Report - www.dyfamen.com/famenjishuzhishi/148.html

Report Overview

Submitted URL
www.dyfamen.com/famenjishuzhishi/148.html
IP
118.123.4.226
ASN
#4134 Chinanet
Submitted
2024-04-24 09:37:16
Access
public
Website Title
气动阀门故障位置（FO、FC、FL）的解释说明
Final URL
www.dyfamen.com/famenjishuzhishi/148.html
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
60

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.dyfamen.com	unknown	unknown	No data	No data	12 kB	782 kB	118.123.4.226

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-24	medium	dyfamen.com	Sinkholed
2024-04-24	medium	dyfamen.com	Sinkholed
2024-04-24	medium	dyfamen.com	Sinkholed
2024-04-24	medium	dyfamen.com	Sinkholed
2024-04-24	medium	dyfamen.com	Sinkholed
2024-04-24	medium	dyfamen.com	Sinkholed
2024-04-24	medium	dyfamen.com	Sinkholed
2024-04-24	medium	dyfamen.com	Sinkholed
2024-04-24	medium	dyfamen.com	Sinkholed
2024-04-24	medium	dyfamen.com	Sinkholed
2024-04-24	medium	dyfamen.com	Sinkholed
2024-04-24	medium	dyfamen.com	Sinkholed
2024-04-24	medium	dyfamen.com	Sinkholed
2024-04-24	medium	dyfamen.com	Sinkholed
2024-04-24	medium	dyfamen.com	Sinkholed
2024-04-24	medium	dyfamen.com	Sinkholed
2024-04-24	medium	dyfamen.com	Sinkholed
2024-04-24	medium	dyfamen.com	Sinkholed
2024-04-24	medium	dyfamen.com	Sinkholed
2024-04-24	medium	dyfamen.com	Sinkholed
2024-04-24	medium	dyfamen.com	Sinkholed
2024-04-24	medium	dyfamen.com	Sinkholed
2024-04-24	medium	dyfamen.com	Sinkholed
2024-04-24	medium	dyfamen.com	Sinkholed
2024-04-24	medium	dyfamen.com	Sinkholed
2024-04-24	medium	dyfamen.com	Sinkholed
2024-04-24	medium	dyfamen.com	Sinkholed
2024-04-24	medium	dyfamen.com	Sinkholed
2024-04-24	medium	dyfamen.com	Sinkholed
2024-04-24	medium	dyfamen.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (8)

	URL	Size	First Seen	Last Seen
	www.dyfamen.com/famenjishuzhishi/148.html	589 B	2024-04-24	2024-04-24
Pretty URL www.dyfamen.com/famenjishuzhishi/148.html IP 118.123.4.226 ASN #4134 Chinanet Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-24 11:37:24 Last Seen2024-04-24 11:37:24 Times Seen1 Hash 28f030ba0aabb1a863f74003073153e4 df388b84757ee03db8f9c0bf8ebaf935802c5bc7 7b0adbf686b9b06ee83d7b3583fa66ff4e89cd986e98b708d13f45031163cac5 Loading...

	www.dyfamen.com/template/pc/skin/js/jquery.min.js	95 kB	2023-03-09	2024-04-24
Pretty URL www.dyfamen.com/template/pc/skin/js/jquery.min.js IP 118.123.4.226 ASN #4134 Chinanet Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 22:32:17 Last Seen2024-04-24 11:37:24 Times Seen11 Hash d72b98d43ac2aaddc39d97a6ff69b5c8 19f420e569c20950ff8faa89a4337d7ea4633fed b0e61b2150028ee3f83a1c0336a5b3f409ad3c7c537fd4b6ce2c5eb255c7afc2 Loading...

	www.dyfamen.com/template/pc/skin/js/wow.min.js	8.4 kB	2023-03-07	2024-05-05
Pretty URL www.dyfamen.com/template/pc/skin/js/wow.min.js IP 118.123.4.226 ASN #4134 Chinanet Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:45 Last Seen2024-05-05 18:46:09 Times Seen3968 Hash 36050285bfeeb7395752f0f9bbc08273 5924f7bbbf1dfa3f0926851d01f782f23a59e805 0ec632e6ab02d4fdd514da7f5edc74aa28c9d4c71af76f1c8b93a1fba85bcc69 Loading...

	www.dyfamen.com/template/pc/skin/js/jquery.superslide.js	11 kB	2023-04-05	2024-05-03
Pretty URL www.dyfamen.com/template/pc/skin/js/jquery.superslide.js IP 118.123.4.226 ASN #4134 Chinanet Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 11:06:31 Last Seen2024-05-03 19:48:21 Times Seen725 Hash 0b9bc63ab05e21e3830da5bbb4ccee67 d162156bdaf14217d76d920e0e57b86d8feb1d97 349e46b2c65028736d0bbff7b829c7fc6fbdebc1fb1e8b12365a0ca2e6e9e848 Loading...

	www.dyfamen.com/template/pc/skin/js/js.js	2.6 kB	2024-04-24	2024-04-24
Pretty URL www.dyfamen.com/template/pc/skin/js/js.js IP 118.123.4.226 ASN #4134 Chinanet Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 11:37:24 Last Seen2024-04-24 11:37:24 Times Seen2 Hash 162058ad8c45392cd698a92326eef0fb 88c2685ec6c2aacc5b1c6bfd919179a30d29d08e a56cadc7589aca7e3d440029439f3c09096e029149bdaf4d0674ddad9c3bae41 Loading...

	www.dyfamen.com/famenjishuzhishi/148.html	18 B	2024-04-24	2024-04-24
Pretty URL www.dyfamen.com/famenjishuzhishi/148.html IP 118.123.4.226 ASN #4134 Chinanet Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-24 11:37:24 Last Seen2024-04-24 11:37:24 Times Seen1 Hash 9ed9c4f2db5378c7bb6a39137786d618 ee9da817e0a3eea6eeeeb46edb27712157a66efa 1129d6f691da2bdac1e7d93aead15c66bae140af2d89f990aaf2acacd015f49f Loading...

	www.dyfamen.com/famenjishuzhishi/148.html	353 B	2024-04-24	2024-04-24
Pretty URL www.dyfamen.com/famenjishuzhishi/148.html IP 118.123.4.226 ASN #4134 Chinanet Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-24 11:37:24 Last Seen2024-04-24 11:37:24 Times Seen1 Hash 1bfb1e2e66e66a0262621da1c9c52f22 6cb5f564b28f278f7160d6518a9c0633967ed8a4 c6851e2c55c4b9cdf7cfe5526f4fab52291231e7c9c1ed147a0a19967b5bfd30 Loading...

	www.dyfamen.com/famenjishuzhishi/148.html	0 B	2023-03-07	2024-05-05
Pretty URL www.dyfamen.com/famenjishuzhishi/148.html IP 118.123.4.226 ASN #4134 Chinanet Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-05 23:48:13 Times Seen37371219 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

HTTP Transactions (30)

URL IP Response Size

www.dyfamen.com/famenjishuzhishi/148.html

118.123.4.226

6.1 kB

URL User Request GET
www.dyfamen.com/famenjishuzhishi/148.html
IP
118.123.4.226:0
ASN
#4134 Chinanet

File type
HTML document, Unicode text, UTF-8 text, with very long lines (5397), with CRLF, LF line terminators
Size
6.1 kB (6120 bytes)
Hash
60f9eba222506f269dff347fd11817bd
2913cd3ad8dd73d396bc9c0935a4bfc261da80b6
0e6ade2f49900fd7b97f2ab4ab7cba6c2d5406fdefd2538aa581804fb424f851

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /famenjishuzhishi/148.html HTTP/1.1
Host: www.dyfamen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: wts/1.6.4
Date: Wed, 24 Apr 2024 09:36:52 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"53ec-61580f5ddacf7"
X-Cache: BYPASS from WT263CDN
Content-Encoding: gzip

www.dyfamen.com/template/pc/skin/js/wow.min.js

118.123.4.226

200 OK

8.4 kB

URL GET HTTP/1.1
www.dyfamen.com/template/pc/skin/js/wow.min.js
IP
118.123.4.226:80
ASN
#4134 Chinanet

Requested by
http://www.dyfamen.com/famenjishuzhishi/148.html

File type
JavaScript source, ASCII text, with very long lines (8385)
Size
8.4 kB (8415 bytes)
Hash
36050285bfeeb7395752f0f9bbc08273
5924f7bbbf1dfa3f0926851d01f782f23a59e805
0ec632e6ab02d4fdd514da7f5edc74aa28c9d4c71af76f1c8b93a1fba85bcc69

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /template/pc/skin/js/wow.min.js HTTP/1.1
Host: www.dyfamen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dyfamen.com/famenjishuzhishi/148.html
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: wts/1.6.4
Date: Wed, 24 Apr 2024 09:36:53 GMT
Content-Type: text/javascript
Content-Length: 8415
Connection: keep-alive
Last-Modified: Thu, 13 Feb 2020 01:51:14 GMT
ETag: "20df-59e6b52f48880"
Accept-Ranges: bytes

www.dyfamen.com/template/pc/skin/js/jquery.superslide.js

118.123.4.226

200 OK

11 kB

URL GET HTTP/1.1
www.dyfamen.com/template/pc/skin/js/jquery.superslide.js
IP
118.123.4.226:80
ASN
#4134 Chinanet

Requested by
http://www.dyfamen.com/famenjishuzhishi/148.html

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (11013), with CRLF line terminators
Size
11 kB (11422 bytes)
Hash
cd674d9e02f20426d9acf1d11c85539b
74ab51a432e33698a7a627f05baf749472b72cc3
496bdf2635c9f9494f51d0ba63c8a43e5b6dfb7c88b4426e6a56f577d945e3e9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /template/pc/skin/js/jquery.superslide.js HTTP/1.1
Host: www.dyfamen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dyfamen.com/famenjishuzhishi/148.html
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: wts/1.6.4
Date: Wed, 24 Apr 2024 09:36:53 GMT
Content-Type: text/javascript
Content-Length: 11422
Connection: keep-alive
Last-Modified: Thu, 13 Feb 2020 01:51:14 GMT
ETag: "2c9e-59e6b52f48880"
Accept-Ranges: bytes

www.dyfamen.com/template/pc/skin/js/js.js

118.123.4.226

200 OK

2.6 kB

URL GET HTTP/1.1
www.dyfamen.com/template/pc/skin/js/js.js
IP
118.123.4.226:80
ASN
#4134 Chinanet

