Report - m.cgq11.top/cgq/?https//hello.38shunv21.buzz/

Report Overview

Visited public
2024-12-22 07:19:46
Tags
URL
m.cgq11.top/cgq/?https//hello.38shunv21.buzz/
Finishing URL
m.cgq11.top/cgq/?https//hello.38shunv21.buzz/
IP / ASN
46.8.125.221
#141883 BGPNET PTE. LTD.
Title
吃瓜群-视频

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
m.cgq11.top	unknown	2024-12-03	2024-12-22	2024-12-22	5.4 kB	84 kB	46.8.125.221
www.baidu-top-web.xyz	unknown	2021-12-28	2022-07-24	2024-12-20	1.3 kB	28 kB	45.207.207.247
tj.5426216.xyz	unknown	2024-07-18	2024-07-28	2024-12-10	1.2 kB	22 kB	154.91.227.193

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2024-12-22 07:19:24	medium	45.207.207.247	Client IP	ET HUNTING Observed Let's Encrypt Certificate for Suspicious TLD (.xyz)
2024-12-22 07:19:24	medium	45.207.207.247	Client IP	ET HUNTING Observed Let's Encrypt Certificate for Suspicious TLD (.xyz)
2024-12-22 07:19:24	medium	45.207.207.247	Client IP	ET HUNTING Observed Let's Encrypt Certificate for Suspicious TLD (.xyz)

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (13)

	URL	From	Size	First Seen	Last Seen
	m.cgq11.top/cgq/template/cgq/discor.js	ScriptElement	1.1 kB	2024-06-12	2025-01-05
Pretty URL m.cgq11.top/cgq/template/cgq/discor.js IP 46.8.125.221 ASN #139646 HONG KONG Megalayer Technology Co.,Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-12 08:56 Last Seen2025-01-05 03:51 Times Seen13 Hash 37c73d82d34caa26fc9d13dd7b43d5d1 d633e0690c02921bc51b30005aa2bfbc5be1239c 83c66d0117b7fc15ad2d58cf5c367c028fa67621a99ad41e373fc3823d45e249 Loading...

	m.cgq11.top/cgq/?https//hello.38shunv21.buzz/	ScriptElement	328 B	2024-12-22	2024-12-26
Pretty URL m.cgq11.top/cgq/?https//hello.38shunv21.buzz/ IP 46.8.125.221 ASN #139646 HONG KONG Megalayer Technology Co.,Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2024-12-22 07:19 Last Seen2024-12-26 23:47 Times Seen2 Hash 4fd9b5713501fd071bf815e21ab666ee 56ab77d071d3d2a545d78b6203c3fc684e5d7683 2760607ede8c176281b4c3d14ed8246a3dc82aa5a862a6225e9fc5a387ff8569 Loading...

	d.dkasffredf.xyz/SEmn/z-20558-Q-994/	ScriptElement	24 kB	2024-12-22	2024-12-22
Pretty URL d.dkasffredf.xyz/SEmn/z-20558-Q-994/ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-22 07:19 Last Seen2024-12-22 07:19 Times Seen1 Hash 03b37541e3ccf01e7b906f1e334ad0e6 33c96085afb561bf1f5832059bd1fbe9016e6c65 6bf099270d713c765dcf7a3273ff182eeb92157e0a359305d741b1411b043d63 Loading...

	m.cgq11.top/cgq/?https//hello.38shunv21.buzz/	ScriptElement	3.7 kB	2024-12-22	2024-12-22
Pretty URL m.cgq11.top/cgq/?https//hello.38shunv21.buzz/ IP 46.8.125.221 ASN #139646 HONG KONG Megalayer Technology Co.,Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2024-12-22 07:19 Last Seen2024-12-22 07:19 Times Seen1 Hash cfac10677b4166c06e6f1da73303ee5b 63cc1eefa0a6d8ddea57c108b1025621f56c1aa2 0c0e2c06f62ec44a721de216b76bf28f001b3d9f734e6a8c46c3cdf1e6766150 Loading...

	tj.5426216.xyz/matomo.js	ScriptElement	68 kB	2024-05-09	2025-06-20
Pretty URL tj.5426216.xyz/matomo.js IP 154.91.227.193 ASN #139646 HONG KONG Megalayer Technology Co.,Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-09 17:51 Last Seen2025-06-20 04:28 Times Seen2760 Hash 97b41888a87c22615114d73c91cc70a3 a9e02fdb328a29bd8753e7000d0afe6ef635aad1 f2e8975ed834c578c50d3923ceb26de04d4fa44f74380f45f147585d909a874d Loading...

	m.cgq11.top/cgq/template/cgq/lazyload.js	ScriptElement	11 kB	2024-05-26	2025-04-08
Pretty URL m.cgq11.top/cgq/template/cgq/lazyload.js IP 46.8.125.221 ASN #139646 HONG KONG Megalayer Technology Co.,Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-26 01:42 Last Seen2025-04-08 21:31 Times Seen19 Hash f6b46f63f861673a7fcb5e30aa9a2dde b5166f5d11495f7cc2072faa019565e0b8ac8f73 57443c21059ef2c39c2cb5926602f89cb373dadfe37705624064ce1c92b0842d Loading...

	m.cgq11.top/cgq/template/cgq/static/css/jquery.min.js	ScriptElement	168 kB	2023-03-09	2025-04-08
Pretty URL m.cgq11.top/cgq/template/cgq/static/css/jquery.min.js IP 46.8.125.221 ASN #139646 HONG KONG Megalayer Technology Co.,Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 08:27 Last Seen2025-04-08 21:31 Times Seen13 Hash d15f9f3c8c983b9270e6e79155c0a978 96b04cdb402a02eb6a29ee4e14d3ee6116980d37 800ec89b0086cc9dd3b23e537b4890c77ff2b3b190b073fee55adb619c3cada6 Loading...

	m.cgq11.top/cgq/?https//hello.38shunv21.buzz/	ScriptElement	668 B	2024-12-22	2024-12-22
Pretty URL m.cgq11.top/cgq/?https//hello.38shunv21.buzz/ IP 46.8.125.221 ASN #139646 HONG KONG Megalayer Technology Co.,Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2024-12-22 07:19 Last Seen2024-12-22 07:19 Times Seen1 Hash 121164a2af6aeedb6ace052c20ad9168 a4ec34e4a9338f8b2cad2d0a1f880b9ff69bede7 487070d99c74ef2d97bfa1b9a98d6ee6f88c6bcf1c539f628638216afb508bcb Loading...

	m.cgq11.top/cgq/?https//hello.38shunv21.buzz/	ScriptElement	74 B	2023-03-07	2025-06-17
Pretty URL m.cgq11.top/cgq/?https//hello.38shunv21.buzz/ IP 46.8.125.221 ASN #139646 HONG KONG Megalayer Technology Co.,Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:11 Last Seen2025-06-17 14:15 Times Seen335 Hash fecf0e0d3357fa72cd59069c9f081f16 3dff6fff704b485a0317d2612a55318fd2f1e515 27aa2c388fd2005b3bc0f4e3c9bc51d6aa1f2ffac10b78e5ccf06adef7da2bdd Loading...

	m.cgq11.top/cgq/?https//hello.38shunv21.buzz/	ScriptElement	511 B	2024-12-22	2024-12-26
Pretty URL m.cgq11.top/cgq/?https//hello.38shunv21.buzz/ IP 46.8.125.221 ASN #139646 HONG KONG Megalayer Technology Co.,Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2024-12-22 07:19 Last Seen2024-12-26 23:47 Times Seen2 Hash 9b34e5ef6d5d48050a396637bd70c96f 8e4281eabf90dbb2fce5e85d0644ec4db6c8be70 2e12e4aeab2407581b18a2436812914d7202e8288cc8c74b6a198b16fefee79c Loading...

