{"report_id":"257a47c1-32db-449c-9179-c884aa429c95","version":6,"status":"done","tags":[],"date":"2026-05-13T13:07:19Z","url":{"schema":"http","addr":"jsyl55.com","fqdn":"jsyl55.com","domain":"jsyl55.com","tld":"com"},"ip":{"addr":"168.76.230.177","port":0,"asn":137951,"as":"ASLINE LIMITED","country":"South Africa","country_code":"ZA"},"final":{"url":{"schema":"https","addr":"jsyl55.com/","fqdn":"jsyl55.com","domain":"jsyl55.com","tld":"com"},"title":"金沙集团-金沙集团官网","dom":{"size":8209,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"9b8aec82c58f44db0e2da822dacba093","sha1":"eefdfd7d9d562be497b46a3340f84e863714e2bf","sha256":"20d91d56e189bcd65f395b82c8aa84f1cd48af613ccd6debf532c54acec37767","sha512":"9759bda4b09593e9305259d6c50675bdc446cd86d481bb119d0acf8e61e823d2913f9d3c93f2c4132110d061428251044770766c298f6d2cfca57e06c3c26a7c","ssdeep":"192:SrnMZjBPCpnDZ0CPBfE/k1mp6rPlyJzmRF4sArtg:1jmX7Artg","tlshash":"5f02871661d3115b2922d1a66fb3171b6664d407c30bc9a97fcc15cdef89ac9c8a738c","dom_hash":"domhash27012197961c49af023d3292681d65a6","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"jsyl55.com","fqdn":"jsyl55.com","domain":"jsyl55.com","tld":"com"},"ip":{"addr":"168.76.230.177","port":0,"asn":137951,"as":"ASLINE LIMITED","country":"South Africa","country_code":"ZA"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-06-17T13:07:19Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":1,"urlquery":0,"analyzer":3}},"detection":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-05-13T13:06:57Z","timestamp":1778677617,"ip_dst":{"addr":"Client IP","port":38324,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"168.76.230.177","port":443,"asn":137951,"as":"ASLINE LIMITED","country":"South Africa","country_code":"ZA"},"severity":"medium","alert":"ET DROP Spamhaus DROP Listed Traffic Inbound group 31","source":"{\"timestamp\":\"2026-05-13T13:06:57.363841+0000\",\"flow_id\":448596305627381,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"168.76.230.177\",\"src_port\":443,\"dest_ip\":\"172.18.0.14\",\"dest_port\":38324,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.Evil\",\"ET.DROPIP\"]},\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2400030,\"rev\":4421,\"signature\":\"ET DROP Spamhaus DROP Listed Traffic Inbound group 31\",\"category\":\"Misc Attack\",\"severity\":2,\"metadata\":{\"affected_product\":[\"Any\"],\"attack_target\":[\"Any\"],\"created_at\":[\"2010_12_30\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Minor\"],\"tag\":[\"Dshield\"],\"updated_at\":[\"2025_08_01\"]}},\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":1,\"bytes_toserver\":74,\"bytes_toclient\":74,\"start\":\"2026-05-13T13:06:57.116981+0000\"}}"}],"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-13","alert":"Phishing Block","trigger":"jsyl55.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"jsyl55.com","ip":{"addr":"168.76.230.177","port":443,"asn":137951,"as":"ASLINE LIMITED","country":"South Africa","country_code":"ZA"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":81,"request_count":27,"received_data":2052353,"sent_data":12546,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Bootstrap","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]}]},{"fqdn":"27.124.6.58","ip":{"addr":"27.124.6.58","port":1649,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":0,"request_count":9,"received_data":294829,"sent_data":4111,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"hm.baidu.com","ip":{"addr":"111.45.11.83","port":443,"asn":9808,"as":"China Mobile Communications Group Co., Ltd.","country":"China","country_code":"CN"},"domain_registered":"1999-10-11","domain_rank":54491,"first_seen":"2012-05-26T08:38:45Z","last_seen":"2026-05-11T05:58:53.953432Z","alert_count":0,"request_count":2,"received_data":30879,"sent_data":1153,"comment":"","tags":null,"fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"collect-v6.51.la","ip":{"addr":"43.159.107.113","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"domain_registered":"2005-01-17","domain_rank":348646,"first_seen":"2021-03-08T16:03:54Z","last_seen":"2026-05-11T07:41:40.777475Z","alert_count":0,"request_count":1,"received_data":354,"sent_data":461,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"jsyl55.com/e/dongpo/tz/tz.js","fqdn":"jsyl55.com","domain":"jsyl55.com","tld":"com"},"ip":{"addr":"168.76.230.177","port":443,"asn":137951,"as":"ASLINE LIMITED","country":"South Africa","country_code":"ZA"},"introduction_type":"scriptElement","is_inline":false,"md5":"a61a87e1907a03765b98267eb76d09b3","sha1":"f54ccb50be03a7572185cbc0a37bde973f39f1dc","sha256":"466db1ee07353ce9cc0615edd2c7bfd4e247dc899a40dec598ea94e2e973f7d4","sha512":"a6cafcd331697fed5f303a62a6e835e528bfc0926a7172ca06c5ac285c99c639759148537b4965e4bbd3388881fb72eccfe7a02f8b6a62a0eb299e1d83ac0536","ssdeep":"","tlshash":"e321af7fae231154d11691692bba776c3e3a001b6301c8307afcbe685f43f429447bd4","size":1155,"data":"","first_seen":"2026-04-13T17:18:50.176808Z","last_seen":"2026-05-13T13:09:33.00555Z","times_seen":70,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jsyl55.com/","fqdn":"jsyl55.com","domain":"jsyl55.com","tld":"com"},"ip":{"addr":"168.76.230.177","port":443,"asn":137951,"as":"ASLINE LIMITED","country":"South Africa","country_code":"ZA"},"introduction_type":"scriptElement","is_inline":false,"md5":"c83ebee2aa19e3fdbfe07dcfcc239405","sha1":"e0db08a93c863968c4b1e146aa04544b246a2153","sha256":"3a6e51bd3dae91dca04533ce5aac3a50495bfed1e7cf2355d46949e0e030ca0c","sha512":"489c1b6cb2283af2e422f4505beaf9a867fce6bfba145878f76ebca3e30799ce38dd2d9de53992c066f204e229fb286aa09527b2c52452418f5ae12a89d200ba","ssdeep":"","tlshash":"48f0dcae9c51e178abc338ac9bafd688c16e1026110ecc03a9d9c5ce3c38fc8042134c","size":491,"data":"","first_seen":"2025-01-04T07:18:42.072419Z","last_seen":"2026-05-13T13:09:33.042374Z","times_seen":170,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jsyl55.com/skin/bootstrap/js/bootstrap.bundle.min.js","fqdn":"jsyl55.com","domain":"jsyl55.com","tld":"com"},"ip":{"addr":"168.76.230.177","port":443,"asn":137951,"as":"ASLINE LIMITED","country":"South Africa","country_code":"ZA"},"introduction_type":"scriptElement","is_inline":false,"md5":"21d4551af5cc4ed4d818bdbdfea8c358","sha1":"df272a07ed30eaf8025b699c45736ba9d284e4d4","sha256":"35f4547d9364111aca4850347356bc5660a994f0d8b694d88f995098a7b547fa","sha512":"4dcd22faf4688265f834deedb8b6d07c1c5af0991f512031485573994df59d5747ca21c494f3f2d9c59f15a7260892b0d15aa8bebcca85d7764d24cc740c69da","ssdeep":"1536:/SwJiEbnTl6R2t49CFliFCIg/yWszSraJd5qUFH9tZwcE+iYZMgZdj:6wfs+SSO5q4tZwcEVYZFj","tlshash":"2383b5593244b8730ade85b68037430bf2265998b14b812cb57cadde2a7dcc67277f78","size":80821,"data":"","first_seen":"2025-06-18T01:20:12.005242Z","last_seen":"2026-05-13T13:50:40.576272Z","times_seen":1558,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jsyl55.com/skin/swiper/js/swiper-bundle.min.js","fqdn":"jsyl55.com","domain":"jsyl55.com","tld":"com"},"ip":{"addr":"168.76.230.177","port":443,"asn":137951,"as":"ASLINE LIMITED","country":"South Africa","country_code":"ZA"},"introduction_type":"scriptElement","is_inline":false,"md5":"21b78ba7133b3d67cf8b09cd6a26d386","sha1":"ea59f37b232db6dee2694078bf21e153a09bacdd","sha256":"6f9df49fe12f77b66daba876cb33b7090b2443f570a2a4b9541cddd705440aa5","sha512":"dc48bb38f168f37930ddc3db0cb78b867fd817cb5907b56cf2c7e58b407f2847a4bab78be5ea2c0deb216052020afb782bc8b4c948a5fe52b77128a27365a392","ssdeep":"1536:TIJQfGP7LP8NEuWGKF+IlzholxU/2Bkt+9SD8jv1nTHlU9ymp8Mj0HEOS5hAsVuZ:0JCN+TXD2BkQZFU9tp8Mj0k95h5cpnv","tlshash":"02d3f8896221b57646e316db93e4c221a3b50544b80ac8f470bd4c9f597ec9813feffa","size":140562,"data":"","first_seen":"2023-06-14T11:52:48Z","last_seen":"2026-05-13T13:22:26.23835Z","times_seen":3760,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sdk.51.la/js-sdk-pro.min.js","fqdn":"sdk.51.la","domain":"51.la","tld":"la"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"b8a41c9449b73e8ba0224c6be1f0b7e8","sha1":"33d79319d4110bcf5c44c36f7dd4a291972ac546","sha256":"52079c09a7355f4ce3af750602ebb9aebae8238583601f8a06268eecccf13565","sha512":"472d0395a65a3ade2d215559b196a88ffcdacde3ac0f573eb8663b524f201d72c9339bcacbc198d82452a0ac367c0efd407b12795943cdd2755d95a8cf71b977","ssdeep":"768:swetbD3SkE+a/l1jaKUiQU5eqEh9GMXBOXAA/EXBeJMlbJfuPT:BetbD3SVT/3+KUc5eqEh9GMXBYEXBeJ7","tlshash":"dbf23d9577c0317cc3c783ea362b501ae1a69e910059a8bcf345f6907d34e56a37fba8","size":36114,"data":"","first_seen":"2025-03-10T03:40:31.536734Z","last_seen":"2026-05-13T14:53:09.238115Z","times_seen":91553,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"27.124.6.58:1649/static/js/link.js","fqdn":"27.124.6.58","domain":"27.124.6.58","tld":""},"ip":{"addr":"27.124.6.58","port":1649,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"be3e9e43078b4618310863c6b6e4d231","sha1":"c17410da94a2c5547efc659b2ff3cb661492f82e","sha256":"1cf4688bef4589f697da428ac5aa64c14dd90b876314ad2fbd7cabde9b956493","sha512":"d874f9287d5df05a6359d63a3a2ae2dc9cc584885b48ec441e211621a477e21dfd399069a68475026ff69d622ac21ffdcada1e84b46c1bfaa0b39d9c08f5dd74","ssdeep":"","tlshash":"13319a5ce6d438320d270867695b2d04b193400fb84aec42f69d4ac0efb1b6f4bba9f4","size":1743,"data":"","first_seen":"2026-05-13T06:31:09.432488Z","last_seen":"2026-05-13T13:09:33.006173Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jsyl55.com/","fqdn":"jsyl55.com","domain":"jsyl55.com","tld":"com"},"ip":{"addr":"168.76.230.177","port":443,"asn":137951,"as":"ASLINE LIMITED","country":"South Africa","country_code":"ZA"},"introduction_type":"Function","is_inline":false,"md5":"1c5c9160600df2d96d69a4ea16cec7ed","sha1":"3cf678c9135cc952ba6970ef545035bb757a443f","sha256":"a3520fe88e248d2b6c9c6db93309a037ef969fe297208e5bd7e49a55bb32c808","sha512":"2a298a8c2552c6a6c6f8d3f7327d2e9abfa87a0dbb27e9e528a8539b416155c0860f54f46464dfe7e5d49c7906a9eacdac7e5181b86ef15a83276a8f4fee0546","ssdeep":"","tlshash":"078004d531c35040475331d400571cd4503444f014444d544040d4511c55030d1154dc","size":37,"data":"","first_seen":"2023-04-11T21:49:14Z","last_seen":"2026-05-13T15:00:20.359971Z","times_seen":113697,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jsyl55.com/skin/bootstrap/js/home.js","fqdn":"jsyl55.com","domain":"jsyl55.com","tld":"com"},"ip":{"addr":"168.76.230.177","port":443,"asn":137951,"as":"ASLINE LIMITED","country":"South Africa","country_code":"ZA"},"introduction_type":"scriptElement","is_inline":false,"md5":"16c93ef01acd14ec64c07020d638253e","sha1":"9c7b9d1a61977675c7f128bf2e27093d3cfe37f6","sha256":"f0795e9620ff382d585e15e40f303b394863fc5fa3dbdecd140adcbc4e51ffd2","sha512":"218d41ff60e128ff13105f9d376cfac1b80401527884da7b6179bab1fe8e9aa9e5959873bc5385798c8a5c6fb7aedce8e68b17112833cc16c096e0dc214d35ea","ssdeep":"96:6P7fgtAVMsSMCM1vUrp8KtQJQ1l/2o3RV0uRC6v6qyS+KQkIF:6P7fg+VSVAvUr2KaG1Zd3YuRriqyDKQH","tlshash":"91c1551a62b42433447775bb97af57c477212087b8c6ec393dfcc6080f845aa59f1aea","size":5802,"data":"","first_seen":"2025-10-09T23:37:04.756251Z","last_seen":"2026-05-13T13:22:26.224113Z","times_seen":331,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jsyl55.com/e/dongpo/tz/tj.js","fqdn":"jsyl55.com","domain":"jsyl55.com","tld":"com"},"ip":{"addr":"168.76.230.177","port":443,"asn":137951,"as":"ASLINE LIMITED","country":"South Africa","country_code":"ZA"},"introduction_type":"scriptElement","is_inline":false,"md5":"1bf60b5cf9c764caf9e85228dc7bfc33","sha1":"22b0d1971d7ec1ec3bb55ff4771752db18eab9ef","sha256":"1a32c475f692c3c84f550cc194a92fff3df6368293bbec3b8e67a42bc2d92306","sha512":"681c26eab518649736ea2c6302120b5a61e0b0749375c8933c7c890b6195de0c6e09a4184c9af8c5fd0f5e5eeda63ba803574bee4c44737899ccd18ce14c97c9","ssdeep":"","tlshash":"8601f11f7c25e13463921c2d23bbdadcf5ad2016101dc80654dec4ad6c34ff9042ab4c","size":808,"data":"","first_seen":"2026-03-03T01:17:34.078046Z","last_seen":"2026-05-13T13:09:32.997993Z","times_seen":171,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jsyl55.com/","fqdn":"jsyl55.com","domain":"jsyl55.com","tld":"com"},"ip":{"addr":"168.76.230.177","port":443,"asn":137951,"as":"ASLINE LIMITED","country":"South Africa","country_code":"ZA"},"introduction_type":"Function","is_inline":false,"md5":"1c5c9160600df2d96d69a4ea16cec7ed","sha1":"3cf678c9135cc952ba6970ef545035bb757a443f","sha256":"a3520fe88e248d2b6c9c6db93309a037ef969fe297208e5bd7e49a55bb32c808","sha512":"2a298a8c2552c6a6c6f8d3f7327d2e9abfa87a0dbb27e9e528a8539b416155c0860f54f46464dfe7e5d49c7906a9eacdac7e5181b86ef15a83276a8f4fee0546","ssdeep":"","tlshash":"078004d531c35040475331d400571cd4503444f014444d544040d4511c55030d1154dc","size":37,"data":"","first_seen":"2023-04-11T21:49:14Z","last_seen":"2026-05-13T15:00:20.359971Z","times_seen":113697,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"hm.baidu.com/hm.js?c07eb39b85a98c006261a3a263eb36c6","fqdn":"hm.baidu.com","domain":"baidu.com","tld":"com"},"ip":{"addr":"111.45.11.83","port":443,"asn":9808,"as":"China Mobile Communications Group Co., Ltd.","country":"China","country_code":"CN"},"introduction_type":"scriptElement","is_inline":false,"md5":"d423ad7f7d68734203e1e060f0b0e0b0","sha1":"750a83e906bf8e7559f057e6a97cd63552e61219","sha256":"9e921de10364eabe191e2fa0655c5a2af250f1a959aa5f65fe18b4ade40c763e","sha512":"6c32bd9aff0d40ec7de5e9779c013d556b4bb4b152351405079d66c248b447019dd76be26d2b3b8cb48b88d9c0a08486cf15ee503234f0ab8bec80933e1d0225","ssdeep":"384:NZJSoLMJJTRl6s1JXFVCFI/TayvuodsZPIGm8XaR1JRwvutq1tGdc7M04gRw6:NZ4VJfHgMdvussZPIx82Rwvutcto07v","tlshash":"e5d2d9a9b282713293a324a5153f324ef17b5a54bd4968a4f11894c07d38fbb027bfdd","size":29897,"data":"","first_seen":"2026-05-13T13:07:25.437821Z","last_seen":"2026-05-13T13:07:25.437821Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jsyl55.com/","fqdn":"jsyl55.com","domain":"jsyl55.com","tld":"com"},"ip":{"addr":"168.76.230.177","port":443,"asn":137951,"as":"ASLINE LIMITED","country":"South Africa","country_code":"ZA"},"introduction_type":"Function","is_inline":false,"md5":"385214e28533013ba1606fc08ae7b3ae","sha1":"0086a0f5914ede593f125653da065f0c5676dc0f","sha256":"c558ef254c25592aef1d5fdcffd7c391ad9e7dc1e4ce3696cd878e7bd127077b","sha512":"83e62f01fb9fbb08e1eb8ce51a0242af872389e2eded12d6e64576b22a7f610d3c4f9edbe3dbdc6b91b0259bedba44c69cfda406ad0e604539c930d10309f42c","ssdeep":"","tlshash":"c7e07dc863c5d88821e36fd57a077b4a71282d177a9c4d508d01385319d79bb81f75bf","size":354,"data":"","first_seen":"2026-05-13T13:07:25.457755Z","last_seen":"2026-05-13T13:07:25.457755Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":[{"md5":"5ea4ed957a0b261151dac522867c1abd","sha1":"2ad940f70f57d4e7d4c624da27691f27fd970ad2","sha256":"229702bd443552b438f8113c95879a863fa4b777ff5be6fb0e61b765cb7d2de3","sha512":"5dc10c656eac40df0c6bdbf66f1f1631178dcc4f5d084f015efe85a07467ef2b68fc0fcd66bc5f4a39af17ea42b03d243e0eaeef5d7f9a0b13efc07dae010b98","ssdeep":"","tlshash":"a3f097ae9c51e568aad328a89bafd68cc16e1026110ec803a9d9c5ce3c38fd8082574c","size":508,"data":"","first_seen":"2024-10-26T06:33:34.507797Z","last_seen":"2026-05-13T13:09:33.043079Z","times_seen":304,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"console":null},"http":[{"url":{"schema":"https","addr":"jsyl55.com/e/dongpo/tz/tj.js","fqdn":"jsyl55.com","domain":"jsyl55.com","tld":"com"},"ip":{"addr":"168.76.230.177","port":443,"asn":137951,"as":"ASLINE LIMITED","country":"South Africa","country_code":"ZA"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://jsyl55.com/","date":"2026-05-13T13:06:58.190Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sands007.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 11 May 2026 22:37:20 GMT","end":"Sun, 09 Aug 2026 22:37:19 GMT"},"fingerprint":{"sha1":"49:73:25:35:D3:D9:EC:A1:B0:D7:03:65:46:C3:BD:AC:04:FF:F3:12","sha256":"69:30:CB:68:9D:69:C5:B1:25:D0:72:2D:C5:98:B9:C9:25:0E:FE:BA:B7:20:7C:AE:D6:D8:89:A1:8D:FC:1A:F4"}}},"request":{"raw":"GET /e/dongpo/tz/tj.js HTTP/1.1\r\nHost: jsyl55.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jsyl55.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 13 May 2026 13:06:58 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 808\r\nlast-modified: Tue, 05 May 2026 19:43:53 GMT\r\netag: \"69fa4879-328\"\r\nexpires: Thu, 14 May 2026 01:06:58 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":808,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (554)","md5":"1bf60b5cf9c764caf9e85228dc7bfc33","sha1":"22b0d1971d7ec1ec3bb55ff4771752db18eab9ef","sha256":"1a32c475f692c3c84f550cc194a92fff3df6368293bbec3b8e67a42bc2d92306","sha512":"681c26eab518649736ea2c6302120b5a61e0b0749375c8933c7c890b6195de0c6e09a4184c9af8c5fd0f5e5eeda63ba803574bee4c44737899ccd18ce14c97c9","ssdeep":"","tlshash":"8601f11f7c25e13463921c2d23bbdadcf5ad2016101dc80654dec4ad6c34ff9042ab4c","first_seen":"2026-03-03T01:17:34.078046Z","last_seen":"2026-05-13T13:09:32.997993Z","times_seen":171,"resource_available":true,"data":null}},"time_used":979,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":736,"receive":243,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-13","alert":"Phishing Block","trigger":"jsyl55.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jsyl55.com/skin/fontawesome/css/all.min.css","fqdn":"jsyl55.com","domain":"jsyl55.com","tld":"com"},"ip":{"addr":"168.76.230.177","port":443,"asn":137951,"as":"ASLINE LIMITED","country":"South Africa","country_code":"ZA"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://jsyl55.com/","date":"2026-05-13T13:06:58.165Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sands007.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 11 May 2026 22:37:20 GMT","end":"Sun, 09 Aug 2026 22:37:19 GMT"},"fingerprint":{"sha1":"49:73:25:35:D3:D9:EC:A1:B0:D7:03:65:46:C3:BD:AC:04:FF:F3:12","sha256":"69:30:CB:68:9D:69:C5:B1:25:D0:72:2D:C5:98:B9:C9:25:0E:FE:BA:B7:20:7C:AE:D6:D8:89:A1:8D:FC:1A:F4"}}},"request":{"raw":"GET /skin/fontawesome/css/all.min.css HTTP/1.1\r\nHost: jsyl55.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jsyl55.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 13 May 2026 13:06:58 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 01 Jul 2025 22:17:08 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68645e64-1907e\"\r\nexpires: Thu, 14 May 2026 01:06:58 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":102526,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (52276)","md5":"c43cd173eeeba2f72aa6b431d06b8c07","sha1":"427a692f7f39eabb3d5b8510aee2743025daf813","sha256":"c880eb3d25c765d399840aa204fec22b3230310991089f14781f09a35ed80b8a","sha512":"02f6f6422b83104bc1e1b64961d7edda63635528417ed2dd3c6f0527457b8ab4cb43c528d2a70fc61e0f96aec6e6d1a6d2b53ed523e1568b6d78ba41111c1393","ssdeep":"1536:vwMCMPMCMjMCM4MCMwMCM3sVMX709gbPMfjSFOTyPG9ZpgmLCq:P709gMGFiyPG9ZimLCq","tlshash":"4fa3a7f9e44c05d97732c44bab95b37c65b6f738d5810ca9f02f580c1ad26a822c6f7a","first_seen":"2024-01-04T18:36:36Z","last_seen":"2026-05-13T13:29:02.822834Z","times_seen":9652,"resource_available":false,"data":null}},"time_used":743,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":743,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-13","alert":"Phishing Block","trigger":"jsyl55.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jsyl55.com/skin/cover/jsyl55com/departments4-11.webp","fqdn":"jsyl55.com","domain":"jsyl55.com","tld":"com"},"ip":{"addr":"168.76.230.177","port":443,"asn":137951,"as":"ASLINE LIMITED","country":"South Africa","country_code":"ZA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jsyl55.com/","date":"2026-05-13T13:06:58.175Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sands007.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 11 May 2026 22:37:20 GMT","end":"Sun, 09 Aug 2026 22:37:19 GMT"},"fingerprint":{"sha1":"49:73:25:35:D3:D9:EC:A1:B0:D7:03:65:46:C3:BD:AC:04:FF:F3:12","sha256":"69:30:CB:68:9D:69:C5:B1:25:D0:72:2D:C5:98:B9:C9:25:0E:FE:BA:B7:20:7C:AE:D6:D8:89:A1:8D:FC:1A:F4"}}},"request":{"raw":"GET /skin/cover/jsyl55com/departments4-11.webp HTTP/1.1\r\nHost: jsyl55.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jsyl55.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 13 May 2026 13:06:58 GMT\r\ncontent-type: image/webp\r\ncontent-length: 75334\r\nlast-modified: Mon, 11 May 2026 21:09:59 GMT\r\netag: \"6a0245a7-12646\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":75334,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 759x506, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"a3432a9fd14d72620bb8579804137e3c","sha1":"2cae8f8c5f3a051802d3528c1100200e0b739be5","sha256":"ba21edceac5be56bf057fb9571f433a115b22d185b8aef535c05f915d47f0aef","sha512":"95468bab996b650f966be8c61cb1908e0a170b5936ddeb1f8b638e3bc2891ee4276206dcfae2d231401c12e2cb7767dc0698e508cd9f9e4a6df778991016da7a","ssdeep":"1536:hBC/KQkuso0qbpIoO4apYqKxbRb7mmB5NVZePQ7ZSPe4cVye1:HpqbPODKxbtB5Lp9SWF4e1","tlshash":"4c730167ef04566dde04aa3be55378393a7ea69b391c4c1453632e33830364d389ce6e","first_seen":"2026-05-13T13:07:25.410746Z","last_seen":"2026-05-13T13:09:33.001286Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1529,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":741,"receive":788,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-13","alert":"Phishing Block","trigger":"jsyl55.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jsyl55.com/skin/cover/jsyl55com/judge3-11.webp","fqdn":"jsyl55.com","domain":"jsyl55.com","tld":"com"},"ip":{"addr":"168.76.230.177","port":443,"asn":137951,"as":"ASLINE LIMITED","country":"South Africa","country_code":"ZA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jsyl55.com/","date":"2026-05-13T13:06:58.180Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sands007.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 11 May 2026 22:37:20 GMT","end":"Sun, 09 Aug 2026 22:37:19 GMT"},"fingerprint":{"sha1":"49:73:25:35:D3:D9:EC:A1:B0:D7:03:65:46:C3:BD:AC:04:FF:F3:12","sha256":"69:30:CB:68:9D:69:C5:B1:25:D0:72:2D:C5:98:B9:C9:25:0E:FE:BA:B7:20:7C:AE:D6:D8:89:A1:8D:FC:1A:F4"}}},"request":{"raw":"GET /skin/cover/jsyl55com/judge3-11.webp HTTP/1.1\r\nHost: jsyl55.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jsyl55.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 13 May 2026 13:06:58 GMT\r\ncontent-type: image/webp\r\ncontent-length: 82614\r\nlast-modified: Mon, 11 May 2026 21:10:00 GMT\r\netag: \"6a0245a8-142b6\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":82614,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 598x398, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"3ee42918090b3e8e94e5d00568b74a8c","sha1":"73b8efed2ffe5eb8d0af9c9ae719f5cab2418f23","sha256":"82c56f3c3827cda8b53da4f50985a9f9b8ae8b95c9e29188f9bc6206af54deb2","sha512":"085a06d4291a1e1ce9e3747b326b5bf7a35e3e4244cb26ecb967193683fd96e026db7b827c8d2ec942abcc255f12141be40148a9a693f24419c5978004cd413b","ssdeep":"1536:f80hsssPksKjZuinRxADjTf5qVNixMaviqvyn6gZp6RRRoRcTMd+:QsSoFVxATfsixMEiq636u5o","tlshash":"69830269e0835a2ece8184b362070f2d3ef30af44179d6590148d1f8266af6f7acf5d6","first_seen":"2026-05-13T13:07:25.41198Z","last_seen":"2026-05-13T13:09:33.031942Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1724,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":739,"receive":985,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-13","alert":"Phishing Block","trigger":"jsyl55.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jsyl55.com/skin/cover/jsyl55com/judge4-11.webp","fqdn":"jsyl55.com","domain":"jsyl55.com","tld":"com"},"ip":{"addr":"168.76.230.177","port":443,"asn":137951,"as":"ASLINE LIMITED","country":"South Africa","country_code":"ZA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jsyl55.com/","date":"2026-05-13T13:06:58.182Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sands007.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 11 May 2026 22:37:20 GMT","end":"Sun, 09 Aug 2026 22:37:19 GMT"},"fingerprint":{"sha1":"49:73:25:35:D3:D9:EC:A1:B0:D7:03:65:46:C3:BD:AC:04:FF:F3:12","sha256":"69:30:CB:68:9D:69:C5:B1:25:D0:72:2D:C5:98:B9:C9:25:0E:FE:BA:B7:20:7C:AE:D6:D8:89:A1:8D:FC:1A:F4"}}},"request":{"raw":"GET /skin/cover/jsyl55com/judge4-11.webp HTTP/1.1\r\nHost: jsyl55.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jsyl55.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 13 May 2026 13:06:58 GMT\r\ncontent-type: image/webp\r\ncontent-length: 67170\r\nlast-modified: Mon, 11 May 2026 21:10:00 GMT\r\netag: \"6a0245a8-10662\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":67170,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 793x528, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"adea2751860df7ee9a29adb08c2be9fd","sha1":"9819ab1a0906489f592c87915b384bb4e6190ea6","sha256":"7782bd51c787207f11b9bada9502c0456672c03c7f7912ed7a289066397dbec4","sha512":"d66916af0fa75d9fca0ec51a5522fa03726bc3b6e1ed52bd8e7d13c267867727b9e8e70679210969bdff412e226559526eb3d3bdd44a703b3024e535c029b5f1","ssdeep":"1536:zhc1xs6LB4nsOGppNvoKzHaLOHQlopvsWY:tcswBKsOaeKzHdQmpsH","tlshash":"bb6302d552dec6a18758d9657bd0c589732f1cfeac0ac14217a3e502b9e1c092ecc6ce","first_seen":"2026-05-13T13:07:25.413179Z","last_seen":"2026-05-13T13:09:33.022575Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1726,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":739,"receive":987,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-13","alert":"Phishing Block","trigger":"jsyl55.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jsyl55.com/skin/fontawesome/webfonts/fa-regular-400.woff2","fqdn":"jsyl55.com","domain":"jsyl55.com","tld":"com"},"ip":{"addr":"168.76.230.177","port":443,"asn":137951,"as":"ASLINE LIMITED","country":"South Africa","country_code":"ZA"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://jsyl55.com/","date":"2026-05-13T13:06:58.973Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sands007.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 11 May 2026 22:37:20 GMT","end":"Sun, 09 Aug 2026 22:37:19 GMT"},"fingerprint":{"sha1":"49:73:25:35:D3:D9:EC:A1:B0:D7:03:65:46:C3:BD:AC:04:FF:F3:12","sha256":"69:30:CB:68:9D:69:C5:B1:25:D0:72:2D:C5:98:B9:C9:25:0E:FE:BA:B7:20:7C:AE:D6:D8:89:A1:8D:FC:1A:F4"}}},"request":{"raw":"GET /skin/fontawesome/webfonts/fa-regular-400.woff2 HTTP/1.1\r\nHost: jsyl55.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jsyl55.com/skin/fontawesome/css/all.min.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 13 May 2026 13:06:59 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 25472\r\nlast-modified: Fri, 13 Dec 2024 08:50:06 GMT\r\netag: \"675bf53e-6380\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":25472,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 25472, version 775.1280","md5":"89672701a5874b80be27649e0494e354","sha1":"e9b6f5b842be227e2423733feb961dd6cb804066","sha256":"e3456d1283b9d75337a773dfd147bf908fd02c01b4bf48576d8603a69b13cbe5","sha512":"8c4246a9511873c28d98097754cf657e6893d8d274015db6e87b5b6f4c85d9bcac4d27e8d7ac60816d3775ac1568e16a1408bdd532e893b403582af011214b23","ssdeep":"768:4lvmuh29bgRdmKFG8vanzmvlXrnU8tVzO:6mubvc8CnKvZrnU8tc","tlshash":"9db2f18a515b8da2f54a5ebfcb6e7e743cf3a3832262c3bd74938104d367478052256b","first_seen":"2024-12-28T09:31:55.480915Z","last_seen":"2026-05-13T13:33:40.99006Z","times_seen":8800,"resource_available":false,"data":null}},"time_used":665,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":664,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-13","alert":"Phishing Block","trigger":"jsyl55.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jsyl55.com/skin/fontawesome/webfonts/fa-solid-900.woff2","fqdn":"jsyl55.com","domain":"jsyl55.com","tld":"com"},"ip":{"addr":"168.76.230.177","port":443,"asn":137951,"as":"ASLINE LIMITED","country":"South Africa","country_code":"ZA"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://jsyl55.com/","date":"2026-05-13T13:06:58.950Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sands007.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 11 May 2026 22:37:20 GMT","end":"Sun, 09 Aug 2026 22:37:19 GMT"},"fingerprint":{"sha1":"49:73:25:35:D3:D9:EC:A1:B0:D7:03:65:46:C3:BD:AC:04:FF:F3:12","sha256":"69:30:CB:68:9D:69:C5:B1:25:D0:72:2D:C5:98:B9:C9:25:0E:FE:BA:B7:20:7C:AE:D6:D8:89:A1:8D:FC:1A:F4"}}},"request":{"raw":"GET /skin/fontawesome/webfonts/fa-solid-900.woff2 HTTP/1.1\r\nHost: jsyl55.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jsyl55.com/skin/fontawesome/css/all.min.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 13 May 2026 13:06:59 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 158220\r\nlast-modified: Fri, 13 Dec 2024 08:50:06 GMT\r\netag: \"675bf53e-26a0c\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":158220,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 158220, version 775.1280","md5":"4a6591ab5460ae5cbff1ecbd6e52193a","sha1":"7cd8afd6501962fda35d66f0e4c3b8815ac471d8","sha256":"aa75998623a391e61c6901794ace832e3ecdd288b56d608f21bea0411acc0b8e","sha512":"96c5d3283b71613b595b6b0420333bef5d64451af05c59dde27ec5b3e7cfe6e9549c604cddfbcb79cbc0fd4cd6f2e22a130c9a220b1b7ef933ac9df8c8e695d6","ssdeep":"3072:RauSB5FANIRLpsBaBrJGNG3ECNQztRvHHqkqLrlF:guSqN6ptrJGo3POh9KT9F","tlshash":"0ef312a710c6b95684a3a51b336adeb52c3ed363fcb6cd73be340114689da9c2e4d190","first_seen":"2024-12-19T10:41:23.153533Z","last_seen":"2026-05-13T15:20:17.204328Z","times_seen":25565,"resource_available":false,"data":null}},"time_used":938,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":687,"receive":251,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-13","alert":"Phishing Block","trigger":"jsyl55.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"27.124.6.58:1649/","fqdn":"27.124.6.58","domain":"27.124.6.58","tld":""},"ip":{"addr":"27.124.6.58","port":1649,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://jsyl55.com/","date":"2026-05-13T13:06:58.998Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 10 May 2026 08:50:07 GMT","end":"Sun, 17 May 2026 00:50:06 GMT"},"fingerprint":{"sha1":"72:AC:79:27:A6:3D:DC:D2:50:DE:D3:F9:7E:AA:6A:DE:B9:41:9A:07","sha256":"62:1E:8A:3B:17:9D:B9:27:47:FF:63:5F:2B:0B:8A:93:BE:85:03:F7:BD:4D:39:2B:02:9E:1E:E7:95:69:3D:0E"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: 27.124.6.58:1649\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jsyl55.com/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 13 May 2026 13:06:59 GMT\r\ncontent-type: text/html\r\nlast-modified: Wed, 22 Apr 2026 12:20:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69e8bcfc-2022\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":8226,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text","md5":"37e7d1f52c08e5cba53549061a088fc5","sha1":"28c3261f8d0f8046ea8bfbcc0ad0e27c80b4dd5f","sha256":"16fe2998b51bd69b9259cb4d1045e4053b99d36368c45efc805240deebc66f0b","sha512":"e64d59f26fc94e14d5b925894cfcdeace55b2bdc48a749ef9b1a7043df551479d55529bf533bc94d68d5f5f071d501c5cfef7fa3eb13fdde26bdcfeb5f3cc85e","ssdeep":"192:irnMZjBPCpnDZ0CPBfE/k1mp6rPlyJzmRF4sArt+:ljmX7Art+","tlshash":"d602761661d3115b292291a66fb3171b6664d407c20bc9a97fcc15cdef89ac9c8a738c","first_seen":"2026-03-01T01:18:02.551716Z","last_seen":"2026-05-13T13:09:32.985572Z","times_seen":217,"resource_available":true,"data":null}},"time_used":1297,"timings":{"blocked":519,"dns":0,"connect":256,"send":0,"wait":259,"receive":0,"ssl":261},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"27.124.6.58:1649/static/picture/365pc.png","fqdn":"27.124.6.58","domain":"27.124.6.58","tld":""},"ip":{"addr":"27.124.6.58","port":1649,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://27.124.6.58:1649/","date":"2026-05-13T13:06:59.883Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 10 May 2026 08:50:07 GMT","end":"Sun, 17 May 2026 00:50:06 GMT"},"fingerprint":{"sha1":"72:AC:79:27:A6:3D:DC:D2:50:DE:D3:F9:7E:AA:6A:DE:B9:41:9A:07","sha256":"62:1E:8A:3B:17:9D:B9:27:47:FF:63:5F:2B:0B:8A:93:BE:85:03:F7:BD:4D:39:2B:02:9E:1E:E7:95:69:3D:0E"}}},"request":{"raw":"GET /static/picture/365pc.png HTTP/1.1\r\nHost: 27.124.6.58:1649\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://27.124.6.58:1649/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 13 May 2026 13:06:59 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 24 Feb 2026 09:51:45 GMT\r\nvary: Accept-Encoding\r\netag: W/\"699d74b1-2255\"\r\nexpires: Fri, 12 Jun 2026 13:06:59 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":8789,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 189 x 44, 8-bit/color RGBA, non-interlaced","md5":"e0c9d379cd4926e815abd7d25c32f5e4","sha1":"e9a1fb55262d96495f14da278c7242cc3fda956b","sha256":"7b50586f667edbeb0c3d573a44d40742354c385a2d7ae1971aa4b0173c11173d","sha512":"519aaeff0baab73e269e86413df78c8563728cb4b1f17e448877c4853a726df366f201b9e869078a4fa460517530a84b5ae9da4290511aeb4d0b93aecb9ac99c","ssdeep":"192:6ZTS99EegUNgEBTJ35PgUUxiKlqSvxV5mG5pqghmCoTHV0:2YzgogEr35Y7cK1YGmAMT+","tlshash":"1e02a0bc5a62079b3d1aa9f8172c54f1fdd070eb411f7c99947d201b0c68a1c83af4a3","first_seen":"2025-01-31T12:39:53.02929Z","last_seen":"2026-05-13T13:09:33.036827Z","times_seen":270,"resource_available":false,"data":null}},"time_used":656,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":656,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jsyl55.com/skin/cover/jsyl55com/about2-11.webp","fqdn":"jsyl55.com","domain":"jsyl55.com","tld":"com"},"ip":{"addr":"168.76.230.177","port":443,"asn":137951,"as":"ASLINE LIMITED","country":"South Africa","country_code":"ZA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jsyl55.com/","date":"2026-05-13T13:06:58.169Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sands007.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 11 May 2026 22:37:20 GMT","end":"Sun, 09 Aug 2026 22:37:19 GMT"},"fingerprint":{"sha1":"49:73:25:35:D3:D9:EC:A1:B0:D7:03:65:46:C3:BD:AC:04:FF:F3:12","sha256":"69:30:CB:68:9D:69:C5:B1:25:D0:72:2D:C5:98:B9:C9:25:0E:FE:BA:B7:20:7C:AE:D6:D8:89:A1:8D:FC:1A:F4"}}},"request":{"raw":"GET /skin/cover/jsyl55com/about2-11.webp HTTP/1.1\r\nHost: jsyl55.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jsyl55.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 13 May 2026 13:06:58 GMT\r\ncontent-type: image/webp\r\ncontent-length: 59830\r\nlast-modified: Mon, 11 May 2026 21:09:59 GMT\r\netag: \"6a0245a7-e9b6\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":59830,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 649x432, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"a8d26ea368e6b3c2190d0704174dca6d","sha1":"b2d720e141f7e031bf38384d80033b6b33b8e483","sha256":"fd877a01343b48621f2c06215c2989382052de622424293a88c3edac57de3282","sha512":"761132cc94ca07c307ff80f342e564d0f9a6716f11817b50a89bdef292b50c07163b0d2441bfbeea18e3390bc92ce9ca573eb0673e017a4f918a086a586d813a","ssdeep":"1536:Oi3vLSPHNHKZ7sefLzRnVVkWkwYXSesHRzGgR:5vKHNWw+nDFOns7R","tlshash":"c9430196fdf9dc05f8dc2daa922490d455738e6f4099369398b78fe27c07104b1853e8","first_seen":"2026-05-13T13:07:25.418147Z","last_seen":"2026-05-13T13:09:33.01135Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1237,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":743,"receive":494,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-13","alert":"Phishing Block","trigger":"jsyl55.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jsyl55.com/skin/cover/jsyl55com/judge1-11.webp","fqdn":"jsyl55.com","domain":"jsyl55.com","tld":"com"},"ip":{"addr":"168.76.230.177","port":443,"asn":137951,"as":"ASLINE LIMITED","country":"South Africa","country_code":"ZA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jsyl55.com/","date":"2026-05-13T13:06:58.178Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sands007.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 11 May 2026 22:37:20 GMT","end":"Sun, 09 Aug 2026 22:37:19 GMT"},"fingerprint":{"sha1":"49:73:25:35:D3:D9:EC:A1:B0:D7:03:65:46:C3:BD:AC:04:FF:F3:12","sha256":"69:30:CB:68:9D:69:C5:B1:25:D0:72:2D:C5:98:B9:C9:25:0E:FE:BA:B7:20:7C:AE:D6:D8:89:A1:8D:FC:1A:F4"}}},"request":{"raw":"GET /skin/cover/jsyl55com/judge1-11.webp HTTP/1.1\r\nHost: jsyl55.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jsyl55.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 13 May 2026 13:06:58 GMT\r\ncontent-type: image/webp\r\ncontent-length: 57408\r\nlast-modified: Mon, 11 May 2026 21:10:00 GMT\r\netag: \"6a0245a8-e040\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":57408,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 558x314, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"c485b59187bd1304f1ce1cf704803585","sha1":"7f4f8df76d93e573a22916ebd1cbac5214d1558d","sha256":"b93a7e631345a8f7fdc582660a5cfa0ea1895900b9023045427253a57df57a4e","sha512":"5cf4bdfdbf49040a6bd531e94f631d7abf48b18e0977f4ee4a466366525ecf7df8bab843a9b5a1b98c7c217d01147de1eb2283f0807816aa9120fee2b01cccf0","ssdeep":"1536:Ig1OSbBjL3jn5rAX8jCtHcFZB7qmz7v9iL/+sObNPgUtsut6:I8f9LTn2sR3B7qmHkjqOUtsuk","tlshash":"9f4302cf71497f96221424d51da1a544878cd0f49fcb6e70ad32e883a4ad06f8f47fa9","first_seen":"2026-05-13T13:07:25.419773Z","last_seen":"2026-05-13T13:09:32.99357Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1481,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":740,"receive":741,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-13","alert":"Phishing Block","trigger":"jsyl55.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"27.124.6.58:1649/static/js/link.js","fqdn":"27.124.6.58","domain":"27.124.6.58","tld":""},"ip":{"addr":"27.124.6.58","port":1649,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://27.124.6.58:1649/","date":"2026-05-13T13:06:59.879Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 10 May 2026 08:50:07 GMT","end":"Sun, 17 May 2026 00:50:06 GMT"},"fingerprint":{"sha1":"72:AC:79:27:A6:3D:DC:D2:50:DE:D3:F9:7E:AA:6A:DE:B9:41:9A:07","sha256":"62:1E:8A:3B:17:9D:B9:27:47:FF:63:5F:2B:0B:8A:93:BE:85:03:F7:BD:4D:39:2B:02:9E:1E:E7:95:69:3D:0E"}}},"request":{"raw":"GET /static/js/link.js HTTP/1.1\r\nHost: 27.124.6.58:1649\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://27.124.6.58:1649/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 13 May 2026 13:06:59 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 12 May 2026 17:29:29 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6a036379-6cf\"\r\nexpires: Thu, 14 May 2026 01:06:59 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1743,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text","md5":"be3e9e43078b4618310863c6b6e4d231","sha1":"c17410da94a2c5547efc659b2ff3cb661492f82e","sha256":"1cf4688bef4589f697da428ac5aa64c14dd90b876314ad2fbd7cabde9b956493","sha512":"d874f9287d5df05a6359d63a3a2ae2dc9cc584885b48ec441e211621a477e21dfd399069a68475026ff69d622ac21ffdcada1e84b46c1bfaa0b39d9c08f5dd74","ssdeep":"","tlshash":"13319a5ce6d438320d270867695b2d04b193400fb84aec42f69d4ac0efb1b6f4bba9f4","first_seen":"2026-05-13T06:31:09.432488Z","last_seen":"2026-05-13T13:09:33.006173Z","times_seen":3,"resource_available":true,"data":null}},"time_used":256,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":256,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"27.124.6.58:1649/static/picture/jinshapc.png","fqdn":"27.124.6.58","domain":"27.124.6.58","tld":""},"ip":{"addr":"27.124.6.58","port":1649,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://27.124.6.58:1649/","date":"2026-05-13T13:06:59.882Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 10 May 2026 08:50:07 GMT","end":"Sun, 17 May 2026 00:50:06 GMT"},"fingerprint":{"sha1":"72:AC:79:27:A6:3D:DC:D2:50:DE:D3:F9:7E:AA:6A:DE:B9:41:9A:07","sha256":"62:1E:8A:3B:17:9D:B9:27:47:FF:63:5F:2B:0B:8A:93:BE:85:03:F7:BD:4D:39:2B:02:9E:1E:E7:95:69:3D:0E"}}},"request":{"raw":"GET /static/picture/jinshapc.png HTTP/1.1\r\nHost: 27.124.6.58:1649\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://27.124.6.58:1649/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 13 May 2026 13:06:59 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 24 Feb 2026 09:51:45 GMT\r\nvary: Accept-Encoding\r\netag: W/\"699d74b1-a334\"\r\nexpires: Fri, 12 Jun 2026 13:06:59 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":41780,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 295 x 113, 8-bit/color RGBA, non-interlaced","md5":"1d2140363e0fda69f41537010f37ac74","sha1":"9f3791b6ade0a7966dee0253cb698564490e9440","sha256":"65ff8549228320f54f3d93e45194314c43c7cea541241876a57633bb5ac94f92","sha512":"75dd491fe42a57dee94c06e5e389323f0b32a584f3d0223845ea8f945ac9cff401e65cc381f4e8973dd78c14655abfff000186a770df78acddff35e6bb69fa86","ssdeep":"768:fUD/+JUtuV8Sp+uA5mBhYhXXy7I1VzKT26hq34ZhMNg1de0nGtXIIq5y7RYLIXK9:j2SYd1Xy7wVG66BvMNg60KXrsLB","tlshash":"3113f1a116d7074d278849fcda334deec406ab285d19b93ec5f68f34e3846c4d083a66","first_seen":"2025-01-31T12:39:53.036928Z","last_seen":"2026-05-13T13:09:33.035562Z","times_seen":269,"resource_available":false,"data":null}},"time_used":345,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":345,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"27.124.6.58:1649/static/picture/1552215839168.png","fqdn":"27.124.6.58","domain":"27.124.6.58","tld":""},"ip":{"addr":"27.124.6.58","port":1649,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://27.124.6.58:1649/","date":"2026-05-13T13:06:59.888Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 10 May 2026 08:50:07 GMT","end":"Sun, 17 May 2026 00:50:06 GMT"},"fingerprint":{"sha1":"72:AC:79:27:A6:3D:DC:D2:50:DE:D3:F9:7E:AA:6A:DE:B9:41:9A:07","sha256":"62:1E:8A:3B:17:9D:B9:27:47:FF:63:5F:2B:0B:8A:93:BE:85:03:F7:BD:4D:39:2B:02:9E:1E:E7:95:69:3D:0E"}}},"request":{"raw":"GET /static/picture/1552215839168.png HTTP/1.1\r\nHost: 27.124.6.58:1649\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://27.124.6.58:1649/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 13 May 2026 13:06:59 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 24 Feb 2026 09:51:45 GMT\r\nvary: Accept-Encoding\r\netag: W/\"699d74b1-2a6b0\"\r\nexpires: Fri, 12 Jun 2026 13:06:59 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":173744,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 488 x 147, 8-bit/color RGBA, non-interlaced","md5":"ce2e5b88612ff5d0c083357995805cb1","sha1":"ee211057d855fb16fcbbc4dd280c54d0e8be9445","sha256":"8d2484ecd64a9270ab446bebd54998c84015ccac62e322332ff027218cc11c54","sha512":"5c3a7cc91ed1cc8f9064538fd154dd31addf4705eea3767bd444c06cc64dfedc9bdccee584936bd2b6a4f142820d0bdd74213497247a59759e89d79fa5bfd896","ssdeep":"3072:7jOt+RYVDFMiydCbjFViIj2qBEn0uzBdtt/jU4SyaguPpoQE3TqtGMFR++gcKiYF:fOARYVFMiyyhViycrTLw4vagkpoQE3T/","tlshash":"c204124c9c4413f186c9f265e2068884e57fc915427c342b37c9e3fb4da6a4927baf32","first_seen":"2023-09-28T01:03:26Z","last_seen":"2026-05-13T13:09:32.99571Z","times_seen":414,"resource_available":false,"data":null}},"time_used":940,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":939,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jsyl55.com/skin/ico/favicon11.ico","fqdn":"jsyl55.com","domain":"jsyl55.com","tld":"com"},"ip":{"addr":"168.76.230.177","port":443,"asn":137951,"as":"ASLINE LIMITED","country":"South Africa","country_code":"ZA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jsyl55.com/","date":"2026-05-13T13:07:00.103Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sands007.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 11 May 2026 22:37:20 GMT","end":"Sun, 09 Aug 2026 22:37:19 GMT"},"fingerprint":{"sha1":"49:73:25:35:D3:D9:EC:A1:B0:D7:03:65:46:C3:BD:AC:04:FF:F3:12","sha256":"69:30:CB:68:9D:69:C5:B1:25:D0:72:2D:C5:98:B9:C9:25:0E:FE:BA:B7:20:7C:AE:D6:D8:89:A1:8D:FC:1A:F4"}}},"request":{"raw":"GET /skin/ico/favicon11.ico HTTP/1.1\r\nHost: jsyl55.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jsyl55.com/\r\nCookie: __vtins__3GBu1WXZo4Qy48zX=%7B%22sid%22%3A%20%223a14f7b2-8efe-57a6-b6da-8435cb00cdbe%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201778679419878%2C%20%22ct%22%3A%201778677619878%7D; __51uvsct__3GBu1WXZo4Qy48zX=1; __51vcke__3GBu1WXZo4Qy48zX=fbe4eeb0-7699-510a-b7f8-893fc13f3004; __51vuft__3GBu1WXZo4Qy48zX=1778677619882\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 13 May 2026 13:07:00 GMT\r\ncontent-type: image/x-icon\r\ncontent-length: 16958\r\nlast-modified: Wed, 09 Jul 2025 03:42:24 GMT\r\netag: \"686de520-423e\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":16958,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, 64x64, 32 bits/pixel","md5":"3cb09b68c182232d8f0e29e79915ae5c","sha1":"c9b6a2a53beb617091001f40f181d3b31bc4f8cc","sha256":"cd381cf19d22ea7734b6bf161e3f01f5f984f3620711a2d9d4dfb7d5128ada4a","sha512":"181a6770d1ee0ede5355f20a464c4d2f0fe42fda7920e61098fdfaace08231b1577348e11071da6121b42b45c17fb1ba0c5c63bb9d5dc1c52f9e783b58f64109","ssdeep":"192:R8Ys3kEj9w/SGrTKZH7r5qn4wLcuLzM5IQP7Tf4R4Ud3GFCOEk6zxJ:uYs3kA9w/FrT2br5qn/LiFP7LiICIY","tlshash":"01725f3d27ccf70ac08f5c33a701b2e652501de5fbc7821696a27a6a31a5d926f708c7","first_seen":"2026-03-26T07:44:41.48127Z","last_seen":"2026-05-13T13:09:33.029103Z","times_seen":4,"resource_available":false,"data":null}},"time_used":249,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":248,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-13","alert":"Phishing Block","trigger":"jsyl55.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"hm.baidu.com/hm.gif?hca=CEB49B9075DF38FD\u0026cc=1\u0026ck=1\u0026cl=24-bit\u0026ds=1280x1024\u0026vl=1024\u0026et=0\u0026ja=0\u0026ln=en-us\u0026lo=0\u0026rnd=1266954251\u0026si=c07eb39b85a98c006261a3a263eb36c6\u0026v=1.3.2\u0026lv=1\u0026sn=57720\u0026r=0\u0026ww=1280\u0026u=https%3A%2F%2Fjsyl55.com%2F\u0026tt=%E9%87%91%E6%B2%99%E9%9B%86%E5%9B%A2-%E9%87%91%E6%B2%99%E9%9B%86%E5%9B%A2%E5%AE%98%E7%BD%91","fqdn":"hm.baidu.com","domain":"baidu.com","tld":"com"},"ip":{"addr":"111.45.11.83","port":443,"asn":9808,"as":"China Mobile Communications Group Co., Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jsyl55.com/","date":"2026-05-13T13:07:00.394Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"baidu.com","organization":"Beijing Baidu Netcom Science Technology Co., Ltd"},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 09 Jul 2025 07:01:02 GMT","end":"Mon, 10 Aug 2026 07:01:01 GMT"},"fingerprint":{"sha1":"21:BF:66:0D:67:BE:7A:7F:49:48:05:30:F4:7F:09:F2:30:36:CA:63","sha256":"0D:82:2C:9A:90:5A:EF:E9:8F:37:12:C0:E0:26:30:EE:95:33:2C:45:5F:E7:74:5D:F0:8D:BC:79:F4:B0:A1:49"}}},"request":{"raw":"GET /hm.gif?hca=CEB49B9075DF38FD\u0026cc=1\u0026ck=1\u0026cl=24-bit\u0026ds=1280x1024\u0026vl=1024\u0026et=0\u0026ja=0\u0026ln=en-us\u0026lo=0\u0026rnd=1266954251\u0026si=c07eb39b85a98c006261a3a263eb36c6\u0026v=1.3.2\u0026lv=1\u0026sn=57720\u0026r=0\u0026ww=1280\u0026u=https%3A%2F%2Fjsyl55.com%2F\u0026tt=%E9%87%91%E6%B2%99%E9%9B%86%E5%9B%A2-%E9%87%91%E6%B2%99%E9%9B%86%E5%9B%A2%E5%AE%98%E7%BD%91 HTTP/1.1\r\nHost: hm.baidu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jsyl55.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nCache-Control: private, max-age=0, no-cache\r\nContent-Length: 43\r\nContent-Type: image/gif\r\nDate: Wed, 13 May 2026 13:07:00 GMT\r\nP3p: CP=\"CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR\"\r\nPragma: no-cache\r\nServer: apache\r\nSet-Cookie: HMACCOUNT=7CBD462159497EDB; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT\r\nStrict-Transport-Security: max-age=172800\r\nX-Content-Type-Options: nosniff\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":43,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 1 x 1","md5":"ad4b0f606e0f8465bc4c4c170b37e1a3","sha1":"50b30fd5f87c85fe5cba2635cb83316ca71250d7","sha256":"cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda","sha512":"ebfe0c0df4bcc167d5cb6ebdd379f9083df62bef63a23818e1c6adf0f64b65467ea58b7cd4d03cf0a1b1a2b07fb7b969bf35f25f1f8538cc65cf3eebdf8a0910","ssdeep":"","tlshash":"15900003fbc08002c2b2e0300b3b0380238ce2200aa8030b80aeb0acecaa3a20c03020","first_seen":"2023-04-05T02:54:03Z","last_seen":"2026-05-13T15:22:49.851942Z","times_seen":352430,"resource_available":true,"data":null}},"time_used":272,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":272,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jsyl55.com/skin/cover/jsyl55com/about1-11.webp","fqdn":"jsyl55.com","domain":"jsyl55.com","tld":"com"},"ip":{"addr":"168.76.230.177","port":443,"asn":137951,"as":"ASLINE LIMITED","country":"South Africa","country_code":"ZA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jsyl55.com/","date":"2026-05-13T13:06:58.168Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sands007.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 11 May 2026 22:37:20 GMT","end":"Sun, 09 Aug 2026 22:37:19 GMT"},"fingerprint":{"sha1":"49:73:25:35:D3:D9:EC:A1:B0:D7:03:65:46:C3:BD:AC:04:FF:F3:12","sha256":"69:30:CB:68:9D:69:C5:B1:25:D0:72:2D:C5:98:B9:C9:25:0E:FE:BA:B7:20:7C:AE:D6:D8:89:A1:8D:FC:1A:F4"}}},"request":{"raw":"GET /skin/cover/jsyl55com/about1-11.webp HTTP/1.1\r\nHost: jsyl55.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jsyl55.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 13 May 2026 13:06:58 GMT\r\ncontent-type: image/webp\r\ncontent-length: 61330\r\nlast-modified: Mon, 11 May 2026 21:09:59 GMT\r\netag: \"6a0245a7-ef92\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":61330,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 622x414, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"eaf1a3e326505900ce1059e7f232b450","sha1":"88679ee0cd4cdd7fb9570bcf726afcf07f9c081c","sha256":"82cee02433bf25719d50d0de3128e74ab001298aa41aaaf3c7734da80935eab2","sha512":"fc7975b25d1e2f8393cb9b018514a13ca38f00e9e8dd8950b23884a662d935e178c3fec6f02d91c54a4de6a8f6847c4c34553c2200cc2f9b3b65859edfed8fee","ssdeep":"1536:KQgJVGgK5Hn2d7/P+f6wagZiQ3aobWqi/zCTlL70TLVZ0:SVGd5Hn6r2fTJZco46xyLo","tlshash":"9153026770a63739a0da74b893c061f918ee3407be5263032b7ecb969c5de62d10df15","first_seen":"2026-05-13T13:07:25.425185Z","last_seen":"2026-05-13T13:09:32.989078Z","times_seen":2,"resource_available":false,"data":null}},"time_used":991,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":743,"receive":248,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-13","alert":"Phishing Block","trigger":"jsyl55.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jsyl55.com/skin/cover/jsyl55com/departments2-11.webp","fqdn":"jsyl55.com","domain":"jsyl55.com","tld":"com"},"ip":{"addr":"168.76.230.177","port":443,"asn":137951,"as":"ASLINE LIMITED","country":"South Africa","country_code":"ZA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jsyl55.com/","date":"2026-05-13T13:06:58.172Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sands007.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 11 May 2026 22:37:20 GMT","end":"Sun, 09 Aug 2026 22:37:19 GMT"},"fingerprint":{"sha1":"49:73:25:35:D3:D9:EC:A1:B0:D7:03:65:46:C3:BD:AC:04:FF:F3:12","sha256":"69:30:CB:68:9D:69:C5:B1:25:D0:72:2D:C5:98:B9:C9:25:0E:FE:BA:B7:20:7C:AE:D6:D8:89:A1:8D:FC:1A:F4"}}},"request":{"raw":"GET /skin/cover/jsyl55com/departments2-11.webp HTTP/1.1\r\nHost: jsyl55.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jsyl55.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 13 May 2026 13:06:58 GMT\r\ncontent-type: image/webp\r\ncontent-length: 105614\r\nlast-modified: Mon, 11 May 2026 21:09:59 GMT\r\netag: \"6a0245a7-19c8e\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":105614,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 689x458, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"0beda95a0994f27b474b65420af42d0d","sha1":"1530e8cf1a3e8e6677533e4c0e0e4bea83c56f19","sha256":"b86b78085fe5713c220d73e1911750271c99b8259b3c6e6bd5cf4b189e022571","sha512":"1fd3ada5524cfa0e5be4d41c6d44285e80633df12c018b9d705c5ee2fcd443e5f519a545412b688f0aeefc23918b12a57284279bfcdc79079933e43c40b511dd","ssdeep":"1536:5miGObGa5H8yL2h/h3Y62fbueh9VmcCEQ0vX+UJ+D0ErVr3bEX1UBNLk6c9iIRs:Jbw/hI6quegc00mUQRr81UfkTi6s","tlshash":"1ca312fc7ba09075e7c193d3c810f6b89eeaaf4556118a54f55cf9a4906d0304778af2","first_seen":"2026-05-13T13:07:25.426342Z","last_seen":"2026-05-13T13:09:33.030785Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1528,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":742,"receive":786,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-13","alert":"Phishing Block","trigger":"jsyl55.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"27.124.6.58:1649/static/picture/wnspc.png","fqdn":"27.124.6.58","domain":"27.124.6.58","tld":""},"ip":{"addr":"27.124.6.58","port":1649,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://27.124.6.58:1649/","date":"2026-05-13T13:06:59.885Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 10 May 2026 08:50:07 GMT","end":"Sun, 17 May 2026 00:50:06 GMT"},"fingerprint":{"sha1":"72:AC:79:27:A6:3D:DC:D2:50:DE:D3:F9:7E:AA:6A:DE:B9:41:9A:07","sha256":"62:1E:8A:3B:17:9D:B9:27:47:FF:63:5F:2B:0B:8A:93:BE:85:03:F7:BD:4D:39:2B:02:9E:1E:E7:95:69:3D:0E"}}},"request":{"raw":"GET /static/picture/wnspc.png HTTP/1.1\r\nHost: 27.124.6.58:1649\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://27.124.6.58:1649/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 13 May 2026 13:06:59 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 24 Feb 2026 09:51:45 GMT\r\nvary: Accept-Encoding\r\netag: W/\"699d74b1-1eb7\"\r\nexpires: Fri, 12 Jun 2026 13:06:59 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":7863,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 172 x 60, 8-bit/color RGBA, non-interlaced","md5":"6e6f3e6c749737e6c347ec25d39b3eb1","sha1":"076c805bf394c7996a58202e333827837c8b1378","sha256":"391138ddf53bc321563b3d17fe0f37f5b40efba65fc661dbfa239a2b2184ec65","sha512":"b4621a8e30b49a48b1b13e9582c260b02d42ab2cc2509d59e56cf85028eec3dd165e255dff5c61e689ad8b4eaabe74852185efb2764da5c0ec1133a2ccb02a3d","ssdeep":"192:FQSFq7yL2y34yuuSzYUfBY2kCf9pDnA3+O07Zu86U9S0aN:zFjLX3u1YU5sCzA3hEu86sSLN","tlshash":"26f1ae6b1553fcb469dda7e92063af6082136f48b0077a12fb2b29748135fe5f44aa13","first_seen":"2023-09-28T01:03:26Z","last_seen":"2026-05-13T13:09:33.025272Z","times_seen":294,"resource_available":false,"data":null}},"time_used":809,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":809,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"collect-v6.51.la/v6/collect?dt=4","fqdn":"collect-v6.51.la","domain":"51.la","tld":"la"},"ip":{"addr":"43.159.107.113","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://jsyl55.com/","date":"2026-05-13T13:06:59.908Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.51.la","organization":""},"issuer":{"commonName":"Keymatic Secure Domain RSA CA G1","organization":"PKI(Chongqing) Limited"},"validity":{"start":"Wed, 01 Apr 2026 06:48:26 GMT","end":"Fri, 16 Oct 2026 15:59:59 GMT"},"fingerprint":{"sha1":"F0:4F:0E:62:84:89:BD:2B:8E:53:1E:AC:20:70:16:C2:F7:E9:C1:C0","sha256":"54:9F:ED:D0:8F:D4:0A:5F:31:95:55:FD:E0:E6:13:F2:09:8C:39:E1:01:31:98:FA:1D:DC:20:CD:20:19:7C:F5"}}},"request":{"raw":"POST /v6/collect?dt=4 HTTP/1.1\r\nHost: collect-v6.51.la\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Length: 381\r\nOrigin: https://jsyl55.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jsyl55.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 210 No Reason Phrase\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://jsyl55.com\r\naccess-control-allow-credentials: true\r\nserver: TencentEdgeOne\r\ncontent-length: 0\r\ndate: Wed, 13 May 2026 13:07:00 GMT\r\neo-log-uuid: 8237259452918129349\r\neo-cache-status: MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"210","status_text":"No Reason Phrase","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/xml","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-13T15:33:13.162002Z","times_seen":15117490,"resource_available":true,"data":null}},"time_used":1534,"timings":{"blocked":106,"dns":0,"connect":0,"send":0,"wait":1427,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jsyl55.com/","fqdn":"jsyl55.com","domain":"jsyl55.com","tld":"com"},"ip":{"addr":"168.76.230.177","port":443,"asn":137951,"as":"ASLINE LIMITED","country":"South Africa","country_code":"ZA"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-05-13T13:06:56.950Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sands007.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 11 May 2026 22:37:20 GMT","end":"Sun, 09 Aug 2026 22:37:19 GMT"},"fingerprint":{"sha1":"49:73:25:35:D3:D9:EC:A1:B0:D7:03:65:46:C3:BD:AC:04:FF:F3:12","sha256":"69:30:CB:68:9D:69:C5:B1:25:D0:72:2D:C5:98:B9:C9:25:0E:FE:BA:B7:20:7C:AE:D6:D8:89:A1:8D:FC:1A:F4"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: jsyl55.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 13 May 2026 13:06:57 GMT\r\ncontent-type: text/html; charset=utf-8\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Bootstrap","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]}],"data":{"size":19232,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (14688), with no line terminators","md5":"db84740464708ea6999e6116fc9e2878","sha1":"d5077d02ad3857706d1fe035292bef32cf682cde","sha256":"3e2e65b76764a3285492dc99851c009a4a8549d5d687b937579a41801c1d4bb1","sha512":"f72f2fbe8a0756e08f75230a1745525fc0ffd466c51800f7755f43de10e3eb12eefd5c26bfaa96c4c2450fbcf4d7b0ff788445557a74ff406119f2cb569ea6b7","ssdeep":"192:rVsV2gO4VwAsIneKpd5GvpJGLQmAjuKlLKFBJeRqu41pVypbbm:rVsVZrVwAnPvcvpJl/a2GpVyZm","tlshash":"9182643b7068387f412b5afca12c6b1f66e3c25ecb2b8d05a6f447c85bc5d6e468061d","first_seen":"2026-05-13T13:07:25.42853Z","last_seen":"2026-05-13T13:09:33.00934Z","times_seen":2,"resource_available":true,"data":null}},"time_used":1626,"timings":{"blocked":671,"dns":167,"connect":247,"send":0,"wait":285,"receive":0,"ssl":252},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-13","alert":"Phishing Block","trigger":"jsyl55.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jsyl55.com/skin/bootstrap/css/bootstrap.min.css","fqdn":"jsyl55.com","domain":"jsyl55.com","tld":"com"},"ip":{"addr":"168.76.230.177","port":443,"asn":137951,"as":"ASLINE LIMITED","country":"South Africa","country_code":"ZA"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://jsyl55.com/","date":"2026-05-13T13:06:58.159Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sands007.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 11 May 2026 22:37:20 GMT","end":"Sun, 09 Aug 2026 22:37:19 GMT"},"fingerprint":{"sha1":"49:73:25:35:D3:D9:EC:A1:B0:D7:03:65:46:C3:BD:AC:04:FF:F3:12","sha256":"69:30:CB:68:9D:69:C5:B1:25:D0:72:2D:C5:98:B9:C9:25:0E:FE:BA:B7:20:7C:AE:D6:D8:89:A1:8D:FC:1A:F4"}}},"request":{"raw":"GET /skin/bootstrap/css/bootstrap.min.css HTTP/1.1\r\nHost: jsyl55.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jsyl55.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 13 May 2026 13:06:58 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 01 Jul 2025 22:17:08 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68645e64-38a52\"\r\nexpires: Thu, 14 May 2026 01:06:58 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":232018,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (65342)","md5":"50c95aae1a6c1e089c11681d1e1906f8","sha1":"a65e4fd8db9bd0440de2d6d73c9e7cd00fce4a8d","sha256":"cd1826581e4f2b80af4f1e05897b316c7698441063cffaefbbdeec382ee4cd72","sha512":"7f0edff9370c8d36fb6e96cb25994ff20d98e17702c85656f2ecbc1ec459b07fd2c1b330d2994a1c51ebf7d0cdde5d3856c60dc2fce27145ffeaababbc8c5bc7","ssdeep":"1536:v9xnXGi9GfJkfvq5wlP7cQZDR9uvV982sYRElV6V6pz600I41r:HnXp9GfrV98II6V6pz600I41r","tlshash":"d03482d6f590317d9ca7c1499681fefd896fa985cb120aa6f003776807cabd30962dcc","first_seen":"2025-06-19T07:12:41.126365Z","last_seen":"2026-05-13T13:22:26.227158Z","times_seen":1474,"resource_available":false,"data":null}},"time_used":253,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":253,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-13","alert":"Phishing Block","trigger":"jsyl55.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jsyl55.com/skin/logo/jsyl55com/logo.webp","fqdn":"jsyl55.com","domain":"jsyl55.com","tld":"com"},"ip":{"addr":"168.76.230.177","port":443,"asn":137951,"as":"ASLINE LIMITED","country":"South Africa","country_code":"ZA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jsyl55.com/","date":"2026-05-13T13:06:58.167Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sands007.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 11 May 2026 22:37:20 GMT","end":"Sun, 09 Aug 2026 22:37:19 GMT"},"fingerprint":{"sha1":"49:73:25:35:D3:D9:EC:A1:B0:D7:03:65:46:C3:BD:AC:04:FF:F3:12","sha256":"69:30:CB:68:9D:69:C5:B1:25:D0:72:2D:C5:98:B9:C9:25:0E:FE:BA:B7:20:7C:AE:D6:D8:89:A1:8D:FC:1A:F4"}}},"request":{"raw":"GET /skin/logo/jsyl55com/logo.webp HTTP/1.1\r\nHost: jsyl55.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jsyl55.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 13 May 2026 13:06:58 GMT\r\ncontent-type: image/webp\r\ncontent-length: 5512\r\nlast-modified: Mon, 11 May 2026 21:09:59 GMT\r\netag: \"6a0245a7-1588\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5512,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 400x140, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"1865d4b1eb5edd74f858147d2d1f312a","sha1":"4eed53814a5fae58f8a163958377151c904861b5","sha256":"090903be48f028761cf9233a4d1ae5ea5d4f9073c05f16f407689fd58a848bcb","sha512":"9f6f52c291327aef40d507c6179ac2a7e8685443c31a5c6277007845cc3744e0c4966aaa66fc324572aa8666999ec9b60abaaef43f46cf9c4fed12aaaab31e19","ssdeep":"96:Zsqb8S5pMEYe2VpSGgBzuyY+YXRUDXlfnvb9DgFdG9+eXqNi/8SXgRfaXo0Vv6UM:ZstEwVXyzuyjYuLl/T9D99+e9QRenvk","tlshash":"58b1af0f394c68579590156e7e8d7e28b4d5225064dec37521cfbbc7b67851c23581f2","first_seen":"2026-05-13T13:07:25.430354Z","last_seen":"2026-05-13T13:09:33.000055Z","times_seen":2,"resource_available":false,"data":null}},"time_used":990,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":744,"receive":246,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-13","alert":"Phishing Block","trigger":"jsyl55.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jsyl55.com/skin/cover/jsyl55com/departments1-11.webp","fqdn":"jsyl55.com","domain":"jsyl55.com","tld":"com"},"ip":{"addr":"168.76.230.177","port":443,"asn":137951,"as":"ASLINE LIMITED","country":"South Africa","country_code":"ZA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jsyl55.com/","date":"2026-05-13T13:06:58.171Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sands007.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 11 May 2026 22:37:20 GMT","end":"Sun, 09 Aug 2026 22:37:19 GMT"},"fingerprint":{"sha1":"49:73:25:35:D3:D9:EC:A1:B0:D7:03:65:46:C3:BD:AC:04:FF:F3:12","sha256":"69:30:CB:68:9D:69:C5:B1:25:D0:72:2D:C5:98:B9:C9:25:0E:FE:BA:B7:20:7C:AE:D6:D8:89:A1:8D:FC:1A:F4"}}},"request":{"raw":"GET /skin/cover/jsyl55com/departments1-11.webp HTTP/1.1\r\nHost: jsyl55.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jsyl55.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 13 May 2026 13:06:58 GMT\r\ncontent-type: image/webp\r\ncontent-length: 101934\r\nlast-modified: Mon, 11 May 2026 21:09:59 GMT\r\netag: \"6a0245a7-18e2e\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":101934,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 816x544, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"76c7bee0977aae33bf80b0489c67a537","sha1":"596e967ed906c58dbcba3a7aa8224d479896a5a2","sha256":"684613c273345e076f424fdcdfd4abd8a34c0e14e93ef734a3dfee6e12a1337c","sha512":"31c12b6a408f968ef2f01ae1eefc2fc5307049c2e73d4632ff8c4e36074c451a0eb787cde28c8004e87f78a10fbb803164e90ede0a6b3eb8f828c8ca46a0dfa4","ssdeep":"3072:ikZOEhIUG0aKQw2AfrQJnIA/2vdWlJwVYSX:TNmQ1QZkKiwJVSX","tlshash":"98a313ca61f431b9ceb9d1783492416c725ece8bf683059dfbafa6150153f0885ddd81","first_seen":"2026-05-13T13:07:25.431589Z","last_seen":"2026-05-13T13:09:32.99152Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1526,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":742,"receive":784,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-13","alert":"Phishing Block","trigger":"jsyl55.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jsyl55.com/skin/cover/jsyl55com/judge5-11.webp","fqdn":"jsyl55.com","domain":"jsyl55.com","tld":"com"},"ip":{"addr":"168.76.230.177","port":443,"asn":137951,"as":"ASLINE LIMITED","country":"South Africa","country_code":"ZA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jsyl55.com/","date":"2026-05-13T13:06:58.183Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sands007.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 11 May 2026 22:37:20 GMT","end":"Sun, 09 Aug 2026 22:37:19 GMT"},"fingerprint":{"sha1":"49:73:25:35:D3:D9:EC:A1:B0:D7:03:65:46:C3:BD:AC:04:FF:F3:12","sha256":"69:30:CB:68:9D:69:C5:B1:25:D0:72:2D:C5:98:B9:C9:25:0E:FE:BA:B7:20:7C:AE:D6:D8:89:A1:8D:FC:1A:F4"}}},"request":{"raw":"GET /skin/cover/jsyl55com/judge5-11.webp HTTP/1.1\r\nHost: jsyl55.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jsyl55.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 13 May 2026 13:06:58 GMT\r\ncontent-type: image/webp\r\ncontent-length: 102926\r\nlast-modified: Mon, 11 May 2026 21:10:00 GMT\r\netag: \"6a0245a8-1920e\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":102926,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 720x480, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"e0bd965c08e59173b0c0781062ba0de9","sha1":"e00b807b07f059e6dd672e3927d1532895a605ed","sha256":"d66fdaffe28c9cf1d29780d0b07d2aa7d3432a6029b70c4295b535515d1cf815","sha512":"cc2e0d4636ffc01de16e25e8598db8d2888aa5073291215d6cd4b089f0c6ac33a1b92880fd8706925a1b4f7062eeaa0b3a626dfd03e72e04f11c1bead6089112","ssdeep":"1536:5xPtoZeayp7DQ0SYFj9eRwhtyMV2rEGSrl2NpVKACJN5qN3QcU6+ZKys4GS:3loZeayp3F8Rwh5mEHrSTizcU6otv","tlshash":"4fa312da8ce7d8b17a286e0490ceab702656d1f851f9255c0a9190f8ec9d316dcff254","first_seen":"2026-05-13T13:07:25.432569Z","last_seen":"2026-05-13T13:09:33.003227Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1728,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":738,"receive":990,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-13","alert":"Phishing Block","trigger":"jsyl55.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jsyl55.com/skin/bootstrap/css/module.css","fqdn":"jsyl55.com","domain":"jsyl55.com","tld":"com"},"ip":{"addr":"168.76.230.177","port":443,"asn":137951,"as":"ASLINE LIMITED","country":"South Africa","country_code":"ZA"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://jsyl55.com/","date":"2026-05-13T13:06:58.161Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sands007.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 11 May 2026 22:37:20 GMT","end":"Sun, 09 Aug 2026 22:37:19 GMT"},"fingerprint":{"sha1":"49:73:25:35:D3:D9:EC:A1:B0:D7:03:65:46:C3:BD:AC:04:FF:F3:12","sha256":"69:30:CB:68:9D:69:C5:B1:25:D0:72:2D:C5:98:B9:C9:25:0E:FE:BA:B7:20:7C:AE:D6:D8:89:A1:8D:FC:1A:F4"}}},"request":{"raw":"GET /skin/bootstrap/css/module.css HTTP/1.1\r\nHost: jsyl55.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jsyl55.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 13 May 2026 13:06:58 GMT\r\ncontent-type: text/css\r\nlast-modified: Thu, 24 Jul 2025 20:07:14 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68829272-28112\"\r\nexpires: Thu, 14 May 2026 01:06:58 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":164114,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65518)","md5":"67e45932bedd92dd7bc2a7de1653677e","sha1":"b15f3b2e370d9a7c2c40ea991c8f4a839617702d","sha256":"6e25cdc64273a412026df8a7b3510d9ba7dd6cd75653dd3eb884371b4ace73e8","sha512":"d6130c594f82eefca5109421095dc8c0603b44c4c714bdb8956e64278c9c1625263a531a1ad401fa344f180c2f1cbe95af8246c9e33dc6a28316ab243f448591","ssdeep":"1536:qiVj2AhHm0CfrtrPr7AhhTQbdS6U8H2GXVxICl1gGqotJFFp4L/Xzbv9ALVTFCew:sAhhTQg6U8p45s5Q","tlshash":"c6f397309984202cf11bc5eae5d0abef32649801f663077ef66370a6d6c21ef577674a","first_seen":"2025-10-09T23:37:04.753197Z","last_seen":"2026-05-13T13:09:33.02996Z","times_seen":321,"resource_available":false,"data":null}},"time_used":499,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":499,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-13","alert":"Phishing Block","trigger":"jsyl55.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jsyl55.com/e/dongpo/tz/tz.js","fqdn":"jsyl55.com","domain":"jsyl55.com","tld":"com"},"ip":{"addr":"168.76.230.177","port":443,"asn":137951,"as":"ASLINE LIMITED","country":"South Africa","country_code":"ZA"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://jsyl55.com/","date":"2026-05-13T13:06:58.185Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sands007.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 11 May 2026 22:37:20 GMT","end":"Sun, 09 Aug 2026 22:37:19 GMT"},"fingerprint":{"sha1":"49:73:25:35:D3:D9:EC:A1:B0:D7:03:65:46:C3:BD:AC:04:FF:F3:12","sha256":"69:30:CB:68:9D:69:C5:B1:25:D0:72:2D:C5:98:B9:C9:25:0E:FE:BA:B7:20:7C:AE:D6:D8:89:A1:8D:FC:1A:F4"}}},"request":{"raw":"GET /e/dongpo/tz/tz.js HTTP/1.1\r\nHost: jsyl55.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jsyl55.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 13 May 2026 13:06:58 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 05 May 2026 19:43:53 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69fa4879-483\"\r\nexpires: Thu, 14 May 2026 01:06:58 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1155,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"a61a87e1907a03765b98267eb76d09b3","sha1":"f54ccb50be03a7572185cbc0a37bde973f39f1dc","sha256":"466db1ee07353ce9cc0615edd2c7bfd4e247dc899a40dec598ea94e2e973f7d4","sha512":"a6cafcd331697fed5f303a62a6e835e528bfc0926a7172ca06c5ac285c99c639759148537b4965e4bbd3388881fb72eccfe7a02f8b6a62a0eb299e1d83ac0536","ssdeep":"","tlshash":"e321af7fae231154d11691692bba776c3e3a001b6301c8307afcbe685f43f429447bd4","first_seen":"2026-04-13T17:18:50.176808Z","last_seen":"2026-05-13T13:09:33.00555Z","times_seen":70,"resource_available":true,"data":null}},"time_used":738,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":738,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-13","alert":"Phishing Block","trigger":"jsyl55.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"27.124.6.58:1649/static/picture/xpjpc.png","fqdn":"27.124.6.58","domain":"27.124.6.58","tld":""},"ip":{"addr":"27.124.6.58","port":1649,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://27.124.6.58:1649/","date":"2026-05-13T13:06:59.884Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 10 May 2026 08:50:07 GMT","end":"Sun, 17 May 2026 00:50:06 GMT"},"fingerprint":{"sha1":"72:AC:79:27:A6:3D:DC:D2:50:DE:D3:F9:7E:AA:6A:DE:B9:41:9A:07","sha256":"62:1E:8A:3B:17:9D:B9:27:47:FF:63:5F:2B:0B:8A:93:BE:85:03:F7:BD:4D:39:2B:02:9E:1E:E7:95:69:3D:0E"}}},"request":{"raw":"GET /static/picture/xpjpc.png HTTP/1.1\r\nHost: 27.124.6.58:1649\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://27.124.6.58:1649/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 13 May 2026 13:06:59 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 24 Feb 2026 09:51:45 GMT\r\nvary: Accept-Encoding\r\netag: W/\"699d74b1-5800\"\r\nexpires: Fri, 12 Jun 2026 13:06:59 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":22528,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 183 x 55, 8-bit/color RGBA, non-interlaced","md5":"c53d923594566be7e0e41e8d720c0ac0","sha1":"e16a4b701d10291bbff90178e8b0d5f576e00821","sha256":"021994557d1d9642fdc16a0d8f6e471bec81bea7f366de6ef631f536c165418b","sha512":"554f7d6d44d26905610a65e21bd157ec30fef501c356e97787deca22f9089216f59e284f0effab7b18da89134af594d4ffd5eed889b1b5a4d5a5412456b9832e","ssdeep":"384:QfchEzlZmrXTjUDkJe2tERBxq2ceTdr1lFJ3d2Oo+UQSYJshjRHXvcQ:QfchEzrmrXTjUhP42cKpFJ3lo+UHYa//","tlshash":"fba2e0f1f36ff1b54a924d554cf8e2b080978942e088ee6135cb204acade8d31d993e7","first_seen":"2023-05-07T20:04:35Z","last_seen":"2026-05-13T13:09:33.037775Z","times_seen":410,"resource_available":false,"data":null}},"time_used":751,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":751,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"27.124.6.58:1649/static/picture/tycpc.png","fqdn":"27.124.6.58","domain":"27.124.6.58","tld":""},"ip":{"addr":"27.124.6.58","port":1649,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://27.124.6.58:1649/","date":"2026-05-13T13:06:59.886Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 10 May 2026 08:50:07 GMT","end":"Sun, 17 May 2026 00:50:06 GMT"},"fingerprint":{"sha1":"72:AC:79:27:A6:3D:DC:D2:50:DE:D3:F9:7E:AA:6A:DE:B9:41:9A:07","sha256":"62:1E:8A:3B:17:9D:B9:27:47:FF:63:5F:2B:0B:8A:93:BE:85:03:F7:BD:4D:39:2B:02:9E:1E:E7:95:69:3D:0E"}}},"request":{"raw":"GET /static/picture/tycpc.png HTTP/1.1\r\nHost: 27.124.6.58:1649\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://27.124.6.58:1649/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 13 May 2026 13:06:59 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 24 Feb 2026 09:51:45 GMT\r\nvary: Accept-Encoding\r\netag: W/\"699d74b1-4d7b\"\r\nexpires: Fri, 12 Jun 2026 13:06:59 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":19835,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 162 x 60, 8-bit/color RGBA, non-interlaced","md5":"9cccfc8ca4e4f50e4155a906a42666cb","sha1":"6687ef39ed3ba532124b8155234e819655ac0827","sha256":"38fa753bd6894fd8b0fdd94ba7e7bd9da32cb1e58017c44ce0147afba97b4841","sha512":"4e5e74b92841a16efc4cad516894bdaa1eca4ccdca290bcb36bbaa68cbe2011a6d12005f5bc2946532bbddc4e73161589ab3a296a734b78ad12aaa540bed9cca","ssdeep":"384:nC4JlgpsDv49JmGFnsvbCU5jAEVzJ0smbzRgZGme584WLMM0tq5PHcMV:Ccw9J9FybCUTzJ0smbZhwPH5","tlshash":"ba92e1cc99b518a51940f1dc2f338a48cfe9112c29e58776b1d377a2d94ae6f307c60b","first_seen":"2025-02-07T02:11:03.006958Z","last_seen":"2026-05-13T13:09:33.027007Z","times_seen":268,"resource_available":false,"data":null}},"time_used":862,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":862,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jsyl55.com/skin/cover/jsyl55com/departments5-11.webp","fqdn":"jsyl55.com","domain":"jsyl55.com","tld":"com"},"ip":{"addr":"168.76.230.177","port":443,"asn":137951,"as":"ASLINE LIMITED","country":"South Africa","country_code":"ZA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jsyl55.com/","date":"2026-05-13T13:06:58.176Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sands007.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 11 May 2026 22:37:20 GMT","end":"Sun, 09 Aug 2026 22:37:19 GMT"},"fingerprint":{"sha1":"49:73:25:35:D3:D9:EC:A1:B0:D7:03:65:46:C3:BD:AC:04:FF:F3:12","sha256":"69:30:CB:68:9D:69:C5:B1:25:D0:72:2D:C5:98:B9:C9:25:0E:FE:BA:B7:20:7C:AE:D6:D8:89:A1:8D:FC:1A:F4"}}},"request":{"raw":"GET /skin/cover/jsyl55com/departments5-11.webp HTTP/1.1\r\nHost: jsyl55.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jsyl55.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 13 May 2026 13:06:58 GMT\r\ncontent-type: image/webp\r\ncontent-length: 161828\r\nlast-modified: Mon, 11 May 2026 21:10:00 GMT\r\netag: \"6a0245a8-27824\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":161828,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 760x507, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"aae7c400c47ffa503cce7a2fc7f7eda1","sha1":"a660a70c9c573f1b06d9b7ca7033f15fa5f70ef4","sha256":"ca290b5758a823c1fdcef5101d319bddce652cde94f2771999a2e41b927a29ee","sha512":"9619ae3f9f8af89291ee5c32506de8e13f26001f975d25181507b257e3e9871ee744b81ff6c783a1cd82f84afe7390443e222ffbb9b8e7d9aace4523f1ebefd1","ssdeep":"3072:stxi2gDXbS0vOr8HlMMjErEiurXtgw5wJyAAmxkvZNVQE2Q:syQ0e8FTfXs3EZNVQM","tlshash":"c9f3137f2de158b0ad02c5ec4d19b6f9c3a8bf0959e7b0b830ae756511709fa903217a","first_seen":"2026-05-13T13:07:25.43678Z","last_seen":"2026-05-13T13:09:33.002314Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1740,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":740,"receive":1000,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-13","alert":"Phishing Block","trigger":"jsyl55.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"hm.baidu.com/hm.js?c07eb39b85a98c006261a3a263eb36c6","fqdn":"hm.baidu.com","domain":"baidu.com","tld":"com"},"ip":{"addr":"111.45.11.83","port":443,"asn":9808,"as":"China Mobile Communications Group Co., Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://jsyl55.com/","date":"2026-05-13T13:06:59.207Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"baidu.com","organization":"Beijing Baidu Netcom Science Technology Co., Ltd"},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 09 Jul 2025 07:01:02 GMT","end":"Mon, 10 Aug 2026 07:01:01 GMT"},"fingerprint":{"sha1":"21:BF:66:0D:67:BE:7A:7F:49:48:05:30:F4:7F:09:F2:30:36:CA:63","sha256":"0D:82:2C:9A:90:5A:EF:E9:8F:37:12:C0:E0:26:30:EE:95:33:2C:45:5F:E7:74:5D:F0:8D:BC:79:F4:B0:A1:49"}}},"request":{"raw":"GET /hm.js?c07eb39b85a98c006261a3a263eb36c6 HTTP/1.1\r\nHost: hm.baidu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jsyl55.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nCache-Control: max-age=0, must-revalidate\r\nContent-Encoding: gzip\r\nContent-Length: 11291\r\nContent-Type: application/javascript\r\nDate: Wed, 13 May 2026 13:07:00 GMT\r\nEtag: 403929ee208182ff71761f1421bd959f\r\nP3p: CP=\"CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR\"\r\nServer: apache\r\nSet-Cookie: HMACCOUNT=CEB49B9075DF38FD; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT\r\nStrict-Transport-Security: max-age=172800\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":29897,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (621)","md5":"d423ad7f7d68734203e1e060f0b0e0b0","sha1":"750a83e906bf8e7559f057e6a97cd63552e61219","sha256":"9e921de10364eabe191e2fa0655c5a2af250f1a959aa5f65fe18b4ade40c763e","sha512":"6c32bd9aff0d40ec7de5e9779c013d556b4bb4b152351405079d66c248b447019dd76be26d2b3b8cb48b88d9c0a08486cf15ee503234f0ab8bec80933e1d0225","ssdeep":"384:NZJSoLMJJTRl6s1JXFVCFI/TayvuodsZPIGm8XaR1JRwvutq1tGdc7M04gRw6:NZ4VJfHgMdvussZPIx82Rwvutcto07v","tlshash":"e5d2d9a9b282713293a324a5153f324ef17b5a54bd4968a4f11894c07d38fbb027bfdd","first_seen":"2026-05-13T13:07:25.437821Z","last_seen":"2026-05-13T13:07:25.437821Z","times_seen":1,"resource_available":true,"data":null}},"time_used":1955,"timings":{"blocked":842,"dns":207,"connect":211,"send":0,"wait":269,"receive":1,"ssl":421},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"27.124.6.58:1649/static/picture/dfpc.png","fqdn":"27.124.6.58","domain":"27.124.6.58","tld":""},"ip":{"addr":"27.124.6.58","port":1649,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://27.124.6.58:1649/","date":"2026-05-13T13:06:59.887Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 10 May 2026 08:50:07 GMT","end":"Sun, 17 May 2026 00:50:06 GMT"},"fingerprint":{"sha1":"72:AC:79:27:A6:3D:DC:D2:50:DE:D3:F9:7E:AA:6A:DE:B9:41:9A:07","sha256":"62:1E:8A:3B:17:9D:B9:27:47:FF:63:5F:2B:0B:8A:93:BE:85:03:F7:BD:4D:39:2B:02:9E:1E:E7:95:69:3D:0E"}}},"request":{"raw":"GET /static/picture/dfpc.png HTTP/1.1\r\nHost: 27.124.6.58:1649\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://27.124.6.58:1649/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 13 May 2026 13:06:59 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 24 Feb 2026 11:38:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"699d8daa-1c49\"\r\nexpires: Fri, 12 Jun 2026 13:06:59 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":7241,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 200 x 50, 8-bit/color RGBA, non-interlaced","md5":"9ca63936da71d994267413c9b4d62583","sha1":"0083b92ce28904d8c01cca591a852d218c944d3e","sha256":"909c9c1f9b2ee3b6ebe305b395b454cb597ae2b4ad8ec0db3a57c2e678bb685a","sha512":"2c01f6e39b4f8c4ff7d8c2d20640c9d80b50ebb49351d32c4e0263b11abbb721b6af3c4d27c308f6e26d4f9e0c5f08045c0d235b3ef1a587eaa1df578c7c333b","ssdeep":"192:FxLpy98iKPdw9eYyJIoxrBG3GFQVnpq1fw5qDQ/7os:F1pyNIq9e1Zrg3GFQVnp2YsQ/j","tlshash":"78e18e3b8e8c2754c1551385a136fab4d8791ef331f4923e9a257c22dd52ab2c921386","first_seen":"2026-03-01T01:18:02.55958Z","last_seen":"2026-05-13T13:09:33.028309Z","times_seen":221,"resource_available":false,"data":null}},"time_used":894,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":894,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jsyl55.com/skin/swiper/css/swiper-bundle.min.css","fqdn":"jsyl55.com","domain":"jsyl55.com","tld":"com"},"ip":{"addr":"168.76.230.177","port":443,"asn":137951,"as":"ASLINE LIMITED","country":"South Africa","country_code":"ZA"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://jsyl55.com/","date":"2026-05-13T13:06:58.162Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sands007.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 11 May 2026 22:37:20 GMT","end":"Sun, 09 Aug 2026 22:37:19 GMT"},"fingerprint":{"sha1":"49:73:25:35:D3:D9:EC:A1:B0:D7:03:65:46:C3:BD:AC:04:FF:F3:12","sha256":"69:30:CB:68:9D:69:C5:B1:25:D0:72:2D:C5:98:B9:C9:25:0E:FE:BA:B7:20:7C:AE:D6:D8:89:A1:8D:FC:1A:F4"}}},"request":{"raw":"GET /skin/swiper/css/swiper-bundle.min.css HTTP/1.1\r\nHost: jsyl55.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jsyl55.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 13 May 2026 13:06:58 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 08 Jul 2025 08:36:42 GMT\r\nvary: Accept-Encoding\r\netag: W/\"686cd89a-4691\"\r\nexpires: Thu, 14 May 2026 01:06:58 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":18065,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (17812)","md5":"ea28ae0aaf82709381c57d6a7daa7a05","sha1":"a7c528dc9018aeefed9a52337168decb220e2f61","sha256":"af8545de3876815292506711e1369bff9dfe57ec7e04c45c3e1bdac48a11f3b2","sha512":"9c63402a957e06b7c365a6cf5f53baaba991953e7bfda99d8feeaf177db6a2782a28004b1d82df2dcde362d5556e4891f6da300d63cf13d816144dadb1920f66","ssdeep":"192:1VmUJbiKne0JlXZHZ+Sme+jexS4nxep/a2GZb0Q5nfufKlAYfg5fyeesedOJ9A5Q:1gUbe0JdZHZ+W+SFnZ24tlWfF4XYz","tlshash":"d08245a85340282753274f364b71cbb9dd7444d20f9389ae91c0ee48d7f6db9132f6a9","first_seen":"2023-06-14T11:52:48Z","last_seen":"2026-05-13T13:22:26.236351Z","times_seen":4276,"resource_available":false,"data":null}},"time_used":743,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":743,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-13","alert":"Phishing Block","trigger":"jsyl55.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jsyl55.com/skin/cover/jsyl55com/departments3-11.webp","fqdn":"jsyl55.com","domain":"jsyl55.com","tld":"com"},"ip":{"addr":"168.76.230.177","port":443,"asn":137951,"as":"ASLINE LIMITED","country":"South Africa","country_code":"ZA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jsyl55.com/","date":"2026-05-13T13:06:58.174Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sands007.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 11 May 2026 22:37:20 GMT","end":"Sun, 09 Aug 2026 22:37:19 GMT"},"fingerprint":{"sha1":"49:73:25:35:D3:D9:EC:A1:B0:D7:03:65:46:C3:BD:AC:04:FF:F3:12","sha256":"69:30:CB:68:9D:69:C5:B1:25:D0:72:2D:C5:98:B9:C9:25:0E:FE:BA:B7:20:7C:AE:D6:D8:89:A1:8D:FC:1A:F4"}}},"request":{"raw":"GET /skin/cover/jsyl55com/departments3-11.webp HTTP/1.1\r\nHost: jsyl55.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jsyl55.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 13 May 2026 13:06:58 GMT\r\ncontent-type: image/webp\r\ncontent-length: 47580\r\nlast-modified: Mon, 11 May 2026 21:09:59 GMT\r\netag: \"6a0245a7-b9dc\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":47580,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 626x417, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"3bdeaf42d2d10e2d19f5537e1a83cfee","sha1":"7e67f3e87db03487610a7533616245ec598f64b0","sha256":"2542e5e84b42ce1d1ce3fa8bb5f818f8e730cdd08d4f71b019e4d514df06fa5c","sha512":"bc40493c05ec62e2dce690431b1a897ff49a6eb54ecc33c801bd1da8cf79b7150b3b5322a7a5ed050420c32ad2b0751f9f77a4086a0743e643f8718837305fe8","ssdeep":"768:W+u3xvdFjT8swic8ydQfDLnh725NCjsq+eh7J2hteNWp67zjLX5O8iEilZqm+UgQ:W3xvzjTJc8yGL1I/qnqFpKPLX5Vlinb5","tlshash":"5623f17c8cf29520e592f734da279512c9145354e9cbb927f1f22ca02f152befba8970","first_seen":"2026-05-13T13:07:25.443369Z","last_seen":"2026-05-13T13:09:33.017884Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1237,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":741,"receive":496,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-13","alert":"Phishing Block","trigger":"jsyl55.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jsyl55.com/skin/cover/jsyl55com/judge2-11.webp","fqdn":"jsyl55.com","domain":"jsyl55.com","tld":"com"},"ip":{"addr":"168.76.230.177","port":443,"asn":137951,"as":"ASLINE LIMITED","country":"South Africa","country_code":"ZA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jsyl55.com/","date":"2026-05-13T13:06:58.179Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sands007.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 11 May 2026 22:37:20 GMT","end":"Sun, 09 Aug 2026 22:37:19 GMT"},"fingerprint":{"sha1":"49:73:25:35:D3:D9:EC:A1:B0:D7:03:65:46:C3:BD:AC:04:FF:F3:12","sha256":"69:30:CB:68:9D:69:C5:B1:25:D0:72:2D:C5:98:B9:C9:25:0E:FE:BA:B7:20:7C:AE:D6:D8:89:A1:8D:FC:1A:F4"}}},"request":{"raw":"GET /skin/cover/jsyl55com/judge2-11.webp HTTP/1.1\r\nHost: jsyl55.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jsyl55.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 13 May 2026 13:06:58 GMT\r\ncontent-type: image/webp\r\ncontent-length: 34128\r\nlast-modified: Mon, 11 May 2026 21:10:00 GMT\r\netag: \"6a0245a8-8550\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":34128,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 556x370, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"04df6608c809e4123c2d3f1788cbe049","sha1":"38fa2fd9aa71f37b2a2a58eeb9a361eb1e460407","sha256":"b022285499fbfc4ca9e34fee96ab8e73c797671a332146cf9915f3e711fa8691","sha512":"e0970ecb343c2e1522ded2b35312668036bb5a8704285de191beb4154fee895950ba16f390fc13d5da4c35d3115845b2af6401e284584640ac6e23a3b0fc93bf","ssdeep":"768:3L6pijS8/XvBdBRzOt+o4Rn920GGob5MStnukkt0G9uYSB6Zkfoh:GpoBhdBF+hCK1ukk2G9qLU","tlshash":"b6e2f1819a13212b25d436586d38f2a420363d66acca6fdccc80d358c6bbe525df07ee","first_seen":"2026-05-13T13:07:25.445659Z","last_seen":"2026-05-13T13:09:33.01993Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1481,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":740,"receive":741,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-13","alert":"Phishing Block","trigger":"jsyl55.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jsyl55.com/skin/cover/jsyl55com/app-11.webp","fqdn":"jsyl55.com","domain":"jsyl55.com","tld":"com"},"ip":{"addr":"168.76.230.177","port":443,"asn":137951,"as":"ASLINE LIMITED","country":"South Africa","country_code":"ZA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jsyl55.com/","date":"2026-05-13T13:06:58.184Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sands007.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 11 May 2026 22:37:20 GMT","end":"Sun, 09 Aug 2026 22:37:19 GMT"},"fingerprint":{"sha1":"49:73:25:35:D3:D9:EC:A1:B0:D7:03:65:46:C3:BD:AC:04:FF:F3:12","sha256":"69:30:CB:68:9D:69:C5:B1:25:D0:72:2D:C5:98:B9:C9:25:0E:FE:BA:B7:20:7C:AE:D6:D8:89:A1:8D:FC:1A:F4"}}},"request":{"raw":"GET /skin/cover/jsyl55com/app-11.webp HTTP/1.1\r\nHost: jsyl55.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jsyl55.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 13 May 2026 13:06:58 GMT\r\ncontent-type: image/webp\r\ncontent-length: 115316\r\nlast-modified: Mon, 11 May 2026 21:10:00 GMT\r\netag: \"6a0245a8-1c274\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":115316,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 577x384, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"9c55a745884bb8591c27e5bf143a4c2f","sha1":"2f0f46c5e13ede52191799d2995198491f4a0a71","sha256":"99d5acfae3c13ee5c1b0ccf884afdd6fd068aad0d0d02c92fb5537ed45415b1e","sha512":"c0ed0205f6facf04b07b271efebee94b830e6c2327a42122c8dd667d5bc1e333385c418d078ea0d538668e745c3d6a1a0c6050e36d1100ffdb40c4ddaf99e233","ssdeep":"3072:5dRQJscgl+Pt0NekKHWhCX7UMgSLQ02jiwPV:HRQ2cvPyNez2gX7lLIjiG","tlshash":"bcb312140b3d7ec093ed80b23e27a9996db1e1ee45e3cb0a05bc650d4144725ad3fb6d","first_seen":"2026-05-13T13:07:25.447484Z","last_seen":"2026-05-13T13:09:33.004399Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1734,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":738,"receive":996,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-13","alert":"Phishing Block","trigger":"jsyl55.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jsyl55.com/skin/bootstrap/js/bootstrap.bundle.min.js","fqdn":"jsyl55.com","domain":"jsyl55.com","tld":"com"},"ip":{"addr":"168.76.230.177","port":443,"asn":137951,"as":"ASLINE LIMITED","country":"South Africa","country_code":"ZA"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://jsyl55.com/","date":"2026-05-13T13:06:58.186Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sands007.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 11 May 2026 22:37:20 GMT","end":"Sun, 09 Aug 2026 22:37:19 GMT"},"fingerprint":{"sha1":"49:73:25:35:D3:D9:EC:A1:B0:D7:03:65:46:C3:BD:AC:04:FF:F3:12","sha256":"69:30:CB:68:9D:69:C5:B1:25:D0:72:2D:C5:98:B9:C9:25:0E:FE:BA:B7:20:7C:AE:D6:D8:89:A1:8D:FC:1A:F4"}}},"request":{"raw":"GET /skin/bootstrap/js/bootstrap.bundle.min.js HTTP/1.1\r\nHost: jsyl55.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jsyl55.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 13 May 2026 13:06:58 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 01 Jul 2025 23:41:48 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6864723c-13bb5\"\r\nexpires: Thu, 14 May 2026 01:06:58 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":80821,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65299)","md5":"21d4551af5cc4ed4d818bdbdfea8c358","sha1":"df272a07ed30eaf8025b699c45736ba9d284e4d4","sha256":"35f4547d9364111aca4850347356bc5660a994f0d8b694d88f995098a7b547fa","sha512":"4dcd22faf4688265f834deedb8b6d07c1c5af0991f512031485573994df59d5747ca21c494f3f2d9c59f15a7260892b0d15aa8bebcca85d7764d24cc740c69da","ssdeep":"1536:/SwJiEbnTl6R2t49CFliFCIg/yWszSraJd5qUFH9tZwcE+iYZMgZdj:6wfs+SSO5q4tZwcEVYZFj","tlshash":"2383b5593244b8730ade85b68037430bf2265998b14b812cb57cadde2a7dcc67277f78","first_seen":"2025-06-18T01:20:12.005242Z","last_seen":"2026-05-13T13:50:40.576272Z","times_seen":1558,"resource_available":true,"data":null}},"time_used":737,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":737,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-13","alert":"Phishing Block","trigger":"jsyl55.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jsyl55.com/skin/swiper/js/swiper-bundle.min.js","fqdn":"jsyl55.com","domain":"jsyl55.com","tld":"com"},"ip":{"addr":"168.76.230.177","port":443,"asn":137951,"as":"ASLINE LIMITED","country":"South Africa","country_code":"ZA"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://jsyl55.com/","date":"2026-05-13T13:06:58.188Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sands007.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 11 May 2026 22:37:20 GMT","end":"Sun, 09 Aug 2026 22:37:19 GMT"},"fingerprint":{"sha1":"49:73:25:35:D3:D9:EC:A1:B0:D7:03:65:46:C3:BD:AC:04:FF:F3:12","sha256":"69:30:CB:68:9D:69:C5:B1:25:D0:72:2D:C5:98:B9:C9:25:0E:FE:BA:B7:20:7C:AE:D6:D8:89:A1:8D:FC:1A:F4"}}},"request":{"raw":"GET /skin/swiper/js/swiper-bundle.min.js HTTP/1.1\r\nHost: jsyl55.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jsyl55.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 13 May 2026 13:06:58 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 02 Jul 2025 23:58:22 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6865c79e-22512\"\r\nexpires: Thu, 14 May 2026 01:06:58 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":140562,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65283)","md5":"21b78ba7133b3d67cf8b09cd6a26d386","sha1":"ea59f37b232db6dee2694078bf21e153a09bacdd","sha256":"6f9df49fe12f77b66daba876cb33b7090b2443f570a2a4b9541cddd705440aa5","sha512":"dc48bb38f168f37930ddc3db0cb78b867fd817cb5907b56cf2c7e58b407f2847a4bab78be5ea2c0deb216052020afb782bc8b4c948a5fe52b77128a27365a392","ssdeep":"1536:TIJQfGP7LP8NEuWGKF+IlzholxU/2Bkt+9SD8jv1nTHlU9ymp8Mj0HEOS5hAsVuZ:0JCN+TXD2BkQZFU9tp8Mj0k95h5cpnv","tlshash":"02d3f8896221b57646e316db93e4c221a3b50544b80ac8f470bd4c9f597ec9813feffa","first_seen":"2023-06-14T11:52:48Z","last_seen":"2026-05-13T13:22:26.23835Z","times_seen":3760,"resource_available":true,"data":null}},"time_used":737,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":737,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-13","alert":"Phishing Block","trigger":"jsyl55.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jsyl55.com/skin/bootstrap/js/home.js","fqdn":"jsyl55.com","domain":"jsyl55.com","tld":"com"},"ip":{"addr":"168.76.230.177","port":443,"asn":137951,"as":"ASLINE LIMITED","country":"South Africa","country_code":"ZA"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://jsyl55.com/","date":"2026-05-13T13:06:58.189Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sands007.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 11 May 2026 22:37:20 GMT","end":"Sun, 09 Aug 2026 22:37:19 GMT"},"fingerprint":{"sha1":"49:73:25:35:D3:D9:EC:A1:B0:D7:03:65:46:C3:BD:AC:04:FF:F3:12","sha256":"69:30:CB:68:9D:69:C5:B1:25:D0:72:2D:C5:98:B9:C9:25:0E:FE:BA:B7:20:7C:AE:D6:D8:89:A1:8D:FC:1A:F4"}}},"request":{"raw":"GET /skin/bootstrap/js/home.js HTTP/1.1\r\nHost: jsyl55.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jsyl55.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 13 May 2026 13:06:58 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 14 Jul 2025 11:49:58 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6874eee6-16aa\"\r\nexpires: Thu, 14 May 2026 01:06:58 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5802,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text","md5":"16c93ef01acd14ec64c07020d638253e","sha1":"9c7b9d1a61977675c7f128bf2e27093d3cfe37f6","sha256":"f0795e9620ff382d585e15e40f303b394863fc5fa3dbdecd140adcbc4e51ffd2","sha512":"218d41ff60e128ff13105f9d376cfac1b80401527884da7b6179bab1fe8e9aa9e5959873bc5385798c8a5c6fb7aedce8e68b17112833cc16c096e0dc214d35ea","ssdeep":"96:6P7fgtAVMsSMCM1vUrp8KtQJQ1l/2o3RV0uRC6v6qyS+KQkIF:6P7fg+VSVAvUr2KaG1Zd3YuRriqyDKQH","tlshash":"91c1551a62b42433447775bb97af57c477212087b8c6ec393dfcc6080f845aa59f1aea","first_seen":"2025-10-09T23:37:04.756251Z","last_seen":"2026-05-13T13:22:26.224113Z","times_seen":331,"resource_available":true,"data":null}},"time_used":737,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":737,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-13","alert":"Phishing Block","trigger":"jsyl55.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-13","alert":"Sinkholed","trigger":"jsyl55.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}}]}