| zec.clan.su/rtr/1-1 |  195.216.243.8 | 200 OK | 19 B |
IP195.216.243.8:80
File typeASCII text, with no line terminators Hash680408f8813f8ce478da66e0615e9baa 5dd36cccc34fd2bf61b5008e95014ec309d76bbf c79831d809c25cd6e16f0484f07797112717213d2b7335a1edfcf386d2aa7397
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /rtr/1-1 HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/
Cookie: __ddg8_=FMDMFjGWfIBhEzz2; __ddg10_=1743022267; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=YK7JmJ1Kstd6LSzV; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg10_=1743022268; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: text/javascript; charset=UTF-8
Cache-Control: private
Content-Encoding: gzip
Transfer-Encoding: chunked
|
|
| zec.clan.su/img/log-i.png | 195.216.243.8 | 200 OK | 364 B |
URL GET zec.clan.su/img/log-i.png IP195.216.243.8:80
File typePNG image data, 13 x 54, 4-bit colormap, non-interlaced Hashd0ed7940078b448836e8d1a5a71d1cce 6d9af70b0a83aaeb4986c9541f67306f86f214c8 e8a9963c4a5bd45c61640171f7e58c8080369ff494366403637166595618055a
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /img/log-i.png HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/_st/my.css
Cookie: __ddg8_=9OaEsSCHgt3O4l9z; __ddg10_=1743022268; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=9NGAYtaDf8GlvsKy; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg10_=1743022268; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: image/png
Content-Length: 364
Last-Modified: Sun, 26 Apr 2015 08:08:11 GMT
ETag: "553c9ceb-16c"
Expires: Tue, 15 Apr 2025 20:51:08 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
|
|
| zec.clan.su/img/cas.png | 195.216.243.8 | 200 OK | 8.5 kB |
IP195.216.243.8:80
File typePNG image data, 1000 x 874, 8-bit colormap, non-interlaced Hash95621052ffbd63c102dee2f14507bc81 63854663b75b1782357231f6e8d85856c2edc5bf edfe501d9bfd8cab066c35578c29f8c160c0b7148565ad290cfb02f88e7cfbf0
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /img/cas.png HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/_st/my.css
Cookie: __ddg8_=9OaEsSCHgt3O4l9z; __ddg10_=1743022268; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=y2sbUjMQpeawRcI5; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg10_=1743022268; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: image/png
Content-Length: 8461
Last-Modified: Sun, 26 Apr 2015 08:08:09 GMT
ETag: "553c9ce9-210d"
Expires: Tue, 15 Apr 2025 20:51:08 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
|
|
| zec.clan.su/.s/src/base.min.css | 195.216.243.8 | 200 OK | 33 kB |
URL GET zec.clan.su/.s/src/base.min.css IP195.216.243.8:80
File typeASCII text, with very long lines (32669), with no line terminators Hash73f6881413ebea598ceff7763785a0a3 b12b63896a6a093d4e1b19cb6a7c2a4473bc9d65 cd04e5c21dc2255075c2ccdcfcaaba5af19faab0ad1601ba380af894585812c4
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /.s/src/base.min.css HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/
Cookie: __ddg8_=FMDMFjGWfIBhEzz2; __ddg10_=1743022267; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=ZLbKxFK7J39DzyjH; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:07 GMT
__ddg10_=1743022267; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:07 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:07 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: text/css
Last-Modified: Thu, 27 Feb 2025 13:26:28 GMT
ETag: W/"67c06804-7f9d"
Expires: Tue, 15 Apr 2025 20:51:08 GMT
Cache-Control: max-age=1728000
X-Robots-Tag: googlebot: none
Content-Encoding: gzip
Transfer-Encoding: chunked
|
|
| zec.clan.su/_pu/0/54681252.jpg | 195.216.243.8 | 200 OK | 55 kB |
URL GET zec.clan.su/_pu/0/54681252.jpg IP195.216.243.8:80
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 95", baseline, precision 8, 600x300, components 3 Hashe4e24278fa99ccd592c1ef168fffac27 e6429629d74c8a2d18865ccb1782f8292fd1758b 1802e95e7242242410b7b9f07897ffbaee6a3a2ac1f4aad0e0f8a118ab48176e
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /_pu/0/54681252.jpg HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/
Cookie: __ddg8_=FMDMFjGWfIBhEzz2; __ddg10_=1743022267; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=vPhVw26mvwz1j4Xr; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg10_=1743022268; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: image/jpeg
Content-Length: 54583
Last-Modified: Wed, 29 Apr 2015 11:33:21 GMT
ETag: "5540c181-d537"
Expires: Tue, 15 Apr 2025 20:51:08 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
|
|
| zec.clan.su/img/log-b.png | 195.216.243.8 | 200 OK | 2.8 kB |
URL GET zec.clan.su/img/log-b.png IP195.216.243.8:80
File typePNG image data, 74 x 66, 8-bit colormap, non-interlaced Hash4846b493d8b932c9b8b266b6bc607c8f e528629736f00d5c4fa679569d07873d926196d9 1676c685cf9da67e112d203bc75af69b3500ecad811da128446d65048a1d3119
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /img/log-b.png HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/_st/my.css
Cookie: __ddg8_=9OaEsSCHgt3O4l9z; __ddg10_=1743022268; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=58co89WVOpQlP8E4; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg10_=1743022268; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: image/png
Content-Length: 2803
Last-Modified: Sun, 26 Apr 2015 08:08:11 GMT
ETag: "553c9ceb-af3"
Expires: Tue, 15 Apr 2025 20:51:08 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
|
|
| zec.clan.su/img/bot.png | 195.216.243.8 | 200 OK | 31 kB |
IP195.216.243.8:80
File typePNG image data, 1000 x 700, 8-bit colormap, non-interlaced Hashfed9a5fc44b57a3124831b54d88d60e2 a5554c6ec2a2bb4c69c64ab91178384660076928 c087c7994a5c097d04bdc2a12633c39f99ebd628f93b89cc115f676dc314a30c
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /img/bot.png HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/_st/my.css
Cookie: __ddg8_=3g6id9mvuEZqtTrM; __ddg10_=1743022268; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=XkdqAaCWBDZhdWPy; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg10_=1743022268; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: image/png
Content-Length: 31343
Last-Modified: Sun, 26 Apr 2015 08:08:06 GMT
ETag: "553c9ce6-7a6f"
Expires: Tue, 15 Apr 2025 20:51:08 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
|
|
| zec.clan.su/img/arrs.png | 195.216.243.8 | 200 OK | 263 B |
IP195.216.243.8:80
File typePNG image data, 12 x 8, 4-bit colormap, non-interlaced Hash68c99f2894ec2d1581f9acc1053462ce ed8747dd97c1f26a6fd962816b84cbcf41f413e7 feac92a91fb5446c05d02d98756fc38bed3cd994dfe14377e268e04d8c8f60d4
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /img/arrs.png HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/_st/my.css
Cookie: __ddg8_=YahDs6yovMIs0t8W; __ddg10_=1743022268; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=sK5uPw5CfLvEJqUz; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg10_=1743022268; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: image/png
Content-Length: 263
Last-Modified: Sun, 26 Apr 2015 08:08:03 GMT
ETag: "553c9ce3-107"
Expires: Tue, 15 Apr 2025 20:51:08 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
|
|
| zec.clan.su/img/inp-b.png | 195.216.243.8 | 200 OK | 660 B |
URL GET zec.clan.su/img/inp-b.png IP195.216.243.8:80
File typePNG image data, 420 x 28, 4-bit colormap, non-interlaced Hashc2d4c5f9234a6c3c0aa074a7f35ff993 e3c5d54a7f17175ce6a097ecfece3dcf44b19aa3 a609939d76ab88d45a686ba0cb89a8a754a18b2f62a4da4492b11e44d46b9052
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /img/inp-b.png HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/_st/my.css
Cookie: __ddg8_=YahDs6yovMIs0t8W; __ddg10_=1743022268; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=yfZC95u9waeLik3H; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg10_=1743022268; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: image/png
Content-Length: 660
Last-Modified: Sun, 26 Apr 2015 08:08:10 GMT
ETag: "553c9cea-294"
Expires: Tue, 15 Apr 2025 20:51:08 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
|
|
| | 195.216.243.8 | 200 OK | 44 kB |
IP195.216.243.8:80
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET / HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Cookie: __ddg8_=2bN9Gyu1G0ajtXw6; __ddg10_=1743022267; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=FMDMFjGWfIBhEzz2; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:07 GMT
__ddg10_=1743022267; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:07 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:07 GMT
6zecuCoz=; path=/; expires=Mon, 27-Mar-2023 20:51:08 GMT; HttpOnly; domain=.zec.clan.su
6zecsi=AQC8aORn; path=/; expires=Thu, 26-Mar-2026 20:51:08 GMT; domain=.zec.clan.su
6zecuzll=1743022268; path=/; expires=Thu, 26-Mar-2026 20:51:08 GMT; domain=.zec.clan.su
6zecpushi=1; path=/; expires=Thu, 27-Mar-2025 19:51:08 GMT
Date: Wed, 26 Mar 2025 20:51:07 GMT
Content-Type: text/html; charset=UTF-8
Pragma: no-cache
Vary: host
Last-Modified: Wed, 26 Mar 2025 20:51:00 GMT
Cache-Control: no-cache,no-store, private
Content-Encoding: gzip
Transfer-Encoding: chunked
|
|
| zec.clan.su/.s/src/ulightbox/ulightbox.min.css | 195.216.243.8 | 200 OK | 4.6 kB |
URL GET zec.clan.su/.s/src/ulightbox/ulightbox.min.css IP195.216.243.8:80
File typeASCII text, with very long lines (4552), with no line terminators Hasha05316c4712b56d4de87d83d57fc9a74 22db34df3400db68355d8b3e06c01c4f964ad484 5ddb669cd05d5c481a798631d2bd02b041950600ebaa4d419833fe0f01a04955
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /.s/src/ulightbox/ulightbox.min.css HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/
Cookie: __ddg8_=FMDMFjGWfIBhEzz2; __ddg10_=1743022267; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=mVEOa3mMmuFUDNHp; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg10_=1743022268; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: text/css
Last-Modified: Tue, 24 May 2022 12:36:45 GMT
ETag: W/"628cd15d-11c8"
Expires: Tue, 15 Apr 2025 20:51:08 GMT
Cache-Control: max-age=1728000
X-Robots-Tag: googlebot: none
Content-Encoding: gzip
Transfer-Encoding: chunked
|
|
| zec.clan.su/_nw/0/68815911.jpg | 195.216.243.8 | 200 OK | 153 kB |
URL GET zec.clan.su/_nw/0/68815911.jpg IP195.216.243.8:80
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 95", baseline, precision 8, 700x469, components 3 Size153 kB (153400 bytes) Hashb731e90e43845fea07257258b2fd1b0a f82a2a3ab75d3bf2f6b62e031aafafa080d7c820 61ad7806490f32a2a2e51f975fd45a62ab5f7f0be7fae0dbc19e194e52dc0ded
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /_nw/0/68815911.jpg HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/
Cookie: __ddg8_=FMDMFjGWfIBhEzz2; __ddg10_=1743022267; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=3g6id9mvuEZqtTrM; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg10_=1743022268; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: image/jpeg
Content-Length: 153400
Last-Modified: Wed, 29 Apr 2015 12:26:02 GMT
ETag: "5540cdda-25738"
Expires: Tue, 15 Apr 2025 20:51:08 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
|
|
| zec.clan.su/img/bg/bg57.jpg | 195.216.243.8 | 200 OK | 192 kB |
URL GET zec.clan.su/img/bg/bg57.jpg IP195.216.243.8:80
File typeJPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1800x1114, components 3 Size192 kB (192089 bytes) Hashe7ee123733616a83da505ed269bbe112 caffbb1faf1ecf0c9366a508b1aa877d38d9869c 8e1d6e18f5115dfd9e07e28ac42fb11544ea45d0dafa785afb0c805c33a0ba29
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /img/bg/bg57.jpg HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/css/theme.css
Cookie: __ddg8_=9OaEsSCHgt3O4l9z; __ddg10_=1743022268; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=hvvnJBrz5fbWFyw4; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg10_=1743022268; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: image/jpeg
Content-Length: 192089
Last-Modified: Sun, 26 Apr 2015 08:10:54 GMT
ETag: "553c9d8e-2ee59"
Expires: Tue, 15 Apr 2025 20:51:08 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
|
|
| zec.clan.su/img/des.png | 195.216.243.8 | 200 OK | 694 B |
IP195.216.243.8:80
File typePNG image data, 222 x 22, 4-bit colormap, non-interlaced Hashf4335a480e46c8a67371ec934e71b64b 00634dd8ec73e5b367d0cd0d09765eea6b0b0097 1c10e4454f3e912c3ef963e03cbcc1c64b1133958c48854c4723bfd56569d756
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /img/des.png HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/_st/my.css
Cookie: __ddg8_=9OaEsSCHgt3O4l9z; __ddg10_=1743022268; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=OQEa74cN9jCwv7Ov; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg10_=1743022268; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: image/png
Content-Length: 694
Last-Modified: Sun, 26 Apr 2015 08:08:08 GMT
ETag: "553c9ce8-2b6"
Expires: Tue, 15 Apr 2025 20:51:08 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
|
|
| zec.clan.su/fonts/f012b.woff | 195.216.243.8 | 200 OK | 22 kB |
URL GET zec.clan.su/fonts/f012b.woff IP195.216.243.8:80
File typeWeb Open Font Format, TrueType, length 22304, version 1.0 Hash4536683638799ef42b0ee45b4f50a3ee b08285259794ea18ec63762c0ea9160b0b72db07 068304597a9627933ad1d0d81aae2ef3a359e31899bf4cdc5235782a74ab9d6d
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /fonts/f012b.woff HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/css/theme.css
Cookie: __ddg8_=DYJZbrRq1qW4Az5L; __ddg10_=1743022268; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=I60JP1TRcxw62riN; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg10_=1743022268; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: font/woff
Content-Length: 22304
Last-Modified: Sun, 26 Apr 2015 08:08:03 GMT
ETag: "553c9ce3-5720"
Expires: Tue, 15 Apr 2025 20:51:08 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
|
|
| zec.clan.su/.s/src/jquery-1.12.4.min.js | 195.216.243.8 | 200 OK | 97 kB |
URL GET zec.clan.su/.s/src/jquery-1.12.4.min.js IP195.216.243.8:80
File typeJavaScript source, ASCII text, with very long lines (32077) Hash4f252523d4af0b478c810c2547a63e19 5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb 668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /.s/src/jquery-1.12.4.min.js HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/
Cookie: __ddg8_=FMDMFjGWfIBhEzz2; __ddg10_=1743022267; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=S0tVj8Y1bZvMWzky; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:07 GMT
__ddg10_=1743022267; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:07 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:07 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: application/javascript; charset=UTF-8
Content-Length: 97163
Last-Modified: Wed, 15 May 2024 11:46:23 GMT
ETag: "6644a08f-17b8b"
Expires: Tue, 15 Apr 2025 20:51:08 GMT
Cache-Control: max-age=1728000
X-Robots-Tag: googlebot: none
Accept-Ranges: bytes
|
|
| zec.clan.su/img/header/head3.png | 195.216.243.8 | 200 OK | 129 kB |
URL GET zec.clan.su/img/header/head3.png IP195.216.243.8:80
File typePNG image data, 1000 x 350, 8-bit colormap, non-interlaced Size129 kB (129376 bytes) Hash2b542ec2b075bdc767848b05a6503559 1eb909797dc23f83ee827c09d944c7a1cc2d101c 562f604ab042b07b8d8cee6766f129d6ab038ff29f1884e00518eee49837f9ed
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /img/header/head3.png HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/css/theme.css
Cookie: __ddg8_=9OaEsSCHgt3O4l9z; __ddg10_=1743022268; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=E15Vxt54uVwpcdUw; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg10_=1743022268; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: image/png
Content-Length: 129376
Last-Modified: Sun, 26 Apr 2015 08:12:55 GMT
ETag: "553c9e07-1f960"
Expires: Tue, 15 Apr 2025 20:51:08 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
|
|
| zec.clan.su/img/dirt.png | 195.216.243.8 | 200 OK | 1.4 kB |
IP195.216.243.8:80
File typePNG image data, 106 x 58, 4-bit colormap, non-interlaced Hashd0bdb54da418483d90decd020d990ca7 f6c37671919a57ee869ad60daccce25c1fcdea81 dbeab0c1ec9401d287558d3fb0036281dc29eb5b409c4a9dfaa0cd4cbf870376
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /img/dirt.png HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/_st/my.css
Cookie: __ddg8_=9OaEsSCHgt3O4l9z; __ddg10_=1743022268; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=7QrSMaKqSft6eUmF; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg10_=1743022268; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: image/png
Content-Length: 1404
Last-Modified: Sun, 26 Apr 2015 08:08:09 GMT
ETag: "553c9ce9-57c"
Expires: Tue, 15 Apr 2025 20:51:08 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
|
|
| zec.clan.su/img/sep-d.png | 195.216.243.8 | 200 OK | 566 B |
URL GET zec.clan.su/img/sep-d.png IP195.216.243.8:80
File typePNG image data, 1000 x 2, 4-bit colormap, non-interlaced Hashcc6ee92fa62b94ae00f9608162752bec b138377c0edc5a428768012a303419eaac694a41 6663a22c263019d525697946246d910521495ff2beef4c26b839e41fbbac56d8
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /img/sep-d.png HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/_st/my.css
Cookie: __ddg8_=9OaEsSCHgt3O4l9z; __ddg10_=1743022268; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=bU3kQtPZJutCnXTC; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg10_=1743022268; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: image/png
Content-Length: 566
Last-Modified: Sun, 26 Apr 2015 08:08:13 GMT
ETag: "553c9ced-236"
Expires: Tue, 15 Apr 2025 20:51:08 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
|
|
| zec.clan.su/img/thmb-v.png | 195.216.243.8 | 200 OK | 550 B |
URL GET zec.clan.su/img/thmb-v.png IP195.216.243.8:80
File typePNG image data, 32 x 32, 4-bit colormap, non-interlaced Hash7925c9ec6609c0b3b7cdcac25c39b79f 3bd073ba3188426a25308b42a6953d9238cffe83 c22fc1415981b94f00c89a377c53511503b0ef961ce9ed1efd0600b68af4b859
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /img/thmb-v.png HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/_st/my.css
Cookie: __ddg8_=9OaEsSCHgt3O4l9z; __ddg10_=1743022268; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=Ogj51iJWM9VowhJk; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg10_=1743022268; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: image/png
Content-Length: 550
Last-Modified: Sun, 26 Apr 2015 08:08:19 GMT
ETag: "553c9cf3-226"
Expires: Tue, 15 Apr 2025 20:51:08 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
|
|
| zec.clan.su/.s/src/uwnd.min.js?v=241708 | 195.216.243.8 | 200 OK | 210 kB |
URL GET zec.clan.su/.s/src/uwnd.min.js?v=241708 IP195.216.243.8:80
Size210 kB (210450 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /.s/src/uwnd.min.js?v=241708 HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/
Cookie: __ddg8_=FMDMFjGWfIBhEzz2; __ddg10_=1743022267; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=3eXlRxF3FxLmUmhA; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:07 GMT
__ddg10_=1743022267; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:07 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:07 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: application/javascript; charset=UTF-8
Content-Length: 210450
Last-Modified: Mon, 24 Mar 2025 14:08:44 GMT
ETag: "67e1676c-33612"
Expires: Tue, 15 Apr 2025 20:51:08 GMT
Cache-Control: max-age=1728000
X-Robots-Tag: googlebot: none
Accept-Ranges: bytes
|
|
| zec.clan.su/img/color/bk-sch.png | 195.216.243.8 | 200 OK | 465 B |
URL GET zec.clan.su/img/color/bk-sch.png IP195.216.243.8:80
File typePNG image data, 18 x 18, 8-bit colormap, non-interlaced Hash28c480d9932137344d92d24f8a53b7be c8e168b269e91157fdc1836543d8c1403ce3e674 9632bdced7919b3067bc5f855be4748e60c2241c7c3d2f20420d269b30eb33d8
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /img/color/bk-sch.png HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/css/theme.css
Cookie: __ddg8_=9OaEsSCHgt3O4l9z; __ddg10_=1743022268; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=5pwITItncI5RVwF3; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg10_=1743022268; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: image/png
Content-Length: 465
Last-Modified: Sun, 26 Apr 2015 08:11:19 GMT
ETag: "553c9da7-1d1"
Expires: Tue, 15 Apr 2025 20:51:08 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
|
|
| s19.ucoz.net/cgi/uutils.fcg?a=uSD&ca=2&ug=999&isp=0&r=0.918204482754291 | 195.216.243.8 | 200 OK | 0 B |
URL GET s19.ucoz.net/cgi/uutils.fcg?a=uSD&ca=2&ug=999&isp=0&r=0.918204482754291 IP195.216.243.8:80
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /cgi/uutils.fcg?a=uSD&ca=2&ug=999&isp=0&r=0.918204482754291 HTTP/1.1
Host: s19.ucoz.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=k0Gc35qquZJ4NSpg; Domain=.ucoz.net; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg10_=1743022268; Domain=.ucoz.net; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg9_=91.90.42.154; Domain=.ucoz.net; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg1_=agNlmsMOnnAF6yGxza2e; Domain=.ucoz.net; HttpOnly; Path=/; Expires=Thu, 26-Mar-2026 20:51:08 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
|
|
| zec.clan.su/_nw/0/88624611.jpg | 195.216.243.8 | 200 OK | 419 kB |
URL GET zec.clan.su/_nw/0/88624611.jpg IP195.216.243.8:80
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 1500x1007, components 3 Size419 kB (418611 bytes) Hashaa0a9c2589165893cd6ed3d57d8529a2 83b637f29dbc246aabb31da3b92604348b82ff8d 309de6aa75bc54c4409c9b827fde324e922c4d88e77b0fd0617c07bd79fd134d
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /_nw/0/88624611.jpg HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/
Cookie: __ddg8_=FMDMFjGWfIBhEzz2; __ddg10_=1743022267; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=70BqxjzzZdxtkAvQ; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg10_=1743022268; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: image/jpeg
Content-Length: 418611
Last-Modified: Wed, 29 Apr 2015 12:10:48 GMT
ETag: "5540ca48-66333"
Expires: Tue, 15 Apr 2025 20:51:08 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
|
|
| zec.clan.su/.s/img/icon/social/login/google.svg | 195.216.243.8 | 200 OK | 1.2 kB |
URL GET zec.clan.su/.s/img/icon/social/login/google.svg IP195.216.243.8:80
File typeSVG Scalable Vector Graphics image Hashcd345cbae0dae96b7b3b69a4314ff83d 6cad723f0d84cc0b0b3dfe8839bcd750fd495395 970dc97e233341bd8c74d4f8be1a3651ae36309fcc76722c58a161cfc8fe1868
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /.s/img/icon/social/login/google.svg HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/.s/src/social3.css
Cookie: __ddg8_=9OaEsSCHgt3O4l9z; __ddg10_=1743022268; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=VUwzZbGcbHeOq8O9; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg10_=1743022268; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: image/svg+xml
Content-Length: 1209
Last-Modified: Thu, 27 Feb 2025 13:30:20 GMT
ETag: "67c068ec-4b9"
Expires: Tue, 15 Apr 2025 20:51:08 GMT
Cache-Control: max-age=1728000
X-Robots-Tag: googlebot: none
Accept-Ranges: bytes
|
|
| zec.clan.su/img/cap.png | 195.216.243.8 | 200 OK | 8.7 kB |
IP195.216.243.8:80
File typePNG image data, 700 x 300, 4-bit colormap, non-interlaced Hashb774855f539c1f5694ca19bc65ffe79d ce9efb9188e6d73a6c8e044879c3616bd2083d23 9da1cfdb33110cbf4916c6f2bbc5f13a7e0a8331dbbd35892cd3b118cc682098
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /img/cap.png HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/_st/my.css
Cookie: __ddg8_=9OaEsSCHgt3O4l9z; __ddg10_=1743022268; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=CoeW1KATuuKmgZce; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg10_=1743022268; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: image/png
Content-Length: 8664
Last-Modified: Sun, 26 Apr 2015 08:08:08 GMT
ETag: "553c9ce8-21d8"
Expires: Tue, 15 Apr 2025 20:51:08 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
|
|
| zec.clan.su/_nw/0/38220957.jpg | 195.216.243.8 | 200 OK | 291 kB |
URL GET zec.clan.su/_nw/0/38220957.jpg IP195.216.243.8:80
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 70", baseline, precision 8, 1500x1006, components 3 Size291 kB (291367 bytes) Hashb3f7035030c2d13900f2222df7ae7305 3d42040f6823b9017d7c8809b188ac3a57943aef 1792dd3ef8135da769c880e942026aff0f10aa05a171dd3b1b1fa636393509e2
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /_nw/0/38220957.jpg HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/
Cookie: __ddg8_=FMDMFjGWfIBhEzz2; __ddg10_=1743022267; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=Add0TRYTMUl1NWX6; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg10_=1743022268; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: image/jpeg
Content-Length: 291367
Last-Modified: Wed, 29 Apr 2015 12:16:01 GMT
ETag: "5540cb81-47227"
Expires: Tue, 15 Apr 2025 20:51:08 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
|
|
| zec.clan.su/css/theme.css | 195.216.243.8 | 200 OK | 1.9 kB |
URL GET zec.clan.su/css/theme.css IP195.216.243.8:80
File typeASCII text, with very long lines (1928), with no line terminators Hash8fda4a23a3432e902ab3b09dafe10360 7ed1665caed827130a16d2365bab87145d32a967 a0a99010efe13c58681c24225dacd9f09c6f1b995a72be917a80f1ee738c1e77
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /css/theme.css HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/_st/my.css
Cookie: __ddg8_=mVEOa3mMmuFUDNHp; __ddg10_=1743022268; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=pubjYbCQD3x9php2; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg10_=1743022268; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: text/css
Last-Modified: Sun, 26 Apr 2015 11:52:38 GMT
ETag: W/"553cd186-751"
Expires: Tue, 15 Apr 2025 20:51:08 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Content-Encoding: gzip
Transfer-Encoding: chunked
|
|
| zec.clan.su/img/icn.png | 195.216.243.8 | 200 OK | 1.2 kB |
IP195.216.243.8:80
File typePNG image data, 22 x 714, 4-bit colormap, non-interlaced Hash86a07d0b9fb59714f1440247f1c86157 cc4d823d0bbb263e65cc2a37502b4f310885fd6e 2794614ebd68470edca162a116618c2dddd45c19fb6a4656050d106b69460746
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /img/icn.png HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/_st/my.css
Cookie: __ddg8_=9OaEsSCHgt3O4l9z; __ddg10_=1743022268; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=TA66PBqTRVlOKotG; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg10_=1743022268; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: image/png
Content-Length: 1154
Last-Modified: Sun, 26 Apr 2015 08:08:10 GMT
ETag: "553c9cea-482"
Expires: Tue, 15 Apr 2025 20:51:08 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
|
|
| zec.clan.su/?pY%3Bxxk7UuRW3PVbR5%5EbyexyW6agtAabeNDepkO6Rnh9%3BRSIdrKBrWuP8NtSkMXiyGF9b55cKS9wFX1pZpxtKPWk8TRq%5Ed44KZfpnL8QbH9brV1SDe%21aqnuMumSvjre6B7H7ey7SaBzHOXmyLINENW8mkOUUuPqLZeav6Op%5EtIb87VP2KYAt%216iPbWCdYi62XIVms3yVAzqJd4HkqbLso | 195.216.243.8 | 200 OK | 858 B |
URL GET zec.clan.su/?pY%3Bxxk7UuRW3PVbR5%5EbyexyW6agtAabeNDepkO6Rnh9%3BRSIdrKBrWuP8NtSkMXiyGF9b55cKS9wFX1pZpxtKPWk8TRq%5Ed44KZfpnL8QbH9brV1SDe%21aqnuMumSvjre6B7H7ey7SaBzHOXmyLINENW8mkOUUuPqLZeav6Op%5EtIb87VP2KYAt%216iPbWCdYi62XIVms3yVAzqJd4HkqbLso IP195.216.243.8:80
File typeJavaScript source, ASCII text, with very long lines (1019), with no line terminators Hash8c12491cba1c5adb630580adcaee168a 1138942be36cfd40b63b7e854373f8a5f41a4489 f17b0cd5c874242ff7e7ad712354d844fd711b113ea1c92c9117ee9e695cc475
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /?pY%3Bxxk7UuRW3PVbR5%5EbyexyW6agtAabeNDepkO6Rnh9%3BRSIdrKBrWuP8NtSkMXiyGF9b55cKS9wFX1pZpxtKPWk8TRq%5Ed44KZfpnL8QbH9brV1SDe%21aqnuMumSvjre6B7H7ey7SaBzHOXmyLINENW8mkOUUuPqLZeav6Op%5EtIb87VP2KYAt%216iPbWCdYi62XIVms3yVAzqJd4HkqbLso HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/
Cookie: __ddg8_=FMDMFjGWfIBhEzz2; __ddg10_=1743022267; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=dS2AKonw4QWQb1Cp; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:07 GMT
__ddg10_=1743022267; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:07 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:07 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: application/javascript; charset=UTF-8
Cache-Control: no-cache, no-store, private
Pragma: no-cache
Transfer-Encoding: chunked
|
|
| zec.clan.su/_nw/0/29991240.jpg | 195.216.243.8 | 200 OK | 258 kB |
URL GET zec.clan.su/_nw/0/29991240.jpg IP195.216.243.8:80
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 70", baseline, precision 8, 1500x1003, components 3 Size258 kB (258121 bytes) Hash13046ce0dcaeed62d48ac2388377a410 b95fc4e485462cfbb07e4beccef1efd178b8b159 f95048d4429e28aa223c97a26b4bcad07c46f8b2f18f4ade67555a49d45a3e60
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /_nw/0/29991240.jpg HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/
Cookie: __ddg8_=FMDMFjGWfIBhEzz2; __ddg10_=1743022267; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=DYJZbrRq1qW4Az5L; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg10_=1743022268; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: image/jpeg
Content-Length: 258121
Last-Modified: Wed, 29 Apr 2015 12:21:33 GMT
ETag: "5540cccd-3f049"
Expires: Tue, 15 Apr 2025 20:51:08 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
|
|
| zec.clan.su/img/color/bk-nav.png | 195.216.243.8 | 200 OK | 2.6 kB |
URL GET zec.clan.su/img/color/bk-nav.png IP195.216.243.8:80
File typePNG image data, 250 x 50, 8-bit colormap, non-interlaced Hash8e5aaf09291351fcb432adf7ed9240c7 f68f7531cd95fdc5d32d34c41fdbbd7557da1cd9 4a734d102963e53a947100d763d941fc4eebb9d87ef026384d0a8f5d2f75d7f9
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /img/color/bk-nav.png HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/css/theme.css
Cookie: __ddg8_=9OaEsSCHgt3O4l9z; __ddg10_=1743022268; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=7ZrlvkcPOC0LRNxy; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg10_=1743022268; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: image/png
Content-Length: 2616
Last-Modified: Sun, 26 Apr 2015 08:11:19 GMT
ETag: "553c9da7-a38"
Expires: Tue, 15 Apr 2025 20:51:08 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
|
|
| zec.clan.su/img/sep-b.png | 195.216.243.8 | 200 OK | 566 B |
URL GET zec.clan.su/img/sep-b.png IP195.216.243.8:80
File typePNG image data, 1000 x 2, 4-bit colormap, non-interlaced Hashf55affc7f98d245379fbc3117dc94f40 a990bd0b814500fb2365de6fc2acdb0e900657bd fc4a79c17833d56dcb835197b1395a48e1abdf9d265331a1003fdff6350a9b67
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /img/sep-b.png HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/_st/my.css
Cookie: __ddg8_=YahDs6yovMIs0t8W; __ddg10_=1743022268; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=BrEXm5G0EqkE0JEA; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg10_=1743022268; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: image/png
Content-Length: 566
Last-Modified: Sun, 26 Apr 2015 08:08:13 GMT
ETag: "553c9ced-236"
Expires: Tue, 15 Apr 2025 20:51:08 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
|
|
| zec.clan.su/img/dirt-b.png | 195.216.243.8 | 200 OK | 1.4 kB |
URL GET zec.clan.su/img/dirt-b.png IP195.216.243.8:80
File typePNG image data, 104 x 61, 4-bit colormap, non-interlaced Hash76113dc94e13cc5ce0472f77e2e6371d 22c5cbc23710fa414b5d8f30fbb4543ad22ac7b0 6a60dd15423917dd36c81de7fd244339e83846fb4d8d96a5877a8031c79d91f6
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /img/dirt-b.png HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/_st/my.css
Cookie: __ddg8_=YahDs6yovMIs0t8W; __ddg10_=1743022268; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=XVIWHJpLuDm0Qwdt; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg10_=1743022268; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: image/png
Content-Length: 1412
Last-Modified: Sun, 26 Apr 2015 08:08:09 GMT
ETag: "553c9ce9-584"
Expires: Tue, 15 Apr 2025 20:51:08 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
|
|
| zec.clan.su/_ld/0/82357656.jpg | 195.216.243.8 | 200 OK | 205 kB |
URL GET zec.clan.su/_ld/0/82357656.jpg IP195.216.243.8:80
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 70", baseline, precision 8, 1500x843, components 3 Size205 kB (204902 bytes) Hashbf6a70b5b78646ac116c363cd5f3e3c3 e781893957335ddee36b8c9b299cd0d34078877b 27b38e4b4facf37ed3b7921d8196ead713f4bd4e36a5daf1b6155ccec0b48ede
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /_ld/0/82357656.jpg HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/
Cookie: __ddg8_=FMDMFjGWfIBhEzz2; __ddg10_=1743022267; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=Yihh8GUWcOS6Zz7f; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg10_=1743022268; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: image/jpeg
Content-Length: 204902
Last-Modified: Mon, 27 Apr 2015 13:07:50 GMT
ETag: "553e34a6-32066"
Expires: Tue, 15 Apr 2025 20:51:08 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
|
|
| zec.clan.su/_nw/0/89052007.jpg | 195.216.243.8 | 200 OK | 259 kB |
URL GET zec.clan.su/_nw/0/89052007.jpg IP195.216.243.8:80
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 70", baseline, precision 8, 1500x1001, components 3 Size259 kB (259370 bytes) Hashcfb2363f54eb18ddcda3a473210dd9f6 619ab4b9c9f40b9d4aa17b3d1cc3aa67530c5433 8adbfd19535d5a60332329ab9dfd6151ae8fa22c989baddd7017e5d80e835b6f
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /_nw/0/89052007.jpg HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/
Cookie: __ddg8_=FMDMFjGWfIBhEzz2; __ddg10_=1743022267; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=MLzU95SZOykvw2cC; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg10_=1743022268; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: image/jpeg
Content-Length: 259370
Last-Modified: Wed, 29 Apr 2015 12:17:46 GMT
ETag: "5540cbea-3f52a"
Expires: Tue, 15 Apr 2025 20:51:08 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
|
|
| zec.clan.su/_pu/0/70922055.jpeg | 195.216.243.8 | 200 OK | 97 kB |
URL GET zec.clan.su/_pu/0/70922055.jpeg IP195.216.243.8:80
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 70", baseline, precision 8, 1500x843, components 3 Hashac041ba34a367512647274ac662be747 3a2b903d380f65ca187aab60300eb6c04e552059 ef4aeccb7a4973f865f358caf11a795446b7987f2232d4fc9217abbfeabe0d49
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /_pu/0/70922055.jpeg HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/
Cookie: __ddg8_=FMDMFjGWfIBhEzz2; __ddg10_=1743022267; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=Q3JSUGbjAWvJ5Vgs; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg10_=1743022268; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: image/jpeg
Content-Length: 96824
Last-Modified: Wed, 29 Apr 2015 11:46:50 GMT
ETag: "5540c4aa-17a38"
Expires: Tue, 15 Apr 2025 20:51:08 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
|
|
| zec.clan.su/img/noimg.png | 195.216.243.8 | 200 OK | 911 B |
URL GET zec.clan.su/img/noimg.png IP195.216.243.8:80
File typePNG image data, 58 x 40, 4-bit colormap, non-interlaced Hash4481e14732f6df4183b801107d46953b 85d76a9e347d9fa304f1ce0e7ce3273973485fbf 315299465e0639419706a6a918d2d170393aaf07be1786efd26027c22319b2d5
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /img/noimg.png HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/_st/my.css
Cookie: __ddg8_=9OaEsSCHgt3O4l9z; __ddg10_=1743022268; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=RIWXbxqEiWvAsZeA; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg10_=1743022268; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: image/png
Content-Length: 911
Last-Modified: Sun, 26 Apr 2015 08:08:12 GMT
ETag: "553c9cec-38f"
Expires: Tue, 15 Apr 2025 20:51:08 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
|
|
| zec.clan.su/img/thmb-m.png | 195.216.243.8 | 200 OK | 12 kB |
URL GET zec.clan.su/img/thmb-m.png IP195.216.243.8:80
File typePNG image data, 300 x 250, 4-bit colormap, non-interlaced Hash927c54178a072aa3063b446d17e34f79 5aa94bc33c7e60bb27d24ef9450086e71bab60c2 6788df08d778b179f40adfecf0bff817640d64b11183008ceadd2d5387118cea
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /img/thmb-m.png HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/_st/my.css
Cookie: __ddg8_=9OaEsSCHgt3O4l9z; __ddg10_=1743022268; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=A425TZR83b5TAi0P; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg10_=1743022268; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: image/png
Content-Length: 11855
Last-Modified: Sun, 26 Apr 2015 08:08:18 GMT
ETag: "553c9cf2-2e4f"
Expires: Tue, 15 Apr 2025 20:51:08 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
|
|
| zec.clan.su/.s/src/layer6.min.css | 195.216.243.8 | 200 OK | 23 kB |
URL GET zec.clan.su/.s/src/layer6.min.css IP195.216.243.8:80
File typeASCII text, with very long lines (23110), with no line terminators Hash6bc2fd806cfcdb536d95515396dee099 e15a7d13e8d3d7f031d308720d2ffdea1562bfd3 cc0d5d92de2400c67eb6b1e9dce916023bbe826fcd37c1fb59b88cf6104549cd
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /.s/src/layer6.min.css HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/
Cookie: __ddg8_=FMDMFjGWfIBhEzz2; __ddg10_=1743022267; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=w1g0I0TPWzFrAEDT; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:07 GMT
__ddg10_=1743022267; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:07 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:07 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: text/css
Last-Modified: Mon, 14 Oct 2024 15:20:38 GMT
ETag: W/"670d36c6-5a46"
Expires: Tue, 15 Apr 2025 20:51:08 GMT
Cache-Control: max-age=1728000
X-Robots-Tag: googlebot: none
Content-Encoding: gzip
Transfer-Encoding: chunked
|
|
| zec.clan.su/.s/img/icon/social/login/square-bg.svg | 195.216.243.8 | 200 OK | 423 B |
URL GET zec.clan.su/.s/img/icon/social/login/square-bg.svg IP195.216.243.8:80
File typeSVG Scalable Vector Graphics image Hash4ee890bf78eb7c402c853fdbce7e62df 81a0af6662c14940453db56164ff5571231ebb84 9a73b77d8ce719cf4d6b81aed951e386e8d8dd6b8383befe8e313ba7f4582a41
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /.s/img/icon/social/login/square-bg.svg HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/.s/src/social3.css
Cookie: __ddg8_=9OaEsSCHgt3O4l9z; __ddg10_=1743022268; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=KppqZOhsr2gVZ90Y; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg10_=1743022268; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: image/svg+xml
Content-Length: 423
Last-Modified: Thu, 27 Feb 2025 13:30:20 GMT
ETag: "67c068ec-1a7"
Expires: Tue, 15 Apr 2025 20:51:08 GMT
Cache-Control: max-age=1728000
X-Robots-Tag: googlebot: none
Accept-Ranges: bytes
|
|
| zec.clan.su/img/bots.png | 195.216.243.8 | 200 OK | 2.3 kB |
IP195.216.243.8:80
File typePNG image data, 1000 x 10, 8-bit colormap, non-interlaced Hashc4955cc820c81e5ff52e69f9ef793992 7e9bfaef988238f00ee9331ea44beba503a71f41 b1e63e7c0a88233541c91835b6e5cf188ffda6d754ab09f0fbadcbc8650cf616
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /img/bots.png HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/_st/my.css
Cookie: __ddg8_=3g6id9mvuEZqtTrM; __ddg10_=1743022268; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=GJHN6dj67kujocnz; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg10_=1743022268; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: image/png
Content-Length: 2341
Last-Modified: Sun, 26 Apr 2015 08:08:07 GMT
ETag: "553c9ce7-925"
Expires: Tue, 15 Apr 2025 20:51:08 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
|
|
| zcode17.com/?ze=hbrdinjsgy5ha3ddf42dkojs |  134.209.203.156 | 200 OK | 10 B |
URL GET zcode17.com/?ze=hbrdinjsgy5ha3ddf42dkojs IP134.209.203.156:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectzpredir17.com Fingerprint15:88:9E:3A:20:68:43:10:AD:44:A6:4F:31:81:1B:30:CA:30:31:2D ValiditySat, 01 Mar 2025 19:20:18 GMT - Fri, 30 May 2025 19:20:17 GMT
File typeASCII text, with no line terminators Hashf495e69f2e9edc75eeae7dd3ea78a747 a89e38bbe70fa2de5db9d578975abd4e9dcda52e 8bf4c7cf443426b4cd8b5a56d22109b4e70314c1d2b8d0eb68887696722c132c
GET /?ze=hbrdinjsgy5ha3ddf42dkojs HTTP/1.1
Host: zcode17.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 26 Mar 2025 20:51:08 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
set-cookie: uuid=ec44b5a8-31fd-4d43-b6c6-95df7f3a3df9; expires=Fri, 25-Apr-2025 20:51:08 GMT; Max-Age=2592000; path=/; SameSite=None; domain=zcode17.com; secure
strict-transport-security: max-age=31536000
content-security-policy: img-src https: data:; upgrade-insecure-requests
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/releases/bUO1BXI8H9PgjAPSW9hwuSeI/recaptcha__en.js |  142.250.178.67 | 200 OK | 561 kB |
URL GET www.gstatic.com/recaptcha/releases/bUO1BXI8H9PgjAPSW9hwuSeI/recaptcha__en.js IP142.250.178.67:443
CertificateIssuerGoogle Trust Services Subject*.gstatic.com Fingerprint63:D6:50:6F:98:C5:59:D1:5A:FF:9D:8D:C3:C1:04:A1:B9:1A:3E:6B ValidityMon, 10 Mar 2025 08:37:01 GMT - Mon, 02 Jun 2025 08:37:00 GMT
Size561 kB (560963 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /recaptcha/releases/bUO1BXI8H9PgjAPSW9hwuSeI/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://zec.clan.su
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
timing-allow-origin: *
content-length: 220514
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 25 Mar 2025 01:50:22 GMT
expires: Wed, 25 Mar 2026 01:50:22 GMT
cache-control: public, max-age=31536000
age: 154847
last-modified: Mon, 17 Mar 2025 04:01:22 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| zec.clan.su/_ld/0/26593690.png | 195.216.243.8 | 200 OK | 28 kB |
URL GET zec.clan.su/_ld/0/26593690.png IP195.216.243.8:80
File typePNG image data, 569 x 317, 8-bit/color RGB, non-interlaced Hashf89edb2f5ae489e1b9879bfc4aca604f 99137bbf9fbd2231797a29d76a8b626a13097631 a3b00ed7c5ceb0df6e9a694f9f595cab17da5777fdc8200f6af77f97bfef43e2
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /_ld/0/26593690.png HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/
Cookie: __ddg8_=FMDMFjGWfIBhEzz2; __ddg10_=1743022267; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=YahDs6yovMIs0t8W; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg10_=1743022268; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: image/png
Content-Length: 27902
Last-Modified: Fri, 13 Jan 2017 03:40:19 GMT
ETag: "58784c23-6cfe"
Expires: Tue, 15 Apr 2025 20:51:08 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
|
|
| zec.clan.su/_nw/0/58515946.jpg | 195.216.243.8 | 200 OK | 408 kB |
URL GET zec.clan.su/_nw/0/58515946.jpg IP195.216.243.8:80
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 1500x1007, components 3 Size408 kB (407470 bytes) Hashe888477544bf2dfdb02a7b725a12569d 5a3f392e94e9571a3ba27de746c17104be47b5dd 89ff93f4bbe2b50102f608b6fb18c3290f8e7c3bf8dc0563ea05809a8628f23f
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /_nw/0/58515946.jpg HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/
Cookie: __ddg8_=FMDMFjGWfIBhEzz2; __ddg10_=1743022267; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=WRXwYZOUuteW1O7L; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg10_=1743022268; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: image/jpeg
Content-Length: 407470
Last-Modified: Wed, 29 Apr 2015 12:32:17 GMT
ETag: "5540cf51-637ae"
Expires: Tue, 15 Apr 2025 20:51:08 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
|
|
| zec.clan.su/img/color/bk-logo.png | 195.216.243.8 | 200 OK | 4.0 kB |
URL GET zec.clan.su/img/color/bk-logo.png IP195.216.243.8:80
File typePNG image data, 184 x 170, 8-bit colormap, non-interlaced Hash078c27c5e80c3cf8cf9e9074bdf9c9af 9f5d781c364225c479596675f3efc3e9411b9421 f46b12ab3ec482123d183d4b632128a2fb86c562f33ac4f3a2bc37c36a700788
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /img/color/bk-logo.png HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/css/theme.css
Cookie: __ddg8_=9OaEsSCHgt3O4l9z; __ddg10_=1743022268; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=95uhVJhpRqYKuiRq; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg10_=1743022268; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: image/png
Content-Length: 3988
Last-Modified: Sun, 26 Apr 2015 08:11:18 GMT
ETag: "553c9da6-f94"
Expires: Tue, 15 Apr 2025 20:51:08 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
|
|
| zec.clan.su/img/sep-w.png | 195.216.243.8 | 200 OK | 567 B |
URL GET zec.clan.su/img/sep-w.png IP195.216.243.8:80
File typePNG image data, 1000 x 2, 4-bit colormap, non-interlaced Hash9230d522b550763d8d7ba5cc8c302153 688623c8758747a61bd8c2093e687ef9f8a8f82c 64a370d45ed1bcd53bcb9cf4d3e1455153a63e20f9989f19fd0b5dc6222bda30
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /img/sep-w.png HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/_st/my.css
Cookie: __ddg8_=3g6id9mvuEZqtTrM; __ddg10_=1743022268; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=Hb2igk706LUM34JW; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg10_=1743022268; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: image/png
Content-Length: 567
Last-Modified: Sun, 26 Apr 2015 08:08:14 GMT
ETag: "553c9cee-237"
Expires: Tue, 15 Apr 2025 20:51:08 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
|
|
| | 195.216.243.8 | 301 Moved Permanently | 44 kB |
IP195.216.243.8:443
CertificateIssuerGlobalSign nv-sa Subject*.clan.su FingerprintAA:26:1E:58:EC:49:21:55:61:01:8F:8F:FB:2A:00:2D:89:F3:95:18 ValidityMon, 21 Oct 2024 12:42:53 GMT - Sat, 22 Nov 2025 12:42:52 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET / HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
server: ddos-guard
set-cookie: __ddg8_=2bN9Gyu1G0ajtXw6; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:07 GMT
__ddg10_=1743022267; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:07 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:07 GMT
__ddg1_=nZwnD7VizJUtbCPuQGPc; Domain=.clan.su; HttpOnly; Path=/; Expires=Thu, 26-Mar-2026 20:51:07 GMT
date: Wed, 26 Mar 2025 20:51:07 GMT
content-type: application/octet-stream
location: http://zec.clan.su/
cache-control: private
X-Firefox-Spdy: h2
|
|
| zec.clan.su/.s/src/social3.css | 195.216.243.8 | 200 OK | 2.6 kB |
URL GET zec.clan.su/.s/src/social3.css IP195.216.243.8:80
File typeASCII text, with very long lines (2655), with no line terminators Hash0efc973168c210895df941248a3aadd8 f46bdaf037d0c150001a06fe3ad504421aaddc0a 37b71c9bd304444a0dbc0c0fbb4a55af954dc5ca43ed5d5137564de501083d5f
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /.s/src/social3.css HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/
Cookie: __ddg8_=FMDMFjGWfIBhEzz2; __ddg10_=1743022267; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=AuB5kBrbgi4L5oK7; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg10_=1743022268; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: text/css
Last-Modified: Thu, 27 Feb 2025 13:26:28 GMT
ETag: W/"67c06804-a2b"
Expires: Tue, 15 Apr 2025 20:51:08 GMT
Cache-Control: max-age=1728000
X-Robots-Tag: googlebot: none
Content-Encoding: gzip
Transfer-Encoding: chunked
|
|
| zec.clan.su/_nw/0/19726817.jpg | 195.216.243.8 | 200 OK | 247 kB |
URL GET zec.clan.su/_nw/0/19726817.jpg IP195.216.243.8:80
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 70", baseline, precision 8, 1500x1006, components 3 Size247 kB (246673 bytes) Hash512f3c948f28b905d47ea148e454517e 2391bdc2b129f2cd3e3ac45c81d10a69b0481b32 eeb474ab2e7eec5a0c7133331ab2fa01b960feed9d285d7509211977b05f6e5c
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /_nw/0/19726817.jpg HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/
Cookie: __ddg8_=FMDMFjGWfIBhEzz2; __ddg10_=1743022267; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=vHcBa9jWvmYjhoaq; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg10_=1743022268; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: image/jpeg
Content-Length: 246673
Last-Modified: Wed, 29 Apr 2015 12:28:50 GMT
ETag: "5540ce82-3c391"
Expires: Tue, 15 Apr 2025 20:51:08 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
|
|
| zec.clan.su/img/nav-b.png | 195.216.243.8 | 200 OK | 6.3 kB |
URL GET zec.clan.su/img/nav-b.png IP195.216.243.8:80
File typePNG image data, 1000 x 53, 8-bit colormap, non-interlaced Hash9cef2b600bc243beac2159e1ffd7778d fd40b8b5afe192d572b7dad82ee481a35c463260 d8c023088c5266fa68aa1f8188927c44d166d06085b1b9ef1cf5b45f9a2bf7e5
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /img/nav-b.png HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/_st/my.css
Cookie: __ddg8_=9OaEsSCHgt3O4l9z; __ddg10_=1743022268; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=q245eqe6dkyH4WGL; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg10_=1743022268; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: image/png
Content-Length: 6289
Last-Modified: Sun, 26 Apr 2015 08:08:12 GMT
ETag: "553c9cec-1891"
Expires: Tue, 15 Apr 2025 20:51:08 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
|
|
| zec.clan.su/img/thmb.png | 195.216.243.8 | 200 OK | 6.8 kB |
IP195.216.243.8:80
File typePNG image data, 710 x 580, 8-bit colormap, non-interlaced Hash2457c5bf018b65e7153b6bed8d738b5d 9ae1a865aec569569f52f80314a23c8d26064564 9c83697c64ab06b8e61a1aac0aaecc1455cedf3b1c6114a5d232b28ce0aeec59
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /img/thmb.png HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/_st/my.css
Cookie: __ddg8_=9OaEsSCHgt3O4l9z; __ddg10_=1743022268; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=uLKJIthTHu5CVuBo; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg10_=1743022268; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: image/png
Content-Length: 6816
Last-Modified: Sun, 26 Apr 2015 08:08:20 GMT
ETag: "553c9cf4-1aa0"
Expires: Tue, 15 Apr 2025 20:51:08 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
|
|
| www.google.com/recaptcha/api.js?onload=reCallback&render=explicit&hl=en | 142.250.178.100 | 200 OK | 966 B |
URL GET www.google.com/recaptcha/api.js?onload=reCallback&render=explicit&hl=en IP142.250.178.100:443
CertificateIssuerGoogle Trust Services Subjectwww.google.com Fingerprint2F:CC:05:C5:14:C4:CD:A4:26:05:31:F9:67:40:7C:D3:39:74:34:0C ValidityMon, 10 Mar 2025 08:37:46 GMT - Mon, 02 Jun 2025 08:37:45 GMT
File typeJavaScript source, ASCII text, with very long lines (966), with no line terminators Hash0ec2af8f68cd197791b038ede046e93d 15180958d446ac4dc56a778becd3c055e01b4cf0 8be7d7334354be1697da310a71bd27e5d7bdac650c477ef154c701f6a9ad3b68
GET /recaptcha/api.js?onload=reCallback&render=explicit&hl=en HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Wed, 26 Mar 2025 20:51:08 GMT
date: Wed, 26 Mar 2025 20:51:08 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="coop_38fac9d5b82543fc4729580d18ff2d3d"
report-to: {"group":"coop_38fac9d5b82543fc4729580d18ff2d3d","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/38fac9d5b82543fc4729580d18ff2d3d"}]}
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| zec.clan.su/_pu/0/20159193.jpg | 195.216.243.8 | 200 OK | 260 kB |
URL GET zec.clan.su/_pu/0/20159193.jpg IP195.216.243.8:80
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 70", baseline, precision 8, 1500x815, components 3 Size260 kB (259585 bytes) Hash84b04d470214ea64e478aa87a61fc698 2ca2598f65fa8e5d74d966cabcbd33195af15f7f 785c75c2a0e69ea0657555e27df9196d602d510299cfce3a67275259c6c1620d
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /_pu/0/20159193.jpg HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/
Cookie: __ddg8_=FMDMFjGWfIBhEzz2; __ddg10_=1743022267; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=N16it266Q88MiqGE; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg10_=1743022268; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: image/jpeg
Content-Length: 259585
Last-Modified: Wed, 29 Apr 2015 11:39:25 GMT
ETag: "5540c2ed-3f601"
Expires: Tue, 15 Apr 2025 20:51:08 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
|
|
| zec.clan.su/_st/my.css | 195.216.243.8 | 200 OK | 35 kB |
IP195.216.243.8:80
File typeASCII text, with very long lines (474) Hash7eb729bea61f352910e99162fce13b91 f448337a9d6755c4abb1978cc657a79e933feefc d370015fcf0d1caf519a6023f3e88765ee8a6175a5d9588c20db18679a5fe43c
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /_st/my.css HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/
Cookie: __ddg8_=FMDMFjGWfIBhEzz2; __ddg10_=1743022267; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=Zm4Qm18vARgbzFYy; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:07 GMT
__ddg10_=1743022267; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:07 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:07 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: text/css
Last-Modified: Sun, 26 Apr 2015 08:29:30 GMT
ETag: W/"553ca1ea-8792"
Expires: Tue, 15 Apr 2025 20:51:08 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Content-Encoding: gzip
Transfer-Encoding: chunked
|
|
| zec.clan.su/_ld/0/15706860.jpg | 195.216.243.8 | 200 OK | 118 kB |
URL GET zec.clan.su/_ld/0/15706860.jpg IP195.216.243.8:80
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "*", progressive, precision 8, 960x960, components 3 Size118 kB (118311 bytes) Hash3fb844abaa83a490c8d17590c8fba84d 26c76bec71d5f68fb63c658f387f3b9cb7e7d921 aeb9b711eaffe9a9550160b55165fbd390b4110ca321f9ed1cbe5487377daa7e
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /_ld/0/15706860.jpg HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/
Cookie: __ddg8_=FMDMFjGWfIBhEzz2; __ddg10_=1743022267; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=9OaEsSCHgt3O4l9z; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg10_=1743022268; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: image/jpeg
Content-Length: 118311
Last-Modified: Sun, 26 Apr 2015 13:51:24 GMT
ETag: "553ced5c-1ce27"
Expires: Tue, 15 Apr 2025 20:51:08 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
|
|
| zec.clan.su/img/color/bk-slid.png | 195.216.243.8 | 200 OK | 2.8 kB |
URL GET zec.clan.su/img/color/bk-slid.png IP195.216.243.8:80
File typePNG image data, 80 x 80, 8-bit colormap, non-interlaced Hash599224a8f4f28755b49341134774412d 11f340ee1b48824daff7be4d8b46812038d2e9a1 cbc460013b21582a54af4130c8019f5d1106e1796727fff16ed91e0b88476496
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /img/color/bk-slid.png HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/css/theme.css
Cookie: __ddg8_=95uhVJhpRqYKuiRq; __ddg10_=1743022268; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=npBewyQtO0bPeBsf; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg10_=1743022268; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: image/png
Content-Length: 2771
Last-Modified: Sun, 26 Apr 2015 08:11:19 GMT
ETag: "553c9da7-ad3"
Expires: Tue, 15 Apr 2025 20:51:08 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
|
|
| zec.clan.su/favicon.ico | 195.216.243.8 | 200 OK | 15 kB |
IP195.216.243.8:80
File typeMS Windows icon resource - 4 icons, 24x24, 32 bits/pixel, 48x48, 32 bits/pixel Hash2534bd1be7659d17391842ca9f0d351c eda5e919bffb6dfdf390383eb980a7f31c5ff3a4 798be772bedb1ce3afded7b0800b61a1f478e79e3c0855dfdd5594ead36d5f6d
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /favicon.ico HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/
Cookie: __ddg8_=sK5uPw5CfLvEJqUz; __ddg10_=1743022268; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=Wfsd9w1lWctmHpNz; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:09 GMT
__ddg10_=1743022269; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:09 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:09 GMT
Date: Wed, 26 Mar 2025 20:51:09 GMT
Content-Type: image/x-icon
Content-Length: 15342
Last-Modified: Thu, 23 Apr 2015 13:23:37 GMT
ETag: "5538f259-3bee"
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
|
|
| zec.clan.su/.s/src/ulightbox/ulightbox.min.js | 195.216.243.8 | 200 OK | 23 kB |
URL GET zec.clan.su/.s/src/ulightbox/ulightbox.min.js IP195.216.243.8:80
File typeJavaScript source, ASCII text, with very long lines (22869), with no line terminators Hash38a148ac3de48e27993765305fe2407b 30b388084600ee4d397752d9cb2da361ddd14f46 4f932a62caad8e41689448216a6deb0f093a0a0f37a47cf73b6e215a154633ea
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /.s/src/ulightbox/ulightbox.min.js HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/
Cookie: __ddg8_=FMDMFjGWfIBhEzz2; __ddg10_=1743022267; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=uxqm4vnPaIzpQM8f; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg10_=1743022268; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: application/javascript; charset=UTF-8
Content-Length: 22869
Last-Modified: Wed, 02 Oct 2024 13:54:13 GMT
ETag: "66fd5085-5955"
Expires: Tue, 15 Apr 2025 20:51:08 GMT
Cache-Control: max-age=1728000
X-Robots-Tag: googlebot: none
Accept-Ranges: bytes
|
|
| zec.clan.su/_ld/0/22947894.jpg | 195.216.243.8 | 200 OK | 245 kB |
URL GET zec.clan.su/_ld/0/22947894.jpg IP195.216.243.8:80
File typeJPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1135x734, components 3 Size245 kB (244736 bytes) Hash50258a1cce7d00307349f81941bca54e ef04d2f4e7881c68f534253a85ae05f4ad465e25 b92a6b9be3177be32f61ff3d735a52f341e05a09f70bb79a3d06c51198b11add
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /_ld/0/22947894.jpg HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/
Cookie: __ddg8_=FMDMFjGWfIBhEzz2; __ddg10_=1743022267; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=DhSQzwljtz8vfPym; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg10_=1743022268; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: image/jpeg
Content-Length: 244736
Last-Modified: Tue, 28 Apr 2015 07:54:49 GMT
ETag: "553f3cc9-3bc00"
Expires: Tue, 15 Apr 2025 20:51:08 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
|
|
| zec.clan.su/js/ui.js | 195.216.243.8 | 200 OK | 35 kB |
IP195.216.243.8:80
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content | | suricata | medium | ET INFO JJEncode Encoded Script |
GET /js/ui.js HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/
Cookie: __ddg8_=FMDMFjGWfIBhEzz2; __ddg10_=1743022267; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=2aktGpAwzN6WfoPX; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg10_=1743022268; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: application/javascript
Content-Length: 34608
Last-Modified: Sun, 26 Apr 2015 08:14:28 GMT
ETag: "553c9e64-8730"
Expires: Tue, 15 Apr 2025 20:51:08 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
|
|
| zec.clan.su/img/color/bk-log.png | 195.216.243.8 | 200 OK | 1.1 kB |
URL GET zec.clan.su/img/color/bk-log.png IP195.216.243.8:80
File typePNG image data, 153 x 68, 8-bit colormap, non-interlaced Hasha9f458c9d18a142b513e1b04816bc5f6 66d7372fb91b9832245c6eb67f8409ca011f600b 8d4b6882846d00c227230c829f8f464777ef96f40bf72d437748c08f539ad5af
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related | | suricata | medium | ET HUNTING DDoS-Guard Hosted Content |
GET /img/color/bk-log.png HTTP/1.1
Host: zec.clan.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zec.clan.su/css/theme.css
Cookie: __ddg8_=9OaEsSCHgt3O4l9z; __ddg10_=1743022268; __ddg9_=91.90.42.154; __ddg1_=nZwnD7VizJUtbCPuQGPc; 6zecsi=AQC8aORn; 6zecuzll=1743022268; 6zecpushi=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=MY7wuPXD6dyELT1y; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg10_=1743022268; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
__ddg9_=91.90.42.154; Domain=.clan.su; Path=/; Expires=Wed, 26-Mar-2025 21:11:08 GMT
Date: Wed, 26 Mar 2025 20:51:08 GMT
Content-Type: image/png
Content-Length: 1086
Last-Modified: Sun, 26 Apr 2015 08:11:18 GMT
ETag: "553c9da6-43e"
Expires: Tue, 15 Apr 2025 20:51:08 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
|
|