	m.cgq11.top/cgq/?https//hello.38shunv21.buzz/	ScriptElement	112 B	2023-03-11	2025-06-08
Pretty URL m.cgq11.top/cgq/?https//hello.38shunv21.buzz/ IP 46.8.125.221 ASN #139646 HONG KONG Megalayer Technology Co.,Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-11 15:29 Last Seen2025-06-08 18:03 Times Seen80 Hash ae0dc4f2dc40caa7745975b6a73cf41b d4ad1bd3b0c26571425a3cdb06952f87b9e6fa7b cbb5cd30a414eca52c171a18a1625f3a66fe86e6e6de537dac2be3436fe6a2f6 Loading...

	unknown	Function	3.2 kB	2024-12-22	2024-12-22
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-12-22 07:19 Last Seen2024-12-22 07:19 Times Seen1 Hash fa2b0e91b623d69be358986409d53373 997f15886eaae326e31bf63d3358e1da68f1bce0 49bf75fdaf33232fd7a30b6cb182590109a8be92357510682fd347fd37e8ecce Loading...

		Size	First Seen	Last Seen
	#1 Write - e2a44838784b0aa7835be5f8ffbba00b	252 B	2023-11-08 21:37	2025-01-05 03:51
Pretty Observations First Seen2023-11-08 21:37 Last Seen2025-01-05 03:51 Times Seen18 Hash e2a44838784b0aa7835be5f8ffbba00b 3ac9a102e626ff743308edcd20219a45d6752a71 1397afdaf4e461787c952a3f6aca55d09ab0b1a4d7acf8676872a1d5a86d932b Loading...

HTTP Transactions (16)

	URL	IP	Response	Size
	m.cgq11.top/cgq/?https//hello.38shunv21.buzz/	46.8.125.221	200 OK	16 kB
URL m.cgq11.top/cgq/?https//hello.38shunv21.buzz/ IP 46.8.125.221:0 ASN #139646 HONG KONG Megalayer Technology Co.,Limited File type HTML document, Unicode text, UTF-8 text, with very long lines (5336), with CRLF, LF line terminators Size 16 kB (16488 bytes) Hash 6b6ca886e232fe8465f0b76ca93170d4 5fd2f1d290423be993c5d704c3f9a1fce46723f6 20d9580ebb8c8a2004a794388132df0bfdd8860c7dbfad47858b315e0fc29d9d HTTP Headers `GET /cgq/?https//hello.38shunv21.buzz/ HTTP/1.1 Host: m.cgq11.top User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK vary: Accept-Encoding content-encoding: gzip content-length: 16488 content-type: text/html;charset=utf-8 date: Sun, 22 Dec 2024 07:17:31 GMT server: Apache X-Firefox-Spdy: h2`

	m.cgq11.top/cgq/template/cgq/static/css/style%EF%B9%96ver=4.35.css	46.8.125.221	200 OK	1.9 kB
URL m.cgq11.top/cgq/template/cgq/static/css/style%EF%B9%96ver=4.35.css IP 46.8.125.221:0 ASN #139646 HONG KONG Megalayer Technology Co.,Limited File type ASCII text Size 1.9 kB (1910 bytes) Hash cb7c3f033171c47fc2c69050a3e45350 92b39198673ed47d7cd46f031e9eaa77982e913f a950ab6e151ca8f493b2eda52274480dcf6b8853e29a9f4b224a3e146375648e HTTP Headers `GET /cgq/template/cgq/static/css/style%EF%B9%96ver=4.35.css HTTP/1.1 Host: m.cgq11.top User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://m.cgq11.top/cgq/?https//hello.38shunv21.buzz/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK last-modified: Sat, 20 Jul 2024 03:13:30 GMT etag: "1a30-61da5323e0a80-gzip" accept-ranges: bytes vary: Accept-Encoding content-encoding: gzip content-length: 1910 content-type: text/css date: Sun, 22 Dec 2024 07:17:33 GMT server: Apache X-Firefox-Spdy: h2`

