javascript - What is the reason for this? [Network security, nginx, php, js related]

Solved, replaced jquery import with Qiniu Cloud static resource acceleration. Then this problem no longer occurs.
It means there is a problem inside the js file. I also reminded myself not to use external js indiscriminately. Thank you to those who answered!

After occasionally refreshing the page, normally it should all come from the same address. Why are there three things requested from external addresses? (The black lines above are all from the same address, and the yellow lines are from other addresses)

Normal should be like this:

I am a front-end person, I don’t quite understand why this is? (Guess whether the router or server was hijacked?)

1. CDN is not used.

2.js references only jquery and layui.

3. It is just a login page and does not use js from external resources.

4.This is the page header:

Reply content:

Solved, replaced jquery import with Qiniu Cloud static resource acceleration. Then this problem no longer occurs.
It means there is a problem inside the js file. I also reminded myself not to use external js indiscriminately. Thank you to those who answered!

After occasionally refreshing the page, normally it should all come from the same address. Why are there three things requested from external addresses? (The black lines above are all from the same address, and the yellow lines are from other addresses)

Normal should be like this:

I am a front-end person, I don’t quite understand why this is? (Guess whether the router or server was hijacked?)

1. No cdn is used.

2.js references only jquery and layui.

3. It is just a login page and does not use js from external resources.

4.This is the page header:

Excuse me, the poster, is your IP address the IP address in the yellow part above? Looking at these three resource types, two are script and one is img. I'm a bit doubtful whether it's something that was initialized by the js plug-in you quoted? (Another one, you coded the domain name, but the domain names linked to the questions were not coded, snickering.jpg)

Laxative~

There is no code, I can’t tell anything just by looking at the pictures~

There are many sources of external resources, you can check them out:

1. Browser extensions, some extensions will reference additional external resources for the page

2. CSS, CSS files can also load other external css, images, and fonts

3. HTML, images and the like can also be loaded and generated from external resources. (But it doesn’t look like you, if the html is written by yourself)

4. JS, it may also be loading external resources. You need to make sure whether it is downloaded from the official website.

The resources referenced may include third-party resources. Check whether the css uses other images and whether the js sends other requests.

Ping your website to see if it is the IP address. It may be a configuration issue with the domain name operator.

Tell me a few possibilities and let the questioner debug it himself.
1. Check the installed browser plug-ins. Some plug-ins will request data from the server and other corresponding logic.
2. Check whether it is a statistics script.
3. Check whether it is the operator's advertising script.
4. Check whether it is xssed. After all, you can see that the request brings the path of the current page, and it is also the management path. Focus on what the two script requests are!
5. Check whether external resources are imported in the css resources.
6. Check the referenced js plugin.

I saw that there are also image resources, which look like statistics or advertisements. It is more likely that they have been xssed.