{"report_id":"1246bed5-d0ac-459e-8da6-fc0e6167e4b0","version":6,"status":"done","tags":[],"date":"2026-01-30T13:29:46Z","url":{"schema":"http","addr":"y8lumo.live","fqdn":"y8lumo.live","domain":"y8lumo.live","tld":"live"},"ip":{"addr":"47.77.231.95","port":0,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"y8lumo.live/","fqdn":"y8lumo.live","domain":"y8lumo.live","tld":"live"},"title":"y8lumo.live/","dom":{"size":12695,"mime_type":"text/html; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (10359)","md5":"623e096f6807f3299736aeb3668c0bc1","sha1":"1e0e99bc8892254fd6d96aff8e7646663621c074","sha256":"6e38f3c6bd43c3048012a578bd751a7c8e154f1b37ac133fcbfc7beb82abddde","sha512":"9b8d809bdca7e9364989fe8934fe0ef424c409a946ced23a64ed6f9e9372650dc3baa35c1df5d75f1760a4a050c144bed670e328c35d96e80d73f6fb9e0a4420","ssdeep":"192:gFbo9IOmpESgSk4j6Xr9meqDODcZDYEr8DXgMynmOub3fi0QKqvgyB:8o9Lt79mtGaYZXPON5KI","tlshash":"9f42de68b4066c335b73cad4e9bdae04b1d2bb3acb14df9586b402366fc6de06411728","dom_hash":"domhash1caa8eb3f1b3e2b148bacfdcf97bef59","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"y8lumo.live","fqdn":"y8lumo.live","domain":"y8lumo.live","tld":"live"},"ip":{"addr":"47.77.231.95","port":0,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-03-06T13:29:46Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"y8lumo.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"y8lumo.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null},"summary":[{"fqdn":"y8lumo.live","ip":{"addr":"47.77.231.95","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2026-01-30T12:34:15.072435Z","last_seen":"2026-01-30T12:34:15.072435Z","alert_count":38,"request_count":19,"received_data":570463,"sent_data":8452,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.20.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"FingerprintJS:3","description":"FingerprintJS is a browser fingerprinting library that queries browser attributes and computes a hashed visitor identifier from them.","website":"https://fingerprintjs.com","common_platform_enumeration":"","icon":"FingerprintJS.svg","categories":["JavaScript libraries","Browser fingerprinting"]},{"name":"jsDelivr","description":"JSDelivr is a free public CDN for open-source projects. It can serve web files directly from the npm registry and GitHub repositories without any configuration.","website":"https://www.jsdelivr.com/","common_platform_enumeration":"","icon":"jsdelivr-icon.svg","categories":["CDN"]}]},{"fqdn":"cdnjs.cloudflare.com","ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2009-02-17","domain_rank":1222,"first_seen":"2012-05-23T12:49:49Z","last_seen":"2026-01-25T22:25:20.721908Z","alert_count":0,"request_count":1,"received_data":103038,"sent_data":463,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"216.58.211.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-01-25T22:17:37.642954Z","alert_count":0,"request_count":1,"received_data":13321,"sent_data":474,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"cdn.jsdelivr.net","ip":{"addr":"151.101.1.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2012-05-16","domain_rank":1678,"first_seen":"2012-09-30T00:15:09Z","last_seen":"2026-01-25T22:30:32.196824Z","alert_count":0,"request_count":1,"received_data":34553,"sent_data":450,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"cdn.dcloud.net.cn","ip":{"addr":"106.54.228.253","port":443,"asn":45090,"as":"Shenzhen Tencent Computer Systems Company Limited","country":"China","country_code":"CN"},"domain_registered":"2013-07-17","domain_rank":296858,"first_seen":"2018-09-15T09:18:08Z","last_seen":"2026-01-28T12:24:09.896795Z","alert_count":0,"request_count":1,"received_data":578,"sent_data":442,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"y8lumo.live/","fqdn":"y8lumo.live","domain":"y8lumo.live","tld":"live"},"ip":{"addr":"47.77.231.95","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"9fb9d2c62d0b53b369d827901c46d31c","sha1":"bb623e7486aa9ba44851ecc6ae01db5fe42d83a1","sha256":"b02ca87ad43e5ca61f953b2e414559e63f426c8513f7808707f39a4ba04ab219","sha512":"48cbe981398942910959f746a8225a91578752b67121817ae3b6b85859d0e97f9d89e96f1672b63d758f3148f3f37034017fd93d83415097616a90af285f0a18","ssdeep":"","tlshash":"afe061c3506e394c02108119304ac0075bb908b2de8549611c5837a58af9e4bc569455","size":363,"data":"","first_seen":"2025-03-05T00:30:25.174857Z","last_seen":"2026-05-31T15:28:13.961746Z","times_seen":455,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/@fingerprintjs/fingerprintjs@3/dist/fp.min.js","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"151.101.1.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"375436f436cc1022d7b4569a817c1a6b","sha1":"9359415cc419874654000870ca54523875c12c16","sha256":"99dc3803d1f19c8103f79f834044b2afd4c8af5b7927efbd36b1052d528b40ae","sha512":"077cb9e67a028f8ffc6c9f19793c15e20379840da1a927e711a0ac4dcf15fe6e1a15cee75436df340c707b9e77118f3cd38ede493e060c592069f39bc6001a92","ssdeep":"384:chQYSwHRBcifEJzXhGUa4LdsF7wRuCfLVg5+pCqNFaiE8E0QIQfJW7us6RfGDUPX:cSMHRU7Lic9NwlJW5iffPREA75","tlshash":"c5e207d8b2c3b029227378b6497f6007b63abd15242d4843d57be4c17ca5e5a813bfb9","size":33780,"data":"","first_seen":"2023-07-07T04:22:54Z","last_seen":"2026-06-06T12:00:10.742246Z","times_seen":8354,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"y8lumo.live/assets/index-CGTNYZLz.js","fqdn":"y8lumo.live","domain":"y8lumo.live","tld":"live"},"ip":{"addr":"47.77.231.95","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"3d8df00af2353765e3aa24db06d944da","sha1":"05a06ab077e99c8b0755643548cc37cab402a80e","sha256":"79d89cda3143164a58aaddb69752a2201e2f61f2dc7c0dbdca7bc00c6f4ee4a8","sha512":"7c4dfff7969080959974b171616568b200eec7625077c52323e937733cee6f5a5aa05a1e1474882c541516addec26c017e98fe1ba2765af3720b5fd5f5871d6a","ssdeep":"12288:y8lX/qx7zvIczg7/v8dpnVPTUD9iwug1V1ilcOMWENJqKIh:y8lX/qx7zvIczg7HMpnVPAD9iwug1V16","tlshash":"ee844bd4b685b46903b639f6403f1101f33e1d16b80d8098f66de9db3d2a99962b7f38","size":399159,"data":"","first_seen":"2026-01-29T12:36:05.188871Z","last_seen":"2026-01-30T13:29:49.592879Z","times_seen":10,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"y8lumo.live/assets/page_header.B2uVHbi8.js","fqdn":"y8lumo.live","domain":"y8lumo.live","tld":"live"},"ip":{"addr":"47.77.231.95","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"introduction_type":"importedModule","is_inline":false,"md5":"c30d86806b862093ecdedc0606570357","sha1":"f951c9ee6a0572dc149f29f2c11fcff2648ca163","sha256":"f029a643bd45bf9a4d5481d7180b6a19e854eb0aa160002b01a938101b8b083e","sha512":"a37b787c75fbc0bd68d3445459b6242b7e180ab65c2af87543156ddc1bd053b61841554d9c85749da627852929d15e4fbfe1bbce1a38a32247b1f4c482d2bd19","ssdeep":"","tlshash":"6201c04d6c4fc1ba622254dfd42258382144077e9724ace1c0fc8c396bd5dac661bf29","size":756,"data":"","first_seen":"2026-01-29T12:36:05.17651Z","last_seen":"2026-01-30T13:29:49.609276Z","times_seen":10,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"y8lumo.live/assets/_plugin-vue_export-helper.BCo6x5W8.js","fqdn":"y8lumo.live","domain":"y8lumo.live","tld":"live"},"ip":{"addr":"47.77.231.95","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"introduction_type":"importedModule","is_inline":false,"md5":"41bf66d156aac38dbf7a45b53cb4db18","sha1":"4aa693a2afcc34b6a577e1bfc4be3ef5a458dce0","sha256":"a7dbb0eaed9de79041d555c4563be4bb0514099b8d169a2b548ab2d07102cb55","sha512":"64e1a5c2939052c93692338bf78b66723ae6673121d2915a9fb0848449e4b2657c1a31c8940bc7c9ec77554fd4c04ffae1b787297f0fba23983a987e85caee15","ssdeep":"","tlshash":"40b012e500824138432175c796f444649e08005c394756d144480d52c143080541bc3c","size":91,"data":"","first_seen":"2023-03-26T04:51:44Z","last_seen":"2026-06-06T11:23:19.853947Z","times_seen":1550,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"y8lumo.live/","fqdn":"y8lumo.live","domain":"y8lumo.live","tld":"live"},"ip":{"addr":"47.77.231.95","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"9549491fa69813d582450290c39998b2","sha1":"e5994dcd04f3a660c8b11fc387ad191452c4bdf3","sha256":"2a3d691b2933dc59b8bca5b587316b9606b723e2c4b5ec9fc80ecddb5698b77b","sha512":"f953999686d22954c2aa187d0f35384bf02532e8bba254aca9c2e62cbf952549c1fa8f1ad647cd5091acf36f0a8075ff07367bb25a4b4867924da53af90883bd","ssdeep":"","tlshash":"c7a002ec01c8063dd13170b9ab2b3eb03f595c510343116f9699bb157146a17c70b4ec","size":76,"data":"","first_seen":"2025-09-27T19:31:00.108292Z","last_seen":"2026-03-08T23:08:16.643086Z","times_seen":71,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"y8lumo.live/assets/uni-app.es.D0sXOhBk.js","fqdn":"y8lumo.live","domain":"y8lumo.live","tld":"live"},"ip":{"addr":"47.77.231.95","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"introduction_type":"importedModule","is_inline":false,"md5":"f0fe5340ac23f0a0a34fb6828baa7933","sha1":"e92fefee3ed0a0ff2a5a880a12e4fb73cc069d62","sha256":"8a9fac85444c1b6b8ef154711ce60a8d77ea0c86513aa03ddf67e57bca0cc632","sha512":"877e62758ae8bd878b5767fdf672e78db17801e203309717c568b824af9e7ccaa8f2fe090d886213f3e364e6f2f24b5c9a6197532bd689e8f6d92a5fa377e8ae","ssdeep":"","tlshash":"2ea0120760832092180204d544559c06127610d14dc8867085c003340af44a4812890d","size":84,"data":"","first_seen":"2026-01-29T12:36:05.174421Z","last_seen":"2026-01-30T13:29:49.589631Z","times_seen":10,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"y8lumo.live/assets/page_footer.ChxW7SOB.js","fqdn":"y8lumo.live","domain":"y8lumo.live","tld":"live"},"ip":{"addr":"47.77.231.95","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"introduction_type":"importedModule","is_inline":false,"md5":"1ed2d13390bb20c9116469db58574df5","sha1":"0eb77a46ad178cce5d146794c4d4909144e07aaa","sha256":"2278a5a040c0d32d47ea11d1fa388c9b48db1735f143f34529821ff9421d15bc","sha512":"2341a870eb2c7db6267ca8006dc720a94eda531985fddeb0dc4358e5648ac3db6a7107a5cb6812ec67ec7c91707ce428e5956085b42cdde5054342ad9b23c931","ssdeep":"","tlshash":"a541af581c4b823f259b91bed522a430b68a1ff0cb74cc92d8f98a55669ddfc3c16d2c","size":2290,"data":"","first_seen":"2026-01-29T12:36:05.16778Z","last_seen":"2026-01-30T13:29:49.602951Z","times_seen":10,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"y8lumo.live/assets/pages-ap-login.CfYx-Uz2.js","fqdn":"y8lumo.live","domain":"y8lumo.live","tld":"live"},"ip":{"addr":"47.77.231.95","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"aa25677e82344fdff868910298ca4af8","sha1":"aaf48381d366cedaadf1bd8615bf2b4dc064227e","sha256":"1ef8a9113a6cc285f32544e8b5475344603adf0340c48b23b89d2670bc8dbc2e","sha512":"d03d6a5d1b1e18cb661f00f6c01b0c0ce4793ab261cb2c844e2f587b124327827e38fce579633733ec18364d113872fafedb9aa8fbb2316e1bc83901f6b2bb9d","ssdeep":"192:Fl8PrRby4titatCksPgPtNbkIUBzl8Q//BxR1750rnVVrZ39WgcIMWESwvvWyN/q:Fly0taFex8Q//v7QTr1THhZMfw","tlshash":"b752641db92ac3b4b33b06c861665404b01b1ffdd950bdd250f90b1c76b6eac119a77e","size":13244,"data":"","first_seen":"2026-01-29T12:36:05.164643Z","last_seen":"2026-01-30T13:29:49.591152Z","times_seen":10,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":[{"md5":"3d5272693eb411e5b8b13a243f76c720","sha1":"6a586ab8e0a4bf12bbc60eea6ca9f2418625a22c","sha256":"9582f31f9eb892b8823a780e579d464d54e26d97d65dc327d2b2bdd92d47c4b8","sha512":"03fc5614f48fc9a2e3c4a30626fdbacde74c1fda09ffa9d1cde0393d31cd5fe1588e270c241f4cedb473c6e5cc224ff16c141468a29519ea6159accf3e3a18f1","ssdeep":"","tlshash":"a4c08c8350e2080c8210861b848880050b8808b04f9308a22cd85b7ecc9ae88c8f804c","size":148,"data":"","first_seen":"2023-03-07T01:10:06Z","last_seen":"2026-06-06T13:22:38.006372Z","times_seen":15874,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"console":null},"http":[{"url":{"schema":"https","addr":"y8lumo.live/","fqdn":"y8lumo.live","domain":"y8lumo.live","tld":"live"},"ip":{"addr":"47.77.231.95","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-01-30T13:29:24.596Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"y8lumo.live","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 29 Jan 2026 08:14:27 GMT","end":"Wed, 29 Apr 2026 08:14:26 GMT"},"fingerprint":{"sha1":"8D:DA:97:70:80:D9:0D:F3:C7:A9:02:80:66:BC:E8:4A:99:E0:78:7D","sha256":"EC:BB:FB:B2:CE:F9:F0:0A:0A:E3:9A:76:AB:6D:22:4C:EE:03:AE:32:54:37:2B:14:02:76:25:63:06:BB:72:A5"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: y8lumo.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.20.1\r\nDate: Fri, 30 Jan 2026 13:29:25 GMT\r\nContent-Type: text/html\r\nLast-Modified: Wed, 28 Jan 2026 10:59:31 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nETag: W/\"6979ec13-528\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.20.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"FingerprintJS:3","description":"FingerprintJS is a browser fingerprinting library that queries browser attributes and computes a hashed visitor identifier from them.","website":"https://fingerprintjs.com","common_platform_enumeration":"","icon":"FingerprintJS.svg","categories":["JavaScript libraries","Browser fingerprinting"]},{"name":"jsDelivr","description":"JSDelivr is a free public CDN for open-source projects. It can serve web files directly from the npm registry and GitHub repositories without any configuration.","website":"https://www.jsdelivr.com/","common_platform_enumeration":"","icon":"jsdelivr-icon.svg","categories":["CDN"]}],"data":{"size":1320,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF, CR, LF line terminators","md5":"f71d9a6f16a4fb9138b7d1b7b945840e","sha1":"c238c3734a11394ba376b67c65d75a8c35a00f23","sha256":"047bec4992e76db321b1b9f53d4ae304a67affa585a7a1459e018bce7732d70d","sha512":"6705b4947071dd3a98e68716c4112ee187ccbe2af22713d81be0247d5d01e12f31f02abe117402146f2a49eeaadea8a81d242e570a26c1e89cee39b3c0f7f532","ssdeep":"","tlshash":"fb2198497848af4d1220928b7072f17e9db74c363f90d97328b6117ba7a438fcc1d898","first_seen":"2026-01-29T12:36:05.183405Z","last_seen":"2026-01-30T13:29:49.58323Z","times_seen":10,"resource_available":false,"data":null}},"time_used":1482,"timings":{"blocked":636,"dns":222,"connect":200,"send":0,"wait":207,"receive":0,"ssl":213},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"y8lumo.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"y8lumo.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"y8lumo.live/assets/uni.cb5fb309.css","fqdn":"y8lumo.live","domain":"y8lumo.live","tld":"live"},"ip":{"addr":"47.77.231.95","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://y8lumo.live/","date":"2026-01-30T13:29:25.567Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"y8lumo.live","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 29 Jan 2026 08:14:27 GMT","end":"Wed, 29 Apr 2026 08:14:26 GMT"},"fingerprint":{"sha1":"8D:DA:97:70:80:D9:0D:F3:C7:A9:02:80:66:BC:E8:4A:99:E0:78:7D","sha256":"EC:BB:FB:B2:CE:F9:F0:0A:0A:E3:9A:76:AB:6D:22:4C:EE:03:AE:32:54:37:2B:14:02:76:25:63:06:BB:72:A5"}}},"request":{"raw":"GET /assets/uni.cb5fb309.css HTTP/1.1\r\nHost: y8lumo.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://y8lumo.live/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.20.1\r\nDate: Fri, 30 Jan 2026 13:29:25 GMT\r\nContent-Type: text/css\r\nContent-Length: 8989\r\nLast-Modified: Wed, 28 Jan 2026 11:00:29 GMT\r\nConnection: keep-alive\r\nETag: \"6979ec4d-231d\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.20.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":8989,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (8988)","md5":"bdeccd0ec3cd386e6159326361db8be7","sha1":"70931ddf88c5bdd20c0a911e50b9ec1f9c7dc42d","sha256":"cb5fb309851d767f1f221cd06a7e2c274a6567160d80d0908b98e057a709c0c1","sha512":"b897e7fc5309c888392a058e9a6201b9d47240af40bbc2be5bec81066384384bc13761884015913c9bd236c1888443605944d0c63cdd8c93836d443d208d1ef5","ssdeep":"192:Ujj8LGJ0CQLnWL9MNXVA87eizyHEDyPhd:UXpmLWLL87ei+ywd","tlshash":"17027571d900123eb51bcf2d52e1e74f322285b3d9133b19ab3535744f9eac62a36789","first_seen":"2025-09-27T19:31:00.036679Z","last_seen":"2026-05-31T15:28:13.956851Z","times_seen":176,"resource_available":false,"data":null}},"time_used":227,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":226,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"y8lumo.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"y8lumo.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"y8lumo.live/assets/page_header-BavpIdKa.css","fqdn":"y8lumo.live","domain":"y8lumo.live","tld":"live"},"ip":{"addr":"47.77.231.95","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://y8lumo.live/","date":"2026-01-30T13:29:27.202Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"y8lumo.live","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 29 Jan 2026 08:14:27 GMT","end":"Wed, 29 Apr 2026 08:14:26 GMT"},"fingerprint":{"sha1":"8D:DA:97:70:80:D9:0D:F3:C7:A9:02:80:66:BC:E8:4A:99:E0:78:7D","sha256":"EC:BB:FB:B2:CE:F9:F0:0A:0A:E3:9A:76:AB:6D:22:4C:EE:03:AE:32:54:37:2B:14:02:76:25:63:06:BB:72:A5"}}},"request":{"raw":"GET /assets/page_header-BavpIdKa.css HTTP/1.1\r\nHost: y8lumo.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://y8lumo.live/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.20.1\r\nDate: Fri, 30 Jan 2026 13:29:27 GMT\r\nContent-Type: text/css\r\nContent-Length: 1241\r\nLast-Modified: Wed, 28 Jan 2026 11:00:25 GMT\r\nConnection: keep-alive\r\nETag: \"6979ec49-4d9\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.20.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1241,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (1240)","md5":"90fb8b7b14dfd383bafdd233eb5ac3da","sha1":"c0f0c8ad1e1aea242312b13009ee84d13a11e697","sha256":"27b4b0a6d5113763c60af9b46dd862d7a0785dcdcad5ebf12be3230f97f326a4","sha512":"a40f1ac22707a5dc28539d6fb38aa008cd133f4c64a5ea09b578143ddecaab1d78ab070aa70cb5e68d8dc7e68528147a4684b1ed395e270d3716b8cde7d8ecbe","ssdeep":"","tlshash":"09219d5d63cd1c2cf563c17dd5af534810b03237c363c5b9848ba5198d678251b57dc6","first_seen":"2025-09-27T19:31:00.068652Z","last_seen":"2026-02-26T01:00:45.924658Z","times_seen":70,"resource_available":false,"data":null}},"time_used":189,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":189,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"y8lumo.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"y8lumo.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"y8lumo.live/assets/page_footer-75n2Pr1D.css","fqdn":"y8lumo.live","domain":"y8lumo.live","tld":"live"},"ip":{"addr":"47.77.231.95","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://y8lumo.live/","date":"2026-01-30T13:29:27.205Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"y8lumo.live","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 29 Jan 2026 08:14:27 GMT","end":"Wed, 29 Apr 2026 08:14:26 GMT"},"fingerprint":{"sha1":"8D:DA:97:70:80:D9:0D:F3:C7:A9:02:80:66:BC:E8:4A:99:E0:78:7D","sha256":"EC:BB:FB:B2:CE:F9:F0:0A:0A:E3:9A:76:AB:6D:22:4C:EE:03:AE:32:54:37:2B:14:02:76:25:63:06:BB:72:A5"}}},"request":{"raw":"GET /assets/page_footer-75n2Pr1D.css HTTP/1.1\r\nHost: y8lumo.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://y8lumo.live/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.20.1\r\nDate: Fri, 30 Jan 2026 13:29:27 GMT\r\nContent-Type: text/css\r\nContent-Length: 3851\r\nLast-Modified: Wed, 28 Jan 2026 11:00:24 GMT\r\nConnection: keep-alive\r\nETag: \"6979ec48-f0b\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.20.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3851,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (3850)","md5":"3ed08c7713abd1971eb2ec52bff7b810","sha1":"ca4622427871ade27539e4ef2631ccb6735198d7","sha256":"f6605a4d5c826c26f546de757c33568d246b6040ab6ddfd9a81966e399a93ab0","sha512":"9d0ab6db3558d0ad46fb7de5bcfb6481f08fa79b26d496b0141842ab0e11849d3c46352c11dead1d14e542e3af748476d19132fa81d3c908b559cd3897f7405f","ssdeep":"","tlshash":"5f81d011df494c53b66bde39e667638c7b360723a53284af9423e21dd86b0862333d6c","first_seen":"2026-01-15T14:00:58.770397Z","last_seen":"2026-02-26T01:00:45.913019Z","times_seen":59,"resource_available":false,"data":null}},"time_used":188,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":188,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"y8lumo.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"y8lumo.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"y8lumo.live/assets/login-B_EJHJEu.css","fqdn":"y8lumo.live","domain":"y8lumo.live","tld":"live"},"ip":{"addr":"47.77.231.95","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://y8lumo.live/","date":"2026-01-30T13:29:27.207Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"y8lumo.live","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 29 Jan 2026 08:14:27 GMT","end":"Wed, 29 Apr 2026 08:14:26 GMT"},"fingerprint":{"sha1":"8D:DA:97:70:80:D9:0D:F3:C7:A9:02:80:66:BC:E8:4A:99:E0:78:7D","sha256":"EC:BB:FB:B2:CE:F9:F0:0A:0A:E3:9A:76:AB:6D:22:4C:EE:03:AE:32:54:37:2B:14:02:76:25:63:06:BB:72:A5"}}},"request":{"raw":"GET /assets/login-B_EJHJEu.css HTTP/1.1\r\nHost: y8lumo.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://y8lumo.live/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.20.1\r\nDate: Fri, 30 Jan 2026 13:29:27 GMT\r\nContent-Type: text/css\r\nContent-Length: 8507\r\nLast-Modified: Wed, 28 Jan 2026 11:00:14 GMT\r\nConnection: keep-alive\r\nETag: \"6979ec3e-213b\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.20.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":8507,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (8506)","md5":"fa4d978f2df47dcc0eb2b841ae425829","sha1":"2733c37a904db134792e78269d1c3492cef34f07","sha256":"80d595eb2376be280201a584268e9f30db54b917fb20cd7727d78bc7da3ef6ab","sha512":"8982fbdd30e14da053ae9ea7eeb963298d4fdcd2c254d52d64a38831411f43a811ab2fe975b09d38109719c279bd88f1f3e9476fe2cdbec5032c28f375d8441d","ssdeep":"96:2hG7YvMfzXnE8VqPR9p7ApVHCwpMT0mLypXcm2Eaz:208ZK00mLyRcm2Eq","tlshash":"bd0213f4ba085006d7f7c791aea5bd890119f212d7126edd9da635248ccbac738b128d","first_seen":"2026-01-19T13:29:22.549654Z","last_seen":"2026-02-26T01:00:45.925277Z","times_seen":52,"resource_available":false,"data":null}},"time_used":163,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":162,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"y8lumo.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"y8lumo.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"y8lumo.live/assets/uni-app.es.D0sXOhBk.js","fqdn":"y8lumo.live","domain":"y8lumo.live","tld":"live"},"ip":{"addr":"47.77.231.95","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://y8lumo.live/","date":"2026-01-30T13:29:27.219Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"y8lumo.live","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 29 Jan 2026 08:14:27 GMT","end":"Wed, 29 Apr 2026 08:14:26 GMT"},"fingerprint":{"sha1":"8D:DA:97:70:80:D9:0D:F3:C7:A9:02:80:66:BC:E8:4A:99:E0:78:7D","sha256":"EC:BB:FB:B2:CE:F9:F0:0A:0A:E3:9A:76:AB:6D:22:4C:EE:03:AE:32:54:37:2B:14:02:76:25:63:06:BB:72:A5"}}},"request":{"raw":"GET /assets/uni-app.es.D0sXOhBk.js HTTP/1.1\r\nHost: y8lumo.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://y8lumo.live/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.20.1\r\nDate: Fri, 30 Jan 2026 13:29:27 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 84\r\nLast-Modified: Wed, 28 Jan 2026 11:00:29 GMT\r\nConnection: keep-alive\r\nETag: \"6979ec4d-54\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.20.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":84,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text","md5":"f0fe5340ac23f0a0a34fb6828baa7933","sha1":"e92fefee3ed0a0ff2a5a880a12e4fb73cc069d62","sha256":"8a9fac85444c1b6b8ef154711ce60a8d77ea0c86513aa03ddf67e57bca0cc632","sha512":"877e62758ae8bd878b5767fdf672e78db17801e203309717c568b824af9e7ccaa8f2fe090d886213f3e364e6f2f24b5c9a6197532bd689e8f6d92a5fa377e8ae","ssdeep":"","tlshash":"2ea0120760832092180204d544559c06127610d14dc8867085c003340af44a4812890d","first_seen":"2026-01-29T12:36:05.174421Z","last_seen":"2026-01-30T13:29:49.589631Z","times_seen":10,"resource_available":true,"data":null}},"time_used":831,"timings":{"blocked":331,"dns":0,"connect":166,"send":0,"wait":163,"receive":0,"ssl":167},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"y8lumo.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"y8lumo.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"y8lumo.live/assets/pages-ap-login.CfYx-Uz2.js","fqdn":"y8lumo.live","domain":"y8lumo.live","tld":"live"},"ip":{"addr":"47.77.231.95","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://y8lumo.live/","date":"2026-01-30T13:29:27.397Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"y8lumo.live","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 29 Jan 2026 08:14:27 GMT","end":"Wed, 29 Apr 2026 08:14:26 GMT"},"fingerprint":{"sha1":"8D:DA:97:70:80:D9:0D:F3:C7:A9:02:80:66:BC:E8:4A:99:E0:78:7D","sha256":"EC:BB:FB:B2:CE:F9:F0:0A:0A:E3:9A:76:AB:6D:22:4C:EE:03:AE:32:54:37:2B:14:02:76:25:63:06:BB:72:A5"}}},"request":{"raw":"GET /assets/pages-ap-login.CfYx-Uz2.js HTTP/1.1\r\nHost: y8lumo.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://y8lumo.live/assets/index-CGTNYZLz.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.20.1\r\nDate: Fri, 30 Jan 2026 13:29:27 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 13244\r\nLast-Modified: Wed, 28 Jan 2026 11:00:22 GMT\r\nConnection: keep-alive\r\nETag: \"6979ec46-33bc\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.20.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":13244,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (13243)","md5":"aa25677e82344fdff868910298ca4af8","sha1":"aaf48381d366cedaadf1bd8615bf2b4dc064227e","sha256":"1ef8a9113a6cc285f32544e8b5475344603adf0340c48b23b89d2670bc8dbc2e","sha512":"d03d6a5d1b1e18cb661f00f6c01b0c0ce4793ab261cb2c844e2f587b124327827e38fce579633733ec18364d113872fafedb9aa8fbb2316e1bc83901f6b2bb9d","ssdeep":"192:Fl8PrRby4titatCksPgPtNbkIUBzl8Q//BxR1750rnVVrZ39WgcIMWESwvvWyN/q:Fly0taFex8Q//v7QTr1THhZMfw","tlshash":"b752641db92ac3b4b33b06c861665404b01b1ffdd950bdd250f90b1c76b6eac119a77e","first_seen":"2026-01-29T12:36:05.164643Z","last_seen":"2026-01-30T13:29:49.591152Z","times_seen":10,"resource_available":true,"data":null}},"time_used":196,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":195,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"y8lumo.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"y8lumo.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.0/css/all.min.css","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://y8lumo.live/","date":"2026-01-30T13:29:25.573Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 13 Jan 2026 22:16:05 GMT","end":"Mon, 13 Apr 2026 23:15:55 GMT"},"fingerprint":{"sha1":"D9:00:47:77:A5:47:66:A1:6F:DA:EB:4B:BB:BF:67:49:BF:2C:A4:75","sha256":"07:A7:3E:4A:B2:9F:0A:07:6C:78:A7:7B:DC:2B:68:A1:84:7A:7F:1B:45:6C:71:8E:5E:79:F3:11:1A:6C:4F:62"}}},"request":{"raw":"GET /ajax/libs/font-awesome/6.4.0/css/all.min.css HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://y8lumo.live/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 30 Jan 2026 13:29:25 GMT\r\ncontent-type: text/css; charset=utf-8\r\ncontent-length: 18752\r\ncf-ray: 9c61516ef9d34e4c-OSL\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"6421d693-4940\"\r\nlast-modified: Mon, 27 Mar 2023 17:46:59 GMT\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\ncf-cdnjs-via: cfworker/kv\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 748772\r\nexpires: Wed, 20 Jan 2027 13:29:25 GMT\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=iu9xLw0fsArd4L3oY%2Fy%2FVTLAK%2B8aff2rg0BzDSKEGg%2B0a81HTLJUfs2koL16ZINaapJPH%2FBF%2FLadAP%2FUM%2FcRpIIkmHR7KAi69aAEQD1cRO1szNjH9y8wWJeBj6eSrUsJT4pCv3ec\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=15780000\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":102025,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (52276)","md5":"ded1c367363e8b20bdc6a19b8350a737","sha1":"8c06d82739d14b094ff6d9036021a252bd1d985d","sha256":"1edb1725a9ea8ca4dcf2f5508cee183218aa1685e47c1b23056717f754f58ebf","sha512":"89e71d2e66ac925ec2564aa45cd43f647fd72e5bd664e2728fb632eed71e9e6a43d72a404a8ce9993fc4d223ed985201e3a66676d01cf5e341bc7d07fd9a6207","ssdeep":"1536:OwMCMPMCMjMCM4MCMwMCM3sVMX709gbPMfjSFOTyPGuZprfZCl:S709gMGFiyPGuZpfZCl","tlshash":"2ea3a7f9e44c05d97732c44bab95b37c65b6f738d5810ca9f02f580c1ad26a822c6f7a","first_seen":"2023-04-06T15:05:25Z","last_seen":"2026-06-06T13:34:23.901158Z","times_seen":50844,"resource_available":false,"data":null}},"time_used":56,"timings":{"blocked":19,"dns":0,"connect":1,"send":0,"wait":13,"receive":1,"ssl":19},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"y8lumo.live/assets/index-CGTNYZLz.js","fqdn":"y8lumo.live","domain":"y8lumo.live","tld":"live"},"ip":{"addr":"47.77.231.95","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://y8lumo.live/","date":"2026-01-30T13:29:25.576Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"y8lumo.live","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 29 Jan 2026 08:14:27 GMT","end":"Wed, 29 Apr 2026 08:14:26 GMT"},"fingerprint":{"sha1":"8D:DA:97:70:80:D9:0D:F3:C7:A9:02:80:66:BC:E8:4A:99:E0:78:7D","sha256":"EC:BB:FB:B2:CE:F9:F0:0A:0A:E3:9A:76:AB:6D:22:4C:EE:03:AE:32:54:37:2B:14:02:76:25:63:06:BB:72:A5"}}},"request":{"raw":"GET /assets/index-CGTNYZLz.js HTTP/1.1\r\nHost: y8lumo.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://y8lumo.live/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.20.1\r\nDate: Fri, 30 Jan 2026 13:29:26 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 399159\r\nLast-Modified: Wed, 28 Jan 2026 11:00:05 GMT\r\nConnection: keep-alive\r\nETag: \"6979ec35-61737\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.20.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":399159,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (63005)","md5":"3d8df00af2353765e3aa24db06d944da","sha1":"05a06ab077e99c8b0755643548cc37cab402a80e","sha256":"79d89cda3143164a58aaddb69752a2201e2f61f2dc7c0dbdca7bc00c6f4ee4a8","sha512":"7c4dfff7969080959974b171616568b200eec7625077c52323e937733cee6f5a5aa05a1e1474882c541516addec26c017e98fe1ba2765af3720b5fd5f5871d6a","ssdeep":"12288:y8lX/qx7zvIczg7/v8dpnVPTUD9iwug1V1ilcOMWENJqKIh:y8lX/qx7zvIczg7HMpnVPAD9iwug1V16","tlshash":"ee844bd4b685b46903b639f6403f1101f33e1d16b80d8098f66de9db3d2a99962b7f38","first_seen":"2026-01-29T12:36:05.188871Z","last_seen":"2026-01-30T13:29:49.592879Z","times_seen":10,"resource_available":true,"data":null}},"time_used":1980,"timings":{"blocked":444,"dns":1,"connect":228,"send":0,"wait":400,"receive":689,"ssl":214},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"y8lumo.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"y8lumo.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"y8lumo.live/assets/pages-ap-login.CfYx-Uz2.js","fqdn":"y8lumo.live","domain":"y8lumo.live","tld":"live"},"ip":{"addr":"47.77.231.95","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://y8lumo.live/","date":"2026-01-30T13:29:27.215Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"y8lumo.live","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 29 Jan 2026 08:14:27 GMT","end":"Wed, 29 Apr 2026 08:14:26 GMT"},"fingerprint":{"sha1":"8D:DA:97:70:80:D9:0D:F3:C7:A9:02:80:66:BC:E8:4A:99:E0:78:7D","sha256":"EC:BB:FB:B2:CE:F9:F0:0A:0A:E3:9A:76:AB:6D:22:4C:EE:03:AE:32:54:37:2B:14:02:76:25:63:06:BB:72:A5"}}},"request":{"raw":"GET /assets/pages-ap-login.CfYx-Uz2.js HTTP/1.1\r\nHost: y8lumo.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://y8lumo.live/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.20.1\r\nDate: Fri, 30 Jan 2026 13:29:27 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 13244\r\nLast-Modified: Wed, 28 Jan 2026 11:00:22 GMT\r\nConnection: keep-alive\r\nETag: \"6979ec46-33bc\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.20.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":13244,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (13243)","md5":"aa25677e82344fdff868910298ca4af8","sha1":"aaf48381d366cedaadf1bd8615bf2b4dc064227e","sha256":"1ef8a9113a6cc285f32544e8b5475344603adf0340c48b23b89d2670bc8dbc2e","sha512":"d03d6a5d1b1e18cb661f00f6c01b0c0ce4793ab261cb2c844e2f587b124327827e38fce579633733ec18364d113872fafedb9aa8fbb2316e1bc83901f6b2bb9d","ssdeep":"192:Fl8PrRby4titatCksPgPtNbkIUBzl8Q//BxR1750rnVVrZ39WgcIMWESwvvWyN/q:Fly0taFex8Q//v7QTr1THhZMfw","tlshash":"b752641db92ac3b4b33b06c861665404b01b1ffdd950bdd250f90b1c76b6eac119a77e","first_seen":"2026-01-29T12:36:05.164643Z","last_seen":"2026-01-30T13:29:49.591152Z","times_seen":10,"resource_available":true,"data":null}},"time_used":1193,"timings":{"blocked":394,"dns":0,"connect":188,"send":0,"wait":402,"receive":1,"ssl":206},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"y8lumo.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"y8lumo.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"y8lumo.live/assets/_plugin-vue_export-helper.BCo6x5W8.js","fqdn":"y8lumo.live","domain":"y8lumo.live","tld":"live"},"ip":{"addr":"47.77.231.95","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://y8lumo.live/","date":"2026-01-30T13:29:27.604Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"y8lumo.live","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 29 Jan 2026 08:14:27 GMT","end":"Wed, 29 Apr 2026 08:14:26 GMT"},"fingerprint":{"sha1":"8D:DA:97:70:80:D9:0D:F3:C7:A9:02:80:66:BC:E8:4A:99:E0:78:7D","sha256":"EC:BB:FB:B2:CE:F9:F0:0A:0A:E3:9A:76:AB:6D:22:4C:EE:03:AE:32:54:37:2B:14:02:76:25:63:06:BB:72:A5"}}},"request":{"raw":"GET /assets/_plugin-vue_export-helper.BCo6x5W8.js HTTP/1.1\r\nHost: y8lumo.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://y8lumo.live/assets/pages-ap-login.CfYx-Uz2.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.20.1\r\nDate: Fri, 30 Jan 2026 13:29:27 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 91\r\nLast-Modified: Wed, 28 Jan 2026 11:00:36 GMT\r\nConnection: keep-alive\r\nETag: \"6979ec54-5b\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.20.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":91,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text","md5":"41bf66d156aac38dbf7a45b53cb4db18","sha1":"4aa693a2afcc34b6a577e1bfc4be3ef5a458dce0","sha256":"a7dbb0eaed9de79041d555c4563be4bb0514099b8d169a2b548ab2d07102cb55","sha512":"64e1a5c2939052c93692338bf78b66723ae6673121d2915a9fb0848449e4b2657c1a31c8940bc7c9ec77554fd4c04ffae1b787297f0fba23983a987e85caee15","ssdeep":"","tlshash":"40b012e500824138432175c796f444649e08005c394756d144480d52c143080541bc3c","first_seen":"2023-03-26T04:51:44Z","last_seen":"2026-06-06T11:23:19.853947Z","times_seen":1550,"resource_available":true,"data":null}},"time_used":182,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":182,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"y8lumo.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"y8lumo.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"y8lumo.live/assets/page_footer.ChxW7SOB.js","fqdn":"y8lumo.live","domain":"y8lumo.live","tld":"live"},"ip":{"addr":"47.77.231.95","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://y8lumo.live/","date":"2026-01-30T13:29:27.609Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"y8lumo.live","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 29 Jan 2026 08:14:27 GMT","end":"Wed, 29 Apr 2026 08:14:26 GMT"},"fingerprint":{"sha1":"8D:DA:97:70:80:D9:0D:F3:C7:A9:02:80:66:BC:E8:4A:99:E0:78:7D","sha256":"EC:BB:FB:B2:CE:F9:F0:0A:0A:E3:9A:76:AB:6D:22:4C:EE:03:AE:32:54:37:2B:14:02:76:25:63:06:BB:72:A5"}}},"request":{"raw":"GET /assets/page_footer.ChxW7SOB.js HTTP/1.1\r\nHost: y8lumo.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://y8lumo.live/assets/pages-ap-login.CfYx-Uz2.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.20.1\r\nDate: Fri, 30 Jan 2026 13:29:27 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 2290\r\nLast-Modified: Wed, 28 Jan 2026 11:00:25 GMT\r\nConnection: keep-alive\r\nETag: \"6979ec49-8f2\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.20.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2290,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (2289)","md5":"1ed2d13390bb20c9116469db58574df5","sha1":"0eb77a46ad178cce5d146794c4d4909144e07aaa","sha256":"2278a5a040c0d32d47ea11d1fa388c9b48db1735f143f34529821ff9421d15bc","sha512":"2341a870eb2c7db6267ca8006dc720a94eda531985fddeb0dc4358e5648ac3db6a7107a5cb6812ec67ec7c91707ce428e5956085b42cdde5054342ad9b23c931","ssdeep":"","tlshash":"a541af581c4b823f259b91bed522a430b68a1ff0cb74cc92d8f98a55669ddfc3c16d2c","first_seen":"2026-01-29T12:36:05.16778Z","last_seen":"2026-01-30T13:29:49.602951Z","times_seen":10,"resource_available":true,"data":null}},"time_used":183,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":183,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"y8lumo.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"y8lumo.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"y8lumo.live/assets/pDxWAF1pBB0dzGB-D7NyJrii.woff2","fqdn":"y8lumo.live","domain":"y8lumo.live","tld":"live"},"ip":{"addr":"47.77.231.95","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://y8lumo.live/","date":"2026-01-30T13:29:27.878Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"y8lumo.live","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 29 Jan 2026 08:14:27 GMT","end":"Wed, 29 Apr 2026 08:14:26 GMT"},"fingerprint":{"sha1":"8D:DA:97:70:80:D9:0D:F3:C7:A9:02:80:66:BC:E8:4A:99:E0:78:7D","sha256":"EC:BB:FB:B2:CE:F9:F0:0A:0A:E3:9A:76:AB:6D:22:4C:EE:03:AE:32:54:37:2B:14:02:76:25:63:06:BB:72:A5"}}},"request":{"raw":"GET /assets/pDxWAF1pBB0dzGB-D7NyJrii.woff2 HTTP/1.1\r\nHost: y8lumo.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://y8lumo.live/assets/index-BJ6U4fM6.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.20.1\r\nDate: Fri, 30 Jan 2026 13:29:27 GMT\r\nContent-Type: font/woff2\r\nContent-Length: 16616\r\nLast-Modified: Wed, 28 Jan 2026 11:00:26 GMT\r\nConnection: keep-alive\r\nETag: \"6979ec4a-40e8\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.20.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":16616,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 16616, version 1.655","md5":"4afcd3b79b78d33386f497877a29c518","sha1":"cc7ebaa05a2cd3b02c0929ac0475a44ab30b7efa","sha256":"cded49f94fc16dc0a14923975e159fbf4b14844593e612c1342c9e34e2f96821","sha512":"2dc9fff1d57d5529c9c7bff26fa9f3f94adc47e9cef51d782e55ecf93045200140706ab5816dfd4a0b49b8db2263320fa2f0fa31a04e12d0c91fea79b127255d","ssdeep":"384:0qJzQ61qLjMj2JfDC3uq2B/YgduJyovfw4TQRJGL7VGhX8aJl/hObP:x8LHMjGbCeqEFuBwkqJGLhGhVLsP","tlshash":"a772d03d74972759eac2ce7f720d228627d6f9888e615fe83817d00c657604e6a603ec","first_seen":"2023-04-05T14:54:42Z","last_seen":"2026-06-06T12:23:40.844Z","times_seen":25666,"resource_available":false,"data":null}},"time_used":186,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":185,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"y8lumo.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"y8lumo.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Inter:wght@300;400;500;600;700\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"216.58.211.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://y8lumo.live/","date":"2026-01-30T13:29:25.575Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 29 Dec 2025 19:52:24 GMT","end":"Mon, 23 Mar 2026 19:52:23 GMT"},"fingerprint":{"sha1":"43:39:AF:0A:74:F9:2F:1B:C0:1E:4E:89:21:30:C2:28:EC:9F:6C:67","sha256":"EA:F1:0E:C7:36:18:F3:9D:D1:D5:34:23:44:7D:6F:9D:2F:61:C7:81:09:9E:E9:C8:02:C8:F2:2C:0A:83:B3:A5"}}},"request":{"raw":"GET /css2?family=Inter:wght@300;400;500;600;700\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://y8lumo.live/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Fri, 30 Jan 2026 13:29:25 GMT\r\ndate: Fri, 30 Jan 2026 13:29:25 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":12635,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"f04de8ad1ef740d940ec0f534a8f6474","sha1":"3b31756e84c8887867417c7d6cc64501c9d9193c","sha256":"2f1ac0c31bc3ede8317cf72e9d28051ec727c9a0014aa69cff495abd6256bb4e","sha512":"69afede137c125294044274e463f30c02594f379ec879285e0b3ee41097f503dfb8272487759870f547e4dc4cf8828a2c1efaa806deb2f3124b7f6d67c638783","ssdeep":"192:wNA1cO3lnxirNNIxO34OxDENOPCO3/Nx8NNryfO3iExlONEhYO3RrxGx:8KYXuM0p2+4","tlshash":"28427892002ba400ab971dc233cf7f3aaece50896085d1b95ffd0dc59cead66436876d","first_seen":"2025-09-10T18:44:19.218006Z","last_seen":"2026-06-06T13:40:06.046985Z","times_seen":23943,"resource_available":false,"data":null}},"time_used":265,"timings":{"blocked":121,"dns":3,"connect":8,"send":0,"wait":19,"receive":0,"ssl":111},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"y8lumo.live/assets/_plugin-vue_export-helper.BCo6x5W8.js","fqdn":"y8lumo.live","domain":"y8lumo.live","tld":"live"},"ip":{"addr":"47.77.231.95","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://y8lumo.live/","date":"2026-01-30T13:29:27.218Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"y8lumo.live","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 29 Jan 2026 08:14:27 GMT","end":"Wed, 29 Apr 2026 08:14:26 GMT"},"fingerprint":{"sha1":"8D:DA:97:70:80:D9:0D:F3:C7:A9:02:80:66:BC:E8:4A:99:E0:78:7D","sha256":"EC:BB:FB:B2:CE:F9:F0:0A:0A:E3:9A:76:AB:6D:22:4C:EE:03:AE:32:54:37:2B:14:02:76:25:63:06:BB:72:A5"}}},"request":{"raw":"GET /assets/_plugin-vue_export-helper.BCo6x5W8.js HTTP/1.1\r\nHost: y8lumo.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://y8lumo.live/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.20.1\r\nDate: Fri, 30 Jan 2026 13:29:27 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 91\r\nLast-Modified: Wed, 28 Jan 2026 11:00:36 GMT\r\nConnection: keep-alive\r\nETag: \"6979ec54-5b\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.20.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":91,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text","md5":"41bf66d156aac38dbf7a45b53cb4db18","sha1":"4aa693a2afcc34b6a577e1bfc4be3ef5a458dce0","sha256":"a7dbb0eaed9de79041d555c4563be4bb0514099b8d169a2b548ab2d07102cb55","sha512":"64e1a5c2939052c93692338bf78b66723ae6673121d2915a9fb0848449e4b2657c1a31c8940bc7c9ec77554fd4c04ffae1b787297f0fba23983a987e85caee15","ssdeep":"","tlshash":"40b012e500824138432175c796f444649e08005c394756d144480d52c143080541bc3c","first_seen":"2023-03-26T04:51:44Z","last_seen":"2026-06-06T11:23:19.853947Z","times_seen":1550,"resource_available":true,"data":null}},"time_used":1055,"timings":{"blocked":422,"dns":1,"connect":215,"send":0,"wait":205,"receive":0,"ssl":210},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"y8lumo.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"y8lumo.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"y8lumo.live/assets/page_footer.ChxW7SOB.js","fqdn":"y8lumo.live","domain":"y8lumo.live","tld":"live"},"ip":{"addr":"47.77.231.95","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://y8lumo.live/","date":"2026-01-30T13:29:27.221Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"y8lumo.live","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 29 Jan 2026 08:14:27 GMT","end":"Wed, 29 Apr 2026 08:14:26 GMT"},"fingerprint":{"sha1":"8D:DA:97:70:80:D9:0D:F3:C7:A9:02:80:66:BC:E8:4A:99:E0:78:7D","sha256":"EC:BB:FB:B2:CE:F9:F0:0A:0A:E3:9A:76:AB:6D:22:4C:EE:03:AE:32:54:37:2B:14:02:76:25:63:06:BB:72:A5"}}},"request":{"raw":"GET /assets/page_footer.ChxW7SOB.js HTTP/1.1\r\nHost: y8lumo.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://y8lumo.live/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.20.1\r\nDate: Fri, 30 Jan 2026 13:29:27 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 2290\r\nLast-Modified: Wed, 28 Jan 2026 11:00:25 GMT\r\nConnection: keep-alive\r\nETag: \"6979ec49-8f2\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.20.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2290,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (2289)","md5":"1ed2d13390bb20c9116469db58574df5","sha1":"0eb77a46ad178cce5d146794c4d4909144e07aaa","sha256":"2278a5a040c0d32d47ea11d1fa388c9b48db1735f143f34529821ff9421d15bc","sha512":"2341a870eb2c7db6267ca8006dc720a94eda531985fddeb0dc4358e5648ac3db6a7107a5cb6812ec67ec7c91707ce428e5956085b42cdde5054342ad9b23c931","ssdeep":"","tlshash":"a541af581c4b823f259b91bed522a430b68a1ff0cb74cc92d8f98a55669ddfc3c16d2c","first_seen":"2026-01-29T12:36:05.16778Z","last_seen":"2026-01-30T13:29:49.602951Z","times_seen":10,"resource_available":true,"data":null}},"time_used":822,"timings":{"blocked":325,"dns":0,"connect":163,"send":0,"wait":163,"receive":1,"ssl":166},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"y8lumo.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"y8lumo.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"y8lumo.live/assets/uni-app.es.D0sXOhBk.js","fqdn":"y8lumo.live","domain":"y8lumo.live","tld":"live"},"ip":{"addr":"47.77.231.95","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://y8lumo.live/","date":"2026-01-30T13:29:27.607Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"y8lumo.live","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 29 Jan 2026 08:14:27 GMT","end":"Wed, 29 Apr 2026 08:14:26 GMT"},"fingerprint":{"sha1":"8D:DA:97:70:80:D9:0D:F3:C7:A9:02:80:66:BC:E8:4A:99:E0:78:7D","sha256":"EC:BB:FB:B2:CE:F9:F0:0A:0A:E3:9A:76:AB:6D:22:4C:EE:03:AE:32:54:37:2B:14:02:76:25:63:06:BB:72:A5"}}},"request":{"raw":"GET /assets/uni-app.es.D0sXOhBk.js HTTP/1.1\r\nHost: y8lumo.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://y8lumo.live/assets/pages-ap-login.CfYx-Uz2.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.20.1\r\nDate: Fri, 30 Jan 2026 13:29:27 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 84\r\nLast-Modified: Wed, 28 Jan 2026 11:00:29 GMT\r\nConnection: keep-alive\r\nETag: \"6979ec4d-54\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.20.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":84,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text","md5":"f0fe5340ac23f0a0a34fb6828baa7933","sha1":"e92fefee3ed0a0ff2a5a880a12e4fb73cc069d62","sha256":"8a9fac85444c1b6b8ef154711ce60a8d77ea0c86513aa03ddf67e57bca0cc632","sha512":"877e62758ae8bd878b5767fdf672e78db17801e203309717c568b824af9e7ccaa8f2fe090d886213f3e364e6f2f24b5c9a6197532bd689e8f6d92a5fa377e8ae","ssdeep":"","tlshash":"2ea0120760832092180204d544559c06127610d14dc8867085c003340af44a4812890d","first_seen":"2026-01-29T12:36:05.174421Z","last_seen":"2026-01-30T13:29:49.589631Z","times_seen":10,"resource_available":true,"data":null}},"time_used":182,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":182,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"y8lumo.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"y8lumo.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"y8lumo.live/assets/page_header.B2uVHbi8.js","fqdn":"y8lumo.live","domain":"y8lumo.live","tld":"live"},"ip":{"addr":"47.77.231.95","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://y8lumo.live/","date":"2026-01-30T13:29:27.608Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"y8lumo.live","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 29 Jan 2026 08:14:27 GMT","end":"Wed, 29 Apr 2026 08:14:26 GMT"},"fingerprint":{"sha1":"8D:DA:97:70:80:D9:0D:F3:C7:A9:02:80:66:BC:E8:4A:99:E0:78:7D","sha256":"EC:BB:FB:B2:CE:F9:F0:0A:0A:E3:9A:76:AB:6D:22:4C:EE:03:AE:32:54:37:2B:14:02:76:25:63:06:BB:72:A5"}}},"request":{"raw":"GET /assets/page_header.B2uVHbi8.js HTTP/1.1\r\nHost: y8lumo.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://y8lumo.live/assets/pages-ap-login.CfYx-Uz2.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.20.1\r\nDate: Fri, 30 Jan 2026 13:29:27 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 756\r\nLast-Modified: Wed, 28 Jan 2026 11:00:25 GMT\r\nConnection: keep-alive\r\nETag: \"6979ec49-2f4\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.20.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":756,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (755)","md5":"c30d86806b862093ecdedc0606570357","sha1":"f951c9ee6a0572dc149f29f2c11fcff2648ca163","sha256":"f029a643bd45bf9a4d5481d7180b6a19e854eb0aa160002b01a938101b8b083e","sha512":"a37b787c75fbc0bd68d3445459b6242b7e180ab65c2af87543156ddc1bd053b61841554d9c85749da627852929d15e4fbfe1bbce1a38a32247b1f4c482d2bd19","ssdeep":"","tlshash":"6201c04d6c4fc1ba622254dfd42258382144077e9724ace1c0fc8c396bd5dac661bf29","first_seen":"2026-01-29T12:36:05.17651Z","last_seen":"2026-01-30T13:29:49.609276Z","times_seen":10,"resource_available":true,"data":null}},"time_used":161,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":161,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"y8lumo.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"y8lumo.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"y8lumo.live/static/favicon.ico","fqdn":"y8lumo.live","domain":"y8lumo.live","tld":"live"},"ip":{"addr":"47.77.231.95","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://y8lumo.live/","date":"2026-01-30T13:29:28.067Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"y8lumo.live","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 29 Jan 2026 08:14:27 GMT","end":"Wed, 29 Apr 2026 08:14:26 GMT"},"fingerprint":{"sha1":"8D:DA:97:70:80:D9:0D:F3:C7:A9:02:80:66:BC:E8:4A:99:E0:78:7D","sha256":"EC:BB:FB:B2:CE:F9:F0:0A:0A:E3:9A:76:AB:6D:22:4C:EE:03:AE:32:54:37:2B:14:02:76:25:63:06:BB:72:A5"}}},"request":{"raw":"GET /static/favicon.ico HTTP/1.1\r\nHost: y8lumo.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://y8lumo.live/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.20.1\r\nDate: Fri, 30 Jan 2026 13:29:28 GMT\r\nContent-Type: image/x-icon\r\nContent-Length: 17542\r\nLast-Modified: Wed, 28 Jan 2026 10:59:34 GMT\r\nConnection: keep-alive\r\nETag: \"6979ec16-4486\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.20.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":17542,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 4 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel","md5":"ca6619b86c2f6e6068b69ba3aaddb7e4","sha1":"c44a1bb9d14385334eb851fbb0afb19d961c1ee7","sha256":"17d02e2db6dbedb95dd449d06868c147ac2c3b5371497bcb9407e75336a99e09","sha512":"30f8f8618bfbcd57925411e6860a10b6ad9a60f2a6b08d35c870ea3f4cec4692596a937ff1457ceff5847d5da2b86ceba0200706625e28c56a2455e6a8c121d3","ssdeep":"192:9dLhJ6/f2dh+xQLeZ10TLwhwOHae6nmErcglsIZS3F:3jaOdhQQu0TLwaOHEr6IZ","tlshash":"ae72f191ad68c084c37ef432dd69deab66467de2b6c26c071fb53f86f23821e7901106","first_seen":"2023-04-17T01:45:41Z","last_seen":"2026-06-06T11:56:00.506638Z","times_seen":19361,"resource_available":false,"data":null}},"time_used":180,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":179,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"y8lumo.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"y8lumo.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/@fingerprintjs/fingerprintjs@3/dist/fp.min.js","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"151.101.1.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://y8lumo.live/","date":"2026-01-30T13:29:25.572Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jsdelivr.net","organization":""},"issuer":{"commonName":"GlobalSign Atlas R3 DV TLS CA 2025 Q2","organization":"GlobalSign nv-sa"},"validity":{"start":"Mon, 02 Jun 2025 15:43:52 GMT","end":"Sat, 04 Jul 2026 15:43:51 GMT"},"fingerprint":{"sha1":"21:17:81:78:41:C6:8F:86:D6:CF:8D:98:CC:74:A8:F1:03:F8:C9:D4","sha256":"D0:E6:8D:08:11:05:7E:0C:2A:0D:C7:E0:ED:AE:9E:18:C8:74:32:12:3D:56:43:98:62:CD:A2:08:6F:64:5B:B0"}}},"request":{"raw":"GET /npm/@fingerprintjs/fingerprintjs@3/dist/fp.min.js HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://y8lumo.live/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=604800, s-maxage=43200\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncontent-type: application/javascript; charset=utf-8\r\nx-jsd-version: 3.4.2\r\nx-jsd-version-type: version\r\netag: W/\"83f4-k1lBXMQZh0ZUAAhwylRSOHXBLBY\"\r\ncontent-encoding: br\r\naccept-ranges: bytes\r\ndate: Fri, 30 Jan 2026 13:29:25 GMT\r\nage: 11093\r\nx-served-by: cache-fra-eddf8230038-FRA, cache-hel1410034-HEL\r\nx-cache: HIT, HIT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400\r\ncontent-length: 14485\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":33780,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (33446)","md5":"375436f436cc1022d7b4569a817c1a6b","sha1":"9359415cc419874654000870ca54523875c12c16","sha256":"99dc3803d1f19c8103f79f834044b2afd4c8af5b7927efbd36b1052d528b40ae","sha512":"077cb9e67a028f8ffc6c9f19793c15e20379840da1a927e711a0ac4dcf15fe6e1a15cee75436df340c707b9e77118f3cd38ede493e060c592069f39bc6001a92","ssdeep":"384:chQYSwHRBcifEJzXhGUa4LdsF7wRuCfLVg5+pCqNFaiE8E0QIQfJW7us6RfGDUPX:cSMHRU7Lic9NwlJW5iffPREA75","tlshash":"c5e207d8b2c3b029227378b6497f6007b63abd15242d4843d57be4c17ca5e5a813bfb9","first_seen":"2023-07-07T04:22:54Z","last_seen":"2026-06-06T12:00:10.742246Z","times_seen":8354,"resource_available":true,"data":null}},"time_used":151,"timings":{"blocked":58,"dns":1,"connect":26,"send":0,"wait":27,"receive":3,"ssl":32},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"y8lumo.live/assets/index-BJ6U4fM6.css","fqdn":"y8lumo.live","domain":"y8lumo.live","tld":"live"},"ip":{"addr":"47.77.231.95","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://y8lumo.live/","date":"2026-01-30T13:29:25.577Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"y8lumo.live","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 29 Jan 2026 08:14:27 GMT","end":"Wed, 29 Apr 2026 08:14:26 GMT"},"fingerprint":{"sha1":"8D:DA:97:70:80:D9:0D:F3:C7:A9:02:80:66:BC:E8:4A:99:E0:78:7D","sha256":"EC:BB:FB:B2:CE:F9:F0:0A:0A:E3:9A:76:AB:6D:22:4C:EE:03:AE:32:54:37:2B:14:02:76:25:63:06:BB:72:A5"}}},"request":{"raw":"GET /assets/index-BJ6U4fM6.css HTTP/1.1\r\nHost: y8lumo.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://y8lumo.live/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.20.1\r\nDate: Fri, 30 Jan 2026 13:29:25 GMT\r\nContent-Type: text/css\r\nContent-Length: 75612\r\nLast-Modified: Wed, 28 Jan 2026 11:00:04 GMT\r\nConnection: keep-alive\r\nETag: \"6979ec34-1275c\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.20.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":75612,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"dda96fe3e14699edd8325f13a09c3a07","sha1":"2c11932bbb9a18a972ae61498c6f1a96019c609e","sha256":"f49eb271e44229e6afa121e071ed19d51be17d214a1e9e86f349fdae01952c3b","sha512":"1300bda65975991388814103c406723a7a8e501c298cf3660005393a7a9935c235608683a15e4621a45ba7f43a306e7bc9d12bb5acd806ce533f6e370f53f70c","ssdeep":"1536:80KR1AKeEfqe2T7XnC171+aWn9he/4Sycpo:HT7XC15bWze/hY","tlshash":"2373fa340036a458e5f3dc1330cd3d523c4da027aa8a9527e62f8aac5ee787787a5f75","first_seen":"2025-09-27T19:31:00.071648Z","last_seen":"2026-03-08T23:08:16.631002Z","times_seen":73,"resource_available":false,"data":null}},"time_used":832,"timings":{"blocked":214,"dns":0,"connect":0,"send":0,"wait":216,"receive":402,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"y8lumo.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"y8lumo.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"y8lumo.live/assets/page_header.B2uVHbi8.js","fqdn":"y8lumo.live","domain":"y8lumo.live","tld":"live"},"ip":{"addr":"47.77.231.95","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://y8lumo.live/","date":"2026-01-30T13:29:27.220Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"y8lumo.live","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 29 Jan 2026 08:14:27 GMT","end":"Wed, 29 Apr 2026 08:14:26 GMT"},"fingerprint":{"sha1":"8D:DA:97:70:80:D9:0D:F3:C7:A9:02:80:66:BC:E8:4A:99:E0:78:7D","sha256":"EC:BB:FB:B2:CE:F9:F0:0A:0A:E3:9A:76:AB:6D:22:4C:EE:03:AE:32:54:37:2B:14:02:76:25:63:06:BB:72:A5"}}},"request":{"raw":"GET /assets/page_header.B2uVHbi8.js HTTP/1.1\r\nHost: y8lumo.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://y8lumo.live/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.20.1\r\nDate: Fri, 30 Jan 2026 13:29:27 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 756\r\nLast-Modified: Wed, 28 Jan 2026 11:00:25 GMT\r\nConnection: keep-alive\r\nETag: \"6979ec49-2f4\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.20.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":756,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (755)","md5":"c30d86806b862093ecdedc0606570357","sha1":"f951c9ee6a0572dc149f29f2c11fcff2648ca163","sha256":"f029a643bd45bf9a4d5481d7180b6a19e854eb0aa160002b01a938101b8b083e","sha512":"a37b787c75fbc0bd68d3445459b6242b7e180ab65c2af87543156ddc1bd053b61841554d9c85749da627852929d15e4fbfe1bbce1a38a32247b1f4c482d2bd19","ssdeep":"","tlshash":"6201c04d6c4fc1ba622254dfd42258382144077e9724ace1c0fc8c396bd5dac661bf29","first_seen":"2026-01-29T12:36:05.17651Z","last_seen":"2026-01-30T13:29:49.609276Z","times_seen":10,"resource_available":true,"data":null}},"time_used":888,"timings":{"blocked":351,"dns":1,"connect":171,"send":0,"wait":177,"receive":0,"ssl":184},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"y8lumo.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-30","alert":"Sinkholed","trigger":"y8lumo.live","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.dcloud.net.cn/img/shadow-grey.png","fqdn":"cdn.dcloud.net.cn","domain":"dcloud.net.cn","tld":"net.cn"},"ip":{"addr":"106.54.228.253","port":443,"asn":45090,"as":"Shenzhen Tencent Computer Systems Company Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://y8lumo.live/","date":"2026-01-30T13:29:29.455Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.dcloud.net.cn","organization":""},"issuer":{"commonName":"Certum Domain Validation CA SHA2","organization":"Unizeto Technologies S.A."},"validity":{"start":"Tue, 26 Aug 2025 11:47:17 GMT","end":"Fri, 25 Sep 2026 11:47:16 GMT"},"fingerprint":{"sha1":"47:A7:6C:09:6B:1D:CA:2D:7D:39:2E:C1:7F:15:DE:5D:F2:C4:0F:77","sha256":"EA:73:37:83:D0:38:44:D9:3C:0B:26:F0:DD:D1:22:2F:36:F7:F2:86:A1:B0:58:52:DE:4E:0A:21:D6:89:E7:3E"}}},"request":{"raw":"GET /img/shadow-grey.png HTTP/1.1\r\nHost: cdn.dcloud.net.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://y8lumo.live/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 30 Jan 2026 13:29:30 GMT\r\ncontent-type: image/png\r\ncontent-length: 136\r\nlast-modified: Thu, 06 Jun 2019 06:42:07 GMT\r\netag: \"5cf8b5bf-88\"\r\nexpires: Fri, 30 Jan 2026 15:29:30 GMT\r\ncache-control: max-age=7200\r\nset-cookie: __uni__uid=rBEQg2l8sjpJXaWnA2d8Ag==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=dcloud.net.cn; path=/; secure; httponly; samesite=none\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":136,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1 x 6, 4-bit colormap, non-interlaced","md5":"5a962adf74d92ae702467b3f47976547","sha1":"36f74049375584e3fa69b5ef87e9572336ff9e7a","sha256":"ad4ebea1c3496dd2924789ee009174a2c6289d1200e9811f458fd46f172d1d6f","sha512":"4ace23fe7ec6c7271710030fd423aace13eafac68ac3e76366ce4ce9bdc702caf71c9bdc2fb6a32c8e9791546098617cc0259decd8bb8489afdbce43e1b53a73","ssdeep":"","tlshash":"47c09bf3a615dc754a0d153b42e98271f429511e07046d0e5a13c216741e3448d56793","first_seen":"2023-04-15T10:50:30Z","last_seen":"2026-06-06T12:58:51.789541Z","times_seen":16180,"resource_available":false,"data":null}},"time_used":1732,"timings":{"blocked":602,"dns":49,"connect":233,"send":0,"wait":527,"receive":0,"ssl":319},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}