kecmanijada.com/office.php
154.55.220.121301 Moved Permanently 162 B URL User Request GET HTTP/1.1 kecmanijada.com/office.php
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /office.php HTTP/1.1
Host: kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 24 Apr 2024 11:20:45 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://www.kecmanijada.com/office.php
kecmanijada.com/
154.55.220.121 162 B IP 154.55.220.121:0
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET / HTTP/1.1
Host: kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 24 Apr 2024 11:20:47 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://www.kecmanijada.com/
www.kecmanijada.com/office.php
154.55.220.121200 OK 7.5 kB URL User Request GET HTTP/1.1 www.kecmanijada.com/office.php
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type HTML document, Unicode text, UTF-8 text, with very long lines (1665), with CRLF, CR, LF line terminators
Hash b65776a0952751b21089afb0a5e28deb
6c815ccd6e7fa27ddc2f8cff06ff9fbe11103b7f
288a9d2b07d6718b047fc0e660296494dc4986447e919488ed3fe6f50d15a43d
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /office.php HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:48 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.kecmanijada.com/js/jquery.3.5.2.min.m.js
154.55.220.121200 OK 0 B URL GET HTTP/1.1 www.kecmanijada.com/js/jquery.3.5.2.min.m.js
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /js/jquery.3.5.2.min.m.js HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/office.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:48 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
www.kecmanijada.com/Tpl/Home/default/Public/css/reset.css
154.55.220.121200 OK 507 B URL GET HTTP/1.1 www.kecmanijada.com/Tpl/Home/default/Public/css/reset.css
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type ASCII text, with CRLF line terminators
Hash 0c642a236c75869e870f11db63f302aa
64e010612fd8439c7c371d7ec4a480e5f2f98abf
3d977097363238bd60e4e81ac784e836e32de000267bcda2030486addb764d97
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Tpl/Home/default/Public/css/reset.css HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/office.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:48 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.kecmanijada.com/
154.55.220.121 7.3 kB IP 154.55.220.121:0
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type HTML document, Unicode text, UTF-8 text, with very long lines (1665), with CRLF, CR, LF line terminators
Hash 09d2dcc475dc2d7042301432f2693e5b
e54d822d59e0f7d3f5fe6243730a103f8033d85e
77a18b6301f2a1111eab87986d0fec96439e91bf3f0bcdd4e81c5803786cf985
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET / HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:49 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.kecmanijada.com/Tpl/Home/default/Public/css/banner.css
154.55.220.121200 OK 660 B URL GET HTTP/1.1 www.kecmanijada.com/Tpl/Home/default/Public/css/banner.css
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type ASCII text, with CRLF line terminators
Hash 990cb6096c4340caa6f33efd7285331b
233496246aff7b0b16378ec2dcc0836f70a8125b
e2db834bf647b36fd1ab5928fe110a6e6fec2762a7b0f11da48d49c71b4e3e17
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Tpl/Home/default/Public/css/banner.css HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/office.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:49 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.kecmanijada.com/Tpl/Home/default/Public/css/aos.css
154.55.220.121200 OK 3.5 kB URL GET HTTP/1.1 www.kecmanijada.com/Tpl/Home/default/Public/css/aos.css
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type ASCII text, with very long lines (31567), with no line terminators
Hash 823d4f9ef27e344dc1afa738096e13fe
a83332076f2b547301fe41c5f45bd97c993c0aac
92d410d88a2dd5e3668f28b3a7f7608225a1708560128b8bf62cb2b2043dc736
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Tpl/Home/default/Public/css/aos.css HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/office.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:49 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.kecmanijada.com/Tpl/Home/default/Public/css/webmain.css
154.55.220.121200 OK 8.3 kB URL GET HTTP/1.1 www.kecmanijada.com/Tpl/Home/default/Public/css/webmain.css
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash a23d6dafde75622cad29400b97ed7ac2
d6af0c6ca47c231fcf649c959194ea5806c73a92
fcdb4bd249e59bb66ec2c6b1ebda1d8b68a72cf865f53b61f4d339d825c0d5ea
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Tpl/Home/default/Public/css/webmain.css HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/office.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:49 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.kecmanijada.com/Tpl/Home/default/Public/css/ddsmoothmenu.css
154.55.220.121200 OK 1.8 kB URL GET HTTP/1.1 www.kecmanijada.com/Tpl/Home/default/Public/css/ddsmoothmenu.css
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash caa78e70c77cd060c373cdfc96e64c3e
588495ba84cbc510321c3c5ee16cf85674d8dc43
5be8b325fb8dd05f513c3cd71c08a3b15167207908bb694ce19ee586ade3530e
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Tpl/Home/default/Public/css/ddsmoothmenu.css HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/office.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:49 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.kecmanijada.com/Tpl/Home/default/Public/css/iconfont.css
154.55.220.121200 OK 2.1 kB URL GET HTTP/1.1 www.kecmanijada.com/Tpl/Home/default/Public/css/iconfont.css
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type ASCII text, with very long lines (2165), with CRLF line terminators
Hash bbd50b13977023d0a2ce4b487f6bacdf
0c82617eb85eb567e87792803981dc35765b2669
3899aee075a678057a877b7d38616e0a9fd756a918fa0b548a220965802facb4
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Tpl/Home/default/Public/css/iconfont.css HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/office.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:49 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.kecmanijada.com/Public/js/common.js
154.55.220.121200 OK 682 B URL GET HTTP/1.1 www.kecmanijada.com/Public/js/common.js
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type ASCII text, with CRLF line terminators
Hash 29746359459e124efd1dc5bb579700f7
6afd58ddd96fe5d53b95754a94692fbfb17becec
668160f3fec67191d8c41ba739571447b55bd2647ec931e45a15c457053c650e
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Public/js/common.js HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/office.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:49 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
www.kecmanijada.com/Tpl/Home/default/Public/css/styles.css
154.55.220.121200 OK 460 B URL GET HTTP/1.1 www.kecmanijada.com/Tpl/Home/default/Public/css/styles.css
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type ASCII text, with CRLF line terminators
Hash f7b394123874de9c8244060edb1ee189
2290ecaba1090d831d5fcd279877de6753318c41
c91305eaae2d58785404a7b502f877f9b441779c58d7035c0addcd17cef2dc5c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Tpl/Home/default/Public/css/styles.css HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/office.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:49 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.kecmanijada.com/Public/js/cookie.js
154.55.220.121200 OK 1.0 kB URL GET HTTP/1.1 www.kecmanijada.com/Public/js/cookie.js
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type JavaScript source, ASCII text, with very long lines (989), with CRLF line terminators
Hash cc20222ef4102d73941b3a2781726f7d
a9a510985e20007c0b48c9593d7af9a98317b553
cd2878a20bc0fbb3b1bf04353a483ca8068711d218f2c081da4e50ce3eb8e665
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Public/js/cookie.js HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/office.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:49 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
www.kecmanijada.com/Tpl/Home/default/Public/js/ddsmoothmenu.js
154.55.220.121200 OK 7.9 kB URL GET HTTP/1.1 www.kecmanijada.com/Tpl/Home/default/Public/js/ddsmoothmenu.js
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type JavaScript source, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 34507c1fdfb8207ede33dae2af9d5b2e
723b9f1022d1f8f1fa62f70359da4c04b3ff4c7c
4beb350bcaa69ac472b25c255b1f15067dd65d965a7a1a31a7ca8197ebfd62ce
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Tpl/Home/default/Public/js/ddsmoothmenu.js HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/office.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:49 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
www.kecmanijada.com/Tpl/Home/default/Public/js/jquery.KinSlideshow-1.2.1.js
154.55.220.121200 OK 16 kB URL GET HTTP/1.1 www.kecmanijada.com/Tpl/Home/default/Public/js/jquery.KinSlideshow-1.2.1.js
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type JavaScript source, ISO-8859 text, with very long lines (419), with CRLF line terminators
Hash 70d158fc4e6e335f6a0377c55d7b091d
5cc3955926b01e9e1e853497c7adb0293bb3f824
3802a242f112093189efb0c80a607ce4a7efe12516669e34c363a1491dca2967
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Tpl/Home/default/Public/js/jquery.KinSlideshow-1.2.1.js HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/office.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:49 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
www.kecmanijada.com/Tpl/Home/default/Public/js/jquery-1.4.2.min.js
154.55.220.121200 OK 72 kB URL GET HTTP/1.1 www.kecmanijada.com/Tpl/Home/default/Public/js/jquery-1.4.2.min.js
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type JavaScript source, Unicode text, UTF-8 (with BOM) text, with very long lines (820), with CRLF line terminators
Hash ec99afc2cc274f1d5bee4c71b8c4de9a
53dd4c66759c33e4d7d8d03fcf51a134cb228a10
676003132210d7aaa5f1dc57d68e682cf363ae1f918dc41fd7969b405db2b6c0
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Tpl/Home/default/Public/js/jquery-1.4.2.min.js HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/office.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:49 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
www.kecmanijada.com/Tpl/Home/default/Public/js/superslide.2.1.js
154.55.220.121200 OK 11 kB URL GET HTTP/1.1 www.kecmanijada.com/Tpl/Home/default/Public/js/superslide.2.1.js
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (11042), with CRLF line terminators
Hash be61730e6cb64a45f0dbe3998f6a25da
a1850dbea4045a260bdc633c68e81c110bb80997
05077aa31b8be0b259fb71be0aef1daa4d87fac77b67b3b62742a658b7afb17a
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Tpl/Home/default/Public/js/superslide.2.1.js HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/office.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:50 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
www.kecmanijada.com/Tpl/Home/default/Public/js/webtry_roll.js
154.55.220.121200 OK 0 B URL GET HTTP/1.1 www.kecmanijada.com/Tpl/Home/default/Public/js/webtry_roll.js
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Tpl/Home/default/Public/js/webtry_roll.js HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/office.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:50 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
www.kecmanijada.com/js/tongji.js
154.55.220.121200 OK 0 B URL GET HTTP/1.1 www.kecmanijada.com/js/tongji.js
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /js/tongji.js HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/office.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:50 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
www.kecmanijada.com/Tpl/Home/default/Public/js/banner.js
154.55.220.121200 OK 3.5 kB URL GET HTTP/1.1 www.kecmanijada.com/Tpl/Home/default/Public/js/banner.js
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type JavaScript source, Unicode text, UTF-8 text, with CRLF line terminators
Hash 1cadf138e80cc63260b3ac9b227a6336
d155ae940ed5ed9dbbc68e8804f91880886ed239
f9806d2702d845d7b1191c34e3d9f7d518a87bd146a1d7ba43f3a37eefdd0e46
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Tpl/Home/default/Public/js/banner.js HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/office.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:50 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
www.kecmanijada.com/Tpl/Home/default/Public/js/ajquery.js
154.55.220.121200 OK 5.6 kB URL GET HTTP/1.1 www.kecmanijada.com/Tpl/Home/default/Public/js/ajquery.js
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type JavaScript source, Unicode text, UTF-8 text, with CRLF line terminators
Hash 92ccece4ce87ffaaf96ba3e2c1af1e5e
46ecd38447f11969d3a04952e4080e1e32174492
f191079e7026f36d01e1c8fa019647d5624eb46250e23b38286e3ff028551e26
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Tpl/Home/default/Public/js/ajquery.js HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/office.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:50 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
www.kecmanijada.com/Tpl/Home/default/Public/js/jquery-1.8.3.min.js
154.55.220.121200 OK 94 kB URL GET HTTP/1.1 www.kecmanijada.com/Tpl/Home/default/Public/js/jquery-1.8.3.min.js
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type JavaScript source, ASCII text, with very long lines (65482), with CRLF line terminators
Hash e1288116312e4728f98923c79b034b67
8b6babff47b8a9793f37036fd1b1a3ad41d38423
ba6eda7945ab8d7e57b34cc5a3dd292fa2e4c60a5ced79236ecf1a9e0f0c2d32
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Tpl/Home/default/Public/js/jquery-1.8.3.min.js HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/office.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:50 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
www.kecmanijada.com/Tpl/Home/default/Public/js/jquery.js
154.55.220.121200 OK 261 kB URL GET HTTP/1.1 www.kecmanijada.com/Tpl/Home/default/Public/js/jquery.js
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type JavaScript source, ASCII text, with CRLF line terminators
Size 261 kB (261084 bytes)
Hash 9aaa99ce2245e106183a0a6ef54326d2
302a93929b3be1b64e844bd771abb1ea77e6772d
0e6900778afa3b3f14a27d147fe55dffdadab31d2d8ae5a88c67d7b409a1519c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Tpl/Home/default/Public/js/jquery.js HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/office.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:50 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
p1.qhimg.com/d/_onebox/search.png
54.230.111.119200 OK 2.9 kB URL GET HTTP/2 p1.qhimg.com/d/_onebox/search.png
IP 54.230.111.119:443
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerWoTrus CA Limited
Subject*.qhimg.com
FingerprintAB:FA:F2:E1:FE:B9:FE:E8:93:9C:38:6C:9D:C2:CE:6A:7E:EA:17:8F
ValidityWed, 18 Oct 2023 00:00:00 GMT - Thu, 17 Oct 2024 23:59:59 GMT
File type PNG image data, 260 x 43, 8-bit colormap, non-interlaced
Hash 996729035d9ea7dbd1dcf49bf99e78d9
aba797d529929ca0c864eaf7d3261aee61f3ad78
f7b46e16e323b71d7e8308e8aa62ab36453dd3b57935424f4b4166947f0e5863
GET /d/_onebox/search.png HTTP/1.1
Host: p1.qhimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
content-length: 2941
last-modified: Mon, 10 Jul 2023 08:41:47 GMT
xzp: zhkbrquvsxaf
access-control-allow-origin: *
timing-allow-origin: *
xcs: HIT
kcs-via: HIT from w-fc03.lato;MISS from w-sc02.lyct
accept-ranges: bytes
date: Mon, 01 Apr 2024 00:22:17 GMT
expires: Sun, 30 Jun 2024 00:22:17 GMT
cache-control: max-age=7776000
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: MucDgW0Wuko1mrsctQGLtdV26szUMsMLpYIza4QLDgo_H0aMsUhcYA==
age: 2026713
X-Firefox-Spdy: h2
www.kecmanijada.com/Tpl/Home/default/Public/js/aos.js
154.55.220.121200 OK 17 kB URL GET HTTP/1.1 www.kecmanijada.com/Tpl/Home/default/Public/js/aos.js
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type JavaScript source, ASCII text, with very long lines (17243), with CRLF line terminators
Hash f359b69256857183ec3393e75939a84d
a0e894f4201a107bf223d42a5949581dd371285e
b7e5dedaf12fb8e299ea627df15dfcabf953587b7d68958487c78599dd039807
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Tpl/Home/default/Public/js/aos.js HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/office.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:50 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
www.kecmanijada.com/Upload/thumb_60dd0d43d1790.jpg
154.55.220.121200 OK 21 kB URL GET HTTP/1.1 www.kecmanijada.com/Upload/thumb_60dd0d43d1790.jpg
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 365x260, components 3
Hash b888c90debb4143ebf0c8993d4098881
d146a2ead18fecb12e344a7ea45edf12bbbe7609
ace7e9060ffd015615519044db643f173ed6ae36cd9a4c6d28c7be8d7ca915e9
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Upload/thumb_60dd0d43d1790.jpg HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/office.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:51 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
www.kecmanijada.com/Tpl/Home/default/Public/images/feat_icon2.png
154.55.220.121200 OK 10 kB URL GET HTTP/1.1 www.kecmanijada.com/Tpl/Home/default/Public/images/feat_icon2.png
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type PNG image data, 186 x 186, 8-bit/color RGBA, non-interlaced
Hash c332cc59a8e27aded6931a9434e6f9e3
7fad787814085a50dcc90d4881ee548ab14d9e15
d51721a3f41718450a5bd0590f2b9fd75f1d245a4303bbd8ccf4ed79c32771df
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Tpl/Home/default/Public/images/feat_icon2.png HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/office.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:51 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
www.kecmanijada.com/Upload/thumb_60dd0d4218e70.png
154.55.220.121200 OK 26 kB URL GET HTTP/1.1 www.kecmanijada.com/Upload/thumb_60dd0d4218e70.png
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced
Hash 8c970b7ef32fd74cdb0669110fdd89eb
f3dca6f3f39ea69bcc75a0ab8c938835173a5743
47e25808cb5e3dc7feb4bdc48aa8a0a6ea0d5ce3f2ce00180b1c2e6b027950a6
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Upload/thumb_60dd0d4218e70.png HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/office.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:51 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
www.kecmanijada.com/Tpl/Home/default/Public/images/feat_icon1.png
154.55.220.121200 OK 9.1 kB URL GET HTTP/1.1 www.kecmanijada.com/Tpl/Home/default/Public/images/feat_icon1.png
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type PNG image data, 186 x 186, 8-bit/color RGBA, non-interlaced
Hash a9715e6d18cad56ec713f82c5733b0fe
744035f9915d352d9be6baa8c79ed8a818c222dc
6da56162a809c24cb145369c4d9f931b9ecc2afecf08b75c8a57c19aa6d1724b
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Tpl/Home/default/Public/images/feat_icon1.png HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/office.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:51 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
www.sogou.com/web/index/images/logo_440x140.v.4.png
118.191.216.42200 OK 3.0 kB URL GET HTTP/1.1 www.sogou.com/web/index/images/logo_440x140.v.4.png
IP 118.191.216.42:443
ASN #59045 Guangzhou navigation information technology co., LTD
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerGlobalSign nv-sa
Subject*.sogou.com
Fingerprint6D:FB:C1:EE:05:F2:40:5B:EB:02:A6:D8:7E:3E:3B:2A:24:33:05:55
ValidityThu, 06 Jul 2023 08:48:06 GMT - Sat, 13 Jul 2024 04:01:05 GMT
File type PNG image data, 440 x 140, 8-bit colormap, non-interlaced
Hash 31de1d2fa7d918fab2f59984391db1c8
4f4b78796b3fbf19971f182175bcd92b01ee470f
29f87d6615f36a54e3edc8c7f05eb9b480d1f2989dec8da68e82747d060aea85
GET /web/index/images/logo_440x140.v.4.png HTTP/1.1
Host: www.sogou.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:51 GMT
Content-Type: image/png
Content-Length: 2950
Connection: keep-alive
Last-Modified: Mon, 10 Feb 2020 03:11:55 GMT
Set-Cookie: ABTEST=7|1713957651|v17; expires=Fri, 24-May-24 11:20:51 GMT; path=/
IPLOC=NO; expires=Thu, 24-Apr-25 11:20:51 GMT; domain=.sogou.com; path=/
SUID=9A2A5A5B791BA00A000000006628EB13; expires=Tue, 19-Apr-2044 11:20:51 GMT; domain=.sogou.com; path=/
P3P: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR", CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR", CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
ETag: "5e40c9fb-b86"
Expires: Mon, 21 Oct 2024 11:20:51 GMT
Cache-Control: max-age=15552000
UUID: a6d94bef-191b-4d15-8982-6159be6f36dc
Accept-Ranges: bytes
www.kecmanijada.com/Tpl/Home/default/Public/images/feat_icon3.png
154.55.220.121200 OK 10 kB URL GET HTTP/1.1 www.kecmanijada.com/Tpl/Home/default/Public/images/feat_icon3.png
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type PNG image data, 186 x 186, 8-bit/color RGBA, non-interlaced
Hash dac643ac26b05c00b16e53b69f9de3df
13ede84128ac275a6e398b091d0eff527bff9e1a
03c5a7e14e423f056e18d19d2ddd9538ba1d74a566fdf6dd06cf1ded069babeb
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Tpl/Home/default/Public/images/feat_icon3.png HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/office.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:51 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
www.kecmanijada.com/Tpl/Home/default/Public/images/feat_icon4.png
154.55.220.121200 OK 9.7 kB URL GET HTTP/1.1 www.kecmanijada.com/Tpl/Home/default/Public/images/feat_icon4.png
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type PNG image data, 186 x 186, 8-bit/color RGBA, non-interlaced
Hash 789a0c24e0de66fe9521a45ec7f669a7
56dabe458eeb158c377ec990afd5f9c7564f89ca
85a93917e7585ad1e2b675820deecfa543de291737e24aee5025ebca770992d6
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Tpl/Home/default/Public/images/feat_icon4.png HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/office.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:51 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
www.kecmanijada.com/Tpl/Home/default/Public/images/intro_icon1.png
154.55.220.121200 OK 2.1 kB URL GET HTTP/1.1 www.kecmanijada.com/Tpl/Home/default/Public/images/intro_icon1.png
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type PNG image data, 44 x 45, 8-bit/color RGBA, non-interlaced
Hash 8b118b99690147028b6b7e08050ce927
68697ef686d0be34e67423a0517276d87fae20ad
dfe212d003e8b977ffb02be2f3f84fe048055c1f4e08be7caa7baa002479047e
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Tpl/Home/default/Public/images/intro_icon1.png HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/office.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:51 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
www.kecmanijada.com/Tpl/Home/default/Public/js/slideshow.js
154.55.220.121200 OK 230 kB URL GET HTTP/1.1 www.kecmanijada.com/Tpl/Home/default/Public/js/slideshow.js
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type JavaScript source, Unicode text, UTF-8 (with BOM) text, with very long lines (965), with CRLF line terminators
Size 230 kB (230433 bytes)
Hash db3514f5ace3577cb42a2d1b93e5e243
dd39b21c16f4e5c3203edae049d96fbf3cb1c0a3
c32b55fc4d1b1f400f1f6e3404e30f75edc6ccd4230fee4d10673d576a9c5e61
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Tpl/Home/default/Public/js/slideshow.js HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/office.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:50 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
www.kecmanijada.com/Tpl/Home/default/Public/images/intro_icon2.png
154.55.220.121200 OK 1.8 kB URL GET HTTP/1.1 www.kecmanijada.com/Tpl/Home/default/Public/images/intro_icon2.png
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type PNG image data, 44 x 45, 8-bit/color RGBA, non-interlaced
Hash d86c24b240bae0f5507c13dfc4770bab
adcea6b75c61f6e2fa745343b981a85458b68e0a
6b7b311a24e7ad2581ceeec1b47a1786f98c581564e9edf0222fbf3d461f5951
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Tpl/Home/default/Public/images/intro_icon2.png HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/office.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:51 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
www.kecmanijada.com/Tpl/Home/default/Public/images/intro_icon3.png
154.55.220.121200 OK 2.2 kB URL GET HTTP/1.1 www.kecmanijada.com/Tpl/Home/default/Public/images/intro_icon3.png
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type PNG image data, 44 x 45, 8-bit/color RGBA, non-interlaced
Hash fc827a9f3e446a3be2eae2671018a676
782aff151c17c4b902c26688aea1c59a7c7c7bc9
e6e74cbd832c816091489ce85e4b29a0f2787413eaf51bd2b366580af343ebf5
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Tpl/Home/default/Public/images/intro_icon3.png HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/office.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:51 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
www.kecmanijada.com/Tpl/Home/default/Public/js/jquery-1.4.2.min.js
154.55.220.121200 OK 72 kB URL GET HTTP/1.1 www.kecmanijada.com/Tpl/Home/default/Public/js/jquery-1.4.2.min.js
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type JavaScript source, Unicode text, UTF-8 (with BOM) text, with very long lines (820), with CRLF line terminators
Hash ec99afc2cc274f1d5bee4c71b8c4de9a
53dd4c66759c33e4d7d8d03fcf51a134cb228a10
676003132210d7aaa5f1dc57d68e682cf363ae1f918dc41fd7969b405db2b6c0
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Tpl/Home/default/Public/js/jquery-1.4.2.min.js HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/office.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:51 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
www.kecmanijada.com/Upload/60dd79ebf3e58.png
154.55.220.121200 OK 583 B URL GET HTTP/1.1 www.kecmanijada.com/Upload/60dd79ebf3e58.png
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced
Hash fc521742856a85466102684b8734f0bd
250942799bd8f44a3d08c56779ab526899f3ac29
fd902885d5826647ec08f22262260c080f4acad1306d259e71b654dfe80ce3f0
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Upload/60dd79ebf3e58.png HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/office.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:51 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
www.kecmanijada.com/Upload/thumb_641114f5ac033.png
154.55.220.121200 OK 817 B URL GET HTTP/1.1 www.kecmanijada.com/Upload/thumb_641114f5ac033.png
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type PNG image data, 113 x 17, 8-bit/color RGBA, non-interlaced
Hash fd95abfcca8ecc0407f44afb1a2f8cd6
d19dc1947f925c3dbca18f095dfac4981553ea30
cdae6d0a002d92f5b0911e5f655c190f655269466643cc586f1ba4fd2bab8779
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Upload/thumb_641114f5ac033.png HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/office.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:51 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
www.kecmanijada.com/Tpl/Home/default/Public/images/intro_icon4.png
154.55.220.121200 OK 2.5 kB URL GET HTTP/1.1 www.kecmanijada.com/Tpl/Home/default/Public/images/intro_icon4.png
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type PNG image data, 44 x 45, 8-bit/color RGBA, non-interlaced
Hash ab7d2184d49640910e4692f2ca41184d
bd114858e570f6f3b62b34f768db0a6c4024f343
3453dd1481647d4afa343d6b6a4f4c2bd97d1d3ebaa7d34563e0a4c31a247e45
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Tpl/Home/default/Public/images/intro_icon4.png HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/office.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:51 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
www.kecmanijada.com/Tpl/Home/default/Public/images/intro_img.jpg
154.55.220.121200 OK 234 kB URL GET HTTP/1.1 www.kecmanijada.com/Tpl/Home/default/Public/images/intro_img.jpg
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 661x403, components 3
Size 234 kB (234345 bytes)
Hash 254329e8a5b487388a0023a3b4aceb96
97daa775286ac1e8ce3dae4cd4f44313d1350a82
fc13ef3ed5f5732114554d9e128fe2ef6cfeb41cae33baf2ddbfcdb7ae8fd4e2
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Tpl/Home/default/Public/images/intro_img.jpg HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/office.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:51 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
www.kecmanijada.com/Upload/thumb_64111503d19cf.png
154.55.220.121200 OK 817 B URL GET HTTP/1.1 www.kecmanijada.com/Upload/thumb_64111503d19cf.png
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type PNG image data, 113 x 17, 8-bit/color RGBA, non-interlaced
Hash fd95abfcca8ecc0407f44afb1a2f8cd6
d19dc1947f925c3dbca18f095dfac4981553ea30
cdae6d0a002d92f5b0911e5f655c190f655269466643cc586f1ba4fd2bab8779
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Upload/thumb_64111503d19cf.png HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/office.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:51 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
www.kecmanijada.com/Upload/60dd7b8f67458.png
154.55.220.121200 OK 507 B URL GET HTTP/1.1 www.kecmanijada.com/Upload/60dd7b8f67458.png
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type PNG image data, 22 x 26, 8-bit/color RGBA, non-interlaced
Hash 24462b2d7d2422c0fc92ac87aa47f53d
cc9e06ce0072cfea6ac86d610efa3c8e99f5b4be
83cc7409a9c9a78228d27cfcb76b676c1fbad776145cce076af9b2cbc15b8585
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Upload/60dd7b8f67458.png HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/office.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:51 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
img.baidu.com/img/logo-80px.gif
182.61.200.83200 OK 866 B URL GET HTTP/1.1 img.baidu.com/img/logo-80px.gif
IP 182.61.200.83:443
ASN #38365 Beijing Baidu Netcom Science and Technology Co., Ltd.
