r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f5e46725831d8d722872bf68d752f4c5
cf37793a1b73e3f84fe6c37fb27382c83b49dbc0
0582b6180687dd95c7fd728f1b9db4495b807151e309b608ad203d69708f9da6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0582B6180687DD95C7FD728F1B9DB4495B807151E309B608AD203D69708F9DA6"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2175
Expires: Wed, 25 Jan 2023 18:23:53 GMT
Date: Wed, 25 Jan 2023 17:47:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 58ffdcb539c3b250fdf31ed761627fc1
5b55b1522ef84c39b5c42f9bbfbc62b806c1269f
eb783cfa8c8544b0574b345abc0bf3c150979d4efce1a013f17b6cd48076fc63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB783CFA8C8544B0574B345ABC0BF3C150979D4EFCE1A013F17B6CD48076FC63"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4612
Expires: Wed, 25 Jan 2023 19:04:30 GMT
Date: Wed, 25 Jan 2023 17:47:38 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 25 Jan 2023 17:42:49 GMT
content-type: application/json
age: 289
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6cd4f1da1215c7473500807c185f2449
b14db0c67cf1f5faf85648ed8f94baf2dd03808b
9750518efd869da5ff74ba65a196445bd4340c909157cc1a420f62c1d07224a0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9750518EFD869DA5FF74BA65A196445BD4340C909157CC1A420F62C1D07224A0"
Last-Modified: Mon, 23 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7696
Expires: Wed, 25 Jan 2023 19:55:54 GMT
Date: Wed, 25 Jan 2023 17:47:38 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 51vzGjutViX6KZ0Pp40bsdJNYgbh5+rVSJY/v1UGOmQr19BXrSrGgG0hTJ7m5fBHTqlRfrJ9HvoKdNHgXlL5Dw==
x-amz-request-id: CJGDADFJNF3PE60B
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 25 Jan 2023 17:19:45 GMT
age: 1673
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 17:47:38 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1e2970e1480a4759282d63bb213051e4
ed5194d4d25dfc199821129be5d74be0ce49197d
18e19ea4c9c262cb9a94f89172eef2604222e779346589d470bf2e95ea295563
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "18E19EA4C9C262CB9A94F89172EEF2604222E779346589D470BF2E95EA295563"
Last-Modified: Tue, 24 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4027
Expires: Wed, 25 Jan 2023 18:54:46 GMT
Date: Wed, 25 Jan 2023 17:47:39 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Last-Modified, ETag, Content-Length, Expires, Cache-Control, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 25 Jan 2023 16:48:59 GMT
age: 3520
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
push.services.mozilla.com/
35.82.221.194101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.82.221.194:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ud2YjA/R9N1CnOoFmCNiaw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: U9QZpmeS/SkktNTWndDG7it9K7Y=
112.218.68.155/eyoom/theme/pc_basic/plugins/owl.carousel/owl-carousel/owl.carousel.css
112.218.68.155200 OK 1.5 kB URL HTTP/1.1 112.218.68.155/eyoom/theme/pc_basic/plugins/owl.carousel/owl-carousel/owl.carousel.css
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
Hash 0371b5a2d50e985b09b7d337edc0dc9f
07ad383de4cd0e21c289e3c6695b4822d1a7ad1d
4dc77ee90dc2225b57b31d28fe06213cd6c491bdc7249a6e70ebd003b72c5702
Analyzer Verdict Alert quad9 Sinkholed
GET /eyoom/theme/pc_basic/plugins/owl.carousel/owl-carousel/owl.carousel.css HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:26 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Sun, 03 Jan 2016 09:45:38 GMT
ETag: "1520ac2-5c4-5286adde57480"
Accept-Ranges: bytes
Content-Length: 1476
Connection: close
Content-Type: text/css
112.218.68.155/~changwon/css/default.css
112.218.68.155200 OK 19 kB URL HTTP/1.1 112.218.68.155/~changwon/css/default.css
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type Unicode text, UTF-8 text, with CRLF, LF line terminators
Hash f46b4d4941a536d0b5dae759383e5571
611b33ffc13452fd5bc4c69872fd9fc193654ab9
47d0184a9099387e47f9f9207a3e092737e8f1a7e00ad7e9dc51864c805b1880
Analyzer Verdict Alert quad9 Sinkholed
GET /~changwon/css/default.css HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:26 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Mon, 21 Dec 2015 01:53:59 GMT
ETag: "1520865-49ec-5275ec3351bc0"
Accept-Ranges: bytes
Content-Length: 18924
Connection: close
Content-Type: text/css
112.218.68.155/~changwon/index.php
112.218.68.155200 OK 92 kB URL HTTP/1.1 112.218.68.155/~changwon/index.php
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (580), with CRLF, LF line terminators
Hash c825a62258295d3793c95b973ffa6f1a
27070d2657fa5f2953aa2e1fe78897569e91e793
5149e1513ec634390bcd53399d2d321930309c07c2275de936cf544b6202c80c
Analyzer Verdict Alert quad9 Sinkholed
GET /~changwon/index.php HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:25 GMT
Server: Apache/2.2.3 (Asianux)
X-Powered-By: PHP/5.1.6
P3P: CP="ALL CURa ADMa DEVa TAIa OUR BUS IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE LOC OTC"
Set-Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; path=/
2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0; expires=Thu, 26-Jan-2023 18:29:25 GMT; path=/
Expires: 0
Last-Modified: Wed, 25 Jan 2023 18:29:26 GMT
Cache-Control: pre-check=0, post-check=0, max-age=0
Pragma: no-cache
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8
112.218.68.155/eyoom/theme/pc_basic/plugins/sky-forms/version-2.0.5/css/sky-forms.css
112.218.68.155200 OK 19 kB URL HTTP/1.1 112.218.68.155/eyoom/theme/pc_basic/plugins/sky-forms/version-2.0.5/css/sky-forms.css
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
Hash f99b8f8383d991ef383b1f3aad30fab7
97673785efb07417e43b025cf9b04828397fbf79
7d8ab17f1f406044ef0fe48a7f3980d717b54a98e6f751110661d5ff1307991a
Analyzer Verdict Alert quad9 Sinkholed
GET /eyoom/theme/pc_basic/plugins/sky-forms/version-2.0.5/css/sky-forms.css HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:26 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Sun, 03 Jan 2016 09:45:42 GMT
ETag: "1520add-49ce-5286ade227d80"
Accept-Ranges: bytes
Content-Length: 18894
Connection: close
Content-Type: text/css
112.218.68.155/~changwon/skin/latest/hp5_slider_vert/jquery.totemticker.js
112.218.68.155200 OK 4.9 kB URL HTTP/1.1 112.218.68.155/~changwon/skin/latest/hp5_slider_vert/jquery.totemticker.js
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
Hash 9dd149028468685b24183595b6c9b530
b5e5e7c0c8a4008545b2b0c7a66865ea88429817
412bd10b74b43c46b652283c3606013f7fa5d677ac9bc5271b7cc0f98cba9136
Analyzer Verdict Alert quad9 Sinkholed
GET /~changwon/skin/latest/hp5_slider_vert/jquery.totemticker.js HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:27 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Sat, 05 Nov 2016 02:49:12 GMT
ETag: "156018e-1317-54084d5e57a00"
Accept-Ranges: bytes
Content-Length: 4887
Connection: close
Content-Type: application/x-javascript
112.218.68.155/eyoom/theme/pc_basic/css/custom.css
112.218.68.155200 OK 1.6 kB URL HTTP/1.1 112.218.68.155/eyoom/theme/pc_basic/css/custom.css
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type Unicode text, UTF-8 text, with very long lines (823), with CRLF line terminators
Hash a80a424706d18b4017b904013c027c46
577b7d2c6cdd0bf8d396fb2a284f5c4b9270332f
947c3770a618a9e4f545586b13fed11c53b67b7b8208844cf10c981d10ab3806
Analyzer Verdict Alert quad9 Sinkholed
GET /eyoom/theme/pc_basic/css/custom.css HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:27 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Mon, 04 Jan 2016 11:05:37 GMT
ETag: "1520bd1-65c-5288019c7c240"
Accept-Ranges: bytes
Content-Length: 1628
Connection: close
Content-Type: text/css
fonts.googleapis.com/css?family=Open+Sans:300,400,700
142.250.74.74200 OK 683 B URL HTTP/1.1 fonts.googleapis.com/css?family=Open+Sans:300,400,700
IP 142.250.74.74:0
Hash 811aba771f53232088791a691dc2e85a
b4b83e106290e8a51b537f2ed50d10e99f184b9a
1f11e7aa985aa9d4a8ccfe4afda98e022b600a53592955344e23f8a9109ad3ec
GET /css?family=Open+Sans:300,400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Wed, 25 Jan 2023 17:47:40 GMT
Date: Wed, 25 Jan 2023 17:47:40 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
112.218.68.155/eyoom/theme/pc_basic/plugins/font-awesome/css/font-awesome.min.css
112.218.68.155200 OK 28 kB URL HTTP/1.1 112.218.68.155/eyoom/theme/pc_basic/plugins/font-awesome/css/font-awesome.min.css
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type ASCII text, with very long lines (27303)
Hash 4fbd15cb6047af93373f4f895639c8bf
12d6861075de8e293265ff6ff03b1f3adcb44c76
ddd92f10ad162c7449eff0acaf40598c05b1111739587edb75e5326b6697c5d5
Analyzer Verdict Alert quad9 Sinkholed
GET /eyoom/theme/pc_basic/plugins/font-awesome/css/font-awesome.min.css HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:26 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Sun, 03 Jan 2016 09:45:36 GMT
ETag: "1520af0-6b4a-5286addc6f000"
Accept-Ranges: bytes
Content-Length: 27466
Connection: close
Content-Type: text/css
112.218.68.155/~changwon/skin/latest/ziney_hover/style.css
112.218.68.155200 OK 1.1 kB URL HTTP/1.1 112.218.68.155/~changwon/skin/latest/ziney_hover/style.css
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash f21bb7b75418f2f02e47db0e1b10e2d3
6d9424ac9547ab48d7a261f220d532782ff25c30
47968cce5e5115e763dbd6ad5efbc80051e29262da22b9c5d0eef2fed5aaa11e
Analyzer Verdict Alert quad9 Sinkholed
GET /~changwon/skin/latest/ziney_hover/style.css HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:27 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Sat, 09 Jan 2016 01:47:46 GMT
ETag: "1520755-44d-528dce3f5b480"
Accept-Ranges: bytes
Content-Length: 1101
Connection: close
Content-Type: text/css
112.218.68.155/~changwon/eyoom/theme/pc_basic/skin_pc/latest/image_slider_custom/style.css
112.218.68.155200 OK 162 B URL HTTP/1.1 112.218.68.155/~changwon/eyoom/theme/pc_basic/skin_pc/latest/image_slider_custom/style.css
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type ASCII text, with CRLF line terminators
Hash 68155b5af9c19dab299b925be3787e0e
535fb1d912dd443d83f0c1e610dd97037183eabb
233e5a88e5a37ba78a4ad07338a3bec606bbe69b7f19343b6486b6f9164ac439
Analyzer Verdict Alert quad9 Sinkholed
GET /~changwon/eyoom/theme/pc_basic/skin_pc/latest/image_slider_custom/style.css HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:27 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Sun, 24 Jan 2016 05:13:10 GMT
ETag: "1520b91-a2-52a0d8225a580"
Accept-Ranges: bytes
Content-Length: 162
Connection: close
Content-Type: text/css
112.218.68.155/~changwon/js/jquery.menu.js
112.218.68.155200 OK 2.9 kB URL HTTP/1.1 112.218.68.155/~changwon/js/jquery.menu.js
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash cb90a64d7ba277b42be407b2365b63dc
4f9a07efdfa56f60b9e656b4aaa5afe025cb5c7d
868755765541ee2bcea1472c127b00eaf6eb26418fba21a0831ad08543e5c250
Analyzer Verdict Alert quad9 Sinkholed
GET /~changwon/js/jquery.menu.js HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:28 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Mon, 21 Dec 2015 01:53:59 GMT
ETag: "1520836-b72-5275ec3351bc0"
Accept-Ranges: bytes
Content-Length: 2930
Connection: close
Content-Type: application/x-javascript
112.218.68.155/eyoom/theme/pc_basic/css/style.css
112.218.68.155200 OK 53 kB URL HTTP/1.1 112.218.68.155/eyoom/theme/pc_basic/css/style.css
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type Unicode text, UTF-8 text, with very long lines (461)
Hash ab0dfcde17d7268a5177082af1833194
d839aa9ddb8e34b63d18f987854d1de6b41c5847
8add11c7c97fd43d35629061e9767b02c2143e3f31d3b0401fead1ded1333d7d
Analyzer Verdict Alert quad9 Sinkholed
GET /eyoom/theme/pc_basic/css/style.css HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:26 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Sun, 03 Jan 2016 10:01:18 GMT
ETag: "1520bd3-cd9f-5286b15ecb780"
Accept-Ranges: bytes
Content-Length: 52639
Connection: close
Content-Type: text/css
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 176ab888cb4eeee86431993b3ef960e2
0eb79ca64f0f6b29837d1d7dfe12d38a3d5c3822
47984ce01d5a6281b9f2841cb119d3623e0d4202602f354628469e9158a2d6fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "47984CE01D5A6281B9F2841CB119D3623E0D4202602F354628469E9158A2D6FA"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14717
Expires: Wed, 25 Jan 2023 21:52:58 GMT
Date: Wed, 25 Jan 2023 17:47:41 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 176ab888cb4eeee86431993b3ef960e2
0eb79ca64f0f6b29837d1d7dfe12d38a3d5c3822
47984ce01d5a6281b9f2841cb119d3623e0d4202602f354628469e9158a2d6fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "47984CE01D5A6281B9F2841CB119D3623E0D4202602F354628469E9158A2D6FA"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14717
Expires: Wed, 25 Jan 2023 21:52:58 GMT
Date: Wed, 25 Jan 2023 17:47:41 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 176ab888cb4eeee86431993b3ef960e2
0eb79ca64f0f6b29837d1d7dfe12d38a3d5c3822
47984ce01d5a6281b9f2841cb119d3623e0d4202602f354628469e9158a2d6fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "47984CE01D5A6281B9F2841CB119D3623E0D4202602F354628469E9158A2D6FA"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14717
Expires: Wed, 25 Jan 2023 21:52:58 GMT
Date: Wed, 25 Jan 2023 17:47:41 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 176ab888cb4eeee86431993b3ef960e2
0eb79ca64f0f6b29837d1d7dfe12d38a3d5c3822
47984ce01d5a6281b9f2841cb119d3623e0d4202602f354628469e9158a2d6fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "47984CE01D5A6281B9F2841CB119D3623E0D4202602F354628469E9158A2D6FA"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14717
Expires: Wed, 25 Jan 2023 21:52:58 GMT
Date: Wed, 25 Jan 2023 17:47:41 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 176ab888cb4eeee86431993b3ef960e2
0eb79ca64f0f6b29837d1d7dfe12d38a3d5c3822
47984ce01d5a6281b9f2841cb119d3623e0d4202602f354628469e9158a2d6fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "47984CE01D5A6281B9F2841CB119D3623E0D4202602F354628469E9158A2D6FA"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14717
Expires: Wed, 25 Jan 2023 21:52:58 GMT
Date: Wed, 25 Jan 2023 17:47:41 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33050e82-3c0a-40d6-a722-e4ff96872edc.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33050e82-3c0a-40d6-a722-e4ff96872edc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bb6c1403a1d3c878c08ccaf17f8b3d0a
7596b783e0da5fba63c49374933eccffc223d729
1524dbef51237950d4a14a0e2e053fad933dd92ee0831e2de5c45513122f1d58
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33050e82-3c0a-40d6-a722-e4ff96872edc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6026
x-amzn-requestid: 4b05d7f7-783f-4a79-9eed-bbbeb53bc677
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fRQ-QHmZIAMF6gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d061f4-721f473c5c8dadd163ca7689;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 22:55:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: uuhyzrUcYv-zqjLZvGNYsUuAhCW2vkKpEhQQKlmfSgHDtKz0jD2PNQ==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 24 Jan 2023 23:18:31 GMT
age: 66550
etag: "7596b783e0da5fba63c49374933eccffc223d729"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67efee66-d227-4c28-89a3-8fd7f382049b.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67efee66-d227-4c28-89a3-8fd7f382049b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 91b2e12a39dc4f63b9d52e8800cce1f2
42d5b4b4a091778d98c351f0002d8656449d0243
d4dbc79e3383e83f861ccf8cde3e78ba427a66cd3fa99c17e23ec935867de4ad
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67efee66-d227-4c28-89a3-8fd7f382049b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8308
x-amzn-requestid: 1988d3b3-5e1a-41fd-83f5-092eddb9185f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fNys5GDKoAMFdbA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cefe52-2349fde60b7db8a34c996717;Sampled=0
x-amzn-remapped-date: Mon, 23 Jan 2023 21:38:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 5_1j_Z6HZ3DSGFPAACJduM5D9eAqMQT42GgI61x8dHAmPQtUexpEYQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 24 Jan 2023 22:06:36 GMT
age: 70865
etag: "42d5b4b4a091778d98c351f0002d8656449d0243"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e473b9-0adb-4371-8146-b148ce85cdec.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e473b9-0adb-4371-8146-b148ce85cdec.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d10114508bd40d76f497fc5b9c064350
c9b86b2b27063e0a58b0f237d451f9cf05b2122d
a156bd21bee2fca1d82940fb172a695044321ed432786ae100a7baf3b5e12b3f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e473b9-0adb-4371-8146-b148ce85cdec.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8252
x-amzn-requestid: c7064a36-7bb0-42c7-9ee8-9ee798ce8cbf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fEq3UEjVoAMFipg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb582e-5be2ad2a217f9b4b6834a278;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 03:12:46 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: b4EbiS-go4Yy-UcA4CbKj10TbS6qKgQd6ZgqB3XVyd9ieBPszfx_jw==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Tue, 24 Jan 2023 21:47:57 GMT
age: 71984
etag: "c9b86b2b27063e0a58b0f237d451f9cf05b2122d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09ccbe5e-77b1-4d6d-98f5-a477f3861d8c.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09ccbe5e-77b1-4d6d-98f5-a477f3861d8c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7458f7a9b2070055df6f1d496794e43e
0f5d2a6d846f4f8f85dd7e8089e643cacc57d8a9
373097662c419eef9f4a19ce9f3bcead70f6eafbf0acf44806685eece43ce251
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09ccbe5e-77b1-4d6d-98f5-a477f3861d8c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12758
x-amzn-requestid: c3540562-8c62-4957-9528-7ae952daebaa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e9gf1E87oAMFpsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c87acb-49fd3f78275937e24d23fca3;Sampled=0
x-amzn-remapped-date: Wed, 18 Jan 2023 23:03:39 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: c5YOTqrEv9RLv_lKsrC377yost8auxYRPLubBFGjIWtnbueiGMJYGw==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 07:33:54 GMT
age: 36827
etag: "0f5d2a6d846f4f8f85dd7e8089e643cacc57d8a9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f7aba17-803f-412c-8ef7-0959b52f87cc.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f7aba17-803f-412c-8ef7-0959b52f87cc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 13891ffe8a0cc240be63b7945e4b7688
958b50e9e7e5e02882d55612a5d6d2402e225390
1570d69731ba13051454a048ac85bde7c1de8e39dea0fd78e7e5c3f2be122cb6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f7aba17-803f-412c-8ef7-0959b52f87cc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9650
x-amzn-requestid: 3b968ee5-c941-4305-9f06-01e646deef15
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fH88wEUmoAMFerw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cca851-061f65177f36420a4685f372;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 03:06:57 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: xfiiS5M5j8iYKMyopaVqwYV6KKB1VIWT_yQbEKZ9G1wuq2QUEyDBpA==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 03:16:15 GMT
age: 52286
etag: "958b50e9e7e5e02882d55612a5d6d2402e225390"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9192d2a7-4090-4a55-b72e-388ceb1f506d.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9192d2a7-4090-4a55-b72e-388ceb1f506d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1d76c1b1126a3e1b51dcca652cb6727b
b199a381ccac4628f2bfa626b44c71954713ca98
3a34f2b7f79cb925c73d2c17197418004e4acf63a6eb69e471320069978f8282
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9192d2a7-4090-4a55-b72e-388ceb1f506d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10921
x-amzn-requestid: 7b8849e6-b52d-4165-b456-b200ddbb993b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fEqtkGThIAMFb7g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb57f0-1ed4803112d97956419b299e;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 03:11:44 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: FUbNMfYy8ci6d78p6LCu0Gxs3jw824ZzVp6drAbl8HCDBpghlZFP7g==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 04:19:27 GMT
age: 48494
etag: "b199a381ccac4628f2bfa626b44c71954713ca98"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
112.218.68.155/~changwon/skin/latest/ziney_hover/ziney_hover.js
112.218.68.155200 OK 235 B URL HTTP/1.1 112.218.68.155/~changwon/skin/latest/ziney_hover/ziney_hover.js
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type ASCII text, with CRLF line terminators
Hash 13ef75510a55fe7ed17879b1ef40aba7
77005492502b950a5d7101344084b11eb08661b8
e4956a0fc20bda0bddc8c5308692ab261faf488820de373d2e534f6706cd2848
Analyzer Verdict Alert quad9 Sinkholed
GET /~changwon/skin/latest/ziney_hover/ziney_hover.js HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:28 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Sat, 09 Jan 2016 01:47:46 GMT
ETag: "1520753-eb-528dce3f5b480"
Accept-Ranges: bytes
Content-Length: 235
Connection: close
Content-Type: application/x-javascript
112.218.68.155/~changwon/skin/latest/hp5_slider_vert2/jquery.totemticker.js
112.218.68.155200 OK 4.9 kB URL HTTP/1.1 112.218.68.155/~changwon/skin/latest/hp5_slider_vert2/jquery.totemticker.js
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
Hash 9dd149028468685b24183595b6c9b530
b5e5e7c0c8a4008545b2b0c7a66865ea88429817
412bd10b74b43c46b652283c3606013f7fa5d677ac9bc5271b7cc0f98cba9136
Analyzer Verdict Alert quad9 Sinkholed
GET /~changwon/skin/latest/hp5_slider_vert2/jquery.totemticker.js HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:28 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Sat, 05 Nov 2016 03:57:47 GMT
ETag: "15601c9-1317-54085cb2b64c0"
Accept-Ranges: bytes
Content-Length: 4887
Connection: close
Content-Type: application/x-javascript
112.218.68.155/~changwon/js/wrest.js
112.218.68.155200 OK 11 kB URL HTTP/1.1 112.218.68.155/~changwon/js/wrest.js
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
Hash 2311ba719829adb363d3436deaa6e6f6
71588cf5112818a86cc1afa025b04da937ad6f28
c995f012d1a9994e1edfe4534e6249a2f7445ffea04a31a0ea400a475ca5e8ec
Analyzer Verdict Alert quad9 Sinkholed
GET /~changwon/js/wrest.js HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:28 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Mon, 21 Dec 2015 01:53:59 GMT
ETag: "152083e-2b58-5275ec3351bc0"
Accept-Ranges: bytes
Content-Length: 11096
Connection: close
Content-Type: application/x-javascript
112.218.68.155/eyoom/theme/pc_basic/js/back-to-top.js
112.218.68.155200 OK 3.4 kB URL HTTP/1.1 112.218.68.155/eyoom/theme/pc_basic/js/back-to-top.js
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
Hash afb7a61f6b454e04f431113c77ac2eb7
06f831bb7ecfd33db2d6d30c9769e5ec4ab95239
235b8d6dc8079f017b6bcea211d5c132272114cd015ec15b706c1d1d1c298ed8
Analyzer Verdict Alert quad9 Sinkholed
GET /eyoom/theme/pc_basic/js/back-to-top.js HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:28 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Sun, 03 Jan 2016 09:45:30 GMT
ETag: "1520bcd-d29-5286add6b6280"
Accept-Ranges: bytes
Content-Length: 3369
Connection: close
Content-Type: application/x-javascript
112.218.68.155/eyoom/theme/pc_basic/js/jquery-migrate-1.2.1.min.js
112.218.68.155200 OK 7.2 kB URL HTTP/1.1 112.218.68.155/eyoom/theme/pc_basic/js/jquery-migrate-1.2.1.min.js
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type ASCII text, with very long lines (7085)
Hash eb05d8d73b5b13d8d84308a4751ece96
743052320809514fb788fe1d3df37fc87ce90452
1e67d8dbcca1f6fd94e077c85c2fb40fa1c2756c99238daa8da882144260a68d
Analyzer Verdict Alert quad9 Sinkholed
GET /eyoom/theme/pc_basic/js/jquery-migrate-1.2.1.min.js HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:28 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Sun, 03 Jan 2016 09:45:30 GMT
ETag: "1520bca-1c1f-5286add6b6280"
Accept-Ranges: bytes
Content-Length: 7199
Connection: close
Content-Type: application/x-javascript
112.218.68.155/~changwon/js/common.js
112.218.68.155200 OK 19 kB URL HTTP/1.1 112.218.68.155/~changwon/js/common.js
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type Unicode text, UTF-8 text, with very long lines (494)
Hash 300b205e3a6f7151146a6d0e37935963
59973b7c67bea9559d8d1d2186fc581387081461
edf239a046ea614b437f314a8e3189cfc6e73e9a598d3b524539455327367d34
Analyzer Verdict Alert quad9 Sinkholed
GET /~changwon/js/common.js HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:28 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Mon, 21 Dec 2015 01:53:59 GMT
ETag: "1520841-496d-5275ec3351bc0"
Accept-Ranges: bytes
Content-Length: 18797
Connection: close
Content-Type: application/x-javascript
112.218.68.155/eyoom/theme/pc_basic/plugins/counter/jquery.counterup.min.js
112.218.68.155200 OK 1.1 kB URL HTTP/1.1 112.218.68.155/eyoom/theme/pc_basic/plugins/counter/jquery.counterup.min.js
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type ASCII text, with very long lines (917)
Hash ef36cca760bf1cd76cfcd0e4dc10cef1
ef38469f60d58850fe55c4de2ec7e289a2415d71
26d40f8ffdf1b9bf286a954c6888a33cda0cd031e802d821fe0c0562e379ae29
Analyzer Verdict Alert quad9 Sinkholed
GET /eyoom/theme/pc_basic/plugins/counter/jquery.counterup.min.js HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:29 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Sun, 03 Jan 2016 09:45:35 GMT
ETag: "1520a30-42b-5286addb7adc0"
Accept-Ranges: bytes
Content-Length: 1067
Connection: close
Content-Type: application/x-javascript
112.218.68.155/eyoom/theme/pc_basic/js/bootstrap.min.js
112.218.68.155200 OK 32 kB URL HTTP/1.1 112.218.68.155/eyoom/theme/pc_basic/js/bootstrap.min.js
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type ASCII text, with very long lines (31650)
Hash abda843684d022f3bc22bc83927fe05f
26908395e7a9a4eab607d80aa50a81d65f3017cb
24cc29533598f962823c4229bc280487646a27a42a95257c31de1b9b18f3710f
Analyzer Verdict Alert quad9 Sinkholed
GET /eyoom/theme/pc_basic/js/bootstrap.min.js HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:28 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Sun, 03 Jan 2016 09:45:30 GMT
ETag: "1520bcb-7c4b-5286add6b6280"
Accept-Ranges: bytes
Content-Length: 31819
Connection: close
Content-Type: application/x-javascript
112.218.68.155/eyoom/theme/pc_basic/plugins/counter/waypoints.min.js
112.218.68.155200 OK 8.1 kB URL HTTP/1.1 112.218.68.155/eyoom/theme/pc_basic/plugins/counter/waypoints.min.js
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type ASCII text, with very long lines (7828)
Hash 2b6c8e07888b17a8adc88920e5665fc7
8c590b424390fec49220f1a3f95a574516bce641
280867a808c50fac79db13005a764eb3ccbd61ad4a8b0a91a325e49dd1f06ad6
Analyzer Verdict Alert quad9 Sinkholed
GET /eyoom/theme/pc_basic/plugins/counter/waypoints.min.js HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:29 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Sun, 03 Jan 2016 09:45:36 GMT
ETag: "1520a2b-1f80-5286addc6f000"
Accept-Ranges: bytes
Content-Length: 8064
Connection: close
Content-Type: application/x-javascript
112.218.68.155/~changwon/js/jquery-1.8.3.min.js
112.218.68.155200 OK 94 kB URL HTTP/1.1 112.218.68.155/~changwon/js/jquery-1.8.3.min.js
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type ASCII text, with very long lines (65482), with CRLF line terminators
Hash e1288116312e4728f98923c79b034b67
8b6babff47b8a9793f37036fd1b1a3ad41d38423
ba6eda7945ab8d7e57b34cc5a3dd292fa2e4c60a5ced79236ecf1a9e0f0c2d32
Analyzer Verdict Alert quad9 Sinkholed
GET /~changwon/js/jquery-1.8.3.min.js HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:28 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Mon, 21 Dec 2015 01:53:59 GMT
ETag: "1520839-16dc5-5275ec3351bc0"
Accept-Ranges: bytes
Content-Length: 93637
Connection: close
Content-Type: application/x-javascript
www.youtube.com/embed/Ej8uBEFtEYc
142.250.74.78301 Moved Permanently 0 B URL HTTP/1.1 www.youtube.com/embed/Ej8uBEFtEYc
IP 142.250.74.78:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /embed/Ej8uBEFtEYc HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Content-Type: application/binary
X-Content-Type-Options: nosniff
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Wed, 25 Jan 2023 17:47:42 GMT
Location: https://www.youtube.com/embed/Ej8uBEFtEYc
Server: ESF
Content-Length: 0
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.227200 OK 45 kB URL HTTP/1.1 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://112.218.68.155
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 44856
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 24 Jan 2023 18:35:14 GMT
Expires: Wed, 24 Jan 2024 18:35:14 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Mon, 15 Aug 2022 18:20:18 GMT
Content-Type: font/woff2
Age: 83548
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 04cb7fc8b1e2a65a0b198cc53eb5e5cd
6d04611612d81108e856467f0e4b0479cbb37d33
1c745d8ace7ea6f8e5d7da5e9c067b7b3427ce9c5a5e2c5c35d1c345266de518
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 17:47:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
112.218.68.155/eyoom/theme/pc_basic/js/jquery.bootstrap-hover-dropdown.min.js
112.218.68.155200 OK 1.5 kB URL HTTP/1.1 112.218.68.155/eyoom/theme/pc_basic/js/jquery.bootstrap-hover-dropdown.min.js
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type ASCII text, with very long lines (1137), with CRLF line terminators
Hash 952c7b0bd0f41707ce9b4ca45c0066d3
0e1521ce75a333991bb55710f011dd4984bd70d0
32805b939ff1fd94f4c023230993e718b90529fffd87c36b36f1ee14699e1085
Analyzer Verdict Alert quad9 Sinkholed
GET /eyoom/theme/pc_basic/js/jquery.bootstrap-hover-dropdown.min.js HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:29 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Sun, 03 Jan 2016 09:45:30 GMT
ETag: "1520bc3-5dc-5286add6b6280"
Accept-Ranges: bytes
Content-Length: 1500
Connection: close
Content-Type: application/x-javascript
112.218.68.155/eyoom/theme/pc_basic/plugins/sky-forms/version-2.0.5/js/jquery.form.min.js
112.218.68.155200 OK 14 kB URL HTTP/1.1 112.218.68.155/eyoom/theme/pc_basic/plugins/sky-forms/version-2.0.5/js/jquery.form.min.js
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type ASCII text, with very long lines (14340)
Hash 4b2a605827dba11e4228f40385e7edc0
94cca4f35ea592cadd598899ff5ac65f1e72cd0b
bce4dd961f082a0e2c75783dd14fe521c34ed79e14af71a77ee4104fe930415d
Analyzer Verdict Alert quad9 Sinkholed
GET /eyoom/theme/pc_basic/plugins/sky-forms/version-2.0.5/js/jquery.form.min.js HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:29 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Sun, 03 Jan 2016 09:45:42 GMT
ETag: "1520ad0-38b8-5286ade227d80"
Accept-Ranges: bytes
Content-Length: 14520
Connection: close
Content-Type: application/x-javascript
112.218.68.155/eyoom/theme/pc_basic/js/jquery.sticky.min.js
112.218.68.155200 OK 2.9 kB URL HTTP/1.1 112.218.68.155/eyoom/theme/pc_basic/js/jquery.sticky.min.js
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type ASCII text, with very long lines (2927), with no line terminators
Hash 6090057cb30f5e2d0a4be1ceefe42e6e
41860cdf32cb608faa71fcd87923f0869bbaef77
459fb9bc37c13d8e8c7e229442f2713f0dd52392bb1e6781eac1710cd320a265
Analyzer Verdict Alert quad9 Sinkholed
GET /eyoom/theme/pc_basic/js/jquery.sticky.min.js HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:29 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Sun, 03 Jan 2016 09:45:30 GMT
ETag: "1520bc6-b6f-5286add6b6280"
Accept-Ranges: bytes
Content-Length: 2927
Connection: close
Content-Type: application/x-javascript
www.youtube.com/embed/Ej8uBEFtEYc
142.250.74.78200 OK 78 kB URL HTTP/2 www.youtube.com/embed/Ej8uBEFtEYc
IP 142.250.74.78:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (58580)
Hash ba434d819d9e2a27cb19b9fd372acc8f
a30a42555ecb11788d8d09a3d4eb22904edb3d26
421e1c32097b43b8f9b3f225d4bae94c581781e0fe96f1aa3f6179463dd59748
GET /embed/Ej8uBEFtEYc HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://112.218.68.155/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 25 Jan 2023 17:47:42 GMT
strict-transport-security: max-age=31536000
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
cross-origin-resource-policy: cross-origin
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=ZitDImxEJd8; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=96WaRGVOoHU; Domain=.youtube.com; Expires=Mon, 24-Jul-2023 17:47:42 GMT; Path=/; Secure; HttpOnly; SameSite=none
DEVICE_INFO=ChxOekU1TWpZME56azVOVEUyTXpVek5UYzROdz09EL7WxZ4GGL7WxZ4G; Domain=.youtube.com; Expires=Mon, 24-Jul-2023 17:47:42 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+985; expires=Fri, 24-Jan-2025 17:47:42 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/s/player/4248d311/www-embed-player.vflset/www-embed-player.js
142.250.74.78200 OK 109 kB URL HTTP/2 www.youtube.com/s/player/4248d311/www-embed-player.vflset/www-embed-player.js
IP 142.250.74.78:0
File type ASCII text, with very long lines (679)
Size 109 kB (109432 bytes)
Hash 711fcfe6f1ab52d89ab3474d437c1e48
b2f3e69e9d40b193de5e76ae13c6ad9ce0a8e537
361236d1317543e128074c35d22d65a2ba70f6ce9906b07a543e6b3c96239019
GET /s/player/4248d311/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/Ej8uBEFtEYc
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 109432
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 19 Jan 2023 16:03:20 GMT
expires: Fri, 19 Jan 2024 16:03:20 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 12 Jan 2023 01:15:11 GMT
content-type: text/javascript
age: 524662
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/s/player/4248d311/player_ias.vflset/en_US/base.js
142.250.74.78200 OK 611 kB URL HTTP/2 www.youtube.com/s/player/4248d311/player_ias.vflset/en_US/base.js
IP 142.250.74.78:0
File type ASCII text, with very long lines (517)
Size 611 kB (611243 bytes)
Hash 4bafbf546e35e79d802b8e836cf03e3b
cff2ccd4542a73b82c18cdac6b3e4af01198566e
da6660452c1ebd120eb25d4c1a742e2fe20cf5ccfbd3523acb5e1d5693170d70
GET /s/player/4248d311/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/Ej8uBEFtEYc
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding, Origin
content-encoding: br
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 611243
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 19 Jan 2023 13:03:55 GMT
expires: Fri, 19 Jan 2024 13:03:55 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 12 Jan 2023 01:15:11 GMT
content-type: text/javascript
age: 535427
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/s/player/4248d311/fetch-polyfill.vflset/fetch-polyfill.js
142.250.74.78200 OK 2.8 kB URL HTTP/2 www.youtube.com/s/player/4248d311/fetch-polyfill.vflset/fetch-polyfill.js
IP 142.250.74.78:0
File type Algol 68 source text\012- Pascal source, ASCII text, with very long lines (555)
Hash 80fe2d229007996c8397073b00755dc7
121f82c77bcf2a297a1085e3b092415c463fcafe
033dfa8941482c82d4f1aaa4a9172fb379b9e46a02d5b36297c5476bbbfdea2c
GET /s/player/4248d311/fetch-polyfill.vflset/fetch-polyfill.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/Ej8uBEFtEYc
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 2786
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 19 Jan 2023 16:14:47 GMT
expires: Fri, 19 Jan 2024 16:14:47 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 12 Jan 2023 01:15:11 GMT
content-type: text/javascript
age: 523975
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 47d71bf163265666c21e2410fb568043
54a4b0f241af261f878967ce058f5885be476cc4
8b7ce4c8269941cf55ca12415b1abfd7d4ae7bf5823657f3afe5e8dd34bed80b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 17:47:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3e7fdf1ab4be9ee80518d0400683f0d3
dd2ec6511ba05e7fb89d32a1ad407db5eaa1520b
eb789178a0b528aad87a5bf0d05aecd45e7623ebaf198820f9310887757e1d5f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 17:47:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3e7fdf1ab4be9ee80518d0400683f0d3
dd2ec6511ba05e7fb89d32a1ad407db5eaa1520b
eb789178a0b528aad87a5bf0d05aecd45e7623ebaf198820f9310887757e1d5f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 17:47:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3e7fdf1ab4be9ee80518d0400683f0d3
dd2ec6511ba05e7fb89d32a1ad407db5eaa1520b
eb789178a0b528aad87a5bf0d05aecd45e7623ebaf198820f9310887757e1d5f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 17:47:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
112.218.68.155/eyoom/theme/pc_basic/plugins/sky-forms/version-2.0.5/js/jquery-ui.min.js
112.218.68.155200 OK 59 kB URL HTTP/1.1 112.218.68.155/eyoom/theme/pc_basic/plugins/sky-forms/version-2.0.5/js/jquery-ui.min.js
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type ASCII text, with very long lines (45284)
Hash 4a714cc25f2e05b54ddd4cc027e904e2
e4d3a2a71c96d2fceac5ac83b0ca5fe40295a916
5fe1dca63b75d27dae58614bb3bf3c606887c0e2490a689a6a6fd9f6cbdc6013
Analyzer Verdict Alert quad9 Sinkholed
GET /eyoom/theme/pc_basic/plugins/sky-forms/version-2.0.5/js/jquery-ui.min.js HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:28 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Sun, 03 Jan 2016 09:45:42 GMT
ETag: "1520ad1-e793-5286ade227d80"
Accept-Ranges: bytes
Content-Length: 59283
Connection: close
Content-Type: application/x-javascript
112.218.68.155/eyoom/theme/pc_basic/js/app.js
112.218.68.155200 OK 1.7 kB URL HTTP/1.1 112.218.68.155/eyoom/theme/pc_basic/js/app.js
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
Hash 9cc27e08cbd6d64af0d233cf82b3561e
5c9b86c75bc2ad33bacfe9ab08ab8b95ed053eb5
844a312810ae8f35cbf051483fc2df4b8c3e2aefe9ef727bd43614fed3c1a073
Analyzer Verdict Alert quad9 Sinkholed
GET /eyoom/theme/pc_basic/js/app.js HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:30 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Sun, 03 Jan 2016 09:45:30 GMT
ETag: "1520bc2-6bd-5286add6b6280"
Accept-Ranges: bytes
Content-Length: 1725
Connection: close
Content-Type: application/x-javascript
112.218.68.155/eyoom/theme/pc_basic/plugins/owl.carousel/owl-carousel/owl.carousel.min.js
112.218.68.155200 OK 24 kB URL HTTP/1.1 112.218.68.155/eyoom/theme/pc_basic/plugins/owl.carousel/owl-carousel/owl.carousel.min.js
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type ASCII text, with very long lines (635)
Hash 88d0fe722f04973e2888b58a63aa0570
f947512e51f8ef4b15bba3f701de64e53a7f7f9b
e0e2bc4e1d3ee5024c4e1aa58a6cad9aa42fc63a8c89ce18013a1c8f2b94875c
Analyzer Verdict Alert quad9 Sinkholed
GET /eyoom/theme/pc_basic/plugins/owl.carousel/owl-carousel/owl.carousel.min.js HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:29 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Sun, 03 Jan 2016 09:45:38 GMT
ETag: "1520ac7-5d52-5286adde57480"
Accept-Ranges: bytes
Content-Length: 23890
Connection: close
Content-Type: application/x-javascript
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 34c6c87358e04f2487a4fcb466d2ad17
2e99bb20b81b80930471f736676e4dd3a093a9cd
db58d2601ad2308da96f8998b9b5e39c3c48b910c0f141230a757b9985b536fb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 17:47:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash f5748fe61285ac561342d29f791caa95
590c2a121202a33abc837dd6210aaf0c8f54d3fd
69003e7446655b4935fb38652b1552e4763eab5bede555e53eba97ee304d61e9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 17:47:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/instream/ad_status.js
142.250.74.134200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 142.250.74.134:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 17:36:35 GMT
expires: Wed, 25 Jan 2023 17:51:35 GMT
cache-control: public, max-age=900
age: 668
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
112.218.68.155/~changwon/data/file/banner2/thumb-1893352602_VCrjfuTR_d51f4ce0535eec11a5e08e864531ff17f6cf482e_160x41.gif
112.218.68.155200 OK 1.1 kB URL HTTP/1.1 112.218.68.155/~changwon/data/file/banner2/thumb-1893352602_VCrjfuTR_d51f4ce0535eec11a5e08e864531ff17f6cf482e_160x41.gif
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type GIF image data, version 87a, 160 x 41\012- data
Hash cd834a8a98b69405167c48b7242176f4
e0e6424cc5d4f75cc67228f42fd4be3010c523ba
af90adcf2617f21a18d58ec7238ca6e35e9c426e62bac6aeeba533e05a147232
Analyzer Verdict Alert quad9 Sinkholed
GET /~changwon/data/file/banner2/thumb-1893352602_VCrjfuTR_d51f4ce0535eec11a5e08e864531ff17f6cf482e_160x41.gif HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:30 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Sat, 24 Oct 2020 13:49:50 GMT
ETag: "156018a-473-5b26af88fbb80"
Accept-Ranges: bytes
Content-Length: 1139
Connection: close
Content-Type: image/gif
googleads.g.doubleclick.net/pagead/id
216.58.211.2302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 216.58.211.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Wed, 25 Jan 2023 17:47:43 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1005c9e99dc8d4390861d6730c7a403b
0e3858ae26a1c01e0160e3b60e400bea202ebd05
4ff7ceb81a3dad4fefd3a15ece4ce13898624c01bf5a0cb4fdd90958978ed6b9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 17:47:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1005c9e99dc8d4390861d6730c7a403b
0e3858ae26a1c01e0160e3b60e400bea202ebd05
4ff7ceb81a3dad4fefd3a15ece4ce13898624c01bf5a0cb4fdd90958978ed6b9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 17:47:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e42c4bc3eb1dde3e47013119de155096
ee735e961b5844018da0625bfd2476ab70500926
689f2b20a0cac8f0b3ad9fcc34ffb152ab8e935a0fb322d8e9fcb21f1a0ae151
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 17:47:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.211.10200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.211.10:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Wed, 25 Jan 2023 17:47:43 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash cc2b9a26cf016c0cf9e73531f6004051
408990c14ea8af4c979a277da755c89771672356
36e955bd017c3febc7623ad388bb260757294ca612b94ae5417de6cc04073a82
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 17:47:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 34c6c87358e04f2487a4fcb466d2ad17
2e99bb20b81b80930471f736676e4dd3a093a9cd
db58d2601ad2308da96f8998b9b5e39c3c48b910c0f141230a757b9985b536fb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 17:47:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/js/th/hMfiIRZZaMzaAz5FYaI1FR-xuNlC9MpkqGZdkT5mV6Q.js
216.58.211.4200 OK 14 kB URL HTTP/2 www.google.com/js/th/hMfiIRZZaMzaAz5FYaI1FR-xuNlC9MpkqGZdkT5mV6Q.js
IP 216.58.211.4:0
File type ASCII text, with very long lines (36392)
Hash 224f0c569b57002328a0d93922ad4f85
49f653f477e53d804034c7daf3f6ff850693ea48
367eb30e42b960d0cf60b3bd0f2dd41b61101f15285358dffeb2309b428533a0
GET /js/th/hMfiIRZZaMzaAz5FYaI1FR-xuNlC9MpkqGZdkT5mV6Q.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14417
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 24 Jan 2023 17:04:10 GMT
expires: Wed, 24 Jan 2024 17:04:10 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 03 Jan 2023 15:00:00 GMT
content-type: text/javascript
age: 89013
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3f3ebba38babe4484f955dedf12d71e2
4fc3d61579aa2e035bf84b9439cc1933fe564ca8
b34dc34d61bb90a46615c1f99dd079bb05f662da984beb44233a85f7d3546a47
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 17:47:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 126e9ccbe4e6508bc0a881d69e0c9521
1909837ca688bdf3f91df41f5194cf248fb17812
b3143a6cce962235dd70bf5673ba4c1482d825e83ba6c01f4047fbc6ccc67874
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 17:47:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.211.10200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.211.10:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 264a612e0ccacb6443739f5199f210a2
116d0e15d12be81b8ac019837508ba4e4d888a03
41cfc5383f557926a173f1e83eeef0f38647e1e3df5578b5bf15aaf53b633512
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 25 Jan 2023 17:47:43 GMT
server: ESF
cache-control: private
content-length: 31072
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1005c9e99dc8d4390861d6730c7a403b
0e3858ae26a1c01e0160e3b60e400bea202ebd05
4ff7ceb81a3dad4fefd3a15ece4ce13898624c01bf5a0cb4fdd90958978ed6b9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 17:47:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
yt3.ggpht.com/ytc/AL5GRJVY0m6DmB99DW4Xxgfv93AvePNO5IKeoXnU_AcV0A=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 3.6 kB URL HTTP/2 yt3.ggpht.com/ytc/AL5GRJVY0m6DmB99DW4Xxgfv93AvePNO5IKeoXnU_AcV0A=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 68x68, components 3\012- data
Hash 4a30a4555287055634c7b452312d027d
d811e62537c09f0208385629990783a28c6e6eaf
f1ff24d3179bc6847a7cb9306d3e0ad58d77a278bddeb15aad44373b7b84f951
GET /ytc/AL5GRJVY0m6DmB99DW4Xxgfv93AvePNO5IKeoXnU_AcV0A=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v121"
expires: Thu, 26 Jan 2023 17:47:43 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Wed, 25 Jan 2023 17:47:43 GMT
server: fife
content-length: 3551
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i.ytimg.com/vi/Ej8uBEFtEYc/sddefault.jpg
142.250.74.86200 OK 31 kB URL HTTP/2 i.ytimg.com/vi/Ej8uBEFtEYc/sddefault.jpg
IP 142.250.74.86:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 640x480, components 3\012- data
Hash ead705a3d6956ed2253ede5a19a654c5
35e86df316f39a4610e27969732ef11b75e845a6
398041400b825eef09ffea72d4e01bac5c01e65fe9b80097d064a3e002b13176
GET /vi/Ej8uBEFtEYc/sddefault.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 31262
date: Wed, 25 Jan 2023 17:47:43 GMT
expires: Wed, 25 Jan 2023 19:47:43 GMT
cache-control: public, max-age=7200
etag: "0"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 93af086c11908f25c43c0bd730ca1fd1
75f2cbb9c6d8aeb54145293cafa5404cc3489389
7169b0c49ea8e410f5ec7fb0fd01d0df35251e52057612bfcdff4b88e81b12f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 17:47:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 126e9ccbe4e6508bc0a881d69e0c9521
1909837ca688bdf3f91df41f5194cf248fb17812
b3143a6cce962235dd70bf5673ba4c1482d825e83ba6c01f4047fbc6ccc67874
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 17:47:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
112.218.68.155/~changwon/data/file/banner2/thumb-1893352602_JQwkZC0r_926cecae5361b27357e478834d6e4bb8cf8373a7_160x41.gif
112.218.68.155200 OK 1.1 kB URL HTTP/1.1 112.218.68.155/~changwon/data/file/banner2/thumb-1893352602_JQwkZC0r_926cecae5361b27357e478834d6e4bb8cf8373a7_160x41.gif
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type GIF image data, version 87a, 160 x 41\012- data
Hash cd834a8a98b69405167c48b7242176f4
e0e6424cc5d4f75cc67228f42fd4be3010c523ba
af90adcf2617f21a18d58ec7238ca6e35e9c426e62bac6aeeba533e05a147232
Analyzer Verdict Alert quad9 Sinkholed
GET /~changwon/data/file/banner2/thumb-1893352602_JQwkZC0r_926cecae5361b27357e478834d6e4bb8cf8373a7_160x41.gif HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:30 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Sat, 24 Oct 2020 13:49:50 GMT
ETag: "15601ab-473-5b26af88fbb80"
Accept-Ranges: bytes
Content-Length: 1139
Connection: close
Content-Type: image/gif
112.218.68.155/~changwon/data/file/banner2/thumb-1893352602_hAIDMOXU_eb6bced3867783e459a00de509d94aaf38e7b7d8_160x41.gif
112.218.68.155200 OK 1.1 kB URL HTTP/1.1 112.218.68.155/~changwon/data/file/banner2/thumb-1893352602_hAIDMOXU_eb6bced3867783e459a00de509d94aaf38e7b7d8_160x41.gif
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type GIF image data, version 87a, 160 x 41\012- data
Hash cd834a8a98b69405167c48b7242176f4
e0e6424cc5d4f75cc67228f42fd4be3010c523ba
af90adcf2617f21a18d58ec7238ca6e35e9c426e62bac6aeeba533e05a147232
Analyzer Verdict Alert quad9 Sinkholed
GET /~changwon/data/file/banner2/thumb-1893352602_hAIDMOXU_eb6bced3867783e459a00de509d94aaf38e7b7d8_160x41.gif HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:30 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Sat, 24 Oct 2020 13:49:50 GMT
ETag: "156018c-473-5b26af88fbb80"
Accept-Ranges: bytes
Content-Length: 1139
Connection: close
Content-Type: image/gif
112.218.68.155/~changwon/data/file/banner2/thumb-1893352602_EoMaIGJl_1e6466b9bb56f5e067c7d49d021c86464675de54_160x41.gif
112.218.68.155200 OK 1.1 kB URL HTTP/1.1 112.218.68.155/~changwon/data/file/banner2/thumb-1893352602_EoMaIGJl_1e6466b9bb56f5e067c7d49d021c86464675de54_160x41.gif
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type GIF image data, version 87a, 160 x 41\012- data
Hash cd834a8a98b69405167c48b7242176f4
e0e6424cc5d4f75cc67228f42fd4be3010c523ba
af90adcf2617f21a18d58ec7238ca6e35e9c426e62bac6aeeba533e05a147232
Analyzer Verdict Alert quad9 Sinkholed
GET /~changwon/data/file/banner2/thumb-1893352602_EoMaIGJl_1e6466b9bb56f5e067c7d49d021c86464675de54_160x41.gif HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:30 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Sat, 24 Oct 2020 13:49:50 GMT
ETag: "15601ad-473-5b26af88fbb80"
Accept-Ranges: bytes
Content-Length: 1139
Connection: close
Content-Type: image/gif
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
216.58.211.10200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 216.58.211.10:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Wed, 25 Jan 2023 17:47:43 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
216.58.211.10200 OK 110 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 216.58.211.10:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 8b08c568edc94e84342f0507609e5e6b
e0516977c718d5b3de86dcd4be43c5820e07735e
f698e70d9362c9a5b5e46dd54942bad6b906c3f4494242b23a94c51ef04c78d3
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 999
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 25 Jan 2023 17:47:43 GMT
server: ESF
cache-control: private
content-length: 110
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
112.218.68.155/~changwon/data/file/banner2/thumb-1893352602_1fz6NjXx_2d0b2365e92658fdb5367144e60987cb510e8122_160x41.gif
112.218.68.155200 OK 1.1 kB URL HTTP/1.1 112.218.68.155/~changwon/data/file/banner2/thumb-1893352602_1fz6NjXx_2d0b2365e92658fdb5367144e60987cb510e8122_160x41.gif
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type GIF image data, version 87a, 160 x 41\012- data
Hash cd834a8a98b69405167c48b7242176f4
e0e6424cc5d4f75cc67228f42fd4be3010c523ba
af90adcf2617f21a18d58ec7238ca6e35e9c426e62bac6aeeba533e05a147232
Analyzer Verdict Alert quad9 Sinkholed
GET /~changwon/data/file/banner2/thumb-1893352602_1fz6NjXx_2d0b2365e92658fdb5367144e60987cb510e8122_160x41.gif HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:30 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Sat, 24 Oct 2020 13:49:50 GMT
ETag: "15601ac-473-5b26af88fbb80"
Accept-Ranges: bytes
Content-Length: 1139
Connection: close
Content-Type: image/gif
112.218.68.155/~changwon/data/file/banner2/thumb-1893352602_DBE8qNfX_52ea03b1b94d226f97ccbf6ff0a465da32f8b789_160x41.gif
112.218.68.155200 OK 1.1 kB URL HTTP/1.1 112.218.68.155/~changwon/data/file/banner2/thumb-1893352602_DBE8qNfX_52ea03b1b94d226f97ccbf6ff0a465da32f8b789_160x41.gif
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type GIF image data, version 87a, 160 x 41\012- data
Hash cd834a8a98b69405167c48b7242176f4
e0e6424cc5d4f75cc67228f42fd4be3010c523ba
af90adcf2617f21a18d58ec7238ca6e35e9c426e62bac6aeeba533e05a147232
Analyzer Verdict Alert quad9 Sinkholed
GET /~changwon/data/file/banner2/thumb-1893352602_DBE8qNfX_52ea03b1b94d226f97ccbf6ff0a465da32f8b789_160x41.gif HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:31 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Sat, 24 Oct 2020 13:49:50 GMT
ETag: "15601ae-473-5b26af88fbb80"
Accept-Ranges: bytes
Content-Length: 1139
Connection: close
Content-Type: image/gif
112.218.68.155/~changwon/data/file/banner2/thumb-1893352602_DkGQKb0U_f27727275d486de28fcb2efded9fa809697c06a8_160x41.gif
112.218.68.155200 OK 1.1 kB URL HTTP/1.1 112.218.68.155/~changwon/data/file/banner2/thumb-1893352602_DkGQKb0U_f27727275d486de28fcb2efded9fa809697c06a8_160x41.gif
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type GIF image data, version 87a, 160 x 41\012- data
Hash cd834a8a98b69405167c48b7242176f4
e0e6424cc5d4f75cc67228f42fd4be3010c523ba
af90adcf2617f21a18d58ec7238ca6e35e9c426e62bac6aeeba533e05a147232
Analyzer Verdict Alert quad9 Sinkholed
GET /~changwon/data/file/banner2/thumb-1893352602_DkGQKb0U_f27727275d486de28fcb2efded9fa809697c06a8_160x41.gif HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:31 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Sat, 24 Oct 2020 13:49:50 GMT
ETag: "15601af-473-5b26af88fbb80"
Accept-Ranges: bytes
Content-Length: 1139
Connection: close
Content-Type: image/gif
112.218.68.155/~changwon/data/editor/1701/thumb-d88fd7da21a7646e76e19ca1944a1954_1483754313_9653_160x41.gif
112.218.68.155200 OK 3.9 kB URL HTTP/1.1 112.218.68.155/~changwon/data/editor/1701/thumb-d88fd7da21a7646e76e19ca1944a1954_1483754313_9653_160x41.gif
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type GIF image data, version 87a, 160 x 41\012- data
Hash b022e2704e087c525dcd7dbe4fb1731e
53be486d75e32e929cff9398bcaa738528628386
bb14dd48782cde48786fc238200436a59ef9be1127ce9ecb2fce4f85337d0922
Analyzer Verdict Alert quad9 Sinkholed
GET /~changwon/data/editor/1701/thumb-d88fd7da21a7646e76e19ca1944a1954_1483754313_9653_160x41.gif HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:31 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Sat, 24 Oct 2020 13:49:50 GMT
ETag: "1528025-f3a-5b26af88fbb80"
Accept-Ranges: bytes
Content-Length: 3898
Connection: close
Content-Type: image/gif
112.218.68.155/eyoom/theme/pc_basic/js/jquery-ui-1.11.4.custom.min.js
112.218.68.155200 OK 56 kB URL HTTP/1.1 112.218.68.155/eyoom/theme/pc_basic/js/jquery-ui-1.11.4.custom.min.js
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
Hash 61ee7187ff42f3ac715c5f60d47b444a
c6a98b23347c42bd070eec18d408dee31d3d2f09
ee2be2448e208b275830a9442ef08d1f8ec7c582bce5f73df1f8180031fdec08
Analyzer Verdict Alert quad9 Sinkholed
GET /eyoom/theme/pc_basic/js/jquery-ui-1.11.4.custom.min.js HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:30 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Mon, 04 Jan 2016 09:08:31 GMT
ETag: "1520bc4-d8bd-5287e76ff81c0"
Accept-Ranges: bytes
Content-Length: 55485
Connection: close
Content-Type: application/x-javascript
112.218.68.155/~changwon/data/file/banner2/thumb-1893352602_XPz1rEel_adeda0fceb7014f77a58b545bb9feb39d049ef30_160x41.gif
112.218.68.155200 OK 1.1 kB URL HTTP/1.1 112.218.68.155/~changwon/data/file/banner2/thumb-1893352602_XPz1rEel_adeda0fceb7014f77a58b545bb9feb39d049ef30_160x41.gif
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type GIF image data, version 87a, 160 x 41\012- data
Hash cd834a8a98b69405167c48b7242176f4
e0e6424cc5d4f75cc67228f42fd4be3010c523ba
af90adcf2617f21a18d58ec7238ca6e35e9c426e62bac6aeeba533e05a147232
Analyzer Verdict Alert quad9 Sinkholed
GET /~changwon/data/file/banner2/thumb-1893352602_XPz1rEel_adeda0fceb7014f77a58b545bb9feb39d049ef30_160x41.gif HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:31 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Sat, 24 Oct 2020 13:49:50 GMT
ETag: "15601b1-473-5b26af88fbb80"
Accept-Ranges: bytes
Content-Length: 1139
Connection: close
Content-Type: image/gif
112.218.68.155/eyoom/theme/pc_basic/plugins/font-awesome/fonts/fontawesome-webfont.woff2?v=4.5.0
112.218.68.155200 OK 67 kB URL HTTP/1.1 112.218.68.155/eyoom/theme/pc_basic/plugins/font-awesome/fonts/fontawesome-webfont.woff2?v=4.5.0
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type Web Open Font Format (Version 2), TrueType, length 66624, version 4.262\012- data
Hash db812d8a70a4e88e888744c1c9a27e89
638c652d623280a58144f93e7b552c66d1667a11
ff82aeed6b9bb6701696c84d1b223d2e682eb78c89117a438ce6cfea8c498995
Analyzer Verdict Alert quad9 Sinkholed
GET /eyoom/theme/pc_basic/plugins/font-awesome/fonts/fontawesome-webfont.woff2?v=4.5.0 HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://112.218.68.155/eyoom/theme/pc_basic/plugins/font-awesome/css/font-awesome.min.css
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:30 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Sun, 03 Jan 2016 09:45:37 GMT
ETag: "1520ae9-10440-5286addd63240"
Accept-Ranges: bytes
Content-Length: 66624
Connection: close
Content-Type: text/plain
112.218.68.155/~changwon/data/editor/1701/thumb-214bee7792269975584952211dc7d3cb_1484884043_8017_160x41.jpg
112.218.68.155200 OK 3.8 kB URL HTTP/1.1 112.218.68.155/~changwon/data/editor/1701/thumb-214bee7792269975584952211dc7d3cb_1484884043_8017_160x41.jpg
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 160x41, components 3\012- data
Hash 1aa14742c208f17b08b227e1890fd175
f8ef1138c7b9ac0755ec185808e5ac29904cb491
eae5ebd99a037d61f0a18675b9d9d22fe65b98da8e60944ef48140c64f322c28
Analyzer Verdict Alert quad9 Sinkholed
GET /~changwon/data/editor/1701/thumb-214bee7792269975584952211dc7d3cb_1484884043_8017_160x41.jpg HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:31 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Sat, 24 Oct 2020 13:49:50 GMT
ETag: "1528026-ef1-5b26af88fbb80"
Accept-Ranges: bytes
Content-Length: 3825
Connection: close
Content-Type: image/jpeg
112.218.68.155/~changwon/data/editor/1908/thumb-e09a1cd4cb23ab4835b92f308866c698_1567160744_0019_160x41.gif
112.218.68.155200 OK 1.1 kB URL HTTP/1.1 112.218.68.155/~changwon/data/editor/1908/thumb-e09a1cd4cb23ab4835b92f308866c698_1567160744_0019_160x41.gif
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type GIF image data, version 87a, 160 x 41\012- data
Hash 0b69d66d872747ab9aa4113b5dccc6d5
96a0f1193c809a64d4e91925c78d4708f96fab75
776d7114e0635436c847a2c529fa4b09e2f10a3fd75f1912b91a4117a5963acc
Analyzer Verdict Alert quad9 Sinkholed
GET /~changwon/data/editor/1908/thumb-e09a1cd4cb23ab4835b92f308866c698_1567160744_0019_160x41.gif HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:31 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Sat, 24 Oct 2020 13:49:50 GMT
ETag: "15601b6-473-5b26af88fbb80"
Accept-Ranges: bytes
Content-Length: 1139
Connection: close
Content-Type: image/gif
112.218.68.155/~changwon/data/editor/1703/thumb-478996cef9a24a488073ab5df4b7ead4_1489718028_8941_160x41.gif
112.218.68.155200 OK 3.2 kB URL HTTP/1.1 112.218.68.155/~changwon/data/editor/1703/thumb-478996cef9a24a488073ab5df4b7ead4_1489718028_8941_160x41.gif
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type GIF image data, version 87a, 160 x 41\012- data
Hash e9c3ed9a5ddd97852b88013f9076b2ef
7be626e4ac46141d303005cf43b6bccdc2026a73
e46b3613a3baa3a7b1e677359996be8d800884303bf1f75cb64d2896e8d09654
Analyzer Verdict Alert quad9 Sinkholed
GET /~changwon/data/editor/1703/thumb-478996cef9a24a488073ab5df4b7ead4_1489718028_8941_160x41.gif HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:31 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Sat, 24 Oct 2020 13:49:50 GMT
ETag: "1528033-c70-5b26af88fbb80"
Accept-Ranges: bytes
Content-Length: 3184
Connection: close
Content-Type: image/gif
112.218.68.155/~changwon/data/editor/1703/thumb-478996cef9a24a488073ab5df4b7ead4_1489718706_3332_160x41.gif
112.218.68.155200 OK 5.5 kB URL HTTP/1.1 112.218.68.155/~changwon/data/editor/1703/thumb-478996cef9a24a488073ab5df4b7ead4_1489718706_3332_160x41.gif
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type GIF image data, version 87a, 160 x 41\012- data
Hash bab495bc7faac3d182cff121750bf81c
86b8c66af7a282d8ae2e66b56d440ab6840a7564
6103f494798bd725d165f0b00b428276cdc0f9252a859c1389fdfc2511d28bf8
Analyzer Verdict Alert quad9 Sinkholed
GET /~changwon/data/editor/1703/thumb-478996cef9a24a488073ab5df4b7ead4_1489718706_3332_160x41.gif HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:31 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Sat, 24 Oct 2020 13:49:50 GMT
ETag: "152804a-154f-5b26af88fbb80"
Accept-Ranges: bytes
Content-Length: 5455
Connection: close
Content-Type: image/gif
112.218.68.155/~changwon/data/file/banner/thumb-1893352602_8KhCJmMZ_f54954694217b2e94139027985103e18f0bb4fe8_160x41.gif
112.218.68.155200 OK 1.1 kB URL HTTP/1.1 112.218.68.155/~changwon/data/file/banner/thumb-1893352602_8KhCJmMZ_f54954694217b2e94139027985103e18f0bb4fe8_160x41.gif
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type GIF image data, version 87a, 160 x 41\012- data
Hash cd834a8a98b69405167c48b7242176f4
e0e6424cc5d4f75cc67228f42fd4be3010c523ba
af90adcf2617f21a18d58ec7238ca6e35e9c426e62bac6aeeba533e05a147232
Analyzer Verdict Alert quad9 Sinkholed
GET /~changwon/data/file/banner/thumb-1893352602_8KhCJmMZ_f54954694217b2e94139027985103e18f0bb4fe8_160x41.gif HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:31 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Sat, 24 Oct 2020 13:49:50 GMT
ETag: "15601bd-473-5b26af88fbb80"
Accept-Ranges: bytes
Content-Length: 1139
Connection: close
Content-Type: image/gif
112.218.68.155/eyoom/theme/pc_basic/main/img/ma1.gif
112.218.68.155200 OK 2.5 kB URL HTTP/1.1 112.218.68.155/eyoom/theme/pc_basic/main/img/ma1.gif
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type GIF image data, version 89a, 119 x 36\012- data
Hash d3c4bf15c43810abe7307362f5783792
83d44397943425d5fd6c78562a47520d46c58a87
4f2138d59df0fc9195b9acf064a1017c5dc7b35736452bd70c82505052026345
Analyzer Verdict Alert quad9 Sinkholed
GET /eyoom/theme/pc_basic/main/img/ma1.gif HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:31 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Tue, 01 Nov 2016 09:05:51 GMT
ETag: "1520e55-9f1-54039a18959c0"
Accept-Ranges: bytes
Content-Length: 2545
Connection: close
Content-Type: image/gif
112.218.68.155/~changwon/data/file/banner/thumb-1893352602_xwd5RLNe_e4e0b7497ebfaaf68a7a033ab16edc327812a88e_160x41.jpg
112.218.68.155200 OK 5.9 kB URL HTTP/1.1 112.218.68.155/~changwon/data/file/banner/thumb-1893352602_xwd5RLNe_e4e0b7497ebfaaf68a7a033ab16edc327812a88e_160x41.jpg
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 160x41, components 3\012- data
Hash 5ce754fc6acdf737ec305d73efea827f
f4f7b16b3caf500c5b780e1ab69490ce4325a26c
00588b6d9d7555c43e790ade0a789adc1fdcfd9f98da044ddbcb4ab28dd50eef
Analyzer Verdict Alert quad9 Sinkholed
GET /~changwon/data/file/banner/thumb-1893352602_xwd5RLNe_e4e0b7497ebfaaf68a7a033ab16edc327812a88e_160x41.jpg HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:31 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Sat, 24 Oct 2020 13:49:50 GMT
ETag: "15601ba-16ea-5b26af88fbb80"
Accept-Ranges: bytes
Content-Length: 5866
Connection: close
Content-Type: image/jpeg
112.218.68.155/eyoom/theme/pc_basic/main/img/ma4.gif
112.218.68.155200 OK 2.5 kB URL HTTP/1.1 112.218.68.155/eyoom/theme/pc_basic/main/img/ma4.gif
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type GIF image data, version 89a, 119 x 36\012- data
Hash 4fc6dedaaff2b011d49fade03a910ddd
047917502d296ddc87150ed6f2d2d34a4d7d54a9
8f7f2241f5cbeab3bf6684ae3e5224bf7ce223092eb433ee94298be397bb59e8
Analyzer Verdict Alert quad9 Sinkholed
GET /eyoom/theme/pc_basic/main/img/ma4.gif HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:32 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Tue, 01 Nov 2016 09:05:54 GMT
ETag: "1520e6d-9be-54039a1b72080"
Accept-Ranges: bytes
Content-Length: 2494
Connection: close
Content-Type: image/gif
112.218.68.155/eyoom/theme/pc_basic/main/img/ma6.gif
112.218.68.155200 OK 2.6 kB URL HTTP/1.1 112.218.68.155/eyoom/theme/pc_basic/main/img/ma6.gif
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type GIF image data, version 89a, 118 x 36\012- data
Hash b0eefc8fa7b0ffb4f573ca1915d56ad4
f69beb53f40600d35a495fa21d6bf59000678047
60d730ce282282079cabd68a423b6a1553b25b1df4fd9fbe68695f5483b8941e
GET /eyoom/theme/pc_basic/main/img/ma6.gif HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:32 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Tue, 01 Nov 2016 09:05:54 GMT
ETag: "1520e6f-a45-54039a1b72080"
Accept-Ranges: bytes
Content-Length: 2629
Connection: close
Content-Type: image/gif
112.218.68.155/eyoom/theme/pc_basic/main/img/ma5.gif
112.218.68.155200 OK 2.6 kB URL HTTP/1.1 112.218.68.155/eyoom/theme/pc_basic/main/img/ma5.gif
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type GIF image data, version 89a, 119 x 36\012- data
Hash 2998e54a7960b54268ffc796e16e48f9
10bcbe54912a57cdeef91188ea641b8c31185765
f65ed5712ce8069e5baf96fda204293bdd3162c777f4df7a7adc714f8d233af3
Analyzer Verdict Alert quad9 Sinkholed
GET /eyoom/theme/pc_basic/main/img/ma5.gif HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:32 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Tue, 01 Nov 2016 09:05:54 GMT
ETag: "1520e6e-a0c-54039a1b72080"
Accept-Ranges: bytes
Content-Length: 2572
Connection: close
Content-Type: image/gif
112.218.68.155/eyoom/theme/pc_basic/main/img/ma7.gif
112.218.68.155200 OK 2.9 kB URL HTTP/1.1 112.218.68.155/eyoom/theme/pc_basic/main/img/ma7.gif
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type GIF image data, version 89a, 119 x 36\012- data
Hash ac9f7a2fe0d87499474e0063682c6396
154305872ea040d3b51e3fa9f7e5ae5e262929cc
86ff87783d19b29af2eabd01b6a5068f446af83d331824db432944d7383749e3
Analyzer Verdict Alert quad9 Sinkholed
GET /eyoom/theme/pc_basic/main/img/ma7.gif HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:32 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Tue, 01 Nov 2016 09:05:54 GMT
ETag: "1520e70-b66-54039a1b72080"
Accept-Ranges: bytes
Content-Length: 2918
Connection: close
Content-Type: image/gif
112.218.68.155/eyoom/theme/pc_basic/main/img/ma8.gif
112.218.68.155200 OK 2.5 kB URL HTTP/1.1 112.218.68.155/eyoom/theme/pc_basic/main/img/ma8.gif
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type GIF image data, version 89a, 119 x 36\012- data
Hash b90e23289ee0ec0192c80fccb73f578e
2a5535076b1fbe3cbdd86693799cee7fde90388a
5331245060ecc823a452eeaabe4c0f4d09a87670b141f389d96b44597d4847e5
Analyzer Verdict Alert quad9 Sinkholed
GET /eyoom/theme/pc_basic/main/img/ma8.gif HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:32 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Tue, 01 Nov 2016 09:05:54 GMT
ETag: "1520e71-9af-54039a1b72080"
Accept-Ranges: bytes
Content-Length: 2479
Connection: close
Content-Type: image/gif
112.218.68.155/eyoom/theme/pc_basic/main/img/ma9.gif
112.218.68.155200 OK 2.6 kB URL HTTP/1.1 112.218.68.155/eyoom/theme/pc_basic/main/img/ma9.gif
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type GIF image data, version 89a, 119 x 36\012- data
Hash 0369f480fea55c03b38e4e440fe33494
73da5e18306d3baf2024a823ba173db0c9cf0b40
926713e0a485014cadbd017cf3885bc6f57fc799f7a908ab11ee47be61b15778
Analyzer Verdict Alert quad9 Sinkholed
GET /eyoom/theme/pc_basic/main/img/ma9.gif HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:32 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Tue, 01 Nov 2016 09:05:54 GMT
ETag: "1520e72-a29-54039a1b72080"
Accept-Ranges: bytes
Content-Length: 2601
Connection: close
Content-Type: image/gif
112.218.68.155/eyoom/theme/pc_basic/main/img/ma10.gif
112.218.68.155200 OK 2.8 kB URL HTTP/1.1 112.218.68.155/eyoom/theme/pc_basic/main/img/ma10.gif
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type GIF image data, version 89a, 119 x 36\012- data
Hash 19568960c176551775def2bce5356c0c
5d4e4ce3b7db8fd8cbb24bb9ec92967876530b6a
16adad9b2bf976a0926135d5f9a32133ea8b746ae064b9f3bfd7828760e7425c
Analyzer Verdict Alert quad9 Sinkholed
GET /eyoom/theme/pc_basic/main/img/ma10.gif HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:32 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Tue, 01 Nov 2016 09:05:51 GMT
ETag: "1520e56-ad6-54039a18959c0"
Accept-Ranges: bytes
Content-Length: 2774
Connection: close
Content-Type: image/gif
112.218.68.155/eyoom/theme/pc_basic/main/img/ma13.gif
112.218.68.155200 OK 2.8 kB URL HTTP/1.1 112.218.68.155/eyoom/theme/pc_basic/main/img/ma13.gif
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type GIF image data, version 89a, 119 x 36\012- data
Hash b97c0fb3a66f14a73ebd43a8938feb84
f52333f5f8fd572235596c9fcd1a7b1d2d1f0c16
ff93c05c5ee2c621dda94ed2f4b063c69a57207c4770bfe607a87d159d5e4588
Analyzer Verdict Alert quad9 Sinkholed
GET /eyoom/theme/pc_basic/main/img/ma13.gif HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:32 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Tue, 01 Nov 2016 09:05:51 GMT
ETag: "1520e59-ac5-54039a18959c0"
Accept-Ranges: bytes
Content-Length: 2757
Connection: close
Content-Type: image/gif
112.218.68.155/eyoom/theme/pc_basic/main/img/ma12.gif
112.218.68.155200 OK 2.7 kB URL HTTP/1.1 112.218.68.155/eyoom/theme/pc_basic/main/img/ma12.gif
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type GIF image data, version 89a, 118 x 36\012- data
Hash 4acee0caf0f5ceaea8eeaad3a539bf85
d33e108c87149cc0f3683b66e5e235601147d2d9
69820c025f8682cacb9fc244041a0a4ac5ae159d17086af5e2178f1386bbfc2f
Analyzer Verdict Alert quad9 Sinkholed
GET /eyoom/theme/pc_basic/main/img/ma12.gif HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:32 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Tue, 01 Nov 2016 09:05:51 GMT
ETag: "1520e58-a7f-54039a18959c0"
Accept-Ranges: bytes
Content-Length: 2687
Connection: close
Content-Type: image/gif
112.218.68.155/eyoom/theme/pc_basic/main/img/ma14.gif
112.218.68.155200 OK 2.7 kB URL HTTP/1.1 112.218.68.155/eyoom/theme/pc_basic/main/img/ma14.gif
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type GIF image data, version 89a, 119 x 36\012- data
Hash d4c96c729a4fcf7d99a838f37a8ea515
a95bf8848e6eab15ac6690012050b884f57d832d
6366924dad47ce9461b16f314181e2d005c32f3c870c015c23e5bff7f3e36b56
Analyzer Verdict Alert quad9 Sinkholed
GET /eyoom/theme/pc_basic/main/img/ma14.gif HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:32 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Tue, 01 Nov 2016 09:05:51 GMT
ETag: "1520e5a-a9f-54039a18959c0"
Accept-Ranges: bytes
Content-Length: 2719
Connection: close
Content-Type: image/gif
112.218.68.155/eyoom/theme/pc_basic/main/img/ma15.gif
112.218.68.155200 OK 2.8 kB URL HTTP/1.1 112.218.68.155/eyoom/theme/pc_basic/main/img/ma15.gif
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type GIF image data, version 89a, 119 x 36\012- data
Hash bd79aa5549606fe23f0de0715fb4d2f5
00abb454dcd7d25e226f4a74fc36fbd8caeab041
1031ede5e642e3183d34a2d8c71e999149d10caf831fe097a576e251cf02458c
Analyzer Verdict Alert quad9 Sinkholed
GET /eyoom/theme/pc_basic/main/img/ma15.gif HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:32 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Tue, 01 Nov 2016 09:05:52 GMT
ETag: "1520e5b-abe-54039a1989c00"
Accept-Ranges: bytes
Content-Length: 2750
Connection: close
Content-Type: image/gif
112.218.68.155/eyoom/theme/pc_basic/main/img/ma16.gif
112.218.68.155200 OK 2.8 kB URL HTTP/1.1 112.218.68.155/eyoom/theme/pc_basic/main/img/ma16.gif
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type GIF image data, version 89a, 119 x 36\012- data
Hash 301fc1e08cecdb50e33d7b9634b44221
f38376f6d32540464b92781999c9292e4198de27
523b5c04dbe30bc99c166f8ee73b011f7a2de58525e9a6107ec8718de6e071b6
Analyzer Verdict Alert quad9 Sinkholed
GET /eyoom/theme/pc_basic/main/img/ma16.gif HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:32 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Tue, 01 Nov 2016 09:05:52 GMT
ETag: "1520e5c-b20-54039a1989c00"
Accept-Ranges: bytes
Content-Length: 2848
Connection: close
Content-Type: image/gif
112.218.68.155/eyoom/theme/pc_basic/main/img/ma17.gif
112.218.68.155200 OK 2.6 kB URL HTTP/1.1 112.218.68.155/eyoom/theme/pc_basic/main/img/ma17.gif
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type GIF image data, version 89a, 119 x 36\012- data
Hash 203659ffa13cb9e13f54e8566aeb5cdb
c9158db3a7e4250ba4cdc066c217e0806da09ff3
de056f27ef592384d8ac5fd95475b399a57f6ee5c3e6e604dd3b36aadc7e4596
Analyzer Verdict Alert quad9 Sinkholed
GET /eyoom/theme/pc_basic/main/img/ma17.gif HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:32 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Tue, 01 Nov 2016 09:05:52 GMT
ETag: "1520e5d-a53-54039a1989c00"
Accept-Ranges: bytes
Content-Length: 2643
Connection: close
Content-Type: image/gif
112.218.68.155/eyoom/theme/pc_basic/main/img/ma20.gif
112.218.68.155200 OK 2.7 kB URL HTTP/1.1 112.218.68.155/eyoom/theme/pc_basic/main/img/ma20.gif
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type GIF image data, version 89a, 119 x 36\012- data
Hash b72bda0b82f7b985f9f32c09a012cc0f
782a3111235b56b9d05ff20f0925699ef85e307b
754d82f598bf9507b73842050666b9c3e0f15a4c75283616ca6313be84b97779
Analyzer Verdict Alert quad9 Sinkholed
GET /eyoom/theme/pc_basic/main/img/ma20.gif HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:33 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Tue, 01 Nov 2016 09:05:52 GMT
ETag: "1520e61-aab-54039a1989c00"
Accept-Ranges: bytes
Content-Length: 2731
Connection: close
Content-Type: image/gif
112.218.68.155/eyoom/theme/pc_basic/main/img/ma19.gif
112.218.68.155200 OK 2.7 kB URL HTTP/1.1 112.218.68.155/eyoom/theme/pc_basic/main/img/ma19.gif
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type GIF image data, version 89a, 119 x 36\012- data
Hash 5b23117d2aba15629cf0e29cad891057
ba348fb0f0f71b7543db8240ce0977be00d1a57e
91a47ed3881bf8b3744d7a3f10f64275b03ba0e485c95e135ab86507d0f3dcff
Analyzer Verdict Alert quad9 Sinkholed
GET /eyoom/theme/pc_basic/main/img/ma19.gif HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:33 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Tue, 01 Nov 2016 09:05:52 GMT
ETag: "1520e5f-a83-54039a1989c00"
Accept-Ranges: bytes
Content-Length: 2691
Connection: close
Content-Type: image/gif
112.218.68.155/eyoom/theme/pc_basic/main/img/ma21.gif
112.218.68.155200 OK 3.0 kB URL HTTP/1.1 112.218.68.155/eyoom/theme/pc_basic/main/img/ma21.gif
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type GIF image data, version 89a, 119 x 36\012- data
Hash 5c7c7f67ce95561f9eb82d2d5435090a
954ea130e6f0f4f4ac7ba437e34a87723c2a32ec
9be1817d3e6102a9a73e5609d166ba476456b21757f795ed0c8a0ca935a1d2aa
Analyzer Verdict Alert quad9 Sinkholed
GET /eyoom/theme/pc_basic/main/img/ma21.gif HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:33 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Tue, 01 Nov 2016 09:05:52 GMT
ETag: "1520e62-bc9-54039a1989c00"
Accept-Ranges: bytes
Content-Length: 3017
Connection: close
Content-Type: image/gif
112.218.68.155/eyoom/theme/pc_basic/main/img/ma22.gif
112.218.68.155200 OK 3.1 kB URL HTTP/1.1 112.218.68.155/eyoom/theme/pc_basic/main/img/ma22.gif
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type GIF image data, version 89a, 119 x 36\012- data
Hash ed481a9a6b5800c6317ac93590c48c91
ebc375b5dd1ecc7ae2bb87055d68dbeb85283b05
2c9f47c017454cd9b088fda26a9d26fb9f1f116afcdabc2edac6557ec7b75ba0
Analyzer Verdict Alert quad9 Sinkholed
GET /eyoom/theme/pc_basic/main/img/ma22.gif HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:33 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Tue, 01 Nov 2016 09:05:52 GMT
ETag: "1520e63-c25-54039a1989c00"
Accept-Ranges: bytes
Content-Length: 3109
Connection: close
Content-Type: image/gif
112.218.68.155/eyoom/theme/pc_basic/main/img/ma23.gif
112.218.68.155200 OK 2.8 kB URL HTTP/1.1 112.218.68.155/eyoom/theme/pc_basic/main/img/ma23.gif
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type GIF image data, version 89a, 119 x 36\012- data
Hash 19511e6e5512b1a379c7f68f2564f2f9
61167afb88af727f1a35ee6af4f974a792039aef
d907af3b9483dfd8bdecb8290cd1708459d44d5b7fdd46de61616af9f0422c72
Analyzer Verdict Alert quad9 Sinkholed
GET /eyoom/theme/pc_basic/main/img/ma23.gif HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:33 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Tue, 01 Nov 2016 09:05:53 GMT
ETag: "1520e64-b21-54039a1a7de40"
Accept-Ranges: bytes
Content-Length: 2849
Connection: close
Content-Type: image/gif
112.218.68.155/eyoom/theme/pc_basic/main/img/ma24.gif
112.218.68.155200 OK 2.6 kB URL HTTP/1.1 112.218.68.155/eyoom/theme/pc_basic/main/img/ma24.gif
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type GIF image data, version 89a, 118 x 36\012- data
Hash 003656cc57882e26f1100482e2fd3f8f
2b0b65291520aa5f1ad2bf29a54e10eed6f5d1b1
258c71ffe56d2256e3cbcd404aab96d6c6bdd68959d37383ea056ad7fbfa673e
Analyzer Verdict Alert quad9 Sinkholed
GET /eyoom/theme/pc_basic/main/img/ma24.gif HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:33 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Tue, 01 Nov 2016 09:05:53 GMT
ETag: "1520e65-a50-54039a1a7de40"
Accept-Ranges: bytes
Content-Length: 2640
Connection: close
Content-Type: image/gif
112.218.68.155/eyoom/theme/pc_basic/main/img/ma27.gif
112.218.68.155200 OK 2.3 kB URL HTTP/1.1 112.218.68.155/eyoom/theme/pc_basic/main/img/ma27.gif
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type GIF image data, version 89a, 119 x 36\012- data
Hash f6a208b19d9540ab793767963d4d2a61
ab6b78e9585ea7fc4ea5b1338755f5e7a3e0a66c
c16f54ba1b0383a958a72e39cafb61fe26ac420e246ac33a3fe6c9dda47b451c
Analyzer Verdict Alert quad9 Sinkholed
GET /eyoom/theme/pc_basic/main/img/ma27.gif HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:33 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Tue, 01 Nov 2016 09:05:53 GMT
ETag: "1520e68-926-54039a1a7de40"
Accept-Ranges: bytes
Content-Length: 2342
Connection: close
Content-Type: image/gif
112.218.68.155/eyoom/theme/pc_basic/main/img/ma26.gif
112.218.68.155200 OK 2.3 kB URL HTTP/1.1 112.218.68.155/eyoom/theme/pc_basic/main/img/ma26.gif
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type GIF image data, version 89a, 119 x 36\012- data
Hash be8653d76ddd8c2523456363dc97d59b
368bf6ebddcb47b75d559462c52ee1280e2ce750
18abd8d08df4462d118f2afa78906a97b5ea01f5f90c51b1ec747841db1ce1bb
Analyzer Verdict Alert quad9 Sinkholed
GET /eyoom/theme/pc_basic/main/img/ma26.gif HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:33 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Tue, 01 Nov 2016 09:05:53 GMT
ETag: "1520e67-921-54039a1a7de40"
Accept-Ranges: bytes
Content-Length: 2337
Connection: close
Content-Type: image/gif
112.218.68.155/eyoom/theme/pc_basic/main/img/ma28.gif
112.218.68.155200 OK 2.3 kB URL HTTP/1.1 112.218.68.155/eyoom/theme/pc_basic/main/img/ma28.gif
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type GIF image data, version 89a, 119 x 36\012- data
Hash 7279c2896df9bac038c41a9c7e84ea61
03ecdfee694041cb8ac1f794770d93cc55a31a94
a0e73fa98dbb9cabee41abee7296702234f6422dd84b26a9633919e2ba6cfba3
Analyzer Verdict Alert quad9 Sinkholed
GET /eyoom/theme/pc_basic/main/img/ma28.gif HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:33 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Tue, 01 Nov 2016 09:05:53 GMT
ETag: "1520e69-903-54039a1a7de40"
Accept-Ranges: bytes
Content-Length: 2307
Connection: close
Content-Type: image/gif
112.218.68.155/eyoom/theme/pc_basic/main/img/ma29.gif
112.218.68.155200 OK 2.4 kB URL HTTP/1.1 112.218.68.155/eyoom/theme/pc_basic/main/img/ma29.gif
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type GIF image data, version 89a, 119 x 36\012- data
Hash f62f287a11a96d5a169a49b4021e9297
ef90719310e0e164e24b825198d0b95472cd50c6
f3d2dfb20bccb7c35a871fda3ac0f72d004c394bdcdd1080b4ed977b71071d1e
Analyzer Verdict Alert quad9 Sinkholed
GET /eyoom/theme/pc_basic/main/img/ma29.gif HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:33 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Tue, 01 Nov 2016 09:05:53 GMT
ETag: "1520e6a-954-54039a1a7de40"
Accept-Ranges: bytes
Content-Length: 2388
Connection: close
Content-Type: image/gif
112.218.68.155/eyoom/theme/pc_basic/main/img/ma30.gif
112.218.68.155200 OK 2.3 kB URL HTTP/1.1 112.218.68.155/eyoom/theme/pc_basic/main/img/ma30.gif
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type GIF image data, version 89a, 118 x 36\012- data
Hash 8823aff55e1a2b513823bb2ab27fa88a
b0761a00485f63ec92b1c050dcc978591e9666f3
98d38cf03da958dcf37555136764b33602af2fdf1ffb6cbe2132997642a551b1
Analyzer Verdict Alert quad9 Sinkholed
GET /eyoom/theme/pc_basic/main/img/ma30.gif HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:33 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Tue, 01 Nov 2016 09:05:53 GMT
ETag: "1520e6c-92b-54039a1a7de40"
Accept-Ranges: bytes
Content-Length: 2347
Connection: close
Content-Type: image/gif
112.218.68.155/eyoom/theme/pc_basic/layout/side_pc/mail1.png
112.218.68.155200 OK 4.8 kB URL HTTP/1.1 112.218.68.155/eyoom/theme/pc_basic/layout/side_pc/mail1.png
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type PNG image data, 43 x 33, 8-bit/color RGB, non-interlaced\012- data
Hash d1364b183fadbc701ec0988f9f7fa55f
d2a518210f1cd61b1f8f96307b833810194d155d
76157a632ff6832c65965207bfbf93a883b572e28e931e64b8403f653997da48
Analyzer Verdict Alert quad9 Sinkholed
GET /eyoom/theme/pc_basic/layout/side_pc/mail1.png HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:34 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Mon, 02 Jan 2017 09:12:13 GMT
ETag: "152027f-12d4-54518f2777540"
Accept-Ranges: bytes
Content-Length: 4820
Connection: close
Content-Type: image/png
112.218.68.155/eyoom/theme/pc_basic/layout/side_pc/mail2.png
112.218.68.155200 OK 4.9 kB URL HTTP/1.1 112.218.68.155/eyoom/theme/pc_basic/layout/side_pc/mail2.png
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type PNG image data, 58 x 33, 8-bit/color RGB, non-interlaced\012- data
Hash 48042183ba360e04eee10f7bfe90e94f
4b88566fbd737e0ed61eb5c4ac290fa1d6ab52aa
0d0ad122e6ec3c8878e3cae4356ddbdee9b1336045818e047e26e9bdc484207a
Analyzer Verdict Alert quad9 Sinkholed
GET /eyoom/theme/pc_basic/layout/side_pc/mail2.png HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:34 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Mon, 02 Jan 2017 09:12:13 GMT
ETag: "1520286-1303-54518f2777540"
Accept-Ranges: bytes
Content-Length: 4867
Connection: close
Content-Type: image/png
112.218.68.155/eyoom/theme/pc_basic/layout/side_pc/center.png
112.218.68.155200 OK 10 kB URL HTTP/1.1 112.218.68.155/eyoom/theme/pc_basic/layout/side_pc/center.png
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type PNG image data, 290 x 42, 8-bit/color RGB, non-interlaced\012- data
Hash cf9b3e0e6bd2a27efc99a1dc2f0c8ba6
919e08eb1c93735200283ba45b4ffd12cb15c6b5
4e7710a10af8818ebda246a8405466c6ae5b5010507d75b14cc520b181cf1a92
Analyzer Verdict Alert quad9 Sinkholed
GET /eyoom/theme/pc_basic/layout/side_pc/center.png HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:34 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Sat, 29 Oct 2016 04:41:34 GMT
ETag: "1520be1-281e-53ff996dc9b80"
Accept-Ranges: bytes
Content-Length: 10270
Connection: close
Content-Type: image/png
112.218.68.155/eyoom/theme/pc_basic/layout/side_pc/bnk.png
112.218.68.155200 OK 23 kB URL HTTP/1.1 112.218.68.155/eyoom/theme/pc_basic/layout/side_pc/bnk.png
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type PNG image data, 290 x 118, 8-bit/color RGB, non-interlaced\012- data
Hash eacc3565c123832789aa406f6e93327f
114e5119615d385d6d0ead6d316a049638f55116
b162f0b046313a240502dddd84a89f0b3e341a8a7a6d706e6cade7d7f7b096ac
Analyzer Verdict Alert quad9 Sinkholed
GET /eyoom/theme/pc_basic/layout/side_pc/bnk.png HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:33 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Mon, 31 Oct 2016 02:41:27 GMT
ETag: "1520bde-59d2-5402024f943c0"
Accept-Ranges: bytes
Content-Length: 22994
Connection: close
Content-Type: image/png
112.218.68.155/eyoom/theme/pc_basic/layout/side_pc/homtax.png
112.218.68.155200 OK 9.5 kB URL HTTP/1.1 112.218.68.155/eyoom/theme/pc_basic/layout/side_pc/homtax.png
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type PNG image data, 290 x 55, 8-bit/color RGB, non-interlaced\012- data
Hash 06ae570e58e91ffe4e1683612823472b
2ca6d326cfa7ce51ba02998f9411e91df2cd3ef6
1289049051407e761948acdca9d1f0e372c32211c7a15ed561242c2a75c3dcb8
Analyzer Verdict Alert quad9 Sinkholed
GET /eyoom/theme/pc_basic/layout/side_pc/homtax.png HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:34 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Sat, 07 Jan 2017 04:58:56 GMT
ETag: "15201e6-2523-54579fddc8400"
Accept-Ranges: bytes
Content-Length: 9507
Connection: close
Content-Type: image/png
112.218.68.155/eyoom/theme/pc_basic/layout/side_pc/mail3.png
112.218.68.155200 OK 5.4 kB URL HTTP/1.1 112.218.68.155/eyoom/theme/pc_basic/layout/side_pc/mail3.png
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type PNG image data, 54 x 33, 8-bit/color RGB, non-interlaced\012- data
Hash 03c5950cff3138d53c3dfc90b4ebfedc
1c54f09fc4605926e8ee8db64978764402535795
08d960099ac3f5445894ba6ad187c228726a3f75d882edc2b0ba81ec64c31a34
Analyzer Verdict Alert quad9 Sinkholed
GET /eyoom/theme/pc_basic/layout/side_pc/mail3.png HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:34 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Mon, 02 Jan 2017 09:12:14 GMT
ETag: "152028e-14e9-54518f286b780"
Accept-Ranges: bytes
Content-Length: 5353
Connection: close
Content-Type: image/png
112.218.68.155/eyoom/theme/pc_basic/layout/side_pc/mail4.png
112.218.68.155200 OK 5.4 kB URL HTTP/1.1 112.218.68.155/eyoom/theme/pc_basic/layout/side_pc/mail4.png
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
File type PNG image data, 63 x 33, 8-bit/color RGB, non-interlaced\012- data
Hash 3496449555b259919188c52bf1c38a63
b62b36f4c7ed1c23cff86e8161aa75ff4e33748b
1219a0e767a89ea7fa024ef14ea79eb70c04d005885351a3745f52215b0947c9
Analyzer Verdict Alert quad9 Sinkholed
GET /eyoom/theme/pc_basic/layout/side_pc/mail4.png HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:34 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Mon, 02 Jan 2017 09:12:14 GMT
ETag: "1520294-1515-54518f286b780"
Accept-Ranges: bytes
Content-Length: 5397
Connection: close
Content-Type: image/png
112.218.68.155/eyoom/theme/pc_basic/main/gaip.png
112.218.68.155200 OK 0 B URL HTTP/1.1 112.218.68.155/eyoom/theme/pc_basic/main/gaip.png
IP 112.218.68.155:0
ASN #3786 LG DACOM Corporation
Analyzer Verdict Alert quad9 Sinkholed
GET /eyoom/theme/pc_basic/main/gaip.png HTTP/1.1
Host: 112.218.68.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://112.218.68.155/~changwon/index.php
Cookie: PHPSESSID=qnd5s1i82o769eu7tqdnvrcgq6; 2a0d2363701f23f8a75028924a3af643=OTEuOTAuNDIuMTU0
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 18:29:33 GMT
Server: Apache/2.2.3 (Asianux)
Last-Modified: Tue, 03 Jan 2017 04:38:20 GMT
ETag: "152021b-17fae-545293cd32700"
Accept-Ranges: bytes
Content-Length: 98222
Connection: close
Content-Type: image/png