	m.cgq11.top/cgq/upload/site/20240725-1/2cffb17b3bff182572aa5b4ad8f4d31b.png	46.8.125.221	200 OK	9.8 kB
URL m.cgq11.top/cgq/upload/site/20240725-1/2cffb17b3bff182572aa5b4ad8f4d31b.png IP 46.8.125.221:0 ASN #139646 HONG KONG Megalayer Technology Co.,Limited File type PNG image data, 161 x 48, 8-bit/color RGBA, non-interlaced Size 9.8 kB (9845 bytes) Hash bfeafbbb551b08b9b8b38615154f09de 6aaa5c370a019d9325adcca0276a115d348920c9 eda47a50215b9e4914e3082eb780b355af4ab58510799bd4db519b9db5aa3734 HTTP Headers `GET /cgq/upload/site/20240725-1/2cffb17b3bff182572aa5b4ad8f4d31b.png HTTP/1.1 Host: m.cgq11.top User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://m.cgq11.top/cgq/?https//hello.38shunv21.buzz/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK last-modified: Thu, 25 Jul 2024 15:26:17 GMT etag: "2675-61e1404161840" accept-ranges: bytes content-length: 9845 content-type: image/png date: Sun, 22 Dec 2024 07:17:33 GMT server: Apache X-Firefox-Spdy: h2`

	m.cgq11.top/cgq/upload/website/20241205-1/f3b7b28fb81327554b04dd3b98e9d288.jpg	46.8.125.221	200 OK	1.7 kB
URL m.cgq11.top/cgq/upload/website/20241205-1/f3b7b28fb81327554b04dd3b98e9d288.jpg IP 46.8.125.221:0 ASN #139646 HONG KONG Megalayer Technology Co.,Limited File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 50x50, components 3 Size 1.7 kB (1686 bytes) Hash d6cb647432bf81e5ecc5a644c4d785d6 499fe220c39c52c08b1fb8f6cb9e67d561500053 d3d9d12cea956ffefa063509370d2aca1a6153c8ed00234694855918a1b6b02c HTTP Headers GET /cgq/upload/website/20241205-1/f3b7b28fb81327554b04dd3b98e9d288.jpg HTTP/1.1 Host: m.cgq11.top User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://m.cgq11.top/cgq/?https//hello.38shunv21.buzz/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK last-modified: Thu, 05 Dec 2024 13:24:37 GMT etag: "696-62885d1e8b601" accept-ranges: bytes content-length: 1686 content-type: image/jpeg date: Sun, 22 Dec 2024 07:17:33 GMT server: Apache X-Firefox-Spdy: h2`

	GET m.cgq11.top/cgq/upload/website/20240730-1/9fa7054c9ec61ea42720737113b21bdf.jpg	46.8.125.221	200 OK	777 B
URL GET HTTP/2 m.cgq11.top/cgq/upload/website/20240730-1/9fa7054c9ec61ea42720737113b21bdf.jpg IP 46.8.125.221:443 ASN #139646 HONG KONG Megalayer Technology Co.,Limited Requested by https://m.cgq11.top/cgq/?https//hello.38shunv21.buzz/ Certificate IssuerLet's Encrypt Subjectlook.cgq2.top Fingerprint87:F7:F0:FD:A1:1E:C5:35:71:6A:1B:B5:72:A6:92:16:54:63:34:EE ValidityThu, 05 Dec 2024 12:54:01 GMT - Wed, 05 Mar 2025 12:54:00 GMT File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 30x30, components 3 Size 777 B (777 bytes) Hash d2a80cac2fd182675999bc6e9298e60d 80b4ed7e8d544e13831e79071364b921a0e74216 5ed1b696ae405fc674d3abe4ba9c27b7e160301e10e45bdbb934c9ff026cb2fc HTTP Headers GET /cgq/upload/website/20240730-1/9fa7054c9ec61ea42720737113b21bdf.jpg HTTP/1.1 Host: m.cgq11.top User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://m.cgq11.top/cgq/?https//hello.38shunv21.buzz/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK last-modified: Tue, 30 Jul 2024 15:35:35 GMT etag: "309-61e78ba8d5fc0" accept-ranges: bytes content-length: 777 content-type: image/jpeg date: Sun, 22 Dec 2024 07:17:33 GMT server: Apache X-Firefox-Spdy: h2`

	m.cgq11.top/cgq/upload/website/20240801-1/174ba02ad1a04eae89d1b63b06ba04d4.jpg	46.8.125.221	200 OK	1.1 kB
URL m.cgq11.top/cgq/upload/website/20240801-1/174ba02ad1a04eae89d1b63b06ba04d4.jpg IP 46.8.125.221:0 ASN #139646 HONG KONG Megalayer Technology Co.,Limited File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 50x43, components 3 Size 1.1 kB (1111 bytes) Hash d0f79c596f381ba142a835fee37f1212 91edec29f5fb623d3a8e08f4cf35864f8b55149c 945acb5ce4ec0e2180bb42963898af5d9ebaa7191632edddf2dcd80d627a6acc HTTP Headers GET /cgq/upload/website/20240801-1/174ba02ad1a04eae89d1b63b06ba04d4.jpg HTTP/1.1 Host: m.cgq11.top User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://m.cgq11.top/cgq/?https//hello.38shunv21.buzz/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK last-modified: Wed, 31 Jul 2024 19:38:25 GMT etag: "457-61e903cd93f97" accept-ranges: bytes content-length: 1111 content-type: image/jpeg date: Sun, 22 Dec 2024 07:17:33 GMT server: Apache X-Firefox-Spdy: h2`

	GET m.cgq11.top/cgq/template/cgq/lazyload.js	46.8.125.221	200 OK	2.5 kB
URL GET HTTP/2 m.cgq11.top/cgq/template/cgq/lazyload.js IP 46.8.125.221:443 ASN #139646 HONG KONG Megalayer Technology Co.,Limited Requested by https://m.cgq11.top/cgq/?https//hello.38shunv21.buzz/ Certificate IssuerLet's Encrypt Subjectlook.cgq2.top Fingerprint87:F7:F0:FD:A1:1E:C5:35:71:6A:1B:B5:72:A6:92:16:54:63:34:EE ValidityThu, 05 Dec 2024 12:54:01 GMT - Wed, 05 Mar 2025 12:54:00 GMT File type JavaScript source, ASCII text Size 2.5 kB (2535 bytes) Hash f6b46f63f861673a7fcb5e30aa9a2dde b5166f5d11495f7cc2072faa019565e0b8ac8f73 57443c21059ef2c39c2cb5926602f89cb373dadfe37705624064ce1c92b0842d HTTP Headers `GET /cgq/template/cgq/lazyload.js HTTP/1.1 Host: m.cgq11.top User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://m.cgq11.top/cgq/?https//hello.38shunv21.buzz/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK last-modified: Sun, 05 May 2024 10:27:45 GMT etag: "296c-617b2674d4a40-gzip" accept-ranges: bytes vary: Accept-Encoding content-encoding: gzip content-length: 2535 content-type: text/javascript date: Sun, 22 Dec 2024 07:17:33 GMT server: Apache X-Firefox-Spdy: h2`

	m.cgq11.top/cgq/template/cgq/discor.js	46.8.125.221	200 OK	461 B
URL m.cgq11.top/cgq/template/cgq/discor.js IP 46.8.125.221:0 ASN #139646 HONG KONG Megalayer Technology Co.,Limited File type JavaScript source, Unicode text, UTF-8 text Size 461 B (461 bytes) Hash 37c73d82d34caa26fc9d13dd7b43d5d1 d633e0690c02921bc51b30005aa2bfbc5be1239c 83c66d0117b7fc15ad2d58cf5c367c028fa67621a99ad41e373fc3823d45e249 HTTP Headers `GET /cgq/template/cgq/discor.js HTTP/1.1 Host: m.cgq11.top User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://m.cgq11.top/cgq/?https//hello.38shunv21.buzz/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK last-modified: Sun, 05 May 2024 10:27:40 GMT etag: "42d-617b26700ff00-gzip" accept-ranges: bytes vary: Accept-Encoding content-encoding: gzip content-length: 461 content-type: text/javascript date: Sun, 22 Dec 2024 07:17:33 GMT server: Apache X-Firefox-Spdy: h2`