Requested by
http://www.dyfamen.com/famenjishuzhishi/148.html

File type
JavaScript source, Unicode text, UTF-8 text, with CRLF line terminators
Size
2.6 kB (2577 bytes)
Hash
162058ad8c45392cd698a92326eef0fb
88c2685ec6c2aacc5b1c6bfd919179a30d29d08e
a56cadc7589aca7e3d440029439f3c09096e029149bdaf4d0674ddad9c3bae41

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /template/pc/skin/js/js.js HTTP/1.1
Host: www.dyfamen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dyfamen.com/famenjishuzhishi/148.html
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: wts/1.6.4
Date: Wed, 24 Apr 2024 09:36:53 GMT
Content-Type: text/javascript
Content-Length: 2577
Connection: keep-alive
Last-Modified: Tue, 09 Nov 2021 10:04:54 GMT
ETag: "a11-5d0583dacfd80"
Accept-Ranges: bytes

www.dyfamen.com/template/pc/skin/css/animate.min.css

118.123.4.226

200 OK

65 kB

URL GET HTTP/1.1
www.dyfamen.com/template/pc/skin/css/animate.min.css
IP
118.123.4.226:80
ASN
#4134 Chinanet

Requested by
http://www.dyfamen.com/famenjishuzhishi/148.html

File type
ASCII text, with CRLF line terminators
Size
65 kB (65031 bytes)
Hash
2b349f185263bb7472e719a280f1e7e8
fff2e2c9749ea4e2e41c64d783e2f7a594629b26
a769b4f479044e16668ec4f14cd17649d0eaf5a40c7a3e55940fa724ce47375f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /template/pc/skin/css/animate.min.css HTTP/1.1
Host: www.dyfamen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dyfamen.com/famenjishuzhishi/148.html
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: wts/1.6.4
Date: Wed, 24 Apr 2024 09:36:53 GMT
Content-Type: text/css
Content-Length: 65031
Connection: keep-alive
Last-Modified: Wed, 22 Jul 2020 00:42:28 GMT
ETag: "fe07-5aafd03a2c500"
Accept-Ranges: bytes

www.dyfamen.com/template/pc/skin/js/jquery.min.js

118.123.4.226

200 OK

95 kB

URL GET HTTP/1.1
www.dyfamen.com/template/pc/skin/js/jquery.min.js
IP
118.123.4.226:80
ASN
#4134 Chinanet

Requested by
http://www.dyfamen.com/famenjishuzhishi/148.html

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (32773)
Size
95 kB (94854 bytes)
Hash
d72b98d43ac2aaddc39d97a6ff69b5c8
19f420e569c20950ff8faa89a4337d7ea4633fed
b0e61b2150028ee3f83a1c0336a5b3f409ad3c7c537fd4b6ce2c5eb255c7afc2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /template/pc/skin/js/jquery.min.js HTTP/1.1
Host: www.dyfamen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dyfamen.com/famenjishuzhishi/148.html
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: wts/1.6.4
Date: Wed, 24 Apr 2024 09:36:53 GMT
Content-Type: text/javascript
Content-Length: 94854
Connection: keep-alive
Last-Modified: Thu, 13 Feb 2020 01:51:14 GMT
ETag: "17286-59e6b52f48880"
Accept-Ranges: bytes

www.dyfamen.com/template/pc/skin/css/style.css

118.123.4.226

200 OK

48 kB

URL GET HTTP/1.1
www.dyfamen.com/template/pc/skin/css/style.css
IP
118.123.4.226:80
ASN
#4134 Chinanet

Requested by
http://www.dyfamen.com/famenjishuzhishi/148.html

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
48 kB (47586 bytes)
Hash
dbad65c539672d20d27b4a03a2f32c61
ff4567d513fd9f58bb64fae205507bd6bd1c35e8
fb0a179bb02b1a2e77c131d98f66c9fdca5eaaf6f9a948814f24701aba7e360f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /template/pc/skin/css/style.css HTTP/1.1
Host: www.dyfamen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dyfamen.com/famenjishuzhishi/148.html
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: wts/1.6.4
Date: Wed, 24 Apr 2024 09:36:53 GMT
Content-Type: text/css
Content-Length: 47586
Connection: keep-alive
Last-Modified: Thu, 08 Jun 2023 02:41:36 GMT
ETag: "b9e2-5fd9530e7b800"
Accept-Ranges: bytes

www.dyfamen.com/uploads/allimg/20230720/1-230H0213T3322.jpg

118.123.4.226

200 OK

34 kB

URL GET HTTP/1.1
www.dyfamen.com/uploads/allimg/20230720/1-230H0213T3322.jpg
IP
118.123.4.226:80
ASN
#4134 Chinanet

Requested by
http://www.dyfamen.com/famenjishuzhishi/148.html

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 750x750, components 3
Size
34 kB (33581 bytes)
Hash
29da6cde1fe361ea0fb71745047f8c7a
41ee86509741066227681b895a2c2b64e3e11faa
853dc04ca4e90fdb7be1348326758713cdf40908a9a77b5d845498cf8f7b31a6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/allimg/20230720/1-230H0213T3322.jpg HTTP/1.1
Host: www.dyfamen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dyfamen.com/famenjishuzhishi/148.html
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: wts/1.6.4
Date: Wed, 24 Apr 2024 09:36:55 GMT
Content-Type: image/jpeg
Content-Length: 33581
Connection: keep-alive
Last-Modified: Thu, 20 Jul 2023 13:38:43 GMT
ETag: "832d-600eb444c1266"
Accept-Ranges: bytes

www.dyfamen.com/template/pc/skin/images/head_top1.png

118.123.4.226

200 OK

185 B

URL GET HTTP/1.1
www.dyfamen.com/template/pc/skin/images/head_top1.png
IP
118.123.4.226:80
ASN
#4134 Chinanet

