashd7499fb20c8b60d207effe89017147b5 77586f51a8919fbafc601088bfcf6f9821bced50 52fbc19dbe4c1d5eee7b8855425347b9cf9762a4c40b402f37fd136f36ad32e2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/shouye_1_02_02.jpg HTTP/1.1
Host: 74.65.212.29
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://74.65.212.29/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: image/jpeg
Accept-Ranges: bytes
ETag: "1258649545"
Last-Modified: Thu, 09 Aug 2018 09:27:24 GMT
Content-Length: 16827
Date: Wed, 08 May 2024 21:16:53 GMT
Server: lighttpd
|
|
| 74.65.212.29/favicon.ico | 74.65.212.29 | 200 OK | 1.2 kB |
IP74.65.212.29:80
File typeMS Windows icon resource - 1 icon, 16x16, 32 bits/pixel Hashfa55edbee865f534f67745674b3fabea 806d4976b8227736e7dfbd9475547dee4e74a46c 4d844a31cac428fa97126cfd381cac6a5482474b71bf70b3d59ccc768d5f5b84
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: 74.65.212.29
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://74.65.212.29/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/octet-stream
Accept-Ranges: bytes
ETag: "748262913"
Last-Modified: Thu, 09 Aug 2018 09:27:24 GMT
Content-Length: 1150
Date: Wed, 08 May 2024 21:16:53 GMT
Server: lighttpd
|
|