	m.cgq11.top/cgq/template/cgq/static/css/jquery.min.js	46.8.125.221	200 OK	40 kB
URL m.cgq11.top/cgq/template/cgq/static/css/jquery.min.js IP 46.8.125.221:0 ASN #139646 HONG KONG Megalayer Technology Co.,Limited File type JavaScript source, Unicode text, UTF-8 text, with very long lines (962), with CRLF line terminators Size 40 kB (40093 bytes) Hash d15f9f3c8c983b9270e6e79155c0a978 96b04cdb402a02eb6a29ee4e14d3ee6116980d37 800ec89b0086cc9dd3b23e537b4890c77ff2b3b190b073fee55adb619c3cada6 HTTP Headers `GET /cgq/template/cgq/static/css/jquery.min.js HTTP/1.1 Host: m.cgq11.top User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://m.cgq11.top/cgq/?https//hello.38shunv21.buzz/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK last-modified: Sun, 05 May 2024 10:29:23 GMT etag: "29054-617b26d24a6c0-gzip" accept-ranges: bytes vary: Accept-Encoding content-encoding: gzip content-length: 40093 content-type: text/javascript date: Sun, 22 Dec 2024 07:17:33 GMT server: Apache X-Firefox-Spdy: h2`

	www.baidu-top-web.xyz/JxhTTmO/flh.png	45.207.207.247	200 OK	5.5 kB
URL www.baidu-top-web.xyz/JxhTTmO/flh.png IP 45.207.207.247:0 ASN #135357 Shenzhen Katherine Heng Technology Information Co., Ltd. File type PNG image data, 60 x 60, 8-bit/color RGB, non-interlaced Size 5.5 kB (5498 bytes) Hash 77e86a1cf5fd1b6458924faddcce21a0 fac96bfc1967a05753000d5a4b1e5ba13d52b994 99e56f01eb82a542e2fc11b1422ed28c8255d4a070fe98dc5ca75e4715e757f5 HTTP Headers `GET /JxhTTmO/flh.png HTTP/1.1 Host: www.baidu-top-web.xyz User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://m.cgq11.top/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK date: Sun, 22 Dec 2024 07:19:24 GMT content-type: image/png content-length: 5498 last-modified: Tue, 12 Dec 2023 01:55:10 GMT etag: "6577bd7e-157a" expires: Sat, 18 Jan 2025 05:44:20 GMT cache-control: max-age=2592000 strict-transport-security: max-age=31536000 server: cdn x-cache-status: HIT accept-ranges: bytes X-Firefox-Spdy: h2`

	www.baidu-top-web.xyz/JxhTTmO/sssuo.ico	45.207.207.247	200 OK	17 kB
URL www.baidu-top-web.xyz/JxhTTmO/sssuo.ico IP 45.207.207.247:0 ASN #135357 Shenzhen Katherine Heng Technology Information Co., Ltd. File type MS Windows icon resource - 1 icon, 64x64, 32 bits/pixel Size 17 kB (16958 bytes) Hash e5db1fe6a5996e5d5889f5fca8aa1bab 202071d65cca8f774ce964577b4a1b20788670bf a558f076aee587e193e3f49c5b01e7898fc477781f342d1304e519b282e0e5b7 HTTP Headers `GET /JxhTTmO/sssuo.ico HTTP/1.1 Host: www.baidu-top-web.xyz User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://m.cgq11.top/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK date: Sun, 22 Dec 2024 07:19:24 GMT content-type: image/x-icon content-length: 16958 last-modified: Thu, 10 Aug 2023 07:46:37 GMT etag: "64d495dd-423e" strict-transport-security: max-age=31536000 server: cdn x-cache-status: HIT accept-ranges: bytes X-Firefox-Spdy: h2`

	GET www.baidu-top-web.xyz/JxhTTmO/supxxx.ico	45.207.207.247	200 OK	4.3 kB
URL GET HTTP/2 www.baidu-top-web.xyz/JxhTTmO/supxxx.ico IP 45.207.207.247:443 ASN #135357 Shenzhen Katherine Heng Technology Information Co., Ltd. Requested by https://m.cgq11.top/cgq/?https//hello.38shunv21.buzz/ Certificate IssuerLet's Encrypt Subject.baidu-top-web.xyz Fingerprint15:BF:A5:76:F7:FB:61:A1:7C:B4:E7:F7:C3:50:3D:8C:37:51:AA:18 ValidityThu, 10 Oct 2024 14:52:24 GMT - Wed, 08 Jan 2025 14:52:23 GMT File type MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel Size 4.3 kB (4286 bytes) Hash eb25e75e0faa1244b252a8e0408e0484 61da0bcc6fd8ff3469f761fa55ab95cf43ba33c9 5741324bda3289fc7cc48f5be4a0917b1aa38354f0b6a7bf09340b6e7d7d70c9 HTTP Headers `GET /JxhTTmO/supxxx.ico HTTP/1.1 Host: www.baidu-top-web.xyz User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://m.cgq11.top/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK date: Sun, 22 Dec 2024 07:19:24 GMT content-type: image/x-icon content-length: 4286 last-modified: Thu, 10 Aug 2023 07:46:38 GMT etag: "64d495de-10be" strict-transport-security: max-age=31536000 server: cdn x-cache-status: HIT accept-ranges: bytes X-Firefox-Spdy: h2`

	m.cgq11.top/cgq/template/cgq/favicon.ico	46.8.125.221	200 OK	3.4 kB
URL m.cgq11.top/cgq/template/cgq/favicon.ico IP 46.8.125.221:0 ASN #139646 HONG KONG Megalayer Technology Co.,Limited File type MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel Size 3.4 kB (3386 bytes) Hash d40af868a0fe28bc70692a35140555d4 91ba9fe413f6d6babd312a0a391f43c778d59187 3c14e7adf7f57465fb803158d259ad8d79c5deb81eb2d05f5d75118bb4cab15e HTTP Headers `GET /cgq/template/cgq/favicon.ico HTTP/1.1 Host: m.cgq11.top User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://m.cgq11.top/cgq/?https//hello.38shunv21.buzz/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK last-modified: Fri, 26 Jul 2024 04:33:52 GMT etag: "10be-61e1f04b42c00-gzip" accept-ranges: bytes vary: Accept-Encoding content-encoding: gzip content-length: 3386 content-type: image/x-icon date: Sun, 22 Dec 2024 07:17:34 GMT server: Apache X-Firefox-Spdy: h2`

	m.cgq11.top/cgq/template/cgq/favicon.ico	46.8.125.221	200 OK	3.4 kB
URL m.cgq11.top/cgq/template/cgq/favicon.ico IP 46.8.125.221:0 ASN #139646 HONG KONG Megalayer Technology Co.,Limited File type MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel Size 3.4 kB (3386 bytes) Hash d40af868a0fe28bc70692a35140555d4 91ba9fe413f6d6babd312a0a391f43c778d59187 3c14e7adf7f57465fb803158d259ad8d79c5deb81eb2d05f5d75118bb4cab15e HTTP Headers `GET /cgq/template/cgq/favicon.ico HTTP/1.1 Host: m.cgq11.top User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://m.cgq11.top/cgq/?https//hello.38shunv21.buzz/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK last-modified: Fri, 26 Jul 2024 04:33:52 GMT etag: "10be-61e1f04b42c00-gzip" accept-ranges: bytes vary: Accept-Encoding content-encoding: gzip content-length: 3386 content-type: image/x-icon date: Sun, 22 Dec 2024 07:17:34 GMT server: Apache X-Firefox-Spdy: h2`