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type GIF image data, version 89a, 80 x 29
Hash 6f5433724f999a096e8a76e6d5918803
6ed88cb4676d384b6b3c7d8ceee5f48aa1bbb524
c3523c84b03a264ff85e541415f945c4c44705c454234274c78d63afd1c278b9
GET /img/logo-80px.gif HTTP/1.1
Host: img.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=311040000
Content-Length: 866
Content-Type: image/gif
Date: Wed, 24 Apr 2024 11:20:51 GMT
Etag: "1211028879"
Expires: Fri, 03 Mar 2034 11:20:51 GMT
Last-Modified: Sun, 15 Aug 2010 16:00:00 GMT
Server: BWS/1.0
www.kecmanijada.com/Tpl/Home/default/Public/images/li_bg.png
154.55.220.121200 OK 13 kB URL GET HTTP/1.1 www.kecmanijada.com/Tpl/Home/default/Public/images/li_bg.png
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type PNG image data, 207 x 82, 8-bit/color RGBA, non-interlaced
Hash 283d84fe217e912479da92d05e0b206f
c0a394075d564acee320f58ae3a759fa972b80c8
17f6f2e2e4499713fa4d6e266b91dd65b123527d66da468c5c3b3cda32b8e9e2
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Tpl/Home/default/Public/images/li_bg.png HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/Tpl/Home/default/Public/css/ddsmoothmenu.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:51 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
www.kecmanijada.com/Public/images/down.gif
154.55.220.121200 OK 1.2 kB URL GET HTTP/1.1 www.kecmanijada.com/Public/images/down.gif
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type GIF image data, version 89a, 9 x 9
Hash 6657f492408edacf4ee8c662af69e559
e02fa37fcd3e7cab13361e5e32b90638502f9a10
eb25e5e192ecc122c2831b5a80569d86c02c9c479e473cda3198fe617cd9257e
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Public/images/down.gif HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/office.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:51 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
www.kecmanijada.com/Tpl/Home/default/Public/images/logo.jpg
154.55.220.121200 OK 32 kB URL GET HTTP/1.1 www.kecmanijada.com/Tpl/Home/default/Public/images/logo.jpg
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2023:03:15 08:50:40], baseline, precision 8, 365x67, components 3
Hash 088f2cec0a1d7662011dc080fbc08e19
85fbd0ee47ae00ad88c2b3245700f881f3722d0c
40b15a94e17b31f7ffcfadd04c1d34d53b878281b2486dadc621b26ccc2abea3
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Tpl/Home/default/Public/images/logo.jpg HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/office.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:52 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
www.kecmanijada.com/Tpl/Home/default/Public/images/tel.jpg
154.55.220.121200 OK 28 kB URL GET HTTP/1.1 www.kecmanijada.com/Tpl/Home/default/Public/images/tel.jpg
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2023:03:15 08:50:28], baseline, precision 8, 290x75, components 3
Hash 56b295b12e4d85c212b487e637b38b63
74b4b5bb443e7b0b276a8444999c9166fea3260a
cdf16e69bdf6a0ee9b483ba609e406abf3e226a2c4c1434748e54fda28892ff1
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Tpl/Home/default/Public/images/tel.jpg HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/office.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:52 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
www.kecmanijada.com/Tpl/Home/default/Public/images/ma.jpg
154.55.220.121200 OK 35 kB URL GET HTTP/1.1 www.kecmanijada.com/Tpl/Home/default/Public/images/ma.jpg
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2022:11:18 16:26:43], progressive, precision 8, 199x117, components 3
Hash f64570da19338c54cd3e2b00f37e56d7
2f782ae99b2c1c49d914eab37a8987125efc1f7e
b22006885e663fce4030f63c69673ecc083e91128baa72e621fc34d9ac450634
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Tpl/Home/default/Public/images/ma.jpg HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/office.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:52 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
www.kecmanijada.com/Tpl/Home/default/Public/images/40.png
154.55.220.121200 OK 921 B URL GET HTTP/1.1 www.kecmanijada.com/Tpl/Home/default/Public/images/40.png
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
Hash b53e6f6bee0d5de816b1e83a61244340
529bf174ee48db909ad26f870e3015b05368e6d3
e95c1adc12784e097294727c3905b3cb987949505298d14497f539421365d840
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Tpl/Home/default/Public/images/40.png HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/Tpl/Home/default/Public/css/ddsmoothmenu.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:52 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
www.kecmanijada.com/Tpl/Home/default/Public/images/prev.png
154.55.220.121200 OK 1.4 kB URL GET HTTP/1.1 www.kecmanijada.com/Tpl/Home/default/Public/images/prev.png
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type PNG image data, 57 x 62, 8-bit/color RGBA, non-interlaced
Hash 024d7a03b3ee67aa2480782386a3d2dc
319a2bde09f7ec4575e9d0c662898ef5b11b302b
fbdab1d3cf486770f906d4cf0b2d20ebd7422b08365229046684cdadc1b3fb57
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Tpl/Home/default/Public/images/prev.png HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/Tpl/Home/default/Public/css/banner.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:52 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
www.kecmanijada.com/Tpl/Home/default/Public/images/next.png
154.55.220.121200 OK 1.4 kB URL GET HTTP/1.1 www.kecmanijada.com/Tpl/Home/default/Public/images/next.png
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type PNG image data, 57 x 62, 8-bit/color RGBA, non-interlaced
Hash 118a4a707107392e171df74e593ddc45
e16af060396a1419db2e0f220e4257f75b74ce4b
d5c1a8dc97914e7437bbbed2264ac31e73f66af74772a960c6716c621aa3c329
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Tpl/Home/default/Public/images/next.png HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/Tpl/Home/default/Public/css/banner.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:52 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
www.kecmanijada.com/Tpl/Home/default/Public/images/tit_img1.png
154.55.220.121200 OK 1.4 kB URL GET HTTP/1.1 www.kecmanijada.com/Tpl/Home/default/Public/images/tit_img1.png
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type PNG image data, 55 x 13, 8-bit/color RGBA, non-interlaced
Hash 8ad804879b4666515acca268e06f680d
e54055be26d96df74324ffbe822a5b3a71012ca3
13e22f6925c67367da6dace38b0cfb93a425629d5e6cedaa351250d1b9e94bbd
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Tpl/Home/default/Public/images/tit_img1.png HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/Tpl/Home/default/Public/css/webmain.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:52 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
www.kecmanijada.com/Tpl/Home/default/Public/images/tit_img2.png
154.55.220.121200 OK 1.4 kB URL GET HTTP/1.1 www.kecmanijada.com/Tpl/Home/default/Public/images/tit_img2.png
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type PNG image data, 55 x 13, 8-bit/color RGBA, non-interlaced
Hash 3959226e0f80d2451c7d59d2f9c4dcab
fcd7c5ae6fc54dcc4787c95baafe68d2d6b54885
be088549caab5daca1b6fc1627e5483d2df08193a549c090e4fe1584edb85551
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Tpl/Home/default/Public/images/tit_img2.png HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/Tpl/Home/default/Public/css/webmain.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:52 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
www.kecmanijada.com/Upload/thumb_60dd0d4533450.jpg
154.55.220.121200 OK 19 kB URL GET HTTP/1.1 www.kecmanijada.com/Upload/thumb_60dd0d4533450.jpg
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 365x260, components 3
Hash 4ed90fc8bbf036e2965150560a836063
01ba8d75a2d0665889134fc46a076a3b8851d08d
b29c2ae2bd6e8b1aa35438d9c741c117f986de054b27187d82c4fcc35c9bf4a4
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Upload/thumb_60dd0d4533450.jpg HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/office.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:52 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
www.kecmanijada.com/Upload/thumb_60dd0d44c0df0.jpg
154.55.220.121200 OK 22 kB URL GET HTTP/1.1 www.kecmanijada.com/Upload/thumb_60dd0d44c0df0.jpg
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 365x260, components 3
Hash 4cf9377f6679f24d5653d8598b7a417c
0f87f1854d900656b17a854a7884e0b02c1b02b5
d10949c297709b3426fb7839b4f9a2e1199ab1867fff2b0fd401eff117dcd50d
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Upload/thumb_60dd0d44c0df0.jpg HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/office.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:52 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
www.kecmanijada.com/images/public/ajax-loader.gif
154.55.220.121200 OK 0 B URL GET HTTP/1.1 www.kecmanijada.com/images/public/ajax-loader.gif
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/public/ajax-loader.gif HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/Tpl/Home/default/Public/css/banner.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:52 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
www.kecmanijada.com/Tpl/Home/default/Public/images/fixCont.png
154.55.220.121200 OK 3.4 kB URL GET HTTP/1.1 www.kecmanijada.com/Tpl/Home/default/Public/images/fixCont.png
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type PNG image data, 54 x 110, 8-bit/color RGBA, interlaced
Hash 86c919d8ccc6480052b75eb39dea67c6
a11b304ac0dc688c128d880832eb0c7db77b5e34
d0434315d5ce1af26f032bfba3d9f9a0bafca4e32a9748bef81ca30e002fb9f4
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Tpl/Home/default/Public/images/fixCont.png HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/Tpl/Home/default/Public/css/webmain.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:52 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
www.kecmanijada.com/Tpl/Home/default/Public/images/dz1.png
154.55.220.121200 OK 3.5 kB URL GET HTTP/1.1 www.kecmanijada.com/Tpl/Home/default/Public/images/dz1.png
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type PNG image data, 79 x 79, 8-bit/color RGBA, non-interlaced
Hash 3f0c05501a93ddd1cc27e51754f4e0f1
311ddf2e93f70302033c7cac22a25858463b757c
8ab5d5a1d2cd20fec1cae003f950d808d4696859907a875067361dd970924334
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Tpl/Home/default/Public/images/dz1.png HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/Tpl/Home/default/Public/css/webmain.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:52 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
www.kecmanijada.com/Tpl/Home/default/Public/images/dz2.png
154.55.220.121200 OK 3.5 kB URL GET HTTP/1.1 www.kecmanijada.com/Tpl/Home/default/Public/images/dz2.png
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type PNG image data, 79 x 79, 8-bit/color RGBA, non-interlaced
Hash 2a2dfb21e04d98d41bb2b1e6724493ac
c98932071b385182bd0d4c4fa93f1e21965e1801
6454a82b75cc4bf829e14428579f878a303a188def85ec7da496a4df327d6c5b
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Tpl/Home/default/Public/images/dz2.png HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/Tpl/Home/default/Public/css/webmain.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:52 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
www.kecmanijada.com/Tpl/Home/default/Public/images/feature_bg.jpg
154.55.220.121200 OK 395 kB URL GET HTTP/1.1 www.kecmanijada.com/Tpl/Home/default/Public/images/feature_bg.jpg
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 1920x214, components 3
Size 395 kB (395234 bytes)
Hash 5654ca10fa7615f4e0677603c662c0fd
bd70f35f487e5b8a362cab98b2bb9dc353fa3661
5d45f465cab1622136cb2d6e8cd7be326b5d0b27721207c081152cdc79ba4f4f
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Tpl/Home/default/Public/images/feature_bg.jpg HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/Tpl/Home/default/Public/css/webmain.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:52 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
www.kecmanijada.com/Tpl/Home/default/Public/images/dz3.png
154.55.220.121200 OK 2.5 kB URL GET HTTP/1.1 www.kecmanijada.com/Tpl/Home/default/Public/images/dz3.png
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type PNG image data, 79 x 79, 8-bit/color RGBA, interlaced
Hash 7770d0f395518e22f818a24d5695c79e
332ce5d2ddc812659deed240beda970ab9ec705d
f3ff6a89a3c9e6348b457605f236fd75ea64821628e3a9dfab027c70a03e8741
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Tpl/Home/default/Public/images/dz3.png HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/Tpl/Home/default/Public/css/webmain.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:52 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
www.kecmanijada.com/Tpl/Home/default/Public/images/dz4.png
154.55.220.121200 OK 2.7 kB URL GET HTTP/1.1 www.kecmanijada.com/Tpl/Home/default/Public/images/dz4.png
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type PNG image data, 79 x 79, 8-bit/color RGBA, interlaced
Hash 92087a3e19a1c4080668d5c22a829747
50c736f9b3cb9336e8e8f7803fde41385518485c
351905aac0241f3b5ce7afc9b6a2e1437cdbcc30f92f684311b0fc9e661d5319
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Tpl/Home/default/Public/images/dz4.png HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/Tpl/Home/default/Public/css/webmain.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:52 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
www.kecmanijada.com/Tpl/Home/default/Public/images/2.jpg
154.55.220.121200 OK 229 kB URL GET HTTP/1.1 www.kecmanijada.com/Tpl/Home/default/Public/images/2.jpg
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x749, components 3
Size 229 kB (229166 bytes)
Hash a932f7613f71a93450c06ea14e382c91
20f1673baeb9d024f6438013500e8eabce6f515e
50c60d0508720941008787d49c0dd9deb4f9205e91991853bca6b32cf1800b02
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Tpl/Home/default/Public/images/2.jpg HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/office.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:52 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
www.kecmanijada.com/Tpl/Home/default/Public/images/intro_bg.jpg
154.55.220.121200 OK 397 kB URL GET HTTP/1.1 www.kecmanijada.com/Tpl/Home/default/Public/images/intro_bg.jpg
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x744, components 3
Size 397 kB (396939 bytes)
Hash 3261ea7b3fedd3e260b15b0e0b1837d5
43ff70487b81d8e4e0cb86771dbde48d6c56e006
daab5bca753fa650570d9180292c1e29961750832a87c3f446a589d50a873265
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Tpl/Home/default/Public/images/intro_bg.jpg HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/Tpl/Home/default/Public/css/webmain.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:52 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
www.kecmanijada.com/Tpl/Home/default/Public/images/1.jpg
154.55.220.121200 OK 229 kB URL GET HTTP/1.1 www.kecmanijada.com/Tpl/Home/default/Public/images/1.jpg
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x749, components 3
Size 229 kB (229166 bytes)
Hash a932f7613f71a93450c06ea14e382c91
20f1673baeb9d024f6438013500e8eabce6f515e
50c60d0508720941008787d49c0dd9deb4f9205e91991853bca6b32cf1800b02
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Tpl/Home/default/Public/images/1.jpg HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/office.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:52 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
www.kecmanijada.com/Tpl/Home/default/Public/images/nav_img.jpg
154.55.220.121200 OK 203 kB URL GET HTTP/1.1 www.kecmanijada.com/Tpl/Home/default/Public/images/nav_img.jpg
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 485x380, components 3
Size 203 kB (202900 bytes)
Hash 5970fd09334a9ee245fe05cf3a40cfc1
5a99bc425755a50aa2c31271fcb2fceafb55487a
0c9c0cd2f5e89b6fb93da723ab9ec07466f28004c9f35c09ad813d8a3eab0e2e
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Tpl/Home/default/Public/images/nav_img.jpg HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/office.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:52 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
www.kecmanijada.com/favicon.ico
154.55.220.121200 OK 7.5 kB URL GET HTTP/1.1 www.kecmanijada.com/favicon.ico
IP 154.55.220.121:443
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Requested by https://www.kecmanijada.com/office.php
Certificate IssuerLet's Encrypt
Subjectkecmanijada.com
FingerprintB2:37:A7:A3:EF:E5:5B:77:2E:D4:7D:66:02:03:35:A4:10:2C:BC:94
ValidityFri, 05 Apr 2024 19:05:20 GMT - Thu, 04 Jul 2024 19:05:19 GMT
File type HTML document, Unicode text, UTF-8 text, with very long lines (1665), with CRLF, CR, LF line terminators
Hash b65776a0952751b21089afb0a5e28deb
6c815ccd6e7fa27ddc2f8cff06ff9fbe11103b7f
288a9d2b07d6718b047fc0e660296494dc4986447e919488ed3fe6f50d15a43d
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /favicon.ico HTTP/1.1
Host: www.kecmanijada.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.kecmanijada.com/office.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 11:20:53 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip