URL User Request GET HTTP/1.1IP221.204.43.72:80 ASN#4837 CHINA UNICOM China169 Backbone
File typeXML 1.0 document, ASCII text Hash54ef77b7bc2dbe27971080af45a46202 75cb5baf4e6d0be81434c7a8dfcfb238ecb152d3 9b139718cd3f612ddecaabe093e6060bc3c5627261b6d4e69646f6615ff20d40
NIDS | Severity | Alert | suricata | medium | ET INFO HTTP Request to a *.top domain | suricata | medium | ET INFO HTTP Request to a *.top domain |
GET / HTTP/1.1
Host: cdn.sekio.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Content-Type: application/xml
Date: Fri, 10 May 2024 11:37:25 GMT
Server: tencent-cos
x-cos-request-id: NjYzZTA2ZjVfNWViNjNlMDlfNDdkNl8yNDYzZmE=
x-cos-trace-id: OGVmYzZiMmQzYjA2OWNhODk0NTRkMTBiOWVmMDAxODc0OWRkZjk0ZDM1NmI1M2E2MTRlY2MzZDhmNmI5MWI1OTBjYzE2MjAxN2M1MzJiOTdkZjMxMDVlYTZjN2FiMmI0ZjZmYzUxNDY4MmRmMTFjNjMyZjA4YjA1OTdjMDY0NmI=
X-Cache-Lookup: Cache Miss, Hit From Inner Cluster, Cache Miss
Content-Length: 449
X-NWS-LOG-UUID: 14245233803923987014
Connection: keep-alive
|
URL User Request GET HTTP/1.1IP123.6.40.224:80 ASN#4837 CHINA UNICOM China169 Backbone
File typeXML 1.0 document, ASCII text Hash7461d9faf815b5ab1c722443633c6728 cb865441e83a3d6c356b9fe96643c8f1afa9961b f02d3edeb154c977b28fdc112da75ca609b7eaf66c801140c8a8086e04c40ec1
NIDS | Severity | Alert | suricata | medium | ET INFO HTTP Request to a *.top domain | suricata | medium | ET INFO HTTP Request to a *.top domain |
GET / HTTP/1.1
Host: cdn.sekio.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Content-Type: application/xml
Date: Fri, 10 May 2024 11:37:27 GMT
Server: tencent-cos
x-cos-request-id: NjYzZTA2ZjdfMTM5MzI3MDlfMjJlMV8yNDQ2Zjc=
x-cos-trace-id: OGVmYzZiMmQzYjA2OWNhODk0NTRkMTBiOWVmMDAxODc0OWRkZjk0ZDM1NmI1M2E2MTRlY2MzZDhmNmI5MWI1OTBjYzE2MjAxN2M1MzJiOTdkZjMxMDVlYTZjN2FiMmI0ZjZmYzUxNDY4MmRmMTFjNjMyZjA4YjA1OTdjMDY0NmI=
X-Cache-Lookup: Cache Miss, Hit From Inner Cluster, Cache Miss
Content-Length: 449
X-NWS-LOG-UUID: 13151608845999934796
Connection: keep-alive
|
| cdn.sekio.top/favicon.ico | 123.6.40.224 | 404 Not Found | 429 B |
URL GET HTTP/1.1cdn.sekio.top/favicon.ico IP123.6.40.224:80 ASN#4837 CHINA UNICOM China169 Backbone
File typeXML 1.0 document, ASCII text Hashae8fa05cc373da88e152b33376630306 1ac1a44a0fdeded4b96058f2ae15e044fe600e4a ea65e1232a09df3c3481f70c58da7084b264cb1a013b919f6d8cea5a7f081f0a
GET /favicon.ico HTTP/1.1
Host: cdn.sekio.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://cdn.sekio.top/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Type: application/xml
Date: Fri, 10 May 2024 11:37:29 GMT
Server: tencent-cos
x-cos-request-id: NjYzZTA2ZjlfY2VhNzM4MDlfNTk0NV8zNGVhNzk=
X-Cache-Lookup: Cache Miss, Hit From Inner Cluster, Cache Miss
Content-Length: 429
X-NWS-LOG-UUID: 8057361443441017371
Connection: keep-alive
|