	tj.5426216.xyz/matomo.js	154.91.227.193	200 OK	22 kB
URL tj.5426216.xyz/matomo.js IP 154.91.227.193:0 ASN #139646 HONG KONG Megalayer Technology Co.,Limited File type JavaScript source, ASCII text, with very long lines (2854) Size 22 kB (21925 bytes) Hash 97b41888a87c22615114d73c91cc70a3 a9e02fdb328a29bd8753e7000d0afe6ef635aad1 f2e8975ed834c578c50d3923ceb26de04d4fa44f74380f45f147585d909a874d HTTP Headers `GET /matomo.js HTTP/1.1 Host: tj.5426216.xyz User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://m.cgq11.top/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK last-modified: Mon, 10 Jun 2024 07:48:11 GMT etag: "10784-61a845eef24c0-gzip" accept-ranges: bytes vary: Accept-Encoding content-encoding: gzip content-length: 21925 content-type: text/javascript date: Sun, 22 Dec 2024 07:19:25 GMT server: Apache X-Firefox-Spdy: h2`

	POST tj.5426216.xyz/matomo.php?action_name=%E5%90%83%E7%93%9C%E7%BE%A4-%E8%A7%86%E9%A2%91&idsite=7&rec=1&r=281484&h=7&m=19&s=26&url=https%3A%2F%2Fm.cgq11.top%2Fcgq%2F%3Fhttps%2F%2Fhello.38shunv21.buzz%2F&_id=9fdd4b456e9c9ded&_idn=1&send_image=0&_refts=0&pv_id=xlfOC9&pf_net=985&pf_srv=1462&pf_tfr=1&pf_dm1=874&uadata=%7B%7D&pdf=1&qt=0&realp=0&wma=0&fla=0&java=0&ag=0&cookie=1&res=1280x1024	154.91.227.193	204 No Content	0 B
URL POST HTTP/2 tj.5426216.xyz/matomo.php?action_name=%E5%90%83%E7%93%9C%E7%BE%A4-%E8%A7%86%E9%A2%91&idsite=7&rec=1&r=281484&h=7&m=19&s=26&url=https%3A%2F%2Fm.cgq11.top%2Fcgq%2F%3Fhttps%2F%2Fhello.38shunv21.buzz%2F&_id=9fdd4b456e9c9ded&_idn=1&send_image=0&_refts=0&pv_id=xlfOC9&pf_net=985&pf_srv=1462&pf_tfr=1&pf_dm1=874&uadata=%7B%7D&pdf=1&qt=0&realp=0&wma=0&fla=0&java=0&ag=0&cookie=1&res=1280x1024 IP 154.91.227.193:443 ASN #139646 HONG KONG Megalayer Technology Co.,Limited Requested by https://m.cgq11.top/cgq/?https//hello.38shunv21.buzz/ Certificate IssuerLet's Encrypt Subjecttj.rbiaozz.xyz Fingerprint85:A7:FB:4D:49:6F:B3:E1:BB:64:AB:C0:F1:FB:06:A3:43:2D:61:1C ValiditySun, 20 Oct 2024 15:14:06 GMT - Sat, 18 Jan 2025 15:14:05 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /matomo.php?action_name=%E5%90%83%E7%93%9C%E7%BE%A4-%E8%A7%86%E9%A2%91&idsite=7&rec=1&r=281484&h=7&m=19&s=26&url=https%3A%2F%2Fm.cgq11.top%2Fcgq%2F%3Fhttps%2F%2Fhello.38shunv21.buzz%2F&_id=9fdd4b456e9c9ded&_idn=1&send_image=0&_refts=0&pv_id=xlfOC9&pf_net=985&pf_srv=1462&pf_tfr=1&pf_dm1=874&uadata=%7B%7D&pdf=1&qt=0&realp=0&wma=0&fla=0&java=0&ag=0&cookie=1&res=1280x1024 HTTP/1.1 Host: tj.5426216.xyz User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/x-www-form-urlencoded; charset=utf-8 Content-Length: 0 Origin: https://m.cgq11.top DNT: 1 Connection: keep-alive Referer: https://m.cgq11.top/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers `HTTP/2 204 No Content access-control-allow-origin: https://m.cgq11.top access-control-allow-credentials: true date: Sun, 22 Dec 2024 07:19:26 GMT server: Apache X-Firefox-Spdy: h2`

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (13)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML