| 933883com-kqtab.933883a.buzz/demo/ | 38.22.89.164 | 200 OK | 3.7 kB |
URL User Request GET HTTP/1.1933883com-kqtab.933883a.buzz/demo/ IP 38.22.89.164:80
File typeHTML document, Unicode text, UTF-8 text, with CRLF line terminators Hash387ef06b4d8343fbe4008051093a171a 4f18a92d13565f2a04b7dd7eec898087fcaba93e 0609fd6d8f7a7dc76ff469bb4c834fb66c40f4a3bc31aee7c2d9da5aefdd7905
NIDS | Severity | Alert | suricata | medium | ET INFO HTTP Request to a *.buzz domain |
GET /demo/ HTTP/1.1
Host: 933883com-kqtab.933883a.buzz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 23 Dec 2024 15:23:01 GMT
Content-Type: text/html
Last-Modified: Sat, 26 Oct 2024 16:13:07 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"671d1513-969b"
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip
|
|
| 933883com-kqtab.933883a.buzz/demo/css/style.css | 38.22.89.164 | 200 OK | 6.2 kB |
URL GET HTTP/1.1933883com-kqtab.933883a.buzz/demo/css/style.css IP 38.22.89.164:80
Requested byhttp://933883com-kqtab.933883a.buzz/demo/
File typeUnicode text, UTF-8 text, with very long lines (28702), with no line terminators Hash9d3406698b2981342c19f13f801b0eb5 15430941408813f1f7f09f04c3ed7bac4083325f ea3e737cc586886366522cd809da667a4c9a2bf3b493da4afe9b955bc5f4cde4
NIDS | Severity | Alert | suricata | medium | ET INFO HTTP Request to a *.buzz domain |
GET /demo/css/style.css HTTP/1.1
Host: 933883com-kqtab.933883a.buzz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://933883com-kqtab.933883a.buzz/demo/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 23 Dec 2024 15:23:01 GMT
Content-Type: text/css
Last-Modified: Sat, 26 Oct 2024 16:13:08 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"671d1514-7020"
Expires: Tue, 24 Dec 2024 03:23:01 GMT
Cache-Control: max-age=43200
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip
|
|
| 933883com-kqtab.933883a.buzz/demo/zy/zy.js | 38.22.89.164 | 200 OK | 969 B |
URL GET HTTP/1.1933883com-kqtab.933883a.buzz/demo/zy/zy.js IP 38.22.89.164:80
Requested byhttp://933883com-kqtab.933883a.buzz/demo/
File typeHTML document, Unicode text, UTF-8 text Hashcc9876eb538d74e73ca3f7fd516f6a57 5ab5d54f8528dba934c72c0a188b68f6c631888a 326a0a309fe5b90fe62f8f8adc5b9a25e868a7baf33a36dc09ff5a719b372e63
NIDS | Severity | Alert | suricata | medium | ET INFO HTTP Request to a *.buzz domain |
GET /demo/zy/zy.js HTTP/1.1
Host: 933883com-kqtab.933883a.buzz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://933883com-kqtab.933883a.buzz/demo/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 23 Dec 2024 15:23:01 GMT
Content-Type: application/javascript
Content-Length: 969
Last-Modified: Mon, 23 Dec 2024 15:00:15 GMT
Connection: keep-alive
ETag: "67697aff-3c9"
Expires: Tue, 24 Dec 2024 03:23:01 GMT
Cache-Control: max-age=43200
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
|
|
| 933883com-kqtab.933883a.buzz/demo/zy/88.html?t=1734967382117 | 38.22.89.164 | 200 OK | 1.6 kB |
URL GET HTTP/1.1933883com-kqtab.933883a.buzz/demo/zy/88.html?t=1734967382117 IP 38.22.89.164:80
Requested byhttp://933883com-kqtab.933883a.buzz/demo/
File typeHTML document, Unicode text, UTF-8 text Hashc4dbe0d05071a1417be7480f9f5dd614 13cb6a4d5e0b0b2c28f0986422f2a9fd37abf4db bac00474551c860b6f7be8120909aef6482c73826f0f19096f03e11f27f23222
NIDS | Severity | Alert | suricata | medium | ET INFO HTTP Request to a *.buzz domain |
GET /demo/zy/88.html?t=1734967382117 HTTP/1.1
Host: 933883com-kqtab.933883a.buzz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://933883com-kqtab.933883a.buzz/demo/
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 23 Dec 2024 15:23:02 GMT
Content-Type: text/html
Last-Modified: Sat, 26 Oct 2024 16:13:23 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"671d1523-132a"
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip
|
|
| 933883com-kqtab.933883a.buzz/favicon.ico | 38.22.89.164 | 404 Not Found | 138 B |
URL GET HTTP/1.1933883com-kqtab.933883a.buzz/favicon.ico IP 38.22.89.164:80
Requested byhttp://933883com-kqtab.933883a.buzz/demo/
File typeHTML document, ASCII text Hash7389d931c86b3d7bb6b8af46d8c4172b 8d2a4760aa0b47984d11cd1a66448719177fb791 301bd9f16f94feedfae7a946a14bac38cb73c43efe6117bc5586835af03d7d6f
NIDS | Severity | Alert | suricata | medium | ET INFO HTTP Request to a *.buzz domain |
GET /favicon.ico HTTP/1.1
Host: 933883com-kqtab.933883a.buzz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://933883com-kqtab.933883a.buzz/demo/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Server: nginx
Date: Mon, 23 Dec 2024 15:23:02 GMT
Content-Type: text/html
Content-Length: 138
Connection: keep-alive
ETag: "671d123f-8a"
|
|
| 933883com-kqtab.933883a.buzz/demo/zy/list.css | 38.22.89.164 | 200 OK | 2.2 kB |
URL GET HTTP/1.1933883com-kqtab.933883a.buzz/demo/zy/list.css IP 38.22.89.164:80
Requested byhttp://933883com-kqtab.933883a.buzz/demo/zy/88.html?t=1734967382117
File typeUnicode text, UTF-8 text, with very long lines (938) Hash9f28de2cd20d8d89ec9d5f5f5cccb586 b8bfd64a20c7b921464243d5aca35577960948c8 1029ac936610e971496fb2eeb441f71fc44260f2246143c6c47f1927af1c4779
NIDS | Severity | Alert | suricata | medium | ET INFO HTTP Request to a *.buzz domain |
GET /demo/zy/list.css HTTP/1.1
Host: 933883com-kqtab.933883a.buzz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://933883com-kqtab.933883a.buzz/demo/zy/88.html?t=1734967382117
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 23 Dec 2024 15:23:02 GMT
Content-Type: text/css
Last-Modified: Sat, 26 Oct 2024 16:13:08 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"671d1514-1090"
Expires: Tue, 24 Dec 2024 03:23:02 GMT
Cache-Control: max-age=43200
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip
|
|