Requested by
http://www.dyfamen.com/famenjishuzhishi/148.html

File type
PNG image data, 14 x 34, 8-bit/color RGBA, non-interlaced
Size
185 B (185 bytes)
Hash
d705d7ba3800335d2a7f2aed154b964a
e19ccd5c2da2750c52d24230ff05366fb4c6eaf2
3f091969c4b7fd33f9f5d28321c3468f9e7d741a872d2e5daf3290945415ade9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /template/pc/skin/images/head_top1.png HTTP/1.1
Host: www.dyfamen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dyfamen.com/template/pc/skin/css/style.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: wts/1.6.4
Date: Wed, 24 Apr 2024 09:36:55 GMT
Content-Type: image/png
Content-Length: 185
Connection: keep-alive
Last-Modified: Thu, 13 Feb 2020 03:58:48 GMT
ETag: "b9-59e6d1b2b4e00"
Accept-Ranges: bytes

www.dyfamen.com/template/pc/skin/images/head_lbg.png

118.123.4.226

200 OK

1.4 kB

URL GET HTTP/1.1
www.dyfamen.com/template/pc/skin/images/head_lbg.png
IP
118.123.4.226:80
ASN
#4134 Chinanet

Requested by
http://www.dyfamen.com/famenjishuzhishi/148.html

File type
PNG image data, 68 x 98, 8-bit/color RGBA, non-interlaced
Size
1.4 kB (1353 bytes)
Hash
ae771fcedc1cc813e32e0d5287e4cb5b
d040c782aecf6311998e76cbba530497c922b28d
8d0bf30d95e5e3e0d5676d6a93b2562df2adb0592fb82e87daf673b76c8f0ba8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /template/pc/skin/images/head_lbg.png HTTP/1.1
Host: www.dyfamen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dyfamen.com/template/pc/skin/css/style.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: wts/1.6.4
Date: Wed, 24 Apr 2024 09:36:55 GMT
Content-Type: image/png
Content-Length: 1353
Connection: keep-alive
Last-Modified: Thu, 13 Feb 2020 04:45:02 GMT
ETag: "549-59e6dc0832f80"
Accept-Ranges: bytes

www.dyfamen.com/index.php?m=api&c=Ajax&a=arcclick&aid=148&type=view

118.123.4.226

200 OK

23 B

URL GET HTTP/1.1
www.dyfamen.com/index.php?m=api&c=Ajax&a=arcclick&aid=148&type=view
IP
118.123.4.226:80
ASN
#4134 Chinanet

Requested by
http://www.dyfamen.com/famenjishuzhishi/148.html

File type
ASCII text, with no line terminators
Size
23 B (23 bytes)
Hash
1bb91f73e9d31ea2830a5e73ce3ed328
9d6ad3cc125c3c4d07b17f6aac6ff9ebf9a338c8
dd8e8c8c9dae8978f122d7bcf3d0d49f6a0e86b9fc35528f55e78f7408927bb1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /index.php?m=api&c=Ajax&a=arcclick&aid=148&type=view HTTP/1.1
Host: www.dyfamen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Content-type: application/x-www-form-urlencoded
DNT: 1
Connection: keep-alive
Referer: http://www.dyfamen.com/famenjishuzhishi/148.html
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: wts/1.6.4
Date: Wed, 24 Apr 2024 09:36:55 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Pragma: no-cache
Cache-control: private
Set-Cookie: home_lang=cn; path=/
admin_lang=cn; path=/
PHPSESSID=ap2vo12b2rphvcs1h7rccs7tj2; path=/; HttpOnly
site_info=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Content-Encoding: gzip

www.dyfamen.com/template/pc/skin/images/tel.png

118.123.4.226

200 OK

1.9 kB

URL GET HTTP/1.1
www.dyfamen.com/template/pc/skin/images/tel.png
IP
118.123.4.226:80
ASN
#4134 Chinanet

Requested by
http://www.dyfamen.com/famenjishuzhishi/148.html

File type
PNG image data, 40 x 40, 8-bit/color RGBA, non-interlaced
Size
1.9 kB (1945 bytes)
Hash
b1a3fc5708b8cb0e0fa43035d2337266
56d40bd0e7bd49cd7826dc6ae5ba0af7b47f9a23
10344499309eddde216feac25d5885cab7249d607533603fecbebcbf2db1e090

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /template/pc/skin/images/tel.png HTTP/1.1
Host: www.dyfamen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dyfamen.com/template/pc/skin/css/style.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: wts/1.6.4
Date: Wed, 24 Apr 2024 09:36:55 GMT
Content-Type: image/png
Content-Length: 1945
Connection: keep-alive
Last-Modified: Thu, 13 Feb 2020 04:45:06 GMT
ETag: "799-59e6dc0c03880"
Accept-Ranges: bytes

www.dyfamen.com/template/pc/skin/images/nav_abg.png

118.123.4.226

200 OK

558 B

URL GET HTTP/1.1
www.dyfamen.com/template/pc/skin/images/nav_abg.png
IP
118.123.4.226:80
ASN
#4134 Chinanet

Requested by
http://www.dyfamen.com/famenjishuzhishi/148.html

File type
PNG image data, 20 x 66, 8-bit/color RGBA, non-interlaced
Size
558 B (558 bytes)
Hash
b23821156ce047749f4359509ced5189
0ca41af0673255fd139e3b44e25affc47b44d989
6ec169d69847e1b4aa97d0deb69a00ae033271ea3f97209275b74920725255e5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /template/pc/skin/images/nav_abg.png HTTP/1.1
Host: www.dyfamen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dyfamen.com/template/pc/skin/css/style.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: wts/1.6.4
Date: Wed, 24 Apr 2024 09:36:56 GMT
Content-Type: image/png
Content-Length: 558
Connection: keep-alive
Last-Modified: Thu, 13 Feb 2020 04:45:18 GMT
ETag: "22e-59e6dc1775380"
Accept-Ranges: bytes

www.dyfamen.com/uploads/allimg/20230524/1-230524115455B0.png

118.123.4.226

200 OK

49 kB

URL GET HTTP/1.1
www.dyfamen.com/uploads/allimg/20230524/1-230524115455B0.png
IP
118.123.4.226:80
ASN
#4134 Chinanet

Requested by
http://www.dyfamen.com/famenjishuzhishi/148.html

File type
PNG image data, 720 x 238, 8-bit/color RGBA, non-interlaced
Size
49 kB (48597 bytes)
Hash
feeeb8fca821c2ada04fe29dd40d87e7
605984f505c918b50ddefdc21f5006f30ec3a5f6
147b08ca4f8e921203c6ed62c7e3d78bd0438f8b32de65e4a043171094c1bdc1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/allimg/20230524/1-230524115455B0.png HTTP/1.1
Host: www.dyfamen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dyfamen.com/famenjishuzhishi/148.html
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: wts/1.6.4
Date: Wed, 24 Apr 2024 09:36:55 GMT
Content-Type: image/png
Content-Length: 48597
Connection: keep-alive
Last-Modified: Wed, 24 May 2023 03:54:55 GMT
ETag: "bdd5-5fc68777c81c0"
Accept-Ranges: bytes

www.dyfamen.com/uploads/allimg/20230524/1-230524201144120.jpg

118.123.4.226

200 OK

101 kB

URL GET HTTP/1.1
www.dyfamen.com/uploads/allimg/20230524/1-230524201144120.jpg
IP
118.123.4.226:80
ASN
#4134 Chinanet

Requested by
http://www.dyfamen.com/famenjishuzhishi/148.html

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1040x1527, components 3
Size
101 kB (100618 bytes)
Hash
887a86dad9c9008d5a2767371a85b82c
e1b7e8d56f1fee6bdb843405124eb47fbd21640c
38bf682a67f37c1d530ca9c1e009dd84d6111358871bec0cc091f5b42ec8df90

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/allimg/20230524/1-230524201144120.jpg HTTP/1.1
Host: www.dyfamen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dyfamen.com/famenjishuzhishi/148.html
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: wts/1.6.4
Date: Wed, 24 Apr 2024 09:36:55 GMT
Content-Type: image/jpeg
Content-Length: 100618
Connection: keep-alive
Last-Modified: Wed, 24 May 2023 12:11:44 GMT
ETag: "1890a-5fc6f683dc000"
Accept-Ranges: bytes

www.dyfamen.com/uploads/allimg/20230720/1-230H0214320253.jpg

118.123.4.226

200 OK

83 kB

URL GET HTTP/1.1
www.dyfamen.com/uploads/allimg/20230720/1-230H0214320253.jpg
IP
118.123.4.226:80
ASN
#4134 Chinanet

Requested by
http://www.dyfamen.com/famenjishuzhishi/148.html

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 600x372, components 3
Size
83 kB (82752 bytes)
Hash
63eb7783c1845666b8f1f4991fc19ff1
e7f66d7b0e9f0a5217c52b1bc8f394e99aafd163
5b29f3a359c519240c9c39d0dc39530e6679fba4f0e384506bb8e4907badb408

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/allimg/20230720/1-230H0214320253.jpg HTTP/1.1
Host: www.dyfamen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dyfamen.com/famenjishuzhishi/148.html
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: wts/1.6.4
Date: Wed, 24 Apr 2024 09:36:55 GMT
Content-Type: image/jpeg
Content-Length: 82752
Connection: keep-alive
Last-Modified: Thu, 20 Jul 2023 13:43:20 GMT
ETag: "14340-600eb54ceae1e"
Accept-Ranges: bytes

www.dyfamen.com/template/pc/skin/images/head_bg.jpg

118.123.4.226

200 OK

103 kB

URL GET HTTP/1.1
www.dyfamen.com/template/pc/skin/images/head_bg.jpg
IP
118.123.4.226:80
ASN
#4134 Chinanet

Requested by
http://www.dyfamen.com/famenjishuzhishi/148.html

File type
JPEG image data, baseline, precision 8, 1920x250, components 3
Size
103 kB (103400 bytes)
Hash
9fd8e5d56c105226e4794fd212688743
3c33701326551023390e25c43efaeb60a1187fba
2b24fd5586702c4de83608541a54021f18e8667485c88077e1945126f444408f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /template/pc/skin/images/head_bg.jpg HTTP/1.1
Host: www.dyfamen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dyfamen.com/template/pc/skin/css/style.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: wts/1.6.4
Date: Wed, 24 Apr 2024 09:36:55 GMT
Content-Type: image/jpeg
Content-Length: 103400
Connection: keep-alive
Last-Modified: Thu, 13 Feb 2020 03:58:36 GMT
ETag: "193e8-59e6d1a743300"
Accept-Ranges: bytes

www.dyfamen.com/template/pc/skin/images/p14-icon5.png

118.123.4.226

200 OK

1.0 kB

URL GET HTTP/1.1
www.dyfamen.com/template/pc/skin/images/p14-icon5.png
IP
118.123.4.226:80
ASN
#4134 Chinanet

Requested by
http://www.dyfamen.com/famenjishuzhishi/148.html

File type
PNG image data, 38 x 11, 8-bit/color RGBA, non-interlaced
Size
1.0 kB (1012 bytes)
Hash
8dad2fa982bb4c6cb70b42c9a1ac7df4
d979f7e0a0fb3ded5670c8bf5bcbe7fc63cf3fc2
786890b37646642e6e175c27abcef40b843e0acfd85344eb83ef3f4e77a6ebf8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /template/pc/skin/images/p14-icon5.png HTTP/1.1
Host: www.dyfamen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dyfamen.com/template/pc/skin/css/style.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: wts/1.6.4
Date: Wed, 24 Apr 2024 09:36:56 GMT
Content-Type: image/png
Content-Length: 1012
Connection: keep-alive
Last-Modified: Thu, 13 Feb 2020 04:49:48 GMT
ETag: "3f4-59e6dd18f3300"
Accept-Ranges: bytes

www.dyfamen.com/template/pc/skin/images/VISkins-p1.png

118.123.4.226

200 OK

16 kB

URL GET HTTP/1.1
www.dyfamen.com/template/pc/skin/images/VISkins-p1.png
IP
118.123.4.226:80
ASN
#4134 Chinanet

Requested by
http://www.dyfamen.com/famenjishuzhishi/148.html

File type
PNG image data, 424 x 1000, 8-bit/color RGBA, non-interlaced
Size
16 kB (16499 bytes)
Hash
f0977cebb3348dc6435eb3cd3b6568af
d31def68c4661ab65e995b2acc0626812e3bd38b
8fab8dea8a367fcee94fec4c71c3c58f1cbbc6f9223f7e869256556bc199b15e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /template/pc/skin/images/VISkins-p1.png HTTP/1.1
Host: www.dyfamen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dyfamen.com/template/pc/skin/css/style.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: wts/1.6.4
Date: Wed, 24 Apr 2024 09:36:56 GMT
Content-Type: image/png
Content-Length: 16499
Connection: keep-alive
Last-Modified: Thu, 13 Feb 2020 04:45:54 GMT
ETag: "4073-59e6dc39ca480"
Accept-Ranges: bytes

www.dyfamen.com/template/pc/skin/images/p14-icon2.png

118.123.4.226

200 OK

970 B

URL GET HTTP/1.1
www.dyfamen.com/template/pc/skin/images/p14-icon2.png
IP
118.123.4.226:80
ASN
#4134 Chinanet

Requested by
http://www.dyfamen.com/famenjishuzhishi/148.html

File type
PNG image data, 38 x 11, 8-bit/color RGBA, non-interlaced
Size
970 B (970 bytes)
Hash
aebacd43dc7f843a738c3ee40cd8524d
1d8ffa0b1790058552e06991daebf1ffd3a37fcd
b477fa57d078d5c584b030de4a2ec304bae7f619285e2780da3c235cac294bfc

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /template/pc/skin/images/p14-icon2.png HTTP/1.1
Host: www.dyfamen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dyfamen.com/template/pc/skin/css/style.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: wts/1.6.4
Date: Wed, 24 Apr 2024 09:36:57 GMT
Content-Type: image/png
Content-Length: 970
Connection: keep-alive
Last-Modified: Thu, 13 Feb 2020 04:49:54 GMT
ETag: "3ca-59e6dd1eac080"
Accept-Ranges: bytes

www.dyfamen.com/template/pc/skin/images/nybanner.jpg

118.123.4.226

200 OK

126 kB

URL GET HTTP/1.1
www.dyfamen.com/template/pc/skin/images/nybanner.jpg
IP
118.123.4.226:80
ASN
#4134 Chinanet

Requested by
http://www.dyfamen.com/famenjishuzhishi/148.html

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1920x500, components 3
Size
126 kB (126209 bytes)
Hash
1f41bca6df7e1e54901a96dfee48eb88
97fb2e89084e1b404d320f66848d054c7001f538
1c7d8980beaf2f42712e0f6614d5076f2fe83985aed582f87674b9855ee6996e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /template/pc/skin/images/nybanner.jpg HTTP/1.1
Host: www.dyfamen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dyfamen.com/famenjishuzhishi/148.html
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: wts/1.6.4
Date: Wed, 24 Apr 2024 09:36:56 GMT
Content-Type: image/jpeg
Content-Length: 126209
Connection: keep-alive
Last-Modified: Thu, 25 May 2023 07:48:08 GMT
ETag: "1ed01-5fc7fd7601e00"
Accept-Ranges: bytes

www.dyfamen.com/template/pc/skin/images/contact-z1.jpg

118.123.4.226

200 OK

5.2 kB

URL GET HTTP/1.1
www.dyfamen.com/template/pc/skin/images/contact-z1.jpg
IP
118.123.4.226:80
ASN
#4134 Chinanet

Requested by
http://www.dyfamen.com/famenjishuzhishi/148.html

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 240x140, components 3
Size
5.2 kB (5154 bytes)
Hash
d9567ade5f3c4340021862028738a234
7155da81e648a35223bb071b97d2fd200a9b3ca7
a3054e39c64aec1adfaa8974bef4ffdf79dd820140d86c55bb571c615b73fe13

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /template/pc/skin/images/contact-z1.jpg HTTP/1.1
Host: www.dyfamen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dyfamen.com/template/pc/skin/css/style.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: wts/1.6.4
Date: Wed, 24 Apr 2024 09:36:57 GMT
Content-Type: image/jpeg
Content-Length: 5154
Connection: keep-alive
Last-Modified: Thu, 13 Feb 2020 04:50:02 GMT
ETag: "1422-59e6dd264d280"
Accept-Ranges: bytes

www.dyfamen.com/template/pc/skin/images/contact-z1_tel.png

118.123.4.226

200 OK

1.5 kB

URL GET HTTP/1.1
www.dyfamen.com/template/pc/skin/images/contact-z1_tel.png
IP
118.123.4.226:80
ASN
#4134 Chinanet

Requested by
http://www.dyfamen.com/famenjishuzhishi/148.html

File type
PNG image data, 18 x 18, 8-bit/color RGBA, non-interlaced
Size
1.5 kB (1505 bytes)
Hash
f23bf875d5ad2cab0adc130988806143
caaa452a6e4e7c71baf125eaf692bb2b37eba52d
b9c40352f9edfbb925b70dbb56c4a6b1e90c3fb1f8604619bf4c05e6190ad1a6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /template/pc/skin/images/contact-z1_tel.png HTTP/1.1
Host: www.dyfamen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dyfamen.com/template/pc/skin/css/style.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: wts/1.6.4
Date: Wed, 24 Apr 2024 09:36:57 GMT
Content-Type: image/png
Content-Length: 1505
Connection: keep-alive
Last-Modified: Thu, 13 Feb 2020 04:50:08 GMT
ETag: "5e1-59e6dd2c06000"
Accept-Ranges: bytes

www.dyfamen.com/template/pc/skin/images/foot_icon2.png

118.123.4.226

200 OK

457 B

URL GET HTTP/1.1
www.dyfamen.com/template/pc/skin/images/foot_icon2.png
IP
118.123.4.226:80
ASN
#4134 Chinanet

Requested by
http://www.dyfamen.com/famenjishuzhishi/148.html

File type
PNG image data, 21 x 15, 8-bit/color RGBA, non-interlaced
Size
457 B (457 bytes)
Hash
3c00c50dcf83f8e12ba58a79fd2b2ca8
16d49e4417c2a0b0b7d3c4afebbf97db841fb75a
08844411fda17e10f9ee862c72e89b0a8dd5120a1328f61c1675a039306f12ee

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /template/pc/skin/images/foot_icon2.png HTTP/1.1
Host: www.dyfamen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dyfamen.com/template/pc/skin/css/style.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: wts/1.6.4
Date: Wed, 24 Apr 2024 09:36:57 GMT
Content-Type: image/png
Content-Length: 457
Connection: keep-alive
Last-Modified: Thu, 13 Feb 2020 04:49:26 GMT
ETag: "1c9-59e6dd03f8180"
Accept-Ranges: bytes

www.dyfamen.com/template/pc/skin/images/foot_icon3.png

118.123.4.226

200 OK

496 B

URL GET HTTP/1.1
www.dyfamen.com/template/pc/skin/images/foot_icon3.png
IP
118.123.4.226:80
ASN
#4134 Chinanet

Requested by
http://www.dyfamen.com/famenjishuzhishi/148.html

File type
PNG image data, 21 x 21, 8-bit/color RGBA, non-interlaced
Size
496 B (496 bytes)
Hash
92e100d719f093d1e91a14b7b00fdef3
9a5d6200d2ca430906764d847df9d64b31ed1b88
b6ea67e7f35bbe9acfb504f062d827afaabdabf3ac818a24791355ad9438367c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /template/pc/skin/images/foot_icon3.png HTTP/1.1
Host: www.dyfamen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dyfamen.com/template/pc/skin/css/style.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: wts/1.6.4
Date: Wed, 24 Apr 2024 09:36:58 GMT
Content-Type: image/png
Content-Length: 496
Connection: keep-alive
Last-Modified: Thu, 13 Feb 2020 04:49:30 GMT
ETag: "1f0-59e6dd07c8a80"
Accept-Ranges: bytes

www.dyfamen.com/template/pc/skin/images/foot_icon1.png

118.123.4.226

200 OK

651 B

URL GET HTTP/1.1
www.dyfamen.com/template/pc/skin/images/foot_icon1.png
IP
118.123.4.226:80
ASN
#4134 Chinanet

Requested by
http://www.dyfamen.com/famenjishuzhishi/148.html

File type
PNG image data, 21 x 21, 8-bit/color RGBA, non-interlaced
Size
651 B (651 bytes)
Hash
48a0d67752f089abd5f79ad57ce66f7b
6cb92c96e52f10c72b96b41efaa9035534716d65
bac73bef9b340fe3eb8e918666d6f23ff68b434b9c259aa43411d64226c2ebae

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /template/pc/skin/images/foot_icon1.png HTTP/1.1
Host: www.dyfamen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dyfamen.com/template/pc/skin/css/style.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: wts/1.6.4
Date: Wed, 24 Apr 2024 09:36:57 GMT
Content-Type: image/png
Content-Length: 651
Connection: keep-alive
Last-Modified: Thu, 13 Feb 2020 04:49:22 GMT
ETag: "28b-59e6dd0027880"
Accept-Ranges: bytes

www.dyfamen.com/template/pc/skin/images/foot_icon4.png

118.123.4.226

200 OK

722 B

URL GET HTTP/1.1
www.dyfamen.com/template/pc/skin/images/foot_icon4.png
IP
118.123.4.226:80
ASN
#4134 Chinanet

Requested by
http://www.dyfamen.com/famenjishuzhishi/148.html

File type
PNG image data, 22 x 22, 8-bit/color RGBA, non-interlaced
Size
722 B (722 bytes)
Hash
53bb3b6a61885b0b8ad4b39617548482
9932f5cc6795ebb38d623aef39ade2916973e126
21ae1d520d7be586af3b28f445abfb4c6ec03203d56c6af952a2fb204378b077

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /template/pc/skin/images/foot_icon4.png HTTP/1.1
Host: www.dyfamen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dyfamen.com/template/pc/skin/css/style.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: wts/1.6.4
Date: Wed, 24 Apr 2024 09:36:59 GMT
Content-Type: image/png
Content-Length: 722
Connection: keep-alive
Last-Modified: Thu, 13 Feb 2020 04:49:34 GMT
ETag: "2d2-59e6dd0b99380"
Accept-Ranges: bytes

www.dyfamen.com/template/pc/skin/images/foot_ss.png

118.123.4.226

200 OK

377 B

URL GET HTTP/1.1
www.dyfamen.com/template/pc/skin/images/foot_ss.png
IP
118.123.4.226:80
ASN
#4134 Chinanet

Requested by
http://www.dyfamen.com/famenjishuzhishi/148.html

File type
PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced
Size
377 B (377 bytes)
Hash
e9819b34a14e8a588c0a3b3f8407cebb
5eb829d1b2de1b9b08ec76b6141b9c2702be0e7e
dd71587e8b3bfd0a0e04ec9c60efd2467068b106ec7fda237fb788bf05d45ea0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /template/pc/skin/images/foot_ss.png HTTP/1.1
Host: www.dyfamen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dyfamen.com/template/pc/skin/css/style.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: wts/1.6.4
Date: Wed, 24 Apr 2024 09:36:59 GMT
Content-Type: image/png
Content-Length: 377
Connection: keep-alive
Last-Modified: Thu, 13 Feb 2020 04:49:42 GMT
ETag: "179-59e6dd133a580"
Accept-Ranges: bytes

www.dyfamen.com/template/pc/skin/images/fx.png

118.123.4.226

200 OK

7.2 kB

URL GET HTTP/1.1
www.dyfamen.com/template/pc/skin/images/fx.png
IP
118.123.4.226:80
ASN
#4134 Chinanet

Requested by
http://www.dyfamen.com/famenjishuzhishi/148.html

File type
PNG image data, 60 x 90, 16-bit/color RGBA, non-interlaced
Size
7.2 kB (7247 bytes)
Hash
15bcc9297619074cb373e44d6a8cbb5c
36e7c2e14a0c45123a169826fafefe4d369b741a
0db30ceb45fd4085320793544642d7f1a40eaada6c72cdf4ae952cbc8f6cbc8e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /template/pc/skin/images/fx.png HTTP/1.1
Host: www.dyfamen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dyfamen.com/template/pc/skin/css/style.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: wts/1.6.4
Date: Wed, 24 Apr 2024 09:36:59 GMT
Content-Type: image/png
Content-Length: 7247
Connection: keep-alive
Last-Modified: Thu, 13 Feb 2020 03:57:06 GMT
ETag: "1c4f-59e6d1516e880"
Accept-Ranges: bytes

www.dyfamen.com/favicon.ico

118.123.4.226

200 OK

4.3 kB

URL GET HTTP/1.1
www.dyfamen.com/favicon.ico
IP
118.123.4.226:80
ASN
#4134 Chinanet

Requested by
http://www.dyfamen.com/famenjishuzhishi/148.html

File type
MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel
Size
4.3 kB (4286 bytes)
Hash
2078a69bf68e43b1a9b3ea4caa01cdeb
705231be423060e06cf18dc76ea61c629898cbb0
e471a9f02d1bb949155890f497d7b6188766b88154bf5aecc713d0ce4513723a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.dyfamen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.dyfamen.com/famenjishuzhishi/148.html
Cookie: home_lang=cn; admin_lang=cn; PHPSESSID=ap2vo12b2rphvcs1h7rccs7tj2
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: wts/1.6.4
Date: Wed, 24 Apr 2024 09:36:59 GMT
Content-Type: image/vnd.microsoft.icon
Content-Length: 4286
Connection: keep-alive
Last-Modified: Tue, 22 Oct 2019 07:18:44 GMT
ETag: "10be-5957a9c46fd00"
Accept-Ranges: bytes

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (8)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML