Report - bjxhxjcx.com/jcwt-tp/list_1

Report Overview

Visited public
2025-05-28 02:44:23
Tags
Submit Tags
URL
bjxhxjcx.com/jcwt-tp/list_1_1235.html
Finishing URL
bjxhxjcx.com/jcwt-tp/list_1_1235.html
IP / ASN
104.21.96.1
#13335 CLOUDFLARENET
Title
教程问题_TP官方正版下载中国区|TP官方网站下载(TPWallet)官网|TP交易所app下载最新版|在Tp官网下载APP|TpWallet安全验证|tp交易所的官方手机客户端叫什么|你的通用数字钱包

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
bjxhxjcx.com	unknown	2017-08-11	2025-04-19	2025-04-19	3.6 kB	153 kB	104.21.32.1
fonts.googleapis.com	8877	2005-01-25	2012-05-23	2025-05-21	466 B	19 kB	142.250.178.42
cdnjs.cloudflare.com	235	2009-02-17	2012-05-23	2025-05-21	477 B	20 kB	104.17.25.14

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-05-28	medium	bjxhxjcx.com	Sinkholed
2025-05-28	medium	bjxhxjcx.com	Sinkholed
2025-05-28	medium	bjxhxjcx.com	Sinkholed
2025-05-28	medium	bjxhxjcx.com	Sinkholed
2025-05-28	medium	bjxhxjcx.com	Sinkholed
2025-05-28	medium	bjxhxjcx.com	Sinkholed
2025-05-28	medium	bjxhxjcx.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (0)

HTTP Transactions (9)

URL IP Response Size

GET bjxhxjcx.com/jcwt-tp/list_1_1235.html

104.21.32.1

200 OK

27 kB

URL User Request GET
bjxhxjcx.com/jcwt-tp/list_1_1235.html
IP
104.21.32.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectbjxhxjcx.com
Fingerprint29:39:9A:6D:3C:49:AE:F6:A3:F5:68:94:F0:90:2B:A6:F2:2C:A3:80
ValidityWed, 14 May 2025 16:13:10 GMT - Tue, 12 Aug 2025 17:09:45 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (2134), with CRLF, LF line terminators
Size
27 kB (26672 bytes)
Hash
20c7375e5e3596613d63a3ff80c83d75
9289899b637dbdb3d022850f463eea315ac66657
00bd6461d8f6ab676687708c51e4f7bed3c67cd889e9f1076885666cfea061e6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /jcwt-tp/list_1_1235.html HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 28 May 2025 02:44:07 GMT
content-type: text/html; charset=utf-8
server: cloudflare
vary: Accept-Encoding
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
strict-transport-security: max-age=31536000
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=hnouazZYw%2BxvQHQ4FTdgyAK1N3tsLk3KWrGL6XAXogFdFxq8QGJicNvKueY3AYmzNaVdDBkPWLflIpOR7Qf1cUUm%2BcfLnvbT5v8%3D"}]}
cf-cache-status: DYNAMIC
content-encoding: br
set-cookie: PHPSESSID=tc4fdi4q66t7ru8v1q029js52n; Path=/
cf-ray: 946a686898da1bfe-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET bjxhxjcx.com/static/js/jquery.ajaxchimp.min.js

104.21.32.1

200 OK

4.8 kB

URL GET
bjxhxjcx.com/static/js/jquery.ajaxchimp.min.js
IP
104.21.32.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bjxhxjcx.com/jcwt-tp/list_1_1235.html
Certificate
IssuerGoogle Trust Services
Subjectbjxhxjcx.com
Fingerprint29:39:9A:6D:3C:49:AE:F6:A3:F5:68:94:F0:90:2B:A6:F2:2C:A3:80
ValidityWed, 14 May 2025 16:13:10 GMT - Tue, 12 Aug 2025 17:09:45 GMT

File type
JavaScript source, ASCII text
Size
4.8 kB (4820 bytes)
Hash
8eace32bdc314e746f5b01015115b3a8
90395aa2ff153cfb6d5c256a3f70bc4d545a3190
3c7c17459ec57867f6812625f1b95e2f878363ca728b92a5968d2fc8e60d9712

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/jquery.ajaxchimp.min.js HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/jcwt-tp/list_1_1235.html
Cookie: PHPSESSID=tc4fdi4q66t7ru8v1q029js52n
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 28 May 2025 02:44:13 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yOpusRoY4dNAbS0YbRQZRgye754j1I0WqJXqhpuMUtpLbJ5tycQEluj8OiaR1ikK3D8khZGq7eh17oHUQ%2BgeWmpOfVW%2BhdPUPbrSAqGfGEmnTUzqIuUUA%2BQZ6ldwk%2B0%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Sun, 27 Aug 2017 08:45:04 GMT
vary: Accept-Encoding
etag: W/"59a28690-12d4"
expires: Wed, 28 May 2025 14:44:13 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
cf-ray: 946a688eaa89568d-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=7965&min_rtt=2056&rtt_var=6954&sent=43&recv=30&lost=0&retrans=0&sent_bytes=18102&recv_bytes=9297&delivery_rate=5835735&cwnd=24000&unsent_bytes=0&cid=579d290c9f143145&ts=5869&x=80"

GET fonts.googleapis.com/css?family=Poppins:400,600|Roboto:400,400i,500

142.250.178.42

200 OK

19 kB

URL GET
fonts.googleapis.com/css?family=Poppins:400,600|Roboto:400,400i,500
IP
142.250.178.42:443
ASN
#15169 GOOGLE

Requested by
https://bjxhxjcx.com/jcwt-tp/list_1_1235.html
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
FingerprintE8:3A:D1:2C:16:97:56:94:8B:01:F8:ED:EB:81:17:F8:D7:6C:B2:41
ValidityTue, 29 Apr 2025 19:29:18 GMT - Tue, 22 Jul 2025 19:29:17 GMT

File type
ASCII text, with very long lines (1572)
Size
19 kB (18599 bytes)
Hash
fb0ff6034df71e20c51f152ad40f1aaa
a1a908df9f4da13f771e70e2315021805f466c59
6c0db6f149bd74490d101535973166a225a7e0c9dd7d8b3b2fc01b00554aaf1a

HTTP Headers

GET /css?family=Poppins:400,600|Roboto:400,400i,500 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 28 May 2025 02:44:08 GMT
date: Wed, 28 May 2025 02:44:08 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js

104.17.25.14

200 OK

19 kB

URL GET
cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bjxhxjcx.com/jcwt-tp/list_1_1235.html
Certificate
IssuerGoogle Trust Services
Subjectcdnjs.cloudflare.com
Fingerprint4B:06:E9:E2:47:47:F5:3C:33:58:F8:2A:95:70:22:5E:23:19:03:77
ValidityThu, 22 May 2025 14:38:44 GMT - Wed, 20 Aug 2025 15:38:38 GMT

File type
JavaScript source, ASCII text, with very long lines (19015)
Size
19 kB (19188 bytes)
Hash
70d3fda195602fe8b75e0097eed74dde
c3b977aa4b8dfb69d651e07015031d385ded964b
a52f7aa54d7bcaafa056ee0a050262dfc5694ae28dee8b4cac3429af37ff0d66

HTTP Headers

GET /ajax/libs/popper.js/1.12.9/umd/popper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bjxhxjcx.com
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 28 May 2025 02:44:08 GMT
content-type: application/javascript; charset=utf-8
content-length: 6157
server: cloudflare
strict-transport-security: max-age=15780000
cf-ray: 946a688ec96056c3-OSL
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-4af4"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 449570
expires: Mon, 18 May 2026 02:44:08 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LzzqZTSZ%2Bwy3ga3YRDR7C4CShzN8f25lAMpN4i%2Bfd5Tmj1kFSi3efj5Mmw75%2BTCTBLNQDWCnu6ch9HHO5g97y2ikxT6bZqZhi%2BOlIAntCAEfhO1kTZzljtxRWAqUBoCl0VxPjAAP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET bjxhxjcx.com/static/css/magnific-popup.css

104.21.32.1

200 OK

7.0 kB

URL GET
bjxhxjcx.com/static/css/magnific-popup.css
IP
104.21.32.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bjxhxjcx.com/jcwt-tp/list_1_1235.html
Certificate
IssuerGoogle Trust Services
Subjectbjxhxjcx.com
Fingerprint29:39:9A:6D:3C:49:AE:F6:A3:F5:68:94:F0:90:2B:A6:F2:2C:A3:80
ValidityWed, 14 May 2025 16:13:10 GMT - Tue, 12 Aug 2025 17:09:45 GMT

File type
ASCII text
Size
7.0 kB (6951 bytes)
Hash
30b593b71d7672658f89bfea0ab360c9
d6963db6faa9294387bb3175813a61bc3f859437
45d1f5f6cf913746c45dd697b1a8f3b719c02d8b3f678dc7fc2766d54e1aaf6e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/css/magnific-popup.css HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/jcwt-tp/list_1_1235.html
Cookie: PHPSESSID=tc4fdi4q66t7ru8v1q029js52n
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 28 May 2025 02:44:21 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wh3J5fWX1%2B%2BroEPWJfPLQvBXgUzbZT5voBcycK8V31cXlM6%2BFCabzNNMYsTirQApdObftz5jAOzozeNLc6lt%2BbMYUSHGXPPGbH%2BzjkoJmGiRgnpHBZzDnGICNRxkP9I%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Mon, 17 Jul 2017 02:32:56 GMT
vary: Accept-Encoding
etag: W/"596c21d8-1b27"
expires: Wed, 28 May 2025 14:44:21 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
cf-ray: 946a688e7a7a568d-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5402&min_rtt=930&rtt_var=6469&sent=84&recv=37&lost=0&retrans=0&sent_bytes=63579&recv_bytes=9617&delivery_rate=16921094&cwnd=48000&unsent_bytes=0&cid=579d290c9f143145&ts=13731&x=80"

GET bjxhxjcx.com/static/css/nice-select.css

104.21.32.1

200 OK

4.0 kB

URL GET
bjxhxjcx.com/static/css/nice-select.css
IP
104.21.32.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bjxhxjcx.com/jcwt-tp/list_1_1235.html
Certificate
IssuerGoogle Trust Services
Subjectbjxhxjcx.com
Fingerprint29:39:9A:6D:3C:49:AE:F6:A3:F5:68:94:F0:90:2B:A6:F2:2C:A3:80
ValidityWed, 14 May 2025 16:13:10 GMT - Tue, 12 Aug 2025 17:09:45 GMT

File type
ASCII text
Size
4.0 kB (4007 bytes)
Hash
a7ace323b9fc8a831a6e64feb23fa0b9
9317ad29306bc72eb3fa92981be8141fcd394e7c
c13280e79f74109c5e3854822c0f0c972d0a57245c95b0b3762f9788bd918f8d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/css/nice-select.css HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/jcwt-tp/list_1_1235.html
Cookie: PHPSESSID=tc4fdi4q66t7ru8v1q029js52n
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 28 May 2025 02:44:21 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=k8XwX3eLynBFV2Yyjg19WY8DfIEX4BdrkgyytaM%2FYGwo55%2B2IoO2y8joBO5lZNanCYF9CvI9uPmzhZJg2QdvKc5xMCE3G1rQj5Z6RJtXpMxzF8ccVBpbWF1rxV4r2k8%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Sun, 08 May 2016 13:32:24 GMT
vary: Accept-Encoding
etag: W/"572f3fe8-fa7"
expires: Wed, 28 May 2025 14:44:20 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
cf-ray: 946a688e7a7b568d-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5983&min_rtt=930&rtt_var=7076&sent=82&recv=36&lost=0&retrans=0&sent_bytes=61737&recv_bytes=9570&delivery_rate=16921094&cwnd=48000&unsent_bytes=0&cid=579d290c9f143145&ts=13447&x=80"

GET bjxhxjcx.com/images/defaultpic.gif

104.21.32.1

200 OK

6.4 kB

URL GET
bjxhxjcx.com/images/defaultpic.gif
IP
104.21.32.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bjxhxjcx.com/jcwt-tp/list_1_1235.html
Certificate
IssuerGoogle Trust Services
Subjectbjxhxjcx.com
Fingerprint29:39:9A:6D:3C:49:AE:F6:A3:F5:68:94:F0:90:2B:A6:F2:2C:A3:80
ValidityWed, 14 May 2025 16:13:10 GMT - Tue, 12 Aug 2025 17:09:45 GMT

File type
PNG image data, 512 x 330, 8-bit/color RGBA, non-interlaced
Size
6.4 kB (6408 bytes)
Hash
a22087b8272e7e8c1ef5702ba943ad93
02865bfb0c215e061f515a77882657a9aceee9e1
f4e3729058237486921233ba5eb99c641a4bff858279fb7d36b48ab42ab9989a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/defaultpic.gif HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/jcwt-tp/list_1_1235.html
Cookie: PHPSESSID=tc4fdi4q66t7ru8v1q029js52n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 28 May 2025 02:44:14 GMT
content-type: image/gif
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=39%2BPYAbcd9ia3q9CjzoV4YGJZNX%2F8huLRhpqrv%2Bo%2Bl7aTXSxbIPEfaohYP%2B66LUNI3dHg4%2BCvBk3ErDDNvXZTx8cGadTU9IU73LGCk22ugU7v9qt9srDH82gSso%2FgAI%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Mon, 30 Oct 2023 20:31:56 GMT
vary: Accept-Encoding
etag: W/"654012bc-1908"
expires: Fri, 27 Jun 2025 02:44:14 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
cf-ray: 946a688e8a81568d-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=7190&min_rtt=1766&rtt_var=6765&sent=45&recv=31&lost=0&retrans=0&sent_bytes=20096&recv_bytes=9341&delivery_rate=5835735&cwnd=24000&unsent_bytes=0&cid=579d290c9f143145&ts=6958&x=80"

GET bjxhxjcx.com/uploads/allimg/250503/1A5136314-0-lp.jpg

104.21.32.1

200 OK

12 kB

URL GET
bjxhxjcx.com/uploads/allimg/250503/1A5136314-0-lp.jpg
IP
104.21.32.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bjxhxjcx.com/jcwt-tp/list_1_1235.html
Certificate
IssuerGoogle Trust Services
Subjectbjxhxjcx.com
Fingerprint29:39:9A:6D:3C:49:AE:F6:A3:F5:68:94:F0:90:2B:A6:F2:2C:A3:80
ValidityWed, 14 May 2025 16:13:10 GMT - Tue, 12 Aug 2025 17:09:45 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 240x144, components 3
Size
12 kB (12306 bytes)
Hash
52ddd91730986788d29cc6c8018ed941
ed323c700887fe23a92a49a0968f019e76a71635
b37ad59dfc816aa3155f4a44efe03692423d579e505e3597f24dd5b4a9065a46

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/allimg/250503/1A5136314-0-lp.jpg HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/jcwt-tp/list_1_1235.html
Cookie: PHPSESSID=tc4fdi4q66t7ru8v1q029js52n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 28 May 2025 02:44:12 GMT
content-type: image/jpeg
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=p6k9yzjUpaTG%2FNFSSgsyUpRI20bCMqFZvCisNF04iuSt%2BHk5Oxu670TaYRj509Q5PYQPqaHquI8VXfbykHrIkZsDnZpiSI3d9VLDnU19QzCCMUEVvgyeISNpC2sSMBU%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Sat, 03 May 2025 08:55:14 GMT
vary: Accept-Encoding
etag: W/"6815d9f2-3012"
expires: Fri, 27 Jun 2025 02:44:12 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
cf-ray: 946a688e8a82568d-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=6669&min_rtt=4502&rtt_var=5587&sent=31&recv=27&lost=0&retrans=0&sent_bytes=4291&recv_bytes=9166&delivery_rate=611742&cwnd=12000&unsent_bytes=0&cid=579d290c9f143145&ts=4946&x=80"

GET bjxhxjcx.com/static/js/vendor/jquery-2.2.4.min.js

104.21.32.1

200 OK

86 kB

URL GET
bjxhxjcx.com/static/js/vendor/jquery-2.2.4.min.js
IP
104.21.32.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bjxhxjcx.com/jcwt-tp/list_1_1235.html
Certificate
IssuerGoogle Trust Services
Subjectbjxhxjcx.com
Fingerprint29:39:9A:6D:3C:49:AE:F6:A3:F5:68:94:F0:90:2B:A6:F2:2C:A3:80
ValidityWed, 14 May 2025 16:13:10 GMT - Tue, 12 Aug 2025 17:09:45 GMT

File type
JavaScript source, ASCII text, with very long lines (32065)
Size
86 kB (85577 bytes)
Hash
b354cc9d56a1da6b0c77604d1b153850
a3d8479f4d4e39b131bc9a53bbf53d1fbaa23732
fdce77a6d0053f32d231518a84a71bcab5c86045ed52369da00b89d4284aef46

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/vendor/jquery-2.2.4.min.js HTTP/1.1
Host: bjxhxjcx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bjxhxjcx.com/jcwt-tp/list_1_1235.html
Cookie: PHPSESSID=tc4fdi4q66t7ru8v1q029js52n
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 28 May 2025 02:44:15 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ANbdxioI6J%2B162nmxp9lolMrEX%2Ftahct7EJf3uXxBEK30eTDxWstEtLKnIBwz%2FD1hhVKKdE%2F4Y91Q%2BaGy9oYUs2ftZBNs29usXsbRt6HxeltCRv2lvzzCBmdVl6GHrw%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Mon, 15 May 2017 10:42:08 GMT
vary: Accept-Encoding
etag: W/"59198600-14e49"
expires: Wed, 28 May 2025 14:44:15 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
cf-ray: 946a688e8a83568d-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=6537&min_rtt=1766&rtt_var=6380&sent=51&recv=32&lost=0&retrans=0&sent_bytes=26644&recv_bytes=9387&delivery_rate=5835735&cwnd=24000&unsent_bytes=0&cid=579d290c9f143145&ts=8021&x=80"

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (0)

HTTP Transactions (9)

URL User Request GET

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers