Report - 116.125.141.105/main.do

Report Overview

Submitted URL
116.125.141.105/main.do
IP
116.125.141.105
ASN
#9318 SK Broadband Co Ltd
Submitted
2024-05-10 12:22:31
Access
public
Website Title
한남대학교 창업지원단
Final URL
116.125.141.105/main.do
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
122

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
116.125.141.105	unknown	unknown	No data	No data	26 kB	19 MB	116.125.141.105

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed
2024-05-10	medium	116.125.141.105	Sinkholed

ThreatFox

No alerts detected

JavaScript (26)

	URL	Size	First Seen	Last Seen
	116.125.141.105/main.do	411 B	2024-05-10	2024-05-10
Pretty URL 116.125.141.105/main.do IP 116.125.141.105 ASN #9318 SK Broadband Co Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-10 14:22:41 Last Seen2024-05-10 14:22:41 Times Seen1 Hash 4bd81917eaa9579a9daffc4d1fe2bc88 7646bbfd09589328b7a2869ea463cac79ce95f57 a0b33fad6458659ac2ef4a8b3322f6f72d8e05c0db3364f9bbbe5aaee466871f Loading...

	unknown	136 B	2024-05-10	2024-05-10
Pretty Introduced by domTimer Embedded in HTML false Observations First Seen2024-05-10 14:22:41 Last Seen2024-05-10 14:22:41 Times Seen1 Hash e91386dfea4aad1fce6b106ddcdea4cd a9f66d956a0a2a6d80074e541a5bd28930e4f8fb 523675196023b2b11e2468d14698ea96dd28cb81f0dfd307bc733a0c81d38de1 Loading...

	116.125.141.105/static_root/js/common.js	93 kB	2024-05-10	2024-05-10
Pretty URL 116.125.141.105/static_root/js/common.js IP 116.125.141.105 ASN #9318 SK Broadband Co Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-10 14:22:41 Last Seen2024-05-10 14:22:41 Times Seen1 Hash 3736ffc26dd3e10135b713c7d3826bcc 63a4739c7156eb825081adf28d7acb0185e994fe 9bb0f94d4f3485306765749ecff08485b63136fe2e932df07f6442da1c62fadf Loading...

	116.125.141.105/static_root/js/jquery.nyroModal.custom.js	53 kB	2024-05-10	2024-05-10
Pretty URL 116.125.141.105/static_root/js/jquery.nyroModal.custom.js IP 116.125.141.105 ASN #9318 SK Broadband Co Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-10 14:22:41 Last Seen2024-05-10 14:22:42 Times Seen2 Hash cd2f2903a825685dedede16662821c75 de6e271f1d5d519f8dfa98fef8b5d97ebcab09c4 18cf0d2bb41beb93c0d723a570c29180255856ec6feee53e089c1f836b75bd51 Loading...

	116.125.141.105/cheditor/cheditor.js	317 kB	2024-05-10	2024-05-10
Pretty URL 116.125.141.105/cheditor/cheditor.js IP 116.125.141.105 ASN #9318 SK Broadband Co Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-10 14:22:41 Last Seen2024-05-10 14:22:42 Times Seen2 Hash b385cc6956440e371957275d46849ab3 9fa57c2777c9fbddafe57eabc9e8b7c5f160877a 0a3b6e547824ce200a6cb70e4776e4e4ec696c7eeb63824acea35a67fae3730a Loading...

	116.125.141.105/static_root/js/fileDownLoad.js	500 B	2024-05-10	2024-05-10
Pretty URL 116.125.141.105/static_root/js/fileDownLoad.js IP 116.125.141.105 ASN #9318 SK Broadband Co Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-10 14:22:41 Last Seen2024-05-10 14:22:42 Times Seen2 Hash 9b1cfd813d5be111d3a44ba6ae7c5f65 a437e9639bb0a9e6905d4db7dfdf2152a987edab c9ae8459f75a53ea66e401ec04a26951eb24174d1dba7123cd6cc3759e3a3f0f Loading...

	116.125.141.105/static_root/js/jquery-syaku.rolling.js	7.4 kB	2024-05-10	2024-05-10
Pretty URL 116.125.141.105/static_root/js/jquery-syaku.rolling.js IP 116.125.141.105 ASN #9318 SK Broadband Co Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-10 14:22:41 Last Seen2024-05-10 14:22:42 Times Seen2 Hash d8ed0057130eff63643ad28fcdde95cb b5683998ee55f15b1678af2a889168c303d151f6 82339ee599a68699772001437aebffdecf536594c0e4b2622a74bf057a53ef2d Loading...

	116.125.141.105/static_root/js/jquery-1.7.2.min.js	95 kB	2023-03-07	2024-05-20
Pretty URL 116.125.141.105/static_root/js/jquery-1.7.2.min.js IP 116.125.141.105 ASN #9318 SK Broadband Co Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:23 Last Seen2024-05-20 23:23:40 Times Seen14207 Hash b8d64d0bc142b3f670cc0611b0aebcae abcd2ba13348f178b17141b445bc99f1917d47af 47b68dce8cb6805ad5b3ea4d27af92a241f4e29a5c12a274c852e4346a0500b4 Loading...

	116.125.141.105/static_root/js/jquery.cookie.js	3.9 kB	2023-03-07	2024-05-16
Pretty URL 116.125.141.105/static_root/js/jquery.cookie.js IP 116.125.141.105 ASN #9318 SK Broadband Co Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:12:46 Last Seen2024-05-16 10:16:08 Times Seen1046 Hash 8300eb5446df027b01ddd21e03c361b4 282b361b69817ba00a58322634d5bc4972429668 2df6720dd6fa3b96105c584d36a3af24ba9a5850271674b4cc8b9d56903cb272 Loading...

	116.125.141.105/static_root/js/_link.js	16 kB	2024-05-10	2024-05-10
Pretty URL 116.125.141.105/static_root/js/_link.js IP 116.125.141.105 ASN #9318 SK Broadband Co Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-10 14:22:41 Last Seen2024-05-10 14:22:41 Times Seen1 Hash df7a0341ecc9f5795916f43048faf928 c75c691ba5a5fcbdcb7e9a2e9c93f549764292c0 c4c68d927422202b73802c35d81fe841ed8dd1c15b55870c967ac62dc2467bf4 Loading...

	116.125.141.105/static_root/js/jquery.form.js	28 kB	2024-05-10	2024-05-10
Pretty URL 116.125.141.105/static_root/js/jquery.form.js IP 116.125.141.105 ASN #9318 SK Broadband Co Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-10 14:22:41 Last Seen2024-05-10 14:22:42 Times Seen2 Hash 93991c966a1e44bba0e4167427416ca4 8b8d82af19a1c4000aa9f4f4aaa61fb1f771b77b f88470244cc0dc2b886a8f13064fd40d2747d1a655ad889539c3aebd29592d37 Loading...

	116.125.141.105/static_root/js/slick.js	89 kB	2023-03-07	2024-05-20
Pretty URL 116.125.141.105/static_root/js/slick.js IP 116.125.141.105 ASN #9318 SK Broadband Co Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:40 Last Seen2024-05-20 19:31:14 Times Seen8568 Hash 5f8f4aed010e1afe499184d8197309f9 097f6a1b4f115e9b6ebefa70d76d830733bcc9ba 0aaa4cf927b0e3631cffbe62f6786810aa65348483cd950e49f634a0881b16b4 Loading...

	116.125.141.105/static_root/js/calendar/jquery-ui.min.js	200 kB	2024-05-10	2024-05-10
Pretty URL 116.125.141.105/static_root/js/calendar/jquery-ui.min.js IP 116.125.141.105 ASN #9318 SK Broadband Co Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-10 14:22:41 Last Seen2024-05-10 14:22:42 Times Seen2 Hash 9bf6fb27174360e1f5b7bc1a6a68ef07 43c1f72956ebb7f56325537992204267bd480841 129a2d0fa3c35f79f246a5c9ee629cbfa8812273f5e33ab0f12557163533e932 Loading...

	116.125.141.105/static_root/js/moment.js	132 kB	2023-03-07	2024-05-16
Pretty URL 116.125.141.105/static_root/js/moment.js IP 116.125.141.105 ASN #9318 SK Broadband Co Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:51:09 Last Seen2024-05-16 14:21:53 Times Seen54 Hash f7d697f951138510a9fe57536ce00463 98a6a38ac0f676c4097971de1733c09909d2c4b1 dbfdfe43590c611f0c0daa853cd06098b822a96263c92920d70a8bc7f884e59a Loading...

	116.125.141.105/static_root/js/json2.js	18 kB	2023-06-09	2024-05-10
Pretty URL 116.125.141.105/static_root/js/json2.js IP 116.125.141.105 ASN #9318 SK Broadband Co Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-09 15:42:02 Last Seen2024-05-10 14:22:43 Times Seen7 Hash 9241c62a6f548eb9549529f46ddb9913 0f9ab85e6be349892c299518d3b1633a57def334 27332ea939e86fa25860927b4f9b2828588e666bebe2c2e0ef8c55edf417034d Loading...

	116.125.141.105/main.do	2.9 kB	2024-05-10	2024-05-10
Pretty URL 116.125.141.105/main.do IP 116.125.141.105 ASN #9318 SK Broadband Co Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-10 14:22:42 Last Seen2024-05-10 14:22:42 Times Seen1 Hash 29e2ac284f271afd217e5c8aa3ecda3d d573a29998bbdd6ce83fa3ebf69ec67392ba342a 9af561bf3c91ff4f8b1e995c896a3450feb8592573bdcfe712813dea25ef9ff4 Loading...

	116.125.141.105/main.do	5.3 kB	2024-05-10	2024-05-10
Pretty URL 116.125.141.105/main.do IP 116.125.141.105 ASN #9318 SK Broadband Co Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-10 14:22:42 Last Seen2024-05-10 14:22:42 Times Seen1 Hash 430cc9cb64a2328ebbcf5860eb7f5503 ab63b4ee9e6c81c456012c9cff0d35f7c75fb8b8 cfaef70a57ee3d0bf1043e250c946fb95579b549e986252035a44c18a687765b Loading...

	116.125.141.105/static_root/js/jquery.PrintArea.js_4.js	7.3 kB	2024-05-10	2024-05-10
Pretty URL 116.125.141.105/static_root/js/jquery.PrintArea.js_4.js IP 116.125.141.105 ASN #9318 SK Broadband Co Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-10 14:22:42 Last Seen2024-05-10 14:22:42 Times Seen2 Hash c99617339573bd092f5e770dac9625d2 19fd3bdcc4f35c2c5287ddf187370afbd9e7977d 0e34b351f08a18f1b5ce5fd780442c4c499d4f59eed2954d70d883ac4a4f0f80 Loading...

	116.125.141.105/static_root/js/valid.js	120 B	2024-05-10	2024-05-10
Pretty URL 116.125.141.105/static_root/js/valid.js IP 116.125.141.105 ASN #9318 SK Broadband Co Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-10 14:22:42 Last Seen2024-05-10 14:22:42 Times Seen2 Hash 97e794cdd7837ab3dd261d9fc416230c 9f973162878269aa1bb89ee6a4a7ddeb6ed06a2b be14c9661be9f71144526f1584eac25ed1168e534580695ca5a5cf200dd175ae Loading...

	116.125.141.105/main.do	2.4 kB	2024-05-10	2024-05-10
Pretty URL 116.125.141.105/main.do IP 116.125.141.105 ASN #9318 SK Broadband Co Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-10 14:22:42 Last Seen2024-05-10 14:22:42 Times Seen1 Hash f09a5583d8936a28c23c25b6b02c4da0 b0533163deaefd1e8b67e77910cc0ff5124ee320 4d071ed1a655c2eddeb67f90004b029d5f1c6e2286d237255564b75755b41001 Loading...

	116.125.141.105/static_root/js/printThis.js	6.1 kB	2024-05-10	2024-05-10
Pretty URL 116.125.141.105/static_root/js/printThis.js IP 116.125.141.105 ASN #9318 SK Broadband Co Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-10 14:22:42 Last Seen2024-05-10 14:22:42 Times Seen2 Hash 408b6f833b68ca7c255035bf28003831 cecf66783527b06788fbb263ba28db11777c94d2 53dd4de5d364c75bec1377d67153baa89f4782b118cbc64b7341a15c610bb684 Loading...

	116.125.141.105/main.do	2.6 kB	2024-05-10	2024-05-10
Pretty URL 116.125.141.105/main.do IP 116.125.141.105 ASN #9318 SK Broadband Co Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-10 14:22:42 Last Seen2024-05-10 14:22:42 Times Seen1 Hash 56639ba09153095c0e4e9507778abd06 203e9b109334158dfeba4bc7bdcaa24d5a7a56c3 87fa9f5144698fb5cd36fbb429d929b92feaf389bf37da3536096d7b93f57f06 Loading...

	116.125.141.105/static_root/js/jqueryPaging.js	8.7 kB	2024-05-10	2024-05-10
Pretty URL 116.125.141.105/static_root/js/jqueryPaging.js IP 116.125.141.105 ASN #9318 SK Broadband Co Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-10 14:22:42 Last Seen2024-05-10 14:22:42 Times Seen2 Hash e544fa1abbbc5cf95f8293d7af05294a 89df01c352bb7efaf2afd1a975c602aff56e78cb 9702258f58a2c8190d7012d700c5ab6a8d69c106710f21c9fa12f1785d685878 Loading...

	116.125.141.105/static_root/js/loginPortal.js	4.0 kB	2024-05-10	2024-05-10
Pretty URL 116.125.141.105/static_root/js/loginPortal.js IP 116.125.141.105 ASN #9318 SK Broadband Co Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-10 14:22:42 Last Seen2024-05-10 14:22:42 Times Seen2 Hash 0be0764c315a54b594c5cd03c2423fc5 77bf8489d519b700c33ec2f1c0e0109bbfe04e5c 4daabd12eb571830e8ad04fb734a18526654645a4b7d9d8cc6d819e3aea94c98 Loading...

	116.125.141.105/main.do	146 B	2024-05-10	2024-05-10
Pretty URL 116.125.141.105/main.do IP 116.125.141.105 ASN #9318 SK Broadband Co Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-10 14:22:42 Last Seen2024-05-10 14:22:42 Times Seen1 Hash 6e61b57418511083679c5a9b48097d87 c0bcf747c664f5321eb9ee667aaf126bf9e72731 880b7c844135851975eab11a07df00982d5ef9704b22f609651db624ccb3beac Loading...

		Size	First Seen	Last Seen
	#1 Eval - d41d8cd98f00b204e9800998ecf8427e	0 B	2023-03-07	2024-05-21
Pretty Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-21 00:00:51 Times Seen37898882 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

HTTP Transactions (61)

URL IP Response Size

116.125.141.105/static_root/css/reset.css

116.125.141.105

200

6.1 kB

URL GET HTTP/1.1
116.125.141.105/static_root/css/reset.css
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
6.1 kB (6088 bytes)
Hash
37ed0c457a8741d0a818ab1986ebe03f
1ed900b329e424993eb976199c48707852dd81b8
35d63e689eeaa434e336cb70d906b365fc02935620712a4a9dd6bae41343b2da

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root/css/reset.css HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/main.do
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"6088-1702452462000"
Last-Modified: Wed, 13 Dec 2023 07:27:42 GMT
Content-Type: text/css
Content-Length: 6088
Date: Fri, 10 May 2024 12:22:03 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/main.do

116.125.141.105

200

67 kB

URL GET HTTP/1.1
116.125.141.105/main.do
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
JavaScript source, Unicode text, UTF-8 text, with CRLF line terminators
Size
67 kB (66731 bytes)
Hash
e910fddb6f712850c41dd47ebb8b19c9
4a92c93fdbdad416832cba99e65ebf665e794fe6
9b3b87bfbf923228097ebb90ec8174b1e82f3f5d5c4d30fde377737a3142428d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /main.do HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Expires: Fri, 10 May 2024 12:22:03 GMT
Cache-Control: no-cache
Set-Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005; Path=/; HttpOnly
Pragma: no-cache
Content-Type: text/html;charset=utf-8
Content-Language: en-US
Transfer-Encoding: chunked
Date: Fri, 10 May 2024 12:22:03 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root/css/option.css

116.125.141.105

200

13 kB

URL GET HTTP/1.1
116.125.141.105/static_root/css/option.css
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size
13 kB (13366 bytes)
Hash
ab989e79c6569835465b4916b12479ae
bd854e4c1d0e6b2a72324d5069867a56b78e9ff8
fc0519f579626c01ced16f628dfb06563779a21137ae8190bf0f716c488c1fbf

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root/css/option.css HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/main.do
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"13366-1698804070000"
Last-Modified: Wed, 01 Nov 2023 02:01:10 GMT
Content-Type: text/css
Content-Length: 13366
Date: Fri, 10 May 2024 12:22:04 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root/css/main.css

116.125.141.105

200

13 kB

URL GET HTTP/1.1
116.125.141.105/static_root/css/main.css
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size
13 kB (12779 bytes)
Hash
ebb38c1864f5076be6f797e5f197bfd7
4e7c6b329eb0381622bf09f432acc8a7d070d310
f801134587e700c066e5928e516b3f6fe1c827e2ae711cded32a8f3545a0b72e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root/css/main.css HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/main.do
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"12779-1710221538852"
Last-Modified: Tue, 12 Mar 2024 05:32:18 GMT
Content-Type: text/css
Content-Length: 12779
Date: Fri, 10 May 2024 12:22:04 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root/css/button.css

116.125.141.105

200

4.6 kB

URL GET HTTP/1.1
116.125.141.105/static_root/css/button.css
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
4.6 kB (4633 bytes)
Hash
9f27b1c2bf613eb6aeed62c26ce81cae
b2ec54d8d0b05e82e5f68b35f72a21bb13f086e0
ae3d41bac940677ac995917d9d97e229f9a009e0eb5017b24493a7fa9b62d2d1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root/css/button.css HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/main.do
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"4633-1702452462000"
Last-Modified: Wed, 13 Dec 2023 07:27:42 GMT
Content-Type: text/css
Content-Length: 4633
Date: Fri, 10 May 2024 12:22:04 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root/css/bbsTable_user.css

116.125.141.105

200

32 kB

URL GET HTTP/1.1
116.125.141.105/static_root/css/bbsTable_user.css
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size
32 kB (32008 bytes)
Hash
d23be653bac804ddd4f6cc932cc5fb2d
a8f4c5e65180ca9632ddf958e2df7af3965c5c1a
6c7b26d08a296de5b0f422351e83ab6f5c3ec7e1c1ee7fab37badf99390b3af0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root/css/bbsTable_user.css HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/main.do
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"32008-1710221538851"
Last-Modified: Tue, 12 Mar 2024 05:32:18 GMT
Content-Type: text/css
Content-Length: 32008
Date: Fri, 10 May 2024 12:22:04 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root/css/popup.css

116.125.141.105

200

16 kB

URL GET HTTP/1.1
116.125.141.105/static_root/css/popup.css
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size
16 kB (16513 bytes)
Hash
1e351491301e945179ea0fa7f86f7176
b931a8b67e10706dd0d33eddd53b482f0e3f2ff8
fca12f4c52bfd48e84816953a7c4b74cec14738d8e68e65bf67005f5eb462c85

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root/css/popup.css HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/main.do
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"16513-1698804070000"
Last-Modified: Wed, 01 Nov 2023 02:01:10 GMT
Content-Type: text/css
Content-Length: 16513
Date: Fri, 10 May 2024 12:22:04 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root/css/nyroModal.css

116.125.141.105

200

2.0 kB

URL GET HTTP/1.1
116.125.141.105/static_root/css/nyroModal.css
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
ASCII text
Size
2.0 kB (1956 bytes)
Hash
61227028b0c2cef2f8cce899fdb95c41
d601d5679b7369852681ef297b9f788a4ce2006c
15522cede2e466e4882e4befb2749e04170217750c7e47982faf238782ad9672

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root/css/nyroModal.css HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/main.do
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"1956-1698804070000"
Last-Modified: Wed, 01 Nov 2023 02:01:10 GMT
Content-Type: text/css
Content-Length: 1956
Date: Fri, 10 May 2024 12:22:04 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root/css/print.css

116.125.141.105

200

7.7 kB

URL GET HTTP/1.1
116.125.141.105/static_root/css/print.css
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
7.7 kB (7680 bytes)
Hash
a0f281fd0c44e36fd8623baea546da82
34d74e815541fa6596d2d5623c6a68d615937599
a3ffcfb19962d23f420f4bb733b3804f44d07039acdd376d4b3e68a765dc5d8b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root/css/print.css HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/main.do
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"7680-1698804070000"
Last-Modified: Wed, 01 Nov 2023 02:01:10 GMT
Content-Type: text/css
Content-Length: 7680
Date: Fri, 10 May 2024 12:22:04 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root/js/jquery.form.js

116.125.141.105

200

28 kB

URL GET HTTP/1.1
116.125.141.105/static_root/js/jquery.form.js
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
JavaScript source, ASCII text, with CRLF line terminators
Size
28 kB (27690 bytes)
Hash
93991c966a1e44bba0e4167427416ca4
8b8d82af19a1c4000aa9f4f4aaa61fb1f771b77b
f88470244cc0dc2b886a8f13064fd40d2747d1a655ad889539c3aebd29592d37

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root/js/jquery.form.js HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/main.do
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"27690-1698804082000"
Last-Modified: Wed, 01 Nov 2023 02:01:22 GMT
Content-Type: text/javascript
Content-Length: 27690
Date: Fri, 10 May 2024 12:22:04 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root/css/common_user.css

116.125.141.105

200

44 kB

URL GET HTTP/1.1
116.125.141.105/static_root/css/common_user.css
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
44 kB (43996 bytes)
Hash
671f38bebd5c452e54adb373146be5ec
9dfcc3d0234669ddc16413e425b0dc40153ae709
e9871e4822e9613477a40600a567eb7911152be210e6f614095c14996c989b70

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root/css/common_user.css HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/main.do
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"43996-1705454316000"
Last-Modified: Wed, 17 Jan 2024 01:18:36 GMT
Content-Type: text/css
Content-Length: 43996
Date: Fri, 10 May 2024 12:22:04 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root/js/jquery.cookie.js

116.125.141.105

200

3.9 kB

URL GET HTTP/1.1
116.125.141.105/static_root/js/jquery.cookie.js
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
ASCII text
Size
3.9 kB (3937 bytes)
Hash
8300eb5446df027b01ddd21e03c361b4
282b361b69817ba00a58322634d5bc4972429668
2df6720dd6fa3b96105c584d36a3af24ba9a5850271674b4cc8b9d56903cb272

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root/js/jquery.cookie.js HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/main.do
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"3937-1698804082000"
Last-Modified: Wed, 01 Nov 2023 02:01:22 GMT
Content-Type: text/javascript
Content-Length: 3937
Date: Fri, 10 May 2024 12:22:04 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root/css/ionicons.css

116.125.141.105

200

57 kB

URL GET HTTP/1.1
116.125.141.105/static_root/css/ionicons.css
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
Unicode text, UTF-8 text, with very long lines (20244)
Size
57 kB (57173 bytes)
Hash
9e3645586728cd10197babc0f5c989fd
ed749bd4bac05bda1b86a08bc18afa6eb151a029
8bb242d38caa40a6a0d96e8c7a3c8aac73c917879330d0c30dbba25b26f21079

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root/css/ionicons.css HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/static_root/css/option.css
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"57173-1698804070000"
Last-Modified: Wed, 01 Nov 2023 02:01:10 GMT
Content-Type: text/css
Content-Length: 57173
Date: Fri, 10 May 2024 12:22:04 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root/js/jqueryPaging.js

116.125.141.105

200

8.7 kB

URL GET HTTP/1.1
116.125.141.105/static_root/js/jqueryPaging.js
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
JavaScript source, Unicode text, UTF-8 text, with CRLF line terminators
Size
8.7 kB (8716 bytes)
Hash
e544fa1abbbc5cf95f8293d7af05294a
89df01c352bb7efaf2afd1a975c602aff56e78cb
9702258f58a2c8190d7012d700c5ab6a8d69c106710f21c9fa12f1785d685878

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root/js/jqueryPaging.js HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/main.do
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"8716-1698804082000"
Last-Modified: Wed, 01 Nov 2023 02:01:22 GMT
Content-Type: text/javascript
Content-Length: 8716
Date: Fri, 10 May 2024 12:22:05 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root/js/jquery.PrintArea.js_4.js

116.125.141.105

200

7.3 kB

URL GET HTTP/1.1
116.125.141.105/static_root/js/jquery.PrintArea.js_4.js
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
JavaScript source, ASCII text, with CRLF line terminators
Size
7.3 kB (7299 bytes)
Hash
c99617339573bd092f5e770dac9625d2
19fd3bdcc4f35c2c5287ddf187370afbd9e7977d
0e34b351f08a18f1b5ce5fd780442c4c499d4f59eed2954d70d883ac4a4f0f80

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root/js/jquery.PrintArea.js_4.js HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/main.do
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"7299-1698804082000"
Last-Modified: Wed, 01 Nov 2023 02:01:22 GMT
Content-Type: text/javascript
Content-Length: 7299
Date: Fri, 10 May 2024 12:22:05 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root/js/printThis.js

116.125.141.105

200

6.1 kB

URL GET HTTP/1.1
116.125.141.105/static_root/js/printThis.js
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
JavaScript source, ASCII text, with CRLF line terminators
Size
6.1 kB (6089 bytes)
Hash
408b6f833b68ca7c255035bf28003831
cecf66783527b06788fbb263ba28db11777c94d2
53dd4de5d364c75bec1377d67153baa89f4782b118cbc64b7341a15c610bb684

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root/js/printThis.js HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/main.do
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"6089-1698804082000"
Last-Modified: Wed, 01 Nov 2023 02:01:22 GMT
Content-Type: text/javascript
Content-Length: 6089
Date: Fri, 10 May 2024 12:22:05 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root/js/jquery-1.7.2.min.js

116.125.141.105

200

95 kB

URL GET HTTP/1.1
116.125.141.105/static_root/js/jquery-1.7.2.min.js
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (32769)
Size
95 kB (94840 bytes)
Hash
b8d64d0bc142b3f670cc0611b0aebcae
abcd2ba13348f178b17141b445bc99f1917d47af
47b68dce8cb6805ad5b3ea4d27af92a241f4e29a5c12a274c852e4346a0500b4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root/js/jquery-1.7.2.min.js HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/main.do
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"94840-1698804080000"
Last-Modified: Wed, 01 Nov 2023 02:01:20 GMT
Content-Type: text/javascript
Content-Length: 94840
Date: Fri, 10 May 2024 12:22:04 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root/js/valid.js

116.125.141.105

200

120 B

URL GET HTTP/1.1
116.125.141.105/static_root/js/valid.js
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
120 B (120 bytes)
Hash
97e794cdd7837ab3dd261d9fc416230c
9f973162878269aa1bb89ee6a4a7ddeb6ed06a2b
be14c9661be9f71144526f1584eac25ed1168e534580695ca5a5cf200dd175ae

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root/js/valid.js HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/main.do
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"120-1698804082000"
Last-Modified: Wed, 01 Nov 2023 02:01:22 GMT
Content-Type: text/javascript
Content-Length: 120
Date: Fri, 10 May 2024 12:22:05 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root/js/_link.js

116.125.141.105

200

16 kB

URL GET HTTP/1.1
116.125.141.105/static_root/js/_link.js
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
16 kB (15870 bytes)
Hash
b8d5c5f8280e274d455ae903868416b9
6b2a1125887c5b2b1901b5b59098595ebe70f904
7207ee314d81a294051a8b7705379b7dc3bb17d46de8c5cf4ce6e6a556148f00

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root/js/_link.js HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/main.do
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"15870-1698804080000"
Last-Modified: Wed, 01 Nov 2023 02:01:20 GMT
Content-Type: text/javascript
Content-Length: 15870
Date: Fri, 10 May 2024 12:22:05 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root/js/fileDownLoad.js

116.125.141.105

200

500 B

URL GET HTTP/1.1
116.125.141.105/static_root/js/fileDownLoad.js
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
500 B (500 bytes)
Hash
9b1cfd813d5be111d3a44ba6ae7c5f65
a437e9639bb0a9e6905d4db7dfdf2152a987edab
c9ae8459f75a53ea66e401ec04a26951eb24174d1dba7123cd6cc3759e3a3f0f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root/js/fileDownLoad.js HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/main.do
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"500-1698804080000"
Last-Modified: Wed, 01 Nov 2023 02:01:20 GMT
Content-Type: text/javascript
Content-Length: 500
Date: Fri, 10 May 2024 12:22:05 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root/js/jquery.nyroModal.custom.js

116.125.141.105

200

53 kB

URL GET HTTP/1.1
116.125.141.105/static_root/js/jquery.nyroModal.custom.js
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
JavaScript source, ASCII text, with CRLF line terminators
Size
53 kB (52800 bytes)
Hash
cd2f2903a825685dedede16662821c75
de6e271f1d5d519f8dfa98fef8b5d97ebcab09c4
18cf0d2bb41beb93c0d723a570c29180255856ec6feee53e089c1f836b75bd51

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root/js/jquery.nyroModal.custom.js HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/main.do
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"52800-1698804082000"
Last-Modified: Wed, 01 Nov 2023 02:01:22 GMT
Content-Type: text/javascript
Content-Length: 52800
Date: Fri, 10 May 2024 12:22:05 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root/css/font_awesome.css

116.125.141.105

200

140 kB

URL GET HTTP/1.1
116.125.141.105/static_root/css/font_awesome.css
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
troff or preprocessor input, ASCII text
Size
140 kB (139740 bytes)
Hash
279c7ccb0bf220c57fc31f12da66987e
bdd6e1ad83b206f9a03e389d6c1dca2ca706d472
fa80b6282fb6e1b1f1f59c19826a844ccc0cfdab3ccda379e5011b6f912b4dd2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root/css/font_awesome.css HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/static_root/css/option.css
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"139740-1698804070000"
Last-Modified: Wed, 01 Nov 2023 02:01:10 GMT
Content-Type: text/css
Content-Length: 139740
Date: Fri, 10 May 2024 12:22:04 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root/js/calendar/jquery-ui.css

116.125.141.105

200

35 kB

URL GET HTTP/1.1
116.125.141.105/static_root/js/calendar/jquery-ui.css
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
ASCII text, with very long lines (500)
Size
35 kB (35178 bytes)
Hash
8632914f87724b8c61df29a699db92b1
5097b3d28f49855f2bb7396c97f3241b6a75a1ec
e66e54ebb54d2cfe5860144ec9f2de4ac3819b951ac966d02291353e26498a27

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root/js/calendar/jquery-ui.css HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/main.do
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"35178-1698804082000"
Last-Modified: Wed, 01 Nov 2023 02:01:22 GMT
Content-Type: text/css
Content-Length: 35178
Date: Fri, 10 May 2024 12:22:05 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root/js/common.js

116.125.141.105

200

94 kB

URL GET HTTP/1.1
116.125.141.105/static_root/js/common.js
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
Unicode text, UTF-8 text, with very long lines (352), with CRLF, CR line terminators
Size
94 kB (93508 bytes)
Hash
3ee3e2bc1fb96f10963fba3fb1a7c93f
6d788695ca9e8a279510236c5dffbb1df56a5c5c
155fb4aeaa8fbd1a7b7a26bd82fc55e8ad16ee3e4580ed0f0e08ad97c85435ac

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root/js/common.js HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/main.do
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"93508-1698804080000"
Last-Modified: Wed, 01 Nov 2023 02:01:20 GMT
Content-Type: text/javascript
Content-Length: 93508
Date: Fri, 10 May 2024 12:22:05 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root/js/moment.js

116.125.141.105

200

132 kB

URL GET HTTP/1.1
116.125.141.105/static_root/js/moment.js
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
JavaScript source, ASCII text
Size
132 kB (131543 bytes)
Hash
f7d697f951138510a9fe57536ce00463
98a6a38ac0f676c4097971de1733c09909d2c4b1
dbfdfe43590c611f0c0daa853cd06098b822a96263c92920d70a8bc7f884e59a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root/js/moment.js HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/main.do
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"131543-1698804082000"
Last-Modified: Wed, 01 Nov 2023 02:01:22 GMT
Content-Type: text/javascript
Content-Length: 131543
Date: Fri, 10 May 2024 12:22:05 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root/js/jquery-syaku.rolling.js

116.125.141.105

200

7.4 kB

URL GET HTTP/1.1
116.125.141.105/static_root/js/jquery-syaku.rolling.js
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
JavaScript source, Unicode text, UTF-8 text, with CRLF line terminators
Size
7.4 kB (7437 bytes)
Hash
d8ed0057130eff63643ad28fcdde95cb
b5683998ee55f15b1678af2a889168c303d151f6
82339ee599a68699772001437aebffdecf536594c0e4b2622a74bf057a53ef2d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root/js/jquery-syaku.rolling.js HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/main.do
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"7437-1698804080000"
Last-Modified: Wed, 01 Nov 2023 02:01:20 GMT
Content-Type: text/javascript
Content-Length: 7437
Date: Fri, 10 May 2024 12:22:06 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root/js/loginPortal.js

116.125.141.105

200

4.0 kB

URL GET HTTP/1.1
116.125.141.105/static_root/js/loginPortal.js
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
4.0 kB (3972 bytes)
Hash
0be0764c315a54b594c5cd03c2423fc5
77bf8489d519b700c33ec2f1c0e0109bbfe04e5c
4daabd12eb571830e8ad04fb734a18526654645a4b7d9d8cc6d819e3aea94c98

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root/js/loginPortal.js HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/main.do
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"3972-1698804082000"
Last-Modified: Wed, 01 Nov 2023 02:01:22 GMT
Content-Type: text/javascript
Content-Length: 3972
Date: Fri, 10 May 2024 12:22:06 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/cheditor/cheditor.js

116.125.141.105

200

317 kB

URL GET HTTP/1.1
116.125.141.105/cheditor/cheditor.js
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
HTML document, Unicode text, UTF-8 text
Size
317 kB (317404 bytes)
Hash
b385cc6956440e371957275d46849ab3
9fa57c2777c9fbddafe57eabc9e8b7c5f160877a
0a3b6e547824ce200a6cb70e4776e4e4ec696c7eeb63824acea35a67fae3730a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cheditor/cheditor.js HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/main.do
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"317404-1636426800000"
Last-Modified: Tue, 09 Nov 2021 03:00:00 GMT
Content-Type: text/javascript
Content-Length: 317404
Date: Fri, 10 May 2024 12:22:05 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root/js/calendar/jquery-ui.min.js

116.125.141.105

200

200 kB

URL GET HTTP/1.1
116.125.141.105/static_root/js/calendar/jquery-ui.min.js
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
JavaScript source, ASCII text, with very long lines (563)
Size
200 kB (200116 bytes)
Hash
9bf6fb27174360e1f5b7bc1a6a68ef07
43c1f72956ebb7f56325537992204267bd480841
129a2d0fa3c35f79f246a5c9ee629cbfa8812273f5e33ab0f12557163533e932

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root/js/calendar/jquery-ui.min.js HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/main.do
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"200116-1698804082000"
Last-Modified: Wed, 01 Nov 2023 02:01:22 GMT
Content-Type: text/javascript
Content-Length: 200116
Date: Fri, 10 May 2024 12:22:05 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root/js/json2.js

116.125.141.105

200

18 kB

URL GET HTTP/1.1
116.125.141.105/static_root/js/json2.js
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
JavaScript source, ASCII text, with CRLF line terminators
Size
18 kB (18008 bytes)
Hash
9241c62a6f548eb9549529f46ddb9913
0f9ab85e6be349892c299518d3b1633a57def334
27332ea939e86fa25860927b4f9b2828588e666bebe2c2e0ef8c55edf417034d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root/js/json2.js HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/main.do
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"18008-1698804082000"
Last-Modified: Wed, 01 Nov 2023 02:01:22 GMT
Content-Type: text/javascript
Content-Length: 18008
Date: Fri, 10 May 2024 12:22:06 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root/js/slick.js

116.125.141.105

200

89 kB

URL GET HTTP/1.1
116.125.141.105/static_root/js/slick.js
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
JavaScript source, ASCII text
Size
89 kB (88955 bytes)
Hash
5f8f4aed010e1afe499184d8197309f9
097f6a1b4f115e9b6ebefa70d76d830733bcc9ba
0aaa4cf927b0e3631cffbe62f6786810aa65348483cd950e49f634a0881b16b4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root/js/slick.js HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/main.do
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"88955-1698804082000"
Last-Modified: Wed, 01 Nov 2023 02:01:22 GMT
Content-Type: text/javascript
Content-Length: 88955
Date: Fri, 10 May 2024 12:22:06 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root/css/slick.css

116.125.141.105

200

1.8 kB

URL GET HTTP/1.1
116.125.141.105/static_root/css/slick.css
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
ASCII text
Size
1.8 kB (1833 bytes)
Hash
2b8be3e7eadc3e9bbc68c59839dcff8c
b58f109cec90b29f5171129eee87d214b403f54c
7afc75ecb95b3ae4c1619b85d16e6de292c73cd2fa8827f998bc72a4104c10d7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root/css/slick.css HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/main.do
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"1833-1705454316000"
Last-Modified: Wed, 17 Jan 2024 01:18:36 GMT
Content-Type: text/css
Content-Length: 1833
Date: Fri, 10 May 2024 12:22:06 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root/css/content_user.css

116.125.141.105

200

37 kB

URL GET HTTP/1.1
116.125.141.105/static_root/css/content_user.css
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
Unicode text, UTF-8 text, with very long lines (414), with CRLF line terminators
Size
37 kB (36844 bytes)
Hash
753a914f4f9b951e1177fd0d61f60af3
adf178d2aa62c875bca4a6f84b3cca2fdc19c0ec
c27d6c1d5d371ac475f9a5307a677f428c829c31e2b03154a31c635af93da581

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root/css/content_user.css HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/main.do
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"36844-1702452462000"
Last-Modified: Wed, 13 Dec 2023 07:27:42 GMT
Content-Type: text/css
Content-Length: 36844
Date: Fri, 10 May 2024 12:22:06 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root/images/main/icn_quick_04.png

116.125.141.105

200

1.2 kB

URL GET HTTP/1.1
116.125.141.105/static_root/images/main/icn_quick_04.png
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
PNG image data, 100 x 126, 8-bit/color RGBA, non-interlaced
Size
1.2 kB (1180 bytes)
Hash
85263ee6a4ea8cf698560f5838a4ebea
ab6cad9770f844afdbd18b10ee9826ee69ec01b8
7bed9fda045fca9343cc85cac6cc3cee04c7d2579b2e36eb28acae4f531ae344

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root/images/main/icn_quick_04.png HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/main.do
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"1180-1702452904000"
Last-Modified: Wed, 13 Dec 2023 07:35:04 GMT
Content-Type: image/png
Content-Length: 1180
Date: Fri, 10 May 2024 12:22:06 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root//userUpload/2024/02/21/1708493574861861SI.jpg

116.125.141.105

200

238 kB

URL GET HTTP/1.1
116.125.141.105/static_root//userUpload/2024/02/21/1708493574861861SI.jpg
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 1000x1000, components 3
Size
238 kB (237534 bytes)
Hash
e90922d6e91c1ba0ce57f1f91da9be42
5f7b89d3dc01b453d4750316a9c88ebea347691c
8a705c3fa1cc7ee794812d94808bb3f5fd00e30ce6a5c8861bd2ca41bf29168f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root//userUpload/2024/02/21/1708493574861861SI.jpg HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/main.do
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"237534-1708493574845"
Last-Modified: Wed, 21 Feb 2024 05:32:54 GMT
Content-Type: image/jpeg
Content-Length: 237534
Date: Fri, 10 May 2024 12:22:06 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root/images/main/icn_quick_03.png

116.125.141.105

200

1.9 kB

URL GET HTTP/1.1
116.125.141.105/static_root/images/main/icn_quick_03.png
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced
Size
1.9 kB (1854 bytes)
Hash
19c0d8ba0d0ea49f2634fd80566ecaeb
58f662d63f94ccc0e80747768a0f9f34b7e81869
23d5d4715222a2beae9b552b0f006abb99165c924536915962887054981f832b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root/images/main/icn_quick_03.png HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/main.do
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"1854-1702452904000"
Last-Modified: Wed, 13 Dec 2023 07:35:04 GMT
Content-Type: image/png
Content-Length: 1854
Date: Fri, 10 May 2024 12:22:06 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root/images/main/icn_quick_07.png

116.125.141.105

200

1.2 kB

URL GET HTTP/1.1
116.125.141.105/static_root/images/main/icn_quick_07.png
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
PNG image data, 100 x 100, 8-bit colormap, non-interlaced
Size
1.2 kB (1162 bytes)
Hash
d37acb58b59205aafdea0e0f66543ef1
15f5df12e165b30242b8892ccb932b122c6610c2
63df51b0f702445daa528516bb6105be3d0ae76c803e606da37d7958b0ccc75c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root/images/main/icn_quick_07.png HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/main.do
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"1162-1702452904000"
Last-Modified: Wed, 13 Dec 2023 07:35:04 GMT
Content-Type: image/png
Content-Length: 1162
Date: Fri, 10 May 2024 12:22:06 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root/images/main/icn_quick_02.png

116.125.141.105

200

825 B

URL GET HTTP/1.1
116.125.141.105/static_root/images/main/icn_quick_02.png
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced
Size
825 B (825 bytes)
Hash
7b4dc3da8b901fdf71811b491f1cde20
f71eb549f51e4237a2b6f50b82ee3d2074b8cd0e
ccf7d23ee11504571a094ae49d2b4c43df3bb38d8c549fe1bbf31afc9f7cd989

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root/images/main/icn_quick_02.png HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/main.do
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"825-1702452904000"
Last-Modified: Wed, 13 Dec 2023 07:35:04 GMT
Content-Type: image/png
Content-Length: 825
Date: Fri, 10 May 2024 12:22:06 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root/images/main/icn_quick_01.png

116.125.141.105

200

704 B

URL GET HTTP/1.1
116.125.141.105/static_root/images/main/icn_quick_01.png
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
PNG image data, 100 x 68, 8-bit/color RGBA, non-interlaced
Size
704 B (704 bytes)
Hash
d16941b33744ae62afc9b8ee1a6ea853
d570843f711813e56f52d19d5bd852357ef4e494
ea5c71332ac689e2e9f339de0f2a6bcb492391064e4032fc2a16718f0270b4c4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root/images/main/icn_quick_01.png HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/main.do
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"704-1702452904000"
Last-Modified: Wed, 13 Dec 2023 07:35:04 GMT
Content-Type: image/png
Content-Length: 704
Date: Fri, 10 May 2024 12:22:06 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root/images/common/icn_openPage_w.svg

116.125.141.105

200

413 B

URL GET HTTP/1.1
116.125.141.105/static_root/images/common/icn_openPage_w.svg
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
SVG Scalable Vector Graphics image
Size
413 B (413 bytes)
Hash
2f043f5b54480717083cb4b71e2736c3
76f0fdeb88f7a9693cbe3efdc101f1656b55b30a
a9674c5d2c30818d9c3d369a7fee007b6bb13c5379d7424bba33cd0bd3caef8e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root/images/common/icn_openPage_w.svg HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/static_root/css/common_user.css
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"413-1702452904000"
Last-Modified: Wed, 13 Dec 2023 07:35:04 GMT
Content-Type: image/svg+xml
Content-Length: 413
Date: Fri, 10 May 2024 12:22:06 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root/images/common/symbol_a.png

116.125.141.105

200

9.6 kB

URL GET HTTP/1.1
116.125.141.105/static_root/images/common/symbol_a.png
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
PNG image data, 581 x 368, 8-bit/color RGBA, non-interlaced
Size
9.6 kB (9559 bytes)
Hash
6dd0e88616748e64da7ecad286a41def
1c605306de30fc7fa78bedb85b34d6cd8077bc94
02a840d3e089a140f9b473d4540d3393eb9ca57b9e7955a585c0a1c6a67421e5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root/images/common/symbol_a.png HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/static_root/css/main.css
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"9559-1702452904000"
Last-Modified: Wed, 13 Dec 2023 07:35:04 GMT
Content-Type: image/png
Content-Length: 9559
Date: Fri, 10 May 2024 12:22:06 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/admin/System/mainPopupList.do

116.125.141.105

303

0 B

URL POST HTTP/1.1
116.125.141.105/admin/System/mainPopupList.do
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /admin/System/mainPopupList.do HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Origin: http://116.125.141.105
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/main.do
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005; starttime=1715343727500; counttime=1799
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0

HTTP/1.1 303 
Expires: Fri, 10 May 2024 12:22:08 GMT
Cache-Control: max-age=1, must-revalidate
Location: /main.do
Content-Language: en-US
Content-Length: 0
Date: Fri, 10 May 2024 12:22:07 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root/css/font/NotoSans-Bold.woff

116.125.141.105

200

239 kB

URL GET HTTP/1.1
116.125.141.105/static_root/css/font/NotoSans-Bold.woff
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
Web Open Font Format, CFF, length 238600, version 0.0
Size
239 kB (238600 bytes)
Hash
a123e4ed0d51aa4487d91274a452a981
97fb96f2845220dacb1cd72d444d3ad5d0d957d6
f6cfb0159bf1f9c6e22c04ca69fac98b34f9476bfbe93ad5d8a02d08a460b31e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root/css/font/NotoSans-Bold.woff HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/static_root/css/option.css
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"238600-1698804072000"
Last-Modified: Wed, 01 Nov 2023 02:01:12 GMT
Content-Type: font/woff
Content-Length: 238600
Date: Fri, 10 May 2024 12:22:07 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root/css/font/fa-solid-900.woff2

116.125.141.105

200

150 kB

URL GET HTTP/1.1
116.125.141.105/static_root/css/font/fa-solid-900.woff2
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
Web Open Font Format (Version 2), TrueType, length 150516, version 770.768
Size
150 kB (150516 bytes)
Hash
328a9d0f59f0ebb55cddac6f39995bea
c0e6e76b4a02c34656ff2a41b671e02f2821829b
8f06540fd77f1effe1e2da8ea10cec4a382dda9cc6ef05d816e1d6de444072f2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root/css/font/fa-solid-900.woff2 HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/static_root/css/font_awesome.css
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"150516-1698804072000"
Last-Modified: Wed, 01 Nov 2023 02:01:12 GMT
Content-Type: font/woff2
Content-Length: 150516
Date: Fri, 10 May 2024 12:22:07 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root/css/font/poppins-v20-latin-500.woff2

116.125.141.105

200

7.7 kB

URL GET HTTP/1.1
116.125.141.105/static_root/css/font/poppins-v20-latin-500.woff2
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
Web Open Font Format (Version 2), TrueType, length 7748, version 1.0
Size
7.7 kB (7748 bytes)
Hash
a09f2fccfee35b7247b08a1a266f0328
0da2d17e738f46d2a09e6fb7969da451719a9820
cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root/css/font/poppins-v20-latin-500.woff2 HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/static_root/css/option.css
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"7748-1698804072000"
Last-Modified: Wed, 01 Nov 2023 02:01:12 GMT
Content-Type: font/woff2
Content-Length: 7748
Date: Fri, 10 May 2024 12:22:07 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root/images/common/icn_plus.png

116.125.141.105

200

592 B

URL GET HTTP/1.1
116.125.141.105/static_root/images/common/icn_plus.png
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced
Size
592 B (592 bytes)
Hash
3ae78f740331300e10c702a4dbace5da
9b84eb29b9ad5c770078c968453b3e9b40a77199
9244523710055b0e913234b20ecc257e5bad3cc6e1239f96a96919040531805a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root/images/common/icn_plus.png HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/main.do
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"592-1702452904000"
Last-Modified: Wed, 13 Dec 2023 07:35:04 GMT
Content-Type: image/png
Content-Length: 592
Date: Fri, 10 May 2024 12:22:07 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root//userUpload/2024/03/29/171169649161097MD8.jpg

116.125.141.105

200

397 kB

URL GET HTTP/1.1
116.125.141.105/static_root//userUpload/2024/03/29/171169649161097MD8.jpg
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1600x739, components 3
Size
397 kB (396808 bytes)
Hash
c3424cfc4d250ac5615bb17e1f797a46
4a2097e17eddae72cd64094b3d44fa9cbbd631e7
0062a646169bcdf438c8dc3e57b6904db5b44374d55ab324757c1965797b0036

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root//userUpload/2024/03/29/171169649161097MD8.jpg HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/main.do
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"396808-1711696491610"
Last-Modified: Fri, 29 Mar 2024 07:14:51 GMT
Content-Type: image/jpeg
Content-Length: 396808
Date: Fri, 10 May 2024 12:22:07 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root//userUpload/2024/02/26/17089115799325U3H7.jpg

116.125.141.105

200

65 kB

URL GET HTTP/1.1
116.125.141.105/static_root//userUpload/2024/02/26/17089115799325U3H7.jpg
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 667x1000, components 3
Size
65 kB (65296 bytes)
Hash
bbfa960193bc4bcf1bbc8872efef9917
8825d30236b8240434d53949ee2175b0a5434770
434d8bc377e7fb53673d42a511e873eb2fc9dabe6c9a35c633ef895b154c2df6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root//userUpload/2024/02/26/17089115799325U3H7.jpg HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/main.do
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"65296-1708911579932"
Last-Modified: Mon, 26 Feb 2024 01:39:39 GMT
Content-Type: image/jpeg
Content-Length: 65296
Date: Fri, 10 May 2024 12:22:07 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root/images/main/icn_quick_05.png

116.125.141.105

200

1.4 kB

URL GET HTTP/1.1
116.125.141.105/static_root/images/main/icn_quick_05.png
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced
Size
1.4 kB (1400 bytes)
Hash
afd2223513e9b2d3a964c9b984d9c3fd
5188ca9d34d5e88372d52b436746b9a2ccb6e890
0d65f6236f3fc266de9fc39d2919e31529294356ace5e8cf82a3f1850aef7908

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root/images/main/icn_quick_05.png HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/main.do
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"1400-1702452904000"
Last-Modified: Wed, 13 Dec 2023 07:35:04 GMT
Content-Type: image/png
Content-Length: 1400
Date: Fri, 10 May 2024 12:22:08 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root//userUpload/2024/05/09/1715239894439G18M4.png

116.125.141.105

200

889 kB

URL GET HTTP/1.1
116.125.141.105/static_root//userUpload/2024/05/09/1715239894439G18M4.png
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
PNG image data, 1080 x 1080, 8-bit/color RGBA, non-interlaced
Size
889 kB (889305 bytes)
Hash
aaf9cba251661909be1cad23c84d4e91
702d32383ef50131992f85f062ebf3af9c887814
e64b62558e1379f062938806794f84df90af1649abedbf712a662d49d6862dd5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root//userUpload/2024/05/09/1715239894439G18M4.png HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/main.do
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"889305-1715239894439"
Last-Modified: Thu, 09 May 2024 07:31:34 GMT
Content-Type: image/png
Content-Length: 889305
Date: Fri, 10 May 2024 12:22:07 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root/css/font/NotoSans-Regular.woff

116.125.141.105

200

236 kB

URL GET HTTP/1.1
116.125.141.105/static_root/css/font/NotoSans-Regular.woff
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
Web Open Font Format, CFF, length 235984, version 0.0
Size
236 kB (235984 bytes)
Hash
53e1309e4fc9372afba4fd8f872a7aa5
0aca203415630bf0293565428dac45ae34dc7de4
f0ee3ba6b2d732c631f4d221ee25de542d0a3e109e4fed1f294e435da4aa03f1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root/css/font/NotoSans-Regular.woff HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/static_root/css/option.css
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"235984-1698804072000"
Last-Modified: Wed, 01 Nov 2023 02:01:12 GMT
Content-Type: font/woff
Content-Length: 235984
Date: Fri, 10 May 2024 12:22:06 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root/css/font/NotoSans-Medium.woff

116.125.141.105

200

236 kB

URL GET HTTP/1.1
116.125.141.105/static_root/css/font/NotoSans-Medium.woff
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
Web Open Font Format, CFF, length 235812, version 0.0
Size
236 kB (235812 bytes)
Hash
024dc32a28bc99fe1a3e5f7628989a65
06c2959df7e1e68921d1e886a0acd3ada28fd580
3bade64fee6c6a050fd764a312fde274a50b414f44f5e14674d9a83cf836cb44

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root/css/font/NotoSans-Medium.woff HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/static_root/css/option.css
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"235812-1698804072000"
Last-Modified: Wed, 01 Nov 2023 02:01:12 GMT
Content-Type: font/woff
Content-Length: 235812
Date: Fri, 10 May 2024 12:22:07 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root/images/main/icn_quick_09.png

116.125.141.105

200

3.5 kB

URL GET HTTP/1.1
116.125.141.105/static_root/images/main/icn_quick_09.png
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced
Size
3.5 kB (3455 bytes)
Hash
876a7d74992ce9b8660e27d87cedd658
a46c635f7cbe8ab1c4086f871baab89c2be8507d
81919399c9a87cdba26f84b6674f4247107a9c9e797166a29ddd224df5286596

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root/images/main/icn_quick_09.png HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/main.do
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"3455-1705901156741"
Last-Modified: Mon, 22 Jan 2024 05:25:56 GMT
Content-Type: image/png
Content-Length: 3455
Date: Fri, 10 May 2024 12:22:08 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root/images/main/icn_quick_08.png

116.125.141.105

200

1.4 kB

URL GET HTTP/1.1
116.125.141.105/static_root/images/main/icn_quick_08.png
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
PNG image data, 100 x 100, 8-bit colormap, non-interlaced
Size
1.4 kB (1367 bytes)
Hash
a3db40b49640dd9fe8575ad5da325890
4aae47e9b86ec0bbf48d6f7ec7c1a072b8334906
98d1608e8cffa5e6c7673db4a2457d1e9ff430471e53d77f59a9a4c8b5b59971

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root/images/main/icn_quick_08.png HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/main.do
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"1367-1702452904000"
Last-Modified: Wed, 13 Dec 2023 07:35:04 GMT
Content-Type: image/png
Content-Length: 1367
Date: Fri, 10 May 2024 12:22:08 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/main.do

116.125.141.105

200

67 kB

URL GET HTTP/1.1
116.125.141.105/main.do
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
JavaScript source, Unicode text, UTF-8 text, with CRLF line terminators
Size
67 kB (66733 bytes)
Hash
9b1ad722990322395c4b86d5ceb61241
402629b8ffec19d2a51db3c2427fd5ae46e77382
f99f6c010986094cc72eff7fd0eceaffc8854a7e44bdc22cba2c289dac5aa4a4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /main.do HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Referer: http://116.125.141.105/main.do
DNT: 1
Connection: keep-alive
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005; starttime=1715343727500; counttime=1799
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Expires: Fri, 10 May 2024 12:22:09 GMT
Cache-Control: no-cache
Pragma: no-cache
Content-Type: text/html;charset=utf-8
Content-Language: en-US
Transfer-Encoding: chunked
Date: Fri, 10 May 2024 12:22:08 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root/images/common/logo_color.png

116.125.141.105

200

6.6 kB

URL GET HTTP/1.1
116.125.141.105/static_root/images/common/logo_color.png
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
PNG image data, 400 x 68, 8-bit/color RGBA, non-interlaced
Size
6.6 kB (6563 bytes)
Hash
f37efb22533acecf9122d9aa4e7b6d34
5b1904ba1a47c08f64a616e5f1c156f87af233a8
0c296c96e6c6c5beba7a5eb955863ef71aec52c15e66a4afb8002ff61c5eb518

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root/images/common/logo_color.png HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/main.do
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"6563-1705454320000"
Last-Modified: Wed, 17 Jan 2024 01:18:40 GMT
Content-Type: image/png
Content-Length: 6563
Date: Fri, 10 May 2024 12:22:08 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root/images/common/logo_white.png

116.125.141.105

200

6.1 kB

URL GET HTTP/1.1
116.125.141.105/static_root/images/common/logo_white.png
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
PNG image data, 400 x 68, 8-bit/color RGBA, non-interlaced
Size
6.1 kB (6074 bytes)
Hash
350cc66557a4c912bdbd8b694d637a7c
5e39ceb020e2342d7c44e48d6300d44e989824f3
82a7bd33bc1226c0ebe9302ad5acbeb2425c9a2364430b9b6e95e5551b8afb83

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root/images/common/logo_white.png HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/main.do
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"6074-1705454320000"
Last-Modified: Wed, 17 Jan 2024 01:18:40 GMT
Content-Type: image/png
Content-Length: 6074
Date: Fri, 10 May 2024 12:22:08 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root/images/common/favicon.png

116.125.141.105

200

6.0 kB

URL GET HTTP/1.1
116.125.141.105/static_root/images/common/favicon.png
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
PNG image data, 260 x 260, 8-bit/color RGBA, non-interlaced
Size
6.0 kB (5997 bytes)
Hash
655bad662850500e586f8f5aadb9d352
b86e6aa4e6fca2d4c58e0cbf85b4fd67dc13731f
eb3298b4bf581cc77f08b5833921a4d71695a70854fde80f969f97c338ff5ad9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root/images/common/favicon.png HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/main.do
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005; starttime=1715343727500; counttime=1797
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"5997-1698804078000"
Last-Modified: Wed, 01 Nov 2023 02:01:18 GMT
Content-Type: image/png
Content-Length: 5997
Date: Fri, 10 May 2024 12:22:10 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root/images/common/favicon.png

116.125.141.105

200

6.0 kB

URL GET HTTP/1.1
116.125.141.105/static_root/images/common/favicon.png
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
PNG image data, 260 x 260, 8-bit/color RGBA, non-interlaced
Size
6.0 kB (5997 bytes)
Hash
655bad662850500e586f8f5aadb9d352
b86e6aa4e6fca2d4c58e0cbf85b4fd67dc13731f
eb3298b4bf581cc77f08b5833921a4d71695a70854fde80f969f97c338ff5ad9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root/images/common/favicon.png HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/main.do
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005; starttime=1715343727500; counttime=1797
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"5997-1698804078000"
Last-Modified: Wed, 01 Nov 2023 02:01:18 GMT
Content-Type: image/png
Content-Length: 5997
Date: Fri, 10 May 2024 12:22:10 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root/video/main_video.mp4

116.125.141.105

206

468 kB

URL GET HTTP/1.1
116.125.141.105/static_root/video/main_video.mp4
IP
116.125.141.105:80
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
data
Size
468 kB (467779 bytes)
Hash
0854d8eba7e14e8e85631cf5e0117735
c8706573a99774a9e6be26a72b1fb8a72f8b3d2e
0d981dc77ee4e82be59affe386a8cef49a8b670f3aefb96b76df7fc0715b5096

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root/video/main_video.mp4 HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=253526016-
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/main.do
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005; starttime=1715343727500; counttime=1797
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 206 
Accept-Ranges: bytes
ETag: W/"253993795-1702452932000"
Last-Modified: Wed, 13 Dec 2023 07:35:32 GMT
Content-Range: bytes 253526016-253993794/253993795
Content-Type: video/mp4
Content-Length: 467779
Date: Fri, 10 May 2024 12:22:10 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

116.125.141.105/static_root//userUpload/2024/03/25/1711351814357J5DW4.png

116.125.141.105

15 MB

URL GET
116.125.141.105/static_root//userUpload/2024/03/25/1711351814357J5DW4.png
IP
116.125.141.105:0
ASN
#9318 SK Broadband Co Ltd

Requested by
http://116.125.141.105/main.do

File type
PNG image data, 4032 x 3024, 8-bit/color RGBA, non-interlaced
Size
15 MB (14692785 bytes)
Hash
ff7fb72c2578e77192111ca85a21c5b5
99ffe6f24711529ab860eaa35e860f42aef554c6
7b60ab6ab8f8c367a6d215fc5657cc1facf410a661c3f4160c2e1f534c2e969f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static_root//userUpload/2024/03/25/1711351814357J5DW4.png HTTP/1.1
Host: 116.125.141.105
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://116.125.141.105/main.do
Cookie: JSESSIONID=DD6CFC5198D45E76A1181B8121CF1005
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"14692785-1711351814357"
Last-Modified: Mon, 25 Mar 2024 07:30:14 GMT
Content-Type: image/png
Content-Length: 14692785
Date: Fri, 10 May 2024 12:22:07 GMT
Keep-Alive: timeout=20
Connection: keep-alive
Server: changup

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (26)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL