Report Overview
Visitedpublic
2025-08-28 00:49:11
Tags
Submit Tags
URL
xn--67q37uy1i.1hzkxxo0.cc.su8z.kkdhhz-1.boats/index/?%E7%A5%9E%E7%A7%98%E5%8F%91%E5%B8%83/?=https://github.com/xfuli/kdh
Finishing URL
xn--67q37uy1i.1hzkxxo0.cc.su8z.kkdhhz-1.boats/index/?%E7%A5%9E%E7%A7%98%E5%8F%91%E5%B8%83/?=https://github.com/xfuli/kdh
IP / ASN
38.55.20.5
Title
KK福利导航 - 你的福利导航
Detections
urlquery
0
Network Intrusion Detection
1
Threat Detection Systems
1
Host Summary
| Host | Rank | Registered | First Seen | Last Seen | Sent | Received | IP | Fingerprints |
|---|---|---|---|---|---|---|---|---|
api.zzfxfz.com | 3637917 | 2024-07-01 | 2025-05-09 | 2025-08-27 | 1.8 kB | 24 kB | 173.239.250.2 | |
xn--67q37uy1i.1hzkxxo0.cc.su8z.kkdhhz-1.boats | unknown | unknown | No data | No data | 3.0 kB | 590 kB | 38.55.20.5 |  |
www.kmtbu.top | 5649071 | 2024-12-09 | 2025-03-11 | 2025-08-22 | 477 B | 885 kB |  188.114.96.1 |  |
138.113.11.75 1 alert(s) on this Host | unknown | unknown | No data | No data | 502 B | 310 kB |  138.113.11.75 |  |
204oss-003.diunianchai-204oss.top | unknown | 2025-08-24 | 2025-08-25 | 2025-08-25 | 517 B | 79 kB | 172.65.218.121 |  |
Nginx (Web servers, Reverse proxies)
Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.Cloudflare (CDN)
Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.Alibaba Cloud Object Storage Service (IaaS)
Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.GoCache (CDN)
GoCache is an in-memory key:value store/cache similar to memcached that is suitable for applications running on a single machine.Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
| Timestamp | Severity | Source IP | Destination IP | Alert |
|---|---|---|---|---|
| low | Client IP | 74.125.250.129 | ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port) |
Threat Detection Systems
| Detection System | Indicator | Verdict | Alert |
|---|---|---|---|
| Quad9 DNS | 138.113.11.75 | malicious | Sinkholed |
JavaScript (3)
No JavaScripts
HTTP Transactions (10)
| URL | IP | Response | Size